Contact us

JOKIEL Ltd.
August-Borsig-Straße 6
92224 Amberg

To Google Maps

Phone: +49 9621 6777-0
Fax: +49 9621 6777-29

Email: info@jokiel.de
Internet: www.jokiel.de

Partner

Markus Jokiel, Thorsten Jokiel and Bernhard Jokiel

Managing director

Markus Jokiel and Thorsten Jokiel

Other

Register court Amberg HRB 627
The place of jurisdiction is Amberg

USt.-Id.Nr.: DE 131 835 511
Tax number: 201 / 129 / 80238

Privacy policy: May 2018

Definitions

This privacy statement is based on the terms used by the European Directive and Regulation Makers in the adoption of the Basic Data Protection Regulation (DSGVO). Our privacy policy should be easy to read and understand for the public as well as for our customers and business partners. In order to guarantee this, we would like to explain the terms used in advance.

We use the following terms in this privacy statement, among others:

  • Personal data: Personal data is any information relating to an identified or identifiable natural person (hereinafter “data subject”). A natural person shall be considered identifiable if he can be identified directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an on-line identifier or one or more specific characteristics expressing the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person.
  • Data Subject: A data subject is any identified or identifiable natural person whose personal data are processed by the controller.
  • Processing: Processing means any operation or set of operations which is carried out with or without the aid of automated processes and which relates to personal data, such as collection, recording, organisation, sorting, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or association, qualification, erasure or destruction. Translated with www.DeepL.com/Translator
  • Limitation of processing: Limitation of processing is the marking of stored personal data with the aim of limiting their future processing.
  • Profiling: Profiling is any automated processing of personal data consisting of the use of such personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects relating to the work performance, economic situation, health, personal preferences, interests, reliability, conduct, whereabouts or movement of that natural person.
  • Pseudonymization: Pseudonymisation means the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the provision of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures ensuring that the personal data are not attributed to an identified or identifiable natural person.
  • Data controller: the data controller is a natural or legal person, public authority, agency or other body which alone or jointly with others decides on the purposes and means of the processing of personal data. Where the purposes and means of such processing are laid down by Union law or by the law of the Member States, the controller or the specific criteria for his designation may be laid down by Union law or by the law of the Member States.
  • Processor: A processor is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
  • Recipient: a natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether or not a third party. However, authorities which may receive personal data in the context of a specific investigation mandate under Union law or the law of the Member States shall not be considered as recipients.
  • Third party: any natural or legal person, public authority, agency or body other than the data subject, the controller, the processor and the persons authorised to process the personal data under the direct responsibility of the controller or processor.
  • Consent: Consent shall mean any voluntary, informed and unambiguous expression by the data subject of his or her will in the particular case, in the form of a statement or other unequivocal confirmatory act, indicating that he or she consents to the processing of his or her personal data.

Data gathering

Our website collects a series of general data and information each time the website is accessed by a data subject or an automated system. This general data and information is stored in the log files of the server. The following can be recorded

  1. browser types and versions used,
  2. the operating system used by the accessing system,
  3. the Internet page from which an accessing system accesses our Internet page (so-called referrer),
  4. the subwebsites, which are accessed via an accessing system on our website,
  5. the date and time of access to the website,
  6. Name and URL of the retrieved file,
  7. an Internet protocol address (IP address) of the,
  8. Date and time of access,
  9. the Internet service provider of the accessing system, and
  10. other similar data and information used to avert dangers in the event of attacks on our information technology systems.

When using this general data and information, we do not draw any conclusions about the person concerned. Rather, this information is needed in order to

  1. to deliver the contents of our website correctly,
  2. to ensure a smooth connection to our website,
  3. to optimise the content of our website and the advertising for it,
  4. to ensure the long-term functionality, as well as the evaluation of the system security and stability of our information technology systems and the technology of our website, and
  5. to provide law enforcement agencies with the information they need to prosecute a cyber attack.

This anonymously collected data and information is therefore evaluated by us both statistically and with the aim of increasing data protection and data security in our company in order to ultimately ensure an optimum level of protection for the personal data processed by us. The anonymous data of the server log files are stored separately from all personal data provided by the person concerned.

The legal basis for the data processing is Art. 6 Para. 1 p. 1 lit. F DSGVO. Our justified interest follows from the purposes listed above for the collection of data. In no case do we collect the collected data for the purpose of drawing conclusions about your person.

Disclosure of data

A transfer of your personal data to third parties for purposes other than those listed below will only take place if:

  • You yours according to Art. 6 para 1 lit. a DSGVO have given their express consent to this,
  • The passing on according to Art. 6 para. 1 lit. f DSGVO is necessary for the assertion, exercise or defence of legal claims and there is no reason to assume that you have a predominant legitimate interest in the non-disclosure of your data,
  • In the event that there is a legal obligation to pass on data pursuant to Art. 6 Para. 1 lit. DSGVO, and
  • This is legally permissible and in accordance with Art. 6 Para. 1 lit. b DSGVO is necessary for the execution of contractual relationships with you.

4. legal or contractual provisions relating to the provision of personal data; the need to conclude a contract; the obligation of the data subject to provide the personal data; the possible consequences of not providing the personal data

We will inform you that the provision of personal data is partly required by law (e.g. tax regulations) or may result from contractual provisions (e.g. information on the contractual partner). Sometimes it may be necessary for a contract to be concluded that a person concerned makes personal data available to us which must subsequently be processed by us. For example, the data subject is obliged to provide us with personal data if our company concludes a contract with them. Failure to provide personal data would mean that the contract could not be concluded with the data subject. Before the data subject provides personal data, the data subject must contact our data protection officer. Our data protection officer informs the data subject on a case-by-case basis whether the provision of personal data is required by law or contract or is necessary for the conclusion of a contract, whether there is an obligation to provide the personal data and what consequences the non-availability of the personal data would have.

Possibility to contact us via the website

Due to legal regulations, our website contains information that enables us to contact our company quickly and electronically and to communicate directly with us, which also includes a general address of the so-called electronic mail (e-mail address). If a data subject contacts the controller by e-mail or via a contact form, the personal data transmitted by the data subject shall be automatically stored. Such personal data transmitted voluntarily by a data subject to the controller are stored for the purposes of processing or contacting the data subject. This personal data will not be passed on to third parties.

Use of cookies

In order to make visiting our website attractive and to enable the use of certain functions, we use so-called cookies on various pages. These are small text files that are stored on your mobile device.

The data processed by cookies are used for the named purposes to protect our legitimate interests as well as those of third parties according to Art. 6 Para. 1 lit. f DSGVO required.

Some of the cookies we use are deleted after the end of the browser session, i.e. after closing your browser (so-called session cookies). Some of the cookies we use are deleted after the end of the browser session, i.e. after closing your browser (so-called session cookies). You can set your browser so that you are informed about the setting of cookies and decide individually whether to accept them or whether to exclude the acceptance of cookies in certain cases or in general. If cookies are not accepted, the functionality of our website may be restricted.

Use of Google (Universal) Analytics for web analytics

This website uses Google (Universal) Analytics, a web analysis service provided by Google Inc. (www.google.com). Google (Universal) Analytics uses methods that allow an analysis of your use of the website, such as “cookies”, text files that are stored on your computer. The information generated about your use of this website is usually transferred to a Google server in the USA and stored there. By activating IP anonymisation on this website, the IP address is shortened before transmission within the member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there. The anonymous IP address transmitted by your browser as part of Google Analytics is not merged with other Google data.

You can prevent Google from collecting the data generated by the cookie and related to your use of the website (including your IP address) and Google from processing this data by downloading and installing the browser plug-in available at the following link: wbs.is/rom89.

As an alternative to the browser plug-in, you can click this link to prevent Google Analytics from collecting data from this website in the future. An opt-out cookie is stored on your end device. If you delete your cookies, you must click the link again.

The user has the option of setting an opt-out cookie by clicking on “this link” in the data protection declaration. For the opt-out cookie, a script must always be inserted before the actual Google Analytics script in the source code. You can find out how to do this on the Google Analytics website wbs.is/rom71.

Use social plug-ins from Facebook using the “2-click solution

On our website, so-called social plug-ins (“plug-ins”) of the social network Facebook may be used. This service is provided by the company Facebook Inc. (“Provider”).

Facebook is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”). An overview of the Facebook plug-ins and their appearance can be found here: wbs.is/rom90.

In order to increase the protection of your data when you visit our website, the plug-ins are integrated into the page by means of a so-called “2-click solution”. This integration ensures that when a page of our website containing such plug-ins is accessed, no connection is established with the Facebook servers. Only when you activate the plug-ins and give your consent to the data transfer does your browser establish a direct connection to the Facebook servers. The content of the respective plug-in is transmitted directly to your browser and integrated into the page. By integrating the plug-ins, Facebook receives the information that your browser has called the corresponding page of our website, even if you do not have a profile on Facebook or are not currently logged in. This information (including your IP address) is transmitted directly from your browser to a Facebook server in the USA and stored there. If you interact with the plug-ins, e.g. press the “Like” button, the corresponding information is also transmitted directly to a Facebook server and stored there. The information is also published on Facebook and displayed to your contacts. The purpose and scope of the data collection and the further processing and use of the data by Facebook as well as your rights in this regard and setting options to protect your privacy can be found in Facebook’s data protection information at wbs.is/rom91.

Embedded videos and images from external websites

Some of our pages may contain embedded content from YouTube or Instagram. When you access a page from our website with embedded videos or images from our YouTube and/or Instagram channel, no personally identifiable information other than your IP address is transmitted. The IP address is transmitted to Google Inc. 600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”) in the case of YouTube and to Instagram Inc. 181 SouthPark Street Suite 2 San Francisco, California 94107, USA (“Instagram”) in the case of Instagram.

Announcement of changes

Changes in the law or in our internal processes may require us to amend this privacy statement.

In the event of such a change, we will notify you at least six weeks before it takes effect. In general (No. 6) you are entitled to a right of revocation with regard to the consents you have given.

Please note that (if you do not exercise your right of withdrawal) the current version of the data protection declaration is the valid one.

Update/deletion of your personal data

Changes in the law or in our internal processes may require us to amend this privacy statement.

In the event of such a change, we will notify you at least six weeks before it takes effect. In general (No. 6) you are entitled to a right of revocation with regard to the consents you have given.

Please note that (if you do not exercise your right of withdrawal) the current version of the data protection declaration is the valid one.

Rights of data subjects

Every data subject shall have the right, granted by the European directive and regulation maker, to obtain from the controller confirmation as to whether personal data relating to him or her are being processed. If a data subject wishes to exercise this right of confirmation, he or she can contact our data protection officer or another employee of the data controller at any time.

Any person concerned by the processing of personal data has the right, granted by the European directive and regulation, to obtain at any time, free of charge, from the controller, information about the personal data relating to him or her stored and a copy of this information (Art. 15 DSGVO). In addition, the European legislator has provided the data subject with the following information:

  • the processing purposes
  • the categories of personal data processed
  • the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisations
  • if possible, the planned duration for which the personal data will be stored or, if that is not possible, the criteria for determining that duration
  • the existence of a right to the rectification or erasure of personal data concerning him or her or to the limitation of the processing carried out by the controller or of a right to object to such processing
  • the existence of a right of appeal to a supervisory authority
  • if the personal data are not collected from the data subject: All available information on the origin of the data
  • the existence of automated decision making, including profiling, in accordance with Art. 22 para. 1 and 4 DSGVO and, at least in these cases, meaningful information on the logic involved and the scope and intended effects of such processing for the data subject

The data subject also has the right to know whether personal data have been transferred to a third country or to an international organisation. If this is the case, the data subject shall also have the right to obtain information on the appropriate safeguards in connection with the transfer.

If a data subject wishes to exercise this right to information, he or she can contact our data protection officer or another employee of the data controller at any time.

Any person concerned by the processing of personal data has the right granted by the European directive and regulation to demand the immediate rectification of incorrect personal data concerning him or her (Art. 16 DSGVO). Furthermore, the data subject shall have the right, having regard to the purposes of the processing, to request the completion of incomplete personal data, including by means of a supplementary statement.

If a data subject wishes to exercise this right of rectification, he or she can contact our data protection officer or another employee of the data controller at any time.

Any person concerned by the processing of personal data has the right granted by the European directive and regulation to require the controller to delete the personal data concerning him without delay (Art. 17 DSGVO), if one of the following reasons applies and if the processing is not necessary:

  • The personal data have been collected for such purposes or processed in any other way for which they are no longer necessary.
  • The data subject shall revoke his consent to the processing pursuant to this Article Art. 6 para. 1 letter a) DSGVO or Art. 9 Para. 2(a) DSGVO and there is no other legal basis for the processing.
  • The person concerned shall create a Art. 21 para. 1 DSGVO, and there are no overriding legitimate reasons for the processing, or the data subject submits an objection to the processing in accordance with Article 1 DSGVO. Art. 21 para. 2 DSGVO lodges an objection against the processing.
  • Personal data have been processed unlawfully.
  • The deletion of personal data is necessary to fulfil a legal obligation under Union law or the law of the Member States to which the data controller is subject.
  • The personal data have been processed in relation to information society services offered in accordance with Article 5(1) of the Directive. Art. 8 para. 1 DSGVO.

If one of the above reasons applies and a person concerned wishes to have personal data stored by us deleted, he or she can contact our data protection officer or another employee of the data controller at any time. Our data protection officer or another employee will ensure that the request for deletion is complied with immediately.

If the personal data were made by us and our enterprise is responsible as responsible person in accordance with Art. 17 Para. 1 DSGVO, we shall take reasonable measures, including technical measures, to inform other data controllers who process the published personal data that the data subject has requested the deletion of all links to such personal data or copies or replications of such personal data from such other data controllers, insofar as such processing is not necessary, taking into account the available technology and implementation costs. Our data protection officer or another employee will take the necessary steps in individual cases.

Any person data subject to the processing of personal data has the right, granted by the European directive and regulation, to request the controller to limit the processing if one of the following conditions is met:

  • The accuracy of the personal data is contested by the data subject for a period of time which allows the data controller to verify the accuracy of the personal data.
  • The processing is unlawful, the data subject refuses the deletion of the personal data and instead requests the restriction of the use of the personal data.
  • The controller no longer needs the personal data for the purposes of processing, but the data subject needs them for the assertion, exercise or defence of legal claims.
  • The data subject has lodged an appeal against the processing pursuant to Art. 21 para. 1 DSGVO and it has not yet been determined whether the legitimate reasons of the person responsible outweigh those of the data subject.

If one of the above conditions is met and a person concerned wishes to request the restriction of personal data stored by us, he or she can contact our data protection officer or another employee of the data controller at any time. Our data protection officer or another employee will arrange for the processing to be restricted.

Any data subject involved in the processing of personal data has the right, granted by the European directive and regulation, to obtain personal data concerning him or her which have been provided by the data subject to a controller in a structured, common and machine-readable format. It shall also have the right to communicate such data to another controller without being hindered by the controller to whom the personal data have been disclosed, provided that the processing is carried out on the basis of the consent pursuant to Art. 6 para. of the Data Protection Act. 1 letter a) DSGVO or Art. 9 Para. 2 letters a) DSGVO or on a contract in accordance with Art. 6 para. 1 letter (b) DSGVO and the processing is carried out by automated means, unless the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

Furthermore, in exercising his or her right to data portability, the data subject has complied with the following provisions Art. 20 para. 1 DSGVO the right to have the personal data transferred directly from one responsible person to another responsible person, insofar as this is technically feasible and insofar as this does not impair the rights and freedoms of other persons.

In order to assert the right to data transferability, the person concerned can contact the data protection officer appointed by us or another employee at any time.

Any person data subject to the processing of personal data shall have the right granted by the European legislator to oppose at any time, for reasons related to his particular situation, the processing of personal data concerning him by virtue of Article 6(1) of the Directive and the Regulation. 1 letter e) or f) DSGVO to lodge an objection. This also applies to profiling based on these provisions.

In the event of objection, we will no longer process the personal data unless we can prove compelling grounds for processing worthy of protection which outweigh the interests, rights and freedoms of the person concerned or serve the processing, assertion, exercise or defence of legal claims.

If we process personal data in order to conduct direct advertising, the person concerned has the right to object at any time to the processing of personal data for the purpose of such advertising. This also applies to profiling in so far as it is related to such direct marketing. If the data subject objects to our processing for direct marketing purposes, we will no longer process the personal data for these purposes.

In addition, the data subject shall have the right, for reasons connected with his/her particular situation, to object to the processing of personal data concerning him/her which we process for scientific or historical research purposes or for statistical purposes in accordance with Article 16(1)(b) of the Regulation. Art. 89 para. 1 DSGVO, unless such processing is necessary for the performance of a task in the public interest.

To exercise the right to object, the data subject may contact our data protection officer or another employee directly. The data subject shall also be free to exercise his right of objection in relation to the use of information society services, notwithstanding Directive 2002/58/EC, by means of automated procedures using technical specifications.

Any person data subject to the processing of personal data shall have the right, granted by the European directive and regulation, not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects upon him or her or significantly affects him or her in a similar manner, provided that the decision

  1. is not necessary for the conclusion or performance of a contract between the data subject and the person responsible, or
  2. is authorised by legislation of the Union or of the Member States to which the person responsible is subject and that legislation contains adequate measures to safeguard the rights and freedoms and the legitimate interests of the data subject, or
  3. with the express consent of the data subject.

Is the decision

  1. necessary for the conclusion or performance of a contract between the data subject and the person responsible, or
  2. where it is done with the express consent of the data subject, we shall take reasonable steps to safeguard the rights and freedoms and the legitimate interests of the data subject, including at least the right of the data subject to have his or her data subject intervene, to state his or her views and to challenge the decision.

If the data subject wishes to exercise rights relating to automated decisions, he or she may at any time contact our data protection officer or another employee of the data controller for this purpose.

Any person concerned by the processing of personal data has the right, granted by the European directive and regulation maker, to revoke consent to the processing of personal data at any time.

If the data subject wishes to exercise his/her right to revoke his/her consent, he/she can contact our data protection officer or another employee of the data controller at any time.

Legal basis of the processing

Art. 6 para. 1 letter a) DSGVO serves our company as a legal basis for processing operations in which we obtain consent for a specific processing purpose. Where the processing of personal data is necessary for the performance of a contract to which the data subject is a party, such as in the case of processing operations necessary for the supply of goods or for the rendering of any other service or consideration, the processing shall be based on Article 6(1)(b) of the Treaty. 1 letter b) DSGVO. The same applies to such processing operations that are necessary for the implementation of pre-contractual measures, such as in cases of inquiries about our products or services. If our company is subject to a legal obligation which requires the processing of personal data, such as for the fulfilment of tax obligations, the processing is based on Art. 6 Para. 1 letter c) DSGVO. In rare cases, the processing of personal data may become necessary to protect the vital interests of the data subject or another natural person. This would be the case, for example, if a visitor to our business was injured and his name, age, health insurance data or other vital information would have to be passed on to a doctor, hospital or other third party. Then the processing on Art. 6 para. 1 letter (d) DSGVO Ultimately, processing operations could be limited to Art. 6 para. 1(f) DSGVO. Processing operations which are not covered by any of the aforementioned legal bases are based on this legal basis if the processing is necessary to safeguard a legitimate interest of our company or a third party, provided that the interests, fundamental rights and fundamental freedoms of the data subject do not predominate. Such processing operations are permitted to us in particular because they have been specifically mentioned by the European legislator. In this respect, it took the view that a legitimate interest could be assumed if the person concerned is a customer of the person responsible (recital 47 sentence 2 DSGVO).

legitimate interests in the processing pursued by the controller or by a third party

Is the processing of personal data based on Art. 6 para. 1 letter f) DSGVO, it is our legitimate interest to conduct our business for the benefit of all our employees and shareholders.

Actuality

This privacy policy is currently valid and as of May 2018.