Privacy Policy
This privacy policy describes how we collect, use and process your personal data and how we comply with our legal obligations towards you. The protection of your data is important to us. We have therefore made it our mission to handle your data responsibly and to protect and safeguard it.
We comply with the statutory provisions of the General Data Protection Regulation (GDPR), the Federal Data Protection Act (BDSG), the Telekommunikation-Digitale-Dienste-Datenschutz-Gesetz (TDDDG) and other applicable data protection regulations.
This privacy policy applies to the personal data of visitors to our website - customers, suppliers, applicants and other persons - and informs you as a user about the type, scope and purpose of the collection and use of personal data by us as the responsible provider on this website.
The controller responsible for the processing of your personal data on these websites is
TPC Germany GmbH
represented by the managing director Chih-Hsien Chou
Office No. 311
Altmarkt 10 B/D
01067 Dresden
Germany
info@tpc.com.de
For further information about our company, please refer to the imprint information on our website (https://tpc.com.de/en/legal-notice/).
I. General information on data processing
Obligation to provide data
In principle, you are not obliged to provide us with your personal data. However, when you visit our website, the following personal data (access data/server log files) is already collected. If you do not provide us with your personal data, we will not be able to respond to your enquiries. Personal data that we do not necessarily require is labelled accordingly as voluntary information.
Handling of personal data
According to Art. 4 para. 1 GDPR, personal data means “any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person”.
Personal data that we process
This personal data is collected, used and/or passed on by us if this is permitted by law or if you as the user consent to the collection of data.
Customer data:
We use personal information about prospects and customers to ensure that the contractual agreements between us can be properly implemented (e.g. for the transmission of offers, execution of deliveries, etc.) and to ensure a smooth business relationship. We use the following categories of personal data for this purpose:
Supplier data:
We use our suppliers' personal data primarily to ensure that the contractual agreements between us can be properly implemented, thus enabling a smooth business relationship. Secondly, to ensure compliance with legal regulations. We use the following categories of personal data for this purpose:
Applicant data:
The reason for using personal information about applicants is to assess whether your application to TPC Germany GmbH matches the requirements of our vacancies. All the information we have about you, your skills and your goals helps us to offer you an individually tailored job offer. We use the following categories of personal data for this purpose:
Access data/ server log files:
When using the website for information purposes only we only collect the personal data that your browser transmits to our server. The access data includes
We only use this log data for technically necessary statistical evaluations for the purpose of the operation, security and optimization of our website. However, we reserve the right to check the log data retrospectively if there is a justified suspicion of unlawful use based on concrete evidence.
Disclosure of personal data:
We may disclose your personal data to the following categories of persons in accordance with local laws and regulations:
In addition, we may transfer data to public bodies and institutions if there is a legal or official obligation to do so.
Other data recipients may be those bodies for which you have given us your consent to transfer data. You will find further information on this below in this data protection notice.
Protection of personal data:
We take all reasonable and appropriate measures to protect the personal information we store from misuse, loss or unauthorized access. This applies to internal storage on our systems, includes securing our systems against external access and extends to the secure transfer of data to the aforementioned third parties.
II Contacting us
When you contact us (for example via email), your details will be stored for the purpose of processing the inquiry and in the event that follow-up questions arise. In particular, your contact details and the content you provide in the message will be processed. For inquiries about contracts, Art. 6 para. 1 sentence 1 b) GDPR is the legal basis for processing. For other inquiries, the processing is based on our legitimate interest in providing a contact option at all times and processing your inquiries in accordance with Art. 6 para. 1 sentence 1 f) GDPR. In addition, the date and time of contact and, in the case of contact and offer forms, your IP address will also be processed. This processing is based on our legitimate interest in accordance with Art. 6 para. 1 sentence 1 f) GDPR to monitor misuse of our contact options. The personal data will only be stored for as long as is necessary to process the contact request.
III Advertising
1. Existing customers
In principle, we have a legitimate interest in using the data of our existing customers for marketing purposes for our own goods or services that are similar to the goods and services already purchased. We collect the following data from our existing customers for our own marketing purposes: first name, surname, email address, telephone number (business).
The legal basis for the use of personal data for marketing purposes is Art. 6 para. 1 sentence 1 f) GDPR.
2. Advertising with consent
If you are not an existing customer of ours or if we advertise goods and services that do not originate from us or are not similar to goods or services you have already purchased from us, we will only process your data for marketing purposes on the basis of your express consent for these purposes in accordance with Art. 6 para. 1 sentence 1 a) GDPR.
Reference to the right of objection
You can object to the use of your personal data for the aforementioned advertising purposes at any time free of charge with effect for the future by using the contact options given above.
If you object, your data will be blocked for further advertising data processing. We would like to point out that in exceptional cases, advertising material may still be sent temporarily even after we have received your objection. This is due to the technical lead time required for the selection process and does not mean that we have not implemented your objection.
Data erasure and storage duration
Your personal data will be deleted or blocked as soon as the purpose of storage no longer applies. Data may also be stored if this is provided for by law or other legal regulations that are binding for us. The data will also be blocked or deleted if a storage period prescribed by the aforementioned legal provisions expires, unless there is a need for further storage of the data for the conclusion or fulfillment of a contract. Applicant data will be deleted no later than six months after the end of the application process, unless an employment relationship has been established with us.
IV. Data transfer to third countries
As part of our business activities, we may also transfer your personal data to recipients in countries outside the European Economic Area ("third countries") that do not have the same level of data protection as your home country. If this is the case and the EU Commission has not issued an adequacy decision for the third country in accordance with Art. 45 GDPR, we take additional precautions to ensure an adequate level of data protection for data transfers to these third countries. In particular. Where we transfer personal data to third countries, we comply with the applicable data protection requirements and take appropriate security measures to ensure that your personal data is protected and secure, in particular by agreeing EU standard contractual clauses. Nevertheless, it is possible that authorities in the respective third country may be able to access your data without you being aware of this and without you having any effective legal protection against this. If a transfer on the basis of such guarantees is not possible, we will obtain your express consent with separate reference to existing risks of the transfer in accordance with Art. 49 para. 1 a) GDPR. If you would like more information about these security measures, you can contact us at any time using the contact options at the beginning.
V. Cookies and tracking technologies
We do not use cookies on our website. Cookies are small text files that are stored on your hard disk by the browser you use and enable us, as the body that set the cookie, to receive certain information. Cookies cannot execute programs or transfer viruses to your computer. They serve to make the website more user-friendly and effective overall.
The use of technically necessary cookies can be based on Art. 6 para. 1 sentence 1 f) GDPR and Section 25 para. 2 no. 2 TDDDG.
We do not use any tracking technologies on our website.
VI. Automated Decision Making/Profiling
We do not use automated decision making or profiling (an automated analysis of your personal circumstances).
VII. Your rights as a Data Subject
You are entitled to the following rights as a data subject under the statutory conditions:
You are entitled to request confirmation from us at any time within the scope of Art. 15 GDPR as to whether we are processing personal data relating to you; if this is the case, you are also entitled within the scope of Art. 15 GDPR to receive information about this personal data as well as certain other information (including processing purposes, categories of personal data, categories of recipients, planned storage period, the origin of the data, the use of automated decision-making and, in the case of third country transfers, the appropriate safeguards) and a copy of your data. The restrictions of § 34 BDSG apply.
You are entitled to demand that we rectify the personal data stored about you if it is inaccurate or incorrect, in accordance with Art. 16 GDPR.
You are entitled, under the conditions of Art. 17 GDPR, to demand that we delete personal data relating to you without delay. The right to erasure does not apply if the processing of the personal data is necessary, for example, to comply with a legal obligation (e.g. legal retention obligations) or to assert, exercise or defend legal claims. In addition, the restrictions of § 35 BDSG apply.
You are entitled to request that we restrict the processing of your personal data under the conditions of Art. 18 GDPR.
You are entitled, under the conditions of Art. 20 GDPR, to demand that we hand over to you the personal data concerning you that you have provided to us in a structured, common and machine-readable format.
You may withdraw your consent to the processing of personal data at any time. This also applies to the revocation of declarations of consent given to us before the applicability of the GDPR, i. e. before 25.5.2018. Please note that the revocation only takes effect for the future. Processing that took place before the revocation is not affected. To declare the revocation, an informal communication e.g. by email to us is sufficient.
You have the right to object to the processing of your personal data under the conditions of Art. 21 GDPR, so that we must stop processing your personal data. The right to object exists only within the limits provided for in Art. 21 GDPR. In addition, our interests may conflict with the termination of processing, so that we are entitled to process your personal data despite your objection. We will consider an objection to any direct marketing measures immediately and without weighing the existing interests again.
You have the right to object at any time to the processing of your data that is carried out on the basis of Art. 6 (1) sentence 1 f) GDPR (data processing on the basis of a balance of interests) or Art. 6 (1) sentence 1 e) GDPR (data processing in the public interest), if there are grounds for doing so that arise from your particular situation.
If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defending legal claims.
The objection can be made without formalities and should preferably be addressed to our e-mail address mentioned at the beginning.
Under the conditions of Art. 77 GDPR, you have the right to lodge a complaint with a competent supervisory authority. In particular, you can address a complaint to the supervisory authority responsible for us, Sächsische Datenschutz- und Transparenzbeauftragte, Telefon +49 351 85471-101, Telefax: +49 351 85471-109, E-Mail: post@sdtb.sachsen.de or any other competent supervisory authority. A list of data protection supervisory authorities and their contact details can be found at the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.
For further data protection questions and concerns, please contact our data protection officer. Corresponding inquiries as well as the exercise of your aforementioned rights should, if possible, be sent in writing to our address given above or by e-mail to the e-mail address given at the beginning of this data protection notice.
VIII. Actuality and Changes
This privacy policy is currently valid and has the status 12/2024.
Due to the further development of our website and offers on it or due to changed legal or official requirements, it may become necessary to change this privacy policy.
IX. Definitions
For a better understanding, we would like to provide you with the definitions of the GDPR below, insofar as they are relevant to our data protection information.
Supervisory authority | Supervisory authority means an independent public authority which is established by a Member State pursuant to Art. 51 GDPR. |
Processor | Processor means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller. |
Third party | Third party means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data. |
Restriction of processing | Restriction of processing means the marking of stored personal data with the aim of limiting their processing in the future |
Consent | Consent of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her. |
Recipient | Recipient means a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing. |
Personal data | Personal data means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. In simple terms, personal data is individual information about the personal or factual circumstances of an identified or identifiable natural person, i.e. not a legal entity such as a limited liability company. Personal data primarily includes information such as name, address, email address and IP address. |
Profiling | Profiling means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or movements. |
Pseudonymization | Pseudonymization means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person. |
Person responsible | Controller means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law. |
Processing | Processing means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction. |
