General Information

General Information

The following information provides a simple overview of what happens to your personal data when you visit this website. Personal data includes all data that can personally identify you. Detailed information on data protection can be found in our privacy policy listed below this text.

Privacy Information for Applicants

Privacy Information for Customers, Suppliers, and Interested Parties

Whistleblower
 

Website Privacy Policy

We welcome you to our website and appreciate your interest in our company. We take the protection of your personal data very seriously. We process your data in accordance with the applicable legal regulations on the protection of personal data, in particular the EU General Data Protection Regulation (GDPR) and the national implementation laws applicable to us. With this privacy policy, we provide you with comprehensive information about the processing of your personal data by Wiegand-Glas Holding GmbH (hereinafter referred to as Wiegand-Glas) and your rights.

Personal data refers to information that makes it possible to identify a natural person. This includes, in particular, your name, date of birth, address, telephone number, email address, and your IP address.

Anonymous data is data that cannot be linked to a specific user.

Responsible Entity and Data Protection Officer

Wiegand-Glas Holding GmbH
Otto-Wiegand-Straße 9
D-96361 Steinbach am Wald

Phone: +49 9263 80-0
Email: mail@wiegand-glas.de

Data Protection Contact
Email: datenschutz@wiegand-glas.de

Your Rights as a Data Subject

We would like to inform you about your rights as a data subject. These rights are defined in Articles 15 - 22 GDPR and include:

• The right to access (Art. 15 GDPR),
• The right to erasure (Art. 17 GDPR),
• The right to rectification (Art. 16 GDPR),
• The right to data portability (Art. 20 GDPR),
• The right to restrict processing (Art. 18 GDPR),
• The right to object to data processing (Art. 21 GDPR).

To exercise these rights, please contact: datenschutz@wiegand-glas.de. The same applies if you have questions about data processing in our company or wish to revoke consent. You also have the right to lodge a complaint with a data protection supervisory authority.

Right to Object

Please note the following regarding your right to object:

If we process your personal data for direct marketing purposes, you have the right to object to this processing at any time without giving reasons. This also applies to profiling, insofar as it is related to direct marketing.

If you object to processing for direct marketing purposes, we will no longer process your personal data for these purposes. The objection is free of charge and can be submitted informally, preferably to: datenschutz@wiegand-glas.de.

If we process your data to protect legitimate interests, you may object to this processing at any time for reasons arising from your particular situation. This also applies to profiling based on these provisions.

We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights, and freedoms, or if the processing is for the establishment, exercise, or defense of legal claims.

Purposes and Legal Bases of Data Processing

When processing your personal data, we comply with the provisions of the GDPR and all other applicable data protection regulations. The legal basis for data processing is primarily derived from Article 6 GDPR.

We use your data for business initiation, fulfillment of contractual and legal obligations, contract execution, provision of products and services, and strengthening customer relationships, which may also include marketing and direct advertising.

Your consent can also be a legal basis for data processing. Before you give consent, we inform you about the purpose of processing and your right to revoke consent. If the consent includes the processing of special categories of personal data under Article 9 GDPR, we will explicitly inform you of this in the consent. Otherwise, we will only process special categories of personal data if required by law.

Disclosure to Third Parties

We will only disclose your data to third parties within the framework of legal provisions or with your consent. Otherwise, data will not be disclosed unless we are legally required to do so (e.g., disclosure to authorities or law enforcement agencies).

Recipients of Data / Categories of Recipients

Within our company, we ensure that only those individuals who need your data to fulfill contractual and legal obligations have access to it.

In certain cases, service providers assist our departments in fulfilling their tasks. All necessary data protection agreements have been concluded with these service providers.

Data Transfers to Third Countries

Data is transferred to third countries (outside the European Union or European Economic Area) only if required for contract execution, legally mandated, or if you have given your consent.

We transfer your personal data to service providers or group companies outside the European Economic Area.

The data protection level is ensured by EU Standard Contractual Clauses and additional safeguards where applicable.

Data Retention Period

We store your data as long as necessary for the respective processing purpose. Please note that legal retention obligations (e.g., commercial or tax-related retention obligations) may require extended storage. If no further retention obligations exist, data is routinely deleted after its purpose has been fulfilled.

Furthermore, data may be retained if you have given us permission or if legal disputes arise and evidence must be kept within statutory limitation periods, which can be up to thirty years; the standard limitation period is three years.

Secure Data Transmission

To protect the data stored with us from accidental or intentional manipulation, loss, destruction, or unauthorized access, we implement appropriate technical and organizational security measures. Security levels are continuously reviewed and adapted to new security standards.

Data exchange between our website and users is encrypted. We use HTTPS with the latest encryption protocols. We also offer encrypted content transmission for contact forms and job applications. These encrypted data can only be decrypted by us. Alternative communication methods (e.g., postal mail) are also available.

Obligation to Provide Data

Certain personal data is necessary for the initiation, execution, and termination of contractual relationships and for fulfilling associated legal obligations. The same applies to the use of our website and its features.

Further details can be found in the relevant sections above. If required by law, data must be collected or provided. Without this data, we cannot process your request or fulfill the underlying contractual relationship.

Categories, Sources, and Origin of Data

The type of data we process depends on the specific context, such as whether you place an order online, submit an inquiry via our contact form, apply for a job, or file a complaint.

• Name of the Internet Service Provider
• Information about the website from which you are visiting us
• Used web browser and operating system
• IP address assigned by your Internet Service Provider
• Requested files, transmitted data volume, downloads/file exports
• Information about the web pages you visit on our site, including date and time
• For technical security reasons (especially to prevent attacks on our web server), these data are stored in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR. After a maximum of 7 days, anonymization occurs by shortening the IP address so that no reference to the user is possible.

As part of a contact request, we collect and process the following data:

• First and last name
• Contact details
• Address details

Contact Form / Contact via Email (Art. 6 para. 1 lit. a, b GDPR)

Our website provides a contact form that can be used for electronic communication. If you contact us via the contact form, we will process the data provided to respond to your inquiries and requests.

The principle of data minimization and data avoidance is observed, meaning that you only need to provide the data required for contacting you. This includes your email address and the message field itself. Additionally, your IP address is processed for technical and legal security reasons. All other fields are optional and can be provided voluntarily (e.g., for a more personalized response).

To best protect the security and confidentiality of your data, we implement appropriate security measures. Your inquiry is transmitted to us in encrypted form.

If you contact us via email, the personal data contained in the email will be processed solely for the purpose of handling your inquiry. If you do not use the provided contact forms, no further data collection will take place.

Advertising Purposes for Existing Customers (Art. 6 para. 1 lit. f GDPR)

We are interested in maintaining our customer relationship and providing you with information and offers regarding our products/services. Therefore, we process your data to send you relevant information and offers via email.

If you do not wish to receive this, you can object to the use of your personal data for direct marketing at any time, including profiling related to direct marketing. If you object, we will no longer process your data for this purpose. The objection can be made without providing reasons, free of charge, and informally via phone at +49 9263 80 0, by email at datenschutz@wiegand-glas.de, or by mail to Wiegand-Glas Holding GmbH, Otto-Wiegand-Straße 9, 96361 Steinbach am Wald.

Online Services for Children

Persons under the age of 16 may not provide us with personal data or submit a consent declaration without parental or guardian approval. We encourage parents and guardians to actively participate in their children's online activities and interests.

Links to Other Providers

Our website contains clearly recognizable links to the websites of other companies. We have no control over the content of these linked websites and therefore cannot assume liability for them. The respective provider or operator is responsible for the content of linked sites.

The linked pages were checked for possible legal violations at the time of linking. No illegal content was identifiable at that time. A continuous monitoring of linked pages without specific indications of legal violations is not feasible. If we become aware of legal violations, such links will be removed immediately.

Automated Individual Decisions

We do not use purely automated processing methods to make decisions.

Cookies (Art. 6 para. 1 sentence 1 lit. a, f GDPR, § 25 para. 1, 2 TTDSG)

Our website uses cookies to make our services more user-friendly, effective, and secure. Cookies are small text files stored on your device by your browser. They contain only pseudonymous, usually anonymous data. Some cookies persist only during your session (session cookies), while others are stored for a longer period (persistent cookies, e.g., consent settings). Persistent cookies are automatically deleted after a specified duration (usually 6 months). Besides our own cookies, third-party cookies may also be used to display content or track page visits.

Based on our legitimate interest (Art. 6 para. 1 sentence 1 lit. f GDPR), we use technically necessary cookies essential for website operation and functionality. Additionally, we use cookies without your consent if they are solely for message transmission or strictly necessary to provide a requested service (§ 25 para. 2 TTDSG).

With your consent, further cookies are used to analyze how our services are used and improve content accordingly. Cookies also allow us to measure ad effectiveness and tailor placements based on user interests. The legal basis for this is your explicit consent (Art. 6 para. 1 sentence 1 lit. a GDPR, § 25 para. 1 TTDSG).

You can withdraw your consent via our consent banner at any time and adjust cookie settings. Note that changes must be made separately for each device.

Cookie Banner

If you are logged into accounts of third-party providers we use, your data may be linked to those accounts. You can prevent this by not consenting to the relevant cookies, withdrawing consent, or logging out of third-party accounts in advance.

Most browsers automatically accept cookies. You can manually disable, restrict, or delete cookies via your browser settings or software tools. If cookies are disabled, our website may not function properly or only with limited usability.

Google Analytics 4 (Art. 6 para. 1 sentence 1 lit. a GDPR, § 25 para. 1 TTDSG)

This website uses features of the web analytics service Google Analytics. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics uses “cookies” to analyze website usage. The information generated by cookies is usually transferred to a Google server in the USA and stored there.

If consent is required (e.g., for cookie storage), processing occurs solely based on Art. 6 para. 1 sentence 1 lit. a GDPR, § 25 para. 1 TTDSG. Consent can be revoked at any time.

IP Anonymization

We have enabled IP anonymization on this website. This means that Google shortens your IP address within EU member states or other European Economic Area (EEA) states before transferring it to the USA. Only in exceptional cases is the full IP address sent to a Google server in the USA and shortened there.

Browser Plugin

You can prevent the storage of cookies by adjusting the settings of your browser software; however, please note that in this case, you may not be able to fully use all the features of this website. Furthermore, you can prevent the collection of data generated by the cookie related to your use of the website (including your IP address) by Google, as well as the processing of this data by Google, by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en.

Objection to Data Collection

You can prevent the collection of your data by Google Analytics by clicking the following link. An opt-out cookie will be set, which will prevent the collection of your data during future visits to this website: Disable Google Analytics.

More information about the handling of user data by Google Analytics can be found in Google’s privacy policy: https://support.google.com/analytics/answer/6004245?hl=en.

Data Processing Agreement

We have entered into a data processing agreement with Google and fully implement the strict requirements of the German data protection authorities when using Google Analytics.

Demographic Features in Google Analytics

This website uses the "demographic features" function of Google Analytics. This allows reports to be created that contain information about the age, gender, and interests of website visitors. This data comes from interest-based advertising by Google and visitor data from third-party providers. This data cannot be attributed to a specific person. You can disable this function at any time through the ad settings in your Google account, or you can generally prohibit the collection of your data by Google Analytics as described under "Objection to Data Collection".

Storage Duration

Data stored by Google at the user and event level that is linked to cookies, user IDs (e.g., User ID), or advertising IDs (e.g., DoubleClick cookies, Android advertising ID) will be anonymized or deleted after 14 months. Details can be found at the following link: https://support.google.com/analytics/answer/7667196?hl=en.

Google Tag Manager (Art. 6(1)(f) GDPR, § 25(2) TTDSG)

This website uses the Google Tag Manager by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland). This service allows website tags to be managed via an interface. The Tag Manager is required for technical operation as it controls the tags. The legal basis for using Google Tag Manager is Art. 6(1)(f) GDPR, § 25(2) TTDSG. The Google Tag Manager merely implements tags, meaning: no cookies are used, and no personal data is collected. The Google Tag Manager triggers other tags that may collect data. However, the Google Tag Manager does not access this data. Any deactivation on the domain or cookie level remains in place for all tracking tags implemented via the Google Tag Manager. More information about the Google Tag Manager can be found at the following link: https://support.google.com/tagmanager/answer/9323295?hl=en#.

Google Maps (Art. 6(1)(a) GDPR, § 25(1) TTDSG)

We use Google Maps (API) from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google") on our website. To ensure data protection, Google Maps is disabled when you first visit this website. A direct connection to Google's servers will only be established when you independently activate Google Maps (consent under Art. 6(1)(a) GDPR, § 25(1) TTDSG). You can withdraw your consent at any time here. This prevents your data from being transmitted to Google when you first enter the site. Once activated, Google Maps will store your IP address, which will then usually be transferred to a Google server in the USA and stored there.

A transfer to a third country takes place, which means that there is a risk that your data may be processed by U.S. authorities for monitoring and surveillance purposes without the possibility of legal remedies. However, we take all feasible and legally required measures under Art. 44 ff. GDPR to ensure the data protection level in the third country. Data processing or storage in third countries may also be based on your consent (Art. 49(1)(a) GDPR).

Additional information about the handling of user data can be found in Google's privacy policy: https://www.google.com/intl/en/policies/privacy/.

Facebook Social Plugins ("Share Button")

Our website uses social plugins ("Plugins") from the social network facebook.com, which is operated by Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Meta"). The plugins are marked with a Meta/Facebook logo or the addition "Facebook Social Plugin".

The data processing is based on your consent under Art. 6(1)(a) GDPR if cookies are used, as well as § 25(1) TTDSG.

If you visit a page on our website that contains such a plugin, your browser can establish a direct connection to Meta's servers when the button is activated. The content of the plugin is then transmitted directly to your browser by Meta and integrated into the website.

We encourage you to recommend and discuss this page's content on Facebook. We use buttons provided by the c't project "Shariff".

Conventional social media buttons transmit user data with each page view, giving the social networks precise information about your browsing habits (user tracking). You do not need to be logged in or a member of the network. The Shariff Social Button establishes direct contact between the social network and the visitor only when the latter actively clicks the share button. More information can be found at heise.de.

By activating the plugin, Meta receives the information that you have accessed the corresponding page of our website. If you are logged into Facebook, Meta can associate your visit with your Facebook account from this point on, even if you do not click the Facebook button again. If you interact with the plugins, the corresponding information is transmitted directly from your browser to Meta and stored there.

Even if you do not have a Facebook account, Meta may collect data such as your IP address. For the purpose and scope of data collection, as well as the further processing and use of the data by Facebook, and your related rights and options to protect your privacy, please refer to Facebook's data protection information.

If you do not want Meta to collect data about you via our website, you must log out of Facebook before visiting our website. Additionally, you can also install blockers for your browser through add-ons.

WhatsApp Social Plugins ("Share Button")

Our website uses social plugins ("Plugins") from the social network whatsapp.com, which is operated by WhatsApp Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland ("WhatsApp"). The plugins are marked with a WhatsApp logo.

The data processing is based on your consent under Art. 6(1)(a) GDPR if cookies are used, as well as § 25(1) TTDSG.

If you visit a page on our website that contains such a plugin, your browser can establish a direct connection to WhatsApp's servers when the button is activated. The content of the plugin is then transmitted directly to your browser by Meta and integrated into the website.

We encourage you to recommend and discuss this page's content on WhatsApp. We use buttons provided by the c't project "Shariff".

Conventional social media buttons transmit user data with each page view, giving the social networks precise information about your browsing habits (user tracking). You do not need to be logged in or a member of the network. The Shariff Social Button establishes direct contact between the social network and the visitor only when the latter actively clicks the share button. More information can be found at heise.de.

By activating the plugin, WhatsApp receives the information that you have accessed the corresponding page of our website. If you are logged into WhatsApp, WhatsApp can associate your visit with your WhatsApp account from this point on, even if you do not click the WhatsApp button again. If you interact with the plugins, the corresponding information is transmitted directly from your browser to WhatsApp and stored there.

Even if you do not have a WhatsApp account, WhatsApp may collect data about you, such as your IP address. For the purpose and scope of data collection, as well as further processing and use of the data by WhatsApp, and your rights and settings options to protect your privacy, please refer to WhatsApp’s privacy policy.

If you do not want WhatsApp to collect data about you through our website, you must log out of Facebook before visiting our website. Additionally, you can install appropriate blockers for your browser via add-ons.

LinkedIn Social Plugins (“Share Button”)

Our website uses social plugins (“plugins”) from the social network linkedin.com, which is operated by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (“LinkedIn”). The plugins are marked with a LinkedIn logo.

Data processing is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR, insofar as cookies are used, and additionally § 25 para. 1 TDDDG.

If you visit a webpage of our website that contains such a plugin, and the button is activated, your browser can establish a direct connection to LinkedIn's servers. The content of the plugin is then transmitted directly from LinkedIn to your browser and integrated into the website.

We appreciate it when you recommend and discuss our content on LinkedIn. For this purpose, we use the buttons provided by the c't project “Shariff.”

Regular social media buttons transmit user data with every page view and give social networks precise information about your browsing behavior (user tracking). You do not need to be logged in or a member of the network for this to happen. The Shariff social button only establishes direct contact between the social network and the visitor when the visitor actively clicks the share button. More information on this can be found on heise.de.

By activating the plugin, LinkedIn receives the information that you have accessed the corresponding page on our website. If you are logged in to LinkedIn, LinkedIn can associate your visit with your LinkedIn account from that moment, even if you do not click the share button a second time. If you interact with the plugins, the corresponding information is transmitted directly from your browser to LinkedIn and stored there. Even if you do not have a LinkedIn account, LinkedIn may collect data about you, such as your IP address. For the purpose and scope of data collection, as well as further processing and use of the data by LinkedIn, and your rights and settings options to protect your privacy, please refer to LinkedIn’s privacy policy.

If you do not want Meta to collect data about you through our website, you must log out of LinkedIn before visiting our website. Additionally, you can install appropriate blockers for your browser via add-ons.

Links to Social Media

On our website, you will find links to the social media services of Meta / Facebook, LinkedIn, and Instagram. You can recognize links to the social media services' websites by the respective company logo. By following these links, you will reach our corporate presence on the respective social media service. Clicking on a link to a social media service establishes a connection to the social media service's servers. This informs the social media service's servers that you have visited our website. Furthermore, additional data is transmitted to the social media service provider, such as:

• The address of the website on which the activated link is located
• Date and time of website access or link activation
• Information about the used browser and operating system
• IP address

If you are already logged into the respective social media service when activating the link, the social media service provider may be able to determine your username and possibly even your real name from the transmitted data and associate this information with your personal user account. You can prevent this association with your personal user account by logging out beforehand.

The servers of social media services are located in countries outside the European Union. Data may therefore also be processed in countries outside the European Union. Please note that companies in these countries are subject to data protection laws that generally do not protect personal data to the same extent as in the European Union. Please also note that we have no influence on the scope, nature, and purpose of data processing by the social media service provider. For more information on how your data is used by the social media services integrated into our website, please refer to the privacy policy of the respective social media service.

Privacy Notice for Social Media

We maintain presences on social media, specifically Facebook, Instagram, and LinkedIn. As far as we control data processing, we ensure compliance with applicable data protection regulations.

Below, you will find the most important information regarding data protection for our social media presences.

Name and Address of the Responsible Parties

In addition to us, the following are responsible for corporate presences within the meaning of the EU General Data Protection Regulation (GDPR) and other data protection regulations:

• Facebook (Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland)
• Instagram (Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland)
• LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland)

However, you use these platforms and their features at your own risk. This applies in particular to the use of interactive features (e.g., commenting, sharing, rating).

We also point out that your data may be processed outside the European Union.

Purpose and Legal Basis

We operate the fan pages to communicate with visitors and inform them about our offerings.

We also collect data for statistical purposes to further develop and optimize content and make our offerings more attractive. The necessary data (e.g., total number of page views, page activities, and data provided by visitors, interactions) are processed by social networks and provided to us. We have no influence on their generation and display.

Additionally, social media providers process your personal data for market research and advertising purposes. Based on your usage behavior and derived interests, user profiles may be created. These profiles can be used to place advertisements both within and outside the platforms that correspond to your interests. Typically, cookies are stored on your device for this purpose. Additionally, data not directly collected from your devices may be stored in your user profiles. This storage and analysis also occur across devices, especially if you are registered and logged in to the respective platforms.

Beyond that, we do not process any personal data.

The processing of your personal data by Wiegand-Glas is based on our legitimate interest in effective information and communication pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR.

If you are asked for consent to data processing (e.g., by confirming an opt-in button), the legal basis is Art. 6 para. 1 sentence 1 lit. a, Art. 7 GDPR.

Your Rights / Right to Object

If you are a member of a social network and do not want the network to collect data about you through our presence and link it to your stored member data at the respective network, you must:

• Log out of the respective network before visiting our fan page,
• Delete cookies stored on your device, and
• Close and restart your browser.

For further privacy-related questions, please contact: datenschutz@wiegand-glas.de

Your Rights / Objection Options

If you are a member of a social network and do not want the network to collect data about you through our presence and link it to your stored member data on the respective network, you must:

• Log out of the respective network before visiting our fan page,
• Delete the cookies stored on your device, and
• Close and restart your browser.

However, after logging in again, you will once more be identifiable as a specific user to the network.

For a detailed overview of the respective data processing and objection options (opt-out), please refer to the following links:

• Facebook Privacy Policy: https://www.facebook.com/about/privacy/;
  Opt-out: https://www.facebook.com/settings?tab=ads and
  http://www.youronlinechoices.com;
• Instagram Privacy Policy: https://help.instagram.com/519522125107875;
  Opt-out: optout.networkadvertising.org/ and
  http://www.youronlinechoices.com;
• LinkedIn Privacy Policy: https://www.linkedin.com/legal/privacy-policy;
  Opt-out: https://www.linkedin.com/legal/cookie-policy and
  http://www.youronlinechoices.com;

Overall, you have the following rights regarding the processing of your personal data:

Right to access; right to rectification; right to erasure; right to restriction of processing; right to object; right to data portability; right to lodge a complaint about unlawful processing of your personal data with the competent data protection authority.

Since we do not have full access to your personal data, you should contact the providers of the social networks directly when asserting your rights, as they have access to their users’ personal data and can take appropriate measures and provide information.

However, if you still need assistance, we will of course try to support you. Please contact datenschutz@wiegand-glas.de.

Notes on Copyright and Artistic Copyright Law

If you wish to publish images, texts, plans, videos, music, etc. on our platform, please be aware that you may be granting full usage rights to the network, which could have legal consequences for you if you are not the author or rights holder.

Contest / Advertising Consent (Art. 6 para. 1 lit. b GDPR)

You have the opportunity to participate in our contest on our social media pages. The data provided there will be used exclusively for the purpose of conducting the contest. The principle of data minimization and data avoidance is observed, meaning you only need to provide the data that we necessarily require to carry out the contest and notify the winners. This includes, for example, your name and email address.

For technical necessity and legal security, your IP address will also be processed. Without providing your data, we unfortunately cannot conduct the contest. Participation would then not be possible.

If you have further questions regarding data protection, please contact: datenschutz@wiegand-glas.de