Introduction and general information
Thank you for your interest in our website. The protection of your personal data is very important to us. Below you will find information on the handling of your data that is collected through your use of our website. Your data will be processed in accordance with the statutory data protection regulations.
Controller within the meaning of the GDPR
MBA Instruments GmbH (hereinafter also referred to as MBA)
Managing Director: Andreas Heckel
Friedrich-List-Str. 3-7
25451 Quickborn
Phone: +49 4106/123 88-80
E-mail: info@mba-instruments.de
Register court: Pinneberg Local Court
Register number: HRB 5830
Contact details of the data protection officer
Proliance GmbH / www.datenschutzexperte.de
Data Protection Officer
Leopoldstr. 21
80802 Munich
Email
When contacting the data protection officer, please state the company to which your enquiry relates. Please refrain from enclosing sensitive information, such as a copy of your ID, with your enquiry.
Definitions
Our privacy policy should be simple and understandable for everyone. As a rule, the official terms of the General Data Protection Regulation (GDPR) are used in this privacy policy. The official definitions are explained in Art. 4 GDPR.
Access to and storage of information in terminal equipment
By using our website, information (e.g. IP address) may be accessed or information (e.g. cookies) may be stored in your end devices. This access or storage may involve further processing of personal data within the meaning of the GDPR.
In cases in which such access to information or such storage of information is absolutely necessary for the technically error-free provision of our services, this is done on the basis of § 25 para. 1 sentence 1, para. 2 no. 2 TTDSG.
In cases in which such a process serves other purposes (e.g. the needs-based design of our website), this is only carried out on the basis of Section 25 (1) TTDSG with your consent in accordance with Art. 6 (1) lit. a GDPR. Consent can be revoked at any time for the future. The provisions of the GDPR and the Federal Data Protection Act (BDSG) apply to the processing of your personal data.
Further information on the processing of your personal data and the relevant legal bases in this context can be found in the following sections on the specific processing activities on our website.
Web hosting
This website is hosted by an external service provider (hoster). This website is hosted in Germany.
The website is hosted by: Mittwald CM Service GmbH & Co KG, Königsberger Str. 4 - 6, 32339 Espelkamp, Germany.
Personal data collected on this website is stored on the host's servers. This may include IP addresses, contact enquiries, meta and communication data, website access and other data generated via a website.
We collect the data listed in order to ensure a smooth connection to the website and the technically error-free provision of our services. The processing of this data is absolutely necessary in order to make the website available to you. The legal basis for the processing of the data is our legitimate interest in the correct presentation and functionality of our website in accordance with Art. 6 para. 1 lit. f GDPR.
We have concluded an order processing contract with the provider in accordance with the requirements of Art. 28 GDPR, in which we oblige the provider to protect our customers' data and not to pass it on to third parties.
Server log files
When you visit our website, it is technically necessary for data to be transmitted to our web server via your internet browser. The following data is recorded during an ongoing connection for communication between your Internet browser and our web server:
- Date and time of the request
- Name of the requested file
- Page from which the file was requested
- Access status
- Web browser and operating system used
- (Full) IP address of the requesting computer
- Amount of data transferred
We collect the data listed in order to ensure a smooth connection to the website and to enable users to use our website conveniently. The log file is also used to analyse system security and stability as well as for administrative purposes. The legal basis for the processing of the data is our legitimate interest in the protection and functionality of our website in accordance with Art. 6 para. 1 lit. f GDPR.
For reasons of technical security, in particular to defend against attempted attacks on our web server, this data is stored by us for a short period of time. After 24 hours at the latest, the data is anonymised by shortening the IP address at domain level so that it is no longer possible to establish a reference to the individual user.
The data may also be processed in anonymised form for statistical purposes. At no time is this data stored together with other personal data of the user, compared with other databases or passed on to third parties.
Web hosting
This website is hosted by an external service provider (Mittwald CM Service GmbH & Co. KG). This website is hosted in Germany. Personal data collected on this website is stored on the hoster's servers. This may include IP addresses, contact requests, meta and communication data, website access and other data generated via a website.
We have concluded an order processing contract with the provider in accordance with the requirements of Art. 28 GDPR, in which we oblige the provider to protect our customers' data and not to pass it on to third parties.
Cookies
Our website uses so-called "cookies". Cookies are small text files that are stored on your end device either temporarily for the duration of a session (session cookies) or permanently (permanent cookies). Session cookies are automatically deleted at the end of your visit. Permanent cookies remain stored on your end device until you delete them yourself or they are automatically deleted by your web browser.
Cookies have various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g. the shopping basket function or language settings). Other cookies are used to evaluate user behaviour or display advertising.
The processing of data through the use of strictly necessary cookies is based on a legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR in the technically error-free provision of our services. For details on the processing purposes and legitimate interests, please refer to the information on the specific data processing.
The processing of personal data through the use of other cookies is based on consent in accordance with Art. 6 para. 1 lit. a GDPR. Consent can be revoked at any time for the future. If such cookies are used for analysis and optimisation purposes, we will inform you about this separately in this privacy policy and obtain your consent in accordance with Art. 6 para. 1 lit. a GDPR.
You can set your browser so that you
- be informed about the setting of cookies,
- only allow cookies in individual cases,
- exclude the acceptance of cookies for certain cases or in general
- activate the automatic deletion of cookies when closing the browser.
The cookie settings can be managed for the respective browsers under the following links
Google Chrome
Mozilla Firefox
Edge (Microsoft)
Safari
Opera
You can also manage cookies from many companies and functions that are used for advertising individually. To do this, use the corresponding user tools, available at www.aboutads.info orwww.youronlinechoices.com.
Most browsers also offer a so-called "do-not-track function." If this function is activated, the respective browser informs advertising networks, websites and applications that you do not wish to be "tracked" for the purpose of behaviour-based advertising and the like.
Information and instructions on how to edit this function can be found under the following links, depending on your browser provider:
Google Chrome
Mozilla Firefox
Edge (Microsoft)
Safari
Opera
You can also prevent so-called scripts from loading by default. "NoScript" allows the execution of JavaScripts, Java and other plug-ins only on trusted domains of your choice. Information and instructions on how to edit this function can be obtained from the provider of your browser (e.g. for Mozilla Firefox at: www.addons.mozilla.org).
Please note that deactivating cookies may limit the functionality of our website.
Changing cookie settings
You can revoke or change your cookie settings at any time. To do this, call up the cookie settings again using our integrated thumbprint. You can find this at any time at the bottom left of the website. Alternatively, you can revoke or change your cookie settings here in the privacy policy.
External links
Social networks (LinkedIn, XING, Facebook) are only integrated on our website as links to the corresponding services. After clicking on the integrated text/image link, you will be redirected to the page of the respective provider. User information is only transferred to the respective provider after you have been forwarded. For information on the handling of your personal data when using these websites, please refer to the respective privacy policies of the providers you use.
Contact form and contact by e-mail
If you send us enquiries using the contact form or by e-mail, your details from the enquiry form or your e-mail, including the personal data you provide there, will be stored by us for the purpose of processing the enquiry and in the event of follow-up questions. We will never pass on this data without your consent. The legal basis for processing the data is our legitimate interest in responding to your enquiry in accordance with Art. 6 para. 1 lit. f GDPR and, if applicable, Art. 6 para. 1 lit. b GDPR if your enquiry is aimed at concluding a contract.
Your data will be deleted after final processing of your enquiry, provided that there are no statutory retention obligations to the contrary. In the case of Art. 6 para. 1 lit. f GDPR, you can object to the processing of your personal data at any time.
Contacting us via WhatsApp
Please read the WhatsApp privacy policy. If you contact
via WhatsApp, the terms of use and privacy policy
of the provider WhatsApp apply:
https://www.whatsapp.com/legal/privacy-policy-eea?eea=1&lang=en
Data transfer and recipients
Your personal data will not be transferred to third parties unless
- if we have explicitly indicated this in the description of the respective data processing,
- if you have given your express consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR,
- the disclosure pursuant to Art. 6 para. 1 sentence 1 lit. f GDPR is necessary for the assertion, exercise or defence of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in not disclosing your data
- in the event that there is a legal obligation for the disclosure pursuant to Art. 6 para. 1 sentence 1 lit. c GDPR and
- insofar as this is necessary for the processing of contractual relationships with you in accordance with Art. 6 para. 1 sentence 1 lit. b GDPR.
We also use external service providers for the processing of our services, which we have carefully selected, commissioned in writing and with whom we have concluded order processing contracts in accordance with Art. 28 GDPR if necessary. These service providers are bound by our instructions and are regularly monitored by us. These include service providers for hosting, sending emails, maintenance and servicing of our IT systems, etc. The service providers will not pass this data on to third parties.
Google Analytics
Our website uses Google Analytics, an internet analysis service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). Google Analytics uses so-called "cookies".
Google will use this information on behalf of the operator of this website to analyse your use of the website and to compile reports on website activity. Google will also use this information to provide the website operator with other services related to the use of the website and the internet. The IP address sent by your browser as part of Google Analytics will not be combined with other Google data. Processing is carried out in accordance with Art. 6 para. 1 lit. a GDPR on the basis of your consent.
We only use Google Analytics with activated IP anonymisation. This means that your IP address is only processed by Google in abbreviated form.
We have concluded an order processing contract with the service provider in which we oblige them to protect our customers' data and not to pass it on to third parties.
As personal data is transferred to the USA, further protective mechanisms are required to ensure the level of data protection required by the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Art. 46 para. 2 lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even by this contractual extension, we endeavour to obtain additional regulations and assurances from the recipient in the USA.
The Google Analytics terms of use and information on data protection can be accessed via the following links:
www.google.com
www.google.com/policies
The data is deleted as soon as it is no longer required to fulfil the purpose for which it was collected. Data at user and event level that is linked to cookies, user IDs and advertising IDs (e.g. DoubleClick cookies, Android advertising ID, IDFA [Apple ID for advertisers]) is deleted no later than 14 months after it is collected.
You can prevent the storage of cookies by adjusting the settings of your browser software accordingly. However, we would like to point out that in this case you may not be able to use all the functions of this website without restriction. You can also prevent Google from collecting the data generated by the cookie and analysing your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available at https://tools.google.com.
Google Tag Manager
This website uses the Google Tag Manager of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). This service allows website tags to be managed via an interface. The Google Tag Manager only implements tags. This means that no cookies are used and only the user's IP address is transmitted to Google to establish a connection. The Google Tag Manager triggers other tags, which in turn may collect data. However, the Google Tag Manager does not access this data. If deactivation has been carried out at domain or cookie level, it will remain in place for all tracking tags if they are implemented with Google Tag Manager.
We use Google Tag Manager on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR.
Since the IP address is transferred to Google in the USA, further protective mechanisms are required to ensure the level of data protection required by the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accordance with Art. 46 para. 2 lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even by this contractual extension, we endeavour to obtain additional regulations and assurances from the recipient in the USA.
YouTube with extended data protection mode
Videos from "YouTube", a social media platform of Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland (hereinafter referred to as "Google") are integrated on our website. The legal basis for the processing of your personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR. YouTube videos are embedded on our website exclusively in the "extended data protection mode" provided by Google.
We use YouTube for marketing purposes, in particular to present our products.
If the playback of embedded YouTube videos is started with your consent, the provider "YouTube" uses cookies to collect information about user behaviour. According to information from "YouTube", these are used, among other things, to record video statistics, improve user-friendliness and prevent abusive behaviour. In addition, the data collected by Google may also be used for advertising, market research and/or customising the design of its websites.
Insofar as personal data is transmitted to Google, the transmission to the USA is based on your consent in accordance with Art. 49 para. 1 sentence 1 lit. a GDPR. By doing so, you consent to your personal data being transferred to the USA despite any existing risk to you. The level of data protection according to the GDPR cannot be guaranteed. This may mean, for example, that American authorities (especially intelligence services) gain access to your data. Legal protection against this is currently very limited or not possible at all.
The consent you have given for the use of YouTube can be revoked at any time with effect for the future. To do so, please use our cookie settings and leave the relevant (sub)page.
The data will be deleted as soon as it is no longer required to fulfil the purpose(s) for which it was collected. If there is a legitimate interest in storage due to the defence against third-party legal claims or the assertion and enforcement of our own legal claims, processing may also take place after the above-mentioned purposes no longer apply. This also applies if we are legally obliged to further processing.
Further information on data protection and the use of data by Google can be found on the following Google website: www.policies.google.com
Links to other websites
This website sometimes contains links to websites of third-party providers or affiliated companies. If you use these links, you will leave the SMB International GmbH website and therefore also the scope of validity of this privacy policy. SMB International GmbH is not responsible for compliance with the legal provisions by these other operators. The responsibility lies exclusively with the respective website operator.
Data security
We take appropriate technical and organisational measures in accordance with Art. 32 GDPR, taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons, in order to ensure a level of security appropriate to the risk. This website uses SSL encryption for security reasons and to protect the transmission of confidential content.
Duration of storage of personal data
The duration of the storage of personal data is based on the relevant statutory retention periods (e.g. from commercial law and tax law). After expiry of the respective period, the corresponding data is routinely deleted. If data is required for contract fulfilment or contract initiation or if we have a legitimate interest in further storage, the data will be deleted if it is no longer required for these purposes or if you have exercised your right of revocation or objection.
Your rights
Below you will find information on the data subject rights that the applicable data protection law grants you vis-à-vis the controller with regard to the processing of your personal data:
The right to request information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right to lodge a complaint, the origin of your data if it was not collected by us, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information on its details.
The right, in accordance with Art. 16 GDPR, to demand the immediate correction of incorrect or incomplete personal data stored by us.
The right to request the deletion of your personal data stored by us in accordance with Art. 17 GDPR, unless the processing is necessary to exercise the right to freedom of expression and information, to fulfil a legal obligation, for reasons of public interest or for the assertion, exercise or defence of legal claims.
The right to demand the restriction of the processing of your personal data in accordance with Art. 18 GDPR if the accuracy of the data is disputed by you, the processing is unlawful but you refuse to delete it and we no longer need the data, but you need it for the assertion, exercise or defence of legal claims or you have lodged an objection to the processing in accordance with Art. 21 GDPR.
The right to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format or to request transmission to another controller in accordance with Art. 20 GDPR
The right to lodge a complaint with a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of the federal state of our registered office stated above or, if applicable, that of your usual place of residence or workplace.
The right to withdraw consent granted in accordance with Art. 7 para. 3 GDPR: You have the right to withdraw your consent to the processing of data at any time with effect for the future. In the event of revocation, we will delete the data concerned immediately, unless further processing can be based on a legal basis for processing without consent. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
Right to object
If your personal data is processed by us on the basis of legitimate interests in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR, you have the right to object to the processing of your personal data in accordance with Art. 21 GDPR, provided that this is done for reasons arising from your particular situation. Insofar as the objection is directed against the processing of personal data for the purpose of direct marketing, you have a general right to object without the requirement to specify a particular situation.
If you wish to exercise your right of cancellation or objection, simply send an email to info@smb-group.de.
Legal obligations
The provision of personal data for the decision on the conclusion of a contract, the fulfilment of a contract or for the implementation of pre-contractual measures is voluntary. However, we can only make the decision within the framework of contractual measures if you provide personal data that is necessary for the conclusion of the contract, the fulfilment of the contract or pre-contractual measures.
Automated decision-making
Automated decision-making or profiling in accordance with Art. 22 GDPR does not take place.
Reservation of the right to make changes
We reserve the right to amend or update this privacy policy if necessary in compliance with the applicable data protection regulations. In this way, we can adapt it to the current legal requirements and take into account changes to our services, e.g. when introducing new services. The current version applies to your visit.
Status of this privacy policy: 01/05/2023