Responsible for the processing personal data in accordance with the provisions of the EU General Data Protection Regulation (GDPR) is:
You can contact our data protection officer at: firstname.lastname@example.org
Unless restricted by local laws, Sinn Spezialuhren collects, processes and uses the following categories of personal data about you:
If necessary, we process your personal data solely to ensure an effective customer relationship with you. This includes:
Sinn Spezialuhren collects, processes and uses the following categories of personal data, among others, in connection with your application:
If necessary, we process your personal data solely to ensure the effective management of your application. This includes:
When our website is visited, we may collect certain technical data about users, which is automatically sent to us by their web browser when they access a website online or use an application on a mobile device.
Such data is automatically recorded by our servers. It includes, but is not limited to, the IP address, browser type, browser language, the date and time of the visit, and uniform resource locators (URLs, i.e. website addresses) you visited before or after accessing our website.
Depending on the location of the user and the data concerned, such technical information may fall under the category of personal data.
The following list outlines the specific data concerned as well as the processing purposes, legal basis, recipients and transfers to third countries:
We create a log of your visit to our website. The following data is processed: name of the accessed website page, date and time of access, data transfer volumes, browser type and version, operating system in use, referrer URL (the previously visited website), your IP address and the requesting provider. This is necessary to ensure the security of the website and for analysis purposes. We process data accordingly on the basis of our legitimate interests in accordance with article (6)(1)(f) of the GDPR. The log file is deleted after seven days unless it is required to provide clarification or evidence of specific infringements that become known during the stipulated retention period.
With regard to hosting, all data to be processed in connection with the running of this website is stored. This is necessary to enable website operation. We process data accordingly on the basis of our legitimate interests in accordance with article (6)(1)(f) of the GDPR. To make our website available, we use the services of web hosting providers, with whom we share the above data.
If you contact us, your data (name, contact and address details, if provided) and your message will be processed solely for the purpose of processing and managing your enquiry. We process this data on the basis of article 6(1)(b) or article 6(1)(f) of the GDPR in order to manage your enquiry.
We process your order data in order to process the purchase contract. This data processing is carried out in accordance with the legal basis set out in article 6(1)(b) of the GDPR.
We share your address information with the company charged with delivery. If it is necessary for processing the contract, we also provide your email address or telephone number so that a delivery date can be agreed with the company charged with delivery (advance notice).
We share your transaction data (name, order date, payment method, dispatch and/or receipt date, amount and payee, if applicable, bank details or credit card details, if applicable address information, if applicable email adress) with the payment service provider responsible for processing payment. In the Sinn online shop, you will be taken from the ordering process directly to the payment pages, where you can then pay. Payment by credit card at our business locations is handled via the terminals of our external payment service provider.
We use the service Cisco Webex which is provided by Cisco Systems, Inc., Legal Department, 170 West Tasman Dr., San Jose, CA 95134, USA for our video conferences.
When a video conference is held with Cisco Webex, Cisco processes the following three categories of personal data.
For more information about what data are processed from each category, see the Webex Meetings Privacy Data Sheet:
All confidential data are encrypted by the service when they are stored. Stored data that are not encrypted are protected by highly secure protective mechanisms and conventional operating procedures for computing centres. The computing centres of Webex Meetings have a communications infrastructure which boasts industry-leading performance and availability. Cisco has secured its data centres for Webex Meetings both physically and logically. The corresponding certifications have been awarded pursuant to BSI C5 and ISO/IEC 27001:
Cisco Webex meets the criteria of the following certificates and regulatory requirements:
Available certificates can be found at: https://trustportal.cisco.com/
When signing up for our newsletter, you will need to state your email address, title and name to enable us to address you personally. You will also need to complete a registration form. To prevent misuse, we will send you an email after you have registered to confirm your registration (double opt-in process). To ensure that the registration process is legally compliant, the following registration details will be logged: the time of registration and confirmation as well as your IP address.
The legal basis for distributing the newsletter is your consent in accordance with Art. 6(1)(a) GDPR. The data used in connection with sending the confirmation email for your registration and the associated data logging is processed in accordance with Art. 6(1)(f) GDPR due to our legitimate interest in ensuring that your registration is completed correctly.
Tracking is carried out for the purpose of tailoring future newsletters to the interests of our readers by individually measuring, storing and analysing open/click rates in recipient profiles. For the purpose of optimally displaying the newsletter, we track the email program used and store it in the recipient profiles.
The legal basis for tracking and profiling is also the consent you give in accordance with Art. 6(1)(a) GDPR when registering.
The newsletter is distributed via the service provider CleverReach, to which we transmit the aforementioned data.
You may withdraw your consent at any time by emailing email@example.com, by fax, by post or by using the unsubscribe link in any email you receive, without affecting the legality of the processing carried out on the basis of your consent until the withdrawal.
We always process your personal data in accordance with the General Data Protection Regulation (GDPR) and the Federal Data Protection Act (BDSG new).
Below you can read a description of the legal basis on which we process your personal data. Please note that these details are examples only and do not represent a complete or exhaustive list of the possible legal basis for data processing.
We process certain personal data only with your prior, explicit consent. This is the case, for example, if you have agreed that we may send advertising or promotional information in electronic format. You are entitled to revoke your consent at any time in order to stop the continued processing of this data.
Data processing is necessary in order to fulfil a contract or to complete pre-contractual measures. Sinn Spezialuhren processes your personal data solely in order to meet the legal obligations resulting from such contracts.
Sinn Spezialuhren is subject to a range of legal requirements. In order to comply with these requirements, we need to process certain personal data.
Sinn Spezialuhren processes certain personal data in order to safeguard its legitimate interests or the interests of third parties. However, this only happens in individual cases if your interests as data subject do not have priority over the interests of Sinn Spezialuhren.
As a rule, Sinn Spezialuhren ensures that your personal data is accessible only to a limited number of authorised persons who need to know this information in line with the purposes of processing outlined above.
Your personal data is not disclosed, sold or otherwise transmitted to third parties unless this is necessary for the purpose of fulfilling the contract with you or you have given your express consent to such transmission.
We also employ external contractors when processing your enquiries and providing access to our services. These service providers are contractually obliged to comply with data protection regulations, and they process personal data only in line with our instructions.
Under these conditions, the recipients of personal data may include service providers, processors or other third parties tasked with providing the following services:
All data processing takes place in Germany or member states of the European Union. Should any personal data that we collect or process about you be shared with recipients located outside the European Economic Area (EEA), we have taken appropriate action to ensure compliance with the Data Protection Regulation, such as concluding appropriate EU model contract clauses, obtaining Privacy Shield certification (US), and implementing recognised codes of conduct or certification mechanisms under article 42 of the GDPR.
Payment by credit card at our business locations is handled by the external payment service provider Unzer POS GmbH, Gotenstraße 10, 20097 Hamburg, Germany. For more details about data privacy and other legal information, please refer to:
Payments by credit card in Sinn’s online shop are handled by the external payment service providers Commerzbank AG, Kaiserplatz, 60311 Frankfurt am Main, Germany and PAYONE GmbH, Lyoner Str. 9, 60528 Frankfurt am Main. Further information about data protection policy as well as other legal information can be found under the following links.
Commerzbank AG: https://www.commerzbank.de/portal/de/footer1/recht/rechtliche_hinweise.html
If you order a catalog with a delivery address in Switzerland, we will pass on your data for the purpose of processing the order to our Swiss sales partner Uhrenatelier Sonja Lobeto, Breitestrasse 13, 8472 Seuzach.
Your personal data will be deleted pursuant to Art. 17(1)(a) GDPR if it is no longer required for the purposes for which it was processed or if you have withdrawn any consent given and it is no longer subject to statutory retention periods.
In principle, we delete applicants’ data three months after the employment decision has been made by Sinn Spezialuhren or after candidates reject an offer from Sinn Spezialuhren. Sinn Spezialuhren may retain your application data for two years if you have agreed to be considered for other positions at Sinn Spezialuhren.
As a rule, we do not use automated decision-making processes under article 25 of the GDPR to justify and manage the business relationship. If such processes are used in individual cases, we will inform you about this separately in advance to the extent required by law.
Sinn Spezialuhren has taken appropriate technical and organisational measures to prevent the unauthorised or unlawful disclosure of your personal data and unauthorised or unlawful access to your personal data as well as the inadvertent or unlawful loss, destruction or modification of your personal data and any damage. These measures ensure a level of security that corresponds to the risks involved in processing and the nature of the personal data to be protected. Our security measures are continuously improved in line with developments in technology.
On request and at no cost, you may receive information about the personal data we have stored about you at any time.
If you no longer agree that your personal data may be stored or if this information is no longer correct, we will have your data deleted or blocked with appropriate notice or make the necessary corrections (to the extent possible under the applicable law). The same applies if we receive the instruction to restrict processing with future effect.
Upon request, we will provide you with your data in a structured, commonly used and machine-readable format so that you can share this information with another controller if desired.
You have the right to complain to the responsible supervisory authority about your rights as a data subject. Contact details of the Federal and State Commissioner for Data Protection can be found at:
You are able to revoke any consent given at any time with future effect. Your withdrawal of consent does not affect the legality of any data processing carried out with your consent before the time of revocation.
In cases where we are unable to identify the data subject of information, for instance if it has been made anonymous for analysis purposes, the rights outlined above do not apply. It may be possible to exercise the right to information, deletion, blocking, correction or transfer to another company with respect to such information if you provide us with additional information that allows us to identify the data subject.
If you have any questions concerning the processing of your personal data, or if you would like to exercise your right to information, correction, blocking, objection or deletion with respect to your personal data, or to have it transferred to another company, please contact firstname.lastname@example.org.