Privacy Statement for Business Contacts of STRACK LIFT AUTOMATION GmbH

The following information provides you with an overview of the processing of your personal data with us and your rights in accordance with the General Data Protection Regulation (GDPR).

1. Identity of the data protection officer

Please refer to the person responsible for data processing in the signature of your contact person.

2. Contact details of the data protection officer

For questions and information regarding the handling of your personal data, you can always contact our data protection officer.

Data Protection Officer: edv(at)

3. Collection and processing of your data provided, purpose and legal basis

We collect and process your data for the purpose of initiating a contractual relationship and for processing orders. The legal basis for this processing is Art. 6 (1) lit. b) GDPR (implementation of a pre-contractual measure or to fulfill a contract). In addition, we use your specified contact information to send important customer information, e.g. for product changes, product discontinuations or safety instructions. This is done to fulfill a contractual obligation under Art. 6 para. 1 lit. b) DS-GMO and for the protection of our common legitimate interests, Art. 6 para. 1 lit. f) DS-GMO. The legitimate interest lies in the preservation of secondary contractual obligations, as well as your early inclusion, in order to create planning security for you. If necessary, we process your data beyond the actual purpose of the contract in order to safeguard legitimate interests, Art. 6 (1) lit. f) GDPR, for the further development and improvement of our offers and for business management. In addition, there is a legitimate interest in the form of risk management within the company. In the context of the legitimate interest in accordance with Art. 6 (1) lit. f) GDPR, we also use your data to inform you about comparable offers and products. In individual cases, we process your personal data in order to operate direct mail.

4. Receiver

STRACK LIFT AUTOMATION also uses specialized technical service providers for order processing in the processing of your personal data. These service providers are carefully selected and are required by law and contract to ensure a high level of data protection. The processing of your data takes place in accordance with Art. 28 GDPR. To handle your orders, we hire logistics companies. These are also legally required to ensure a high level of data protection. For purposes other than those mentioned here, we will only disclose your personal information to third parties insofar as there is a legal obligation in the form of a priority rule (for example, in the case of auditing).

5. Data security

The personal data collected and stored by us will be treated confidentially and protected against loss and alteration as well as unauthorized access by third parties through appropriate technical and organizational precautions.

6. Duration of storage

Your personal data will be stored with us as long as it is necessary to fulfill the contractual obligations and to achieve the contractual purpose. In addition, there are retention obligations and deadlines issued by the legislator or supervisory authorities. Upon expiry of the retention obligations and deadlines, your data will be deleted as part of a routine procedure. Should data not be subject to the named retention obligation, these will be deleted as soon as their storage is no longer necessary for the purpose. It should be noted that the business relationship can develop into a long-term debt, which is designed for several years. A retention obligation after reaching the contractual or legal obligation may result as follows: Commercial and tax retention periods. The retention and documentation periods specified there are up to 10 years after termination of the business relationship or upon conclusion of the individual order. Preservation of evidence within the statute of limitations according to §§ 195 ff. BGB. The statutory limitation period is 3 years. However, limitation periods can be up to 30 years.

7. Your rights

If the legal prerequisites exist, you have the right to obtain information about personal data or data processing relating to you (Art. 15 GDPR), correction, deletion and restriction of personal data or data processing relating to you (Articles 16 to 18 GDPR) and transfer of personal data (Art. 20 GDPR). In addition, if the legal requirements pursuant to Art. 21 GDPR exist, you have the right of objection to data processing that is based on a legitimate interest on the part of the person responsible pursuant to Art. 6 para. 1 lit. f) GDPR. This includes in particular the use of your personal data for the purpose of direct mail. To exercise all such rights or if you wish to revoke any consent to the processing of your personal information, in whole or in part, with future effect, please send us an e-mail


or a message to the address mentioned under 1. above.

Furthermore, in accordance with Article 77 (1) of the GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your place of residence, employment or the place of the alleged infringement, if you consider that the processing of the personal data relating to you violates the GDPR.

The data protection supervisory authority:

Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen
Postfach 20 04 44
40102 Düsseldorf

Phone: 0211 / 38424-0
Fax: 0211 / 38424-10

Privacy policy when using our website

a. Data transmitted through the browser/internet technology

Your visit to our web pages will be logged. The IP address, date and time currently used by your device, the browser type and the operating system of your device as well as the pages you have visited are recorded. A personal reference is usually not possible. This data are collected only for data security purposes and to optimize our website. Any other evaluation of the data, with the exception of statistical purposes and then in anonymous form, will not take place.

b. Secure communication on the Internet

In general, the Internet is considered an insecure medium. A transmission of unencrypted data on the Internet can be easily tapped, recorded or even changed by unauthorized third parties.

Update of this Privacy Policy

Insofar as STRACK LIFT AUTOMATION GmbH introduces new products or services, changes Internet procedures or if the Internet and IT security technology evolves, the privacy policy must be updated. We therefore reserve the right to change or supplement the explanation as needed. The change will be published here. The current status is dated 5.7.2018 and replaces the version of 3.1.2016.