Data protection declaration / Privacy Policy

Last updated: May 2018

Controller

MEV Elektronik Service GmbH
Nordel 5A
49176 Hilter a.T.W.
Germany

Preamble

MEV Elektronik Service GmbH regards the protection of personal data as a matter of course basic right of every natural person! Consequently, your data will only be processed in accordance with the statutory data protection regulations and this data protection declaration.

The use of the MEV-website (www.mev-elektronik.com) is generally possible without providing personal data. Even if personal data (e.g. e-mail addresses, name, company) are required for inquiries, newsletters or other services of MEV, you are not legally or contractually obliged to provide them to MEV. Non-provision, however, may mean that cooperation with MEV is not possible.

Please note that the Internet is generally considered unsafe. For digitally transmitted data (e.g. via e-mail) it is possible for unauthorized third parties to listen to, intercept or even change them. You should send sensitive data to MEV in hard copy!

Every MEV employee is committed to data secrecy and will treat all personal data strictly confidentially, reduce storage to a possible minimum and immediately report any data protection incidents of any kind to MEV's data protection officer.

 You have the right to object at any time to the processing of your personal data in general and for direct marketing purposes in particular! In this case, please contact MEV's data protection officer, Mr Sebastian Conrad (sconrad@mev-elektronik.com) ; +49 5424 2340 59 ; Nordel 5A, 49176 Hilter a.T.W.!

Why does MEV process personal data?

MEV processes personal data exclusively for the purpose of conducting its own business activities in order to facilitate professional, future-oriented and sustainable cooperation with you. This means that your data is processed either to fulfil a contract, to carry out pre-contractual measures (offers, quotes, contract negotiations, etc.; Art. 6 para. 1 lit. b GDPR), to fulfil legal obligations (Art. 6 para. 1 lit. c GDPR) or to safeguard the legitimate interests of MEV (Art. 6 para. 1 lit. f GDPR). The data you provide can be processed in the Customer Relationship Management System (CRM system) or MEV's merchandise management system and on MEV's e-mail server.

MEV's legitimate interest in the processing of personal data is in the maintenance and expansion of the customer base as well as the accompanying knowledge of responsible contact persons and decision-makers for the design-in-oriented focus of the company. In addition, MEV has a legitimate interest in ensuring network and information security, including legal and contractual traceability. Furthermore, the legitimate interest is based on the knowledge of previous communications, the implementation of sales and marketing projects and the safeguarding of legal claims. MEV may also use data to communicate with you, for example by sending you targeted information, exciting products or interesting advertisements about its own similar products or services. MEV may use personal data for internal statistical, marketing or operational purposes, including the preparation of sales reports and the collection and understanding of trends. As soon as it becomes known that personal information is no longer current or is compatible with data protection law, MEV will correct or delete it without delay.

Your personal data will be used for establishment, exercise or defence of legal claims (art. 17 par. 3 lit. e GDPR i.V.m.; art. 17 par. 3 lit. b GDPR) for compliance with legal obligations (tax and commercial law; art. 17 par. 3 lit. b GDPR). Art. 82 para. 1 GDPR, §197 para. 1 No. 1 German Civil Code and §199 para. 2 German Civil Code) and to ensure traceability for a maximum period of 30 years (see Art 17 para. 3 lit. e GDPR).

There is no automated decision-making including profiling pursuant to Article 22 para. 1 and para. 4 GDPR.

What types of personal data does MEV process?

MEV processes your professional, personal contact data and information about your position in the company. This data includes your gender (title), your first and last name as well as your company name and company address, e-mail address, telephone and fax number and, if applicable, your department, your supervisor and your position in the company (if known). You provide this data directly by contacting MEV (contact form / e-mail / telephone), or by sending your data to employees at visits, trade fairs and similar events or through publications and colleagues (origin of data).

Cookies

The MEV-website (www.mev-elektronik.com) uses cookies (small text files placed on the device) and similar technologies to make its services more user-friendly, effective and secure. Cookies allow MEV, among other things, to store your preferences and settings and to analyse how the website and online services work.  Cookies do not cause any damage to your computer and do not contain any viruses. Most of the cookies used by MEV are so-called "session cookies". They are automatically deleted at the end of your visit. Other cookies remain stored on your device until you delete them. These cookies enable MEV to recognize your browser on your next visit. You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or generally and activate the automatic deletion of cookies when closing the browser. When cookies are deactivated, the functionality of this website may be limited.

Server Log Files

On the basis of the legitimate interests within the meaning of Art. 6 para. 1 letter f. GDPR data about each access to the server on which this service is located (so-called server log files). The relevant domain host of the MEV-website (www.mev-elektronik.com) is domainfactory GmbH, Oskar-Messter-Str. 33, 85737 Ismaning, Germany, which stores the domain, your IP address, the time, the "request", the status code, the bytes transmitted and the "user agent" in its Apache access log files of the web server, keeps this log file for three days for security reasons (e.g. investigation of abuse or fraud) and then discards it. Data whose further storage is required for evidentiary purposes are excluded from deletion until the respective incident has been finally clarified.

Privacy policy for the use of Google Analytics

MEV Elektronik Service GmbH uses on its homepage (www.mev-elektronik.com) on the basis of its legitimate interest (i.e. interest in the analysis, optimisation and economic operation of the online offer within the meaning of Art. 6 para. 1 lit. f). GDPR) Google Analytics, a web analysis service of Google Inc. "("Google"). Provider and thus contract processor according to Art. 28 GDPR is Google Inc. 1600 Am-phitheatre Parkway Mountain View, CA 94043, USA. Google Analytics uses so-called "cookies". These are text files that are stored on your computer and enable an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there for a period of 14 months (this period is reset for new activity).

By anonymizing your IP address on this website, Google will reduce your IP address within member states of the European Union or in other states party to the European Economic Area Agreement. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of MEV Elektronik GmbH, Google will use this information to evaluate your use of the website, to compile reports on website activities and to provide us with further services relating to website and Internet use. The IP address transmitted by your browser in the context of Google Analytics is not merged with other Google data. For more information about Google's privacy practices, please visit www.google.de/policies/privacy/.

You may refuse the use of cookies by selecting the appropriate settings on your browser, however MEV points out that if you do this you may not be able to use the full functionality of this website. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout?hl=en

This site uses so-called web fonts provided by Google to uniformly display fonts. When you call up a page, your browser loads the required web fonts into its browser cache to display texts and fonts correctly. If your browser does not support web fonts, a default font is used by your computer.

Newsletter

The following information will provide you with extensive information about the MEV newsletter, what it may contain, how you can subscribe and unsubscribe, and your general right of objection. If you subscribe to our newsletter, you agree to the receipt and the described procedures.

The contents of the newsletter consist of information on products of MEV franchise partners, special offers, promotions, events and information on and about MEV and the aforementioned partners. You will only receive the newsletter and other electronic notifications with advertising information (newsletter) if you have previously agreed to receive it or if MEV has legal permission to do so in accordance with the GDPR and UWG.

To subscribe to the newsletter it is sufficient to provide your e-mail address. Please note that the MEV Newsletter is only sent to commercial customers for whom the Do-main can be perfectly assigned to a company in the MEV system. For a personal address in the newsletter, you are also free to state your name. If you actively register for the MEV newsletter via the MEV homepage, you will receive an e-mail after registration in which you must confirm your previous registration in order to prevent a third party from using your e-mail address (double-opt-in). This confirmation is logged within the MEV and stored permanently.

Newsletter2Go (https://www.newsletter2go.de/) is used as newsletter software. Your data will be transmitted to Newsletter2Go GmbH, Köpenicker Str. 126, 10179 Berlin. Newsletter2Go is prohibited from selling your data and using it for purposes other than sending newsletters. Newsletter2Go is a German, certified provider selected in accordance with the requirements of the Basic Data Protection Ordinance and the Federal Data Protection Act and acts as a contract processor in accordance with Article 28 GDPR. Further information can be found at https://www.newsletter2go.de/informationen-newsletter-empfaenger/

The newsletters contain a so-called "web-beacon", i.e. a pixel-sized file which is retrieved from the server of the shipping service when the newsletter is opened. Within the scope of this retrieval, technical information, such as information about the browser and your system, as well as your IP address and time of retrieval are initially collected. This information is used to technically improve the services based on the technical data or the target groups and their reading behaviour based on their retrieval locations (which can be determined using the IP address) or access times. The statistical surveys also include determining whether the newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. The use of Newsletter2Go, the statistical surveys and analysis as well as the logging of the registration procedure and the receipt and reading of the newsletter are based on the legitimate interests of MEV pursuant to Art. 6 para. 1 lit. f GDPR.

You can unsubscribe from receiving the MEV Newsletter at any time, i.e. revoke your consent. You will find a link to unsubscribe from the newsletter at the end of each newsletter.

How does MEV protect personal data?

To ensure the protection of personal data, MEV's IT system is protected against unauthorized access, loss and damage by various technical and organizational security measures (firewall, virus scanner, regular backups, process and procedure instructions, SSL encryption, access regulations, authorization concepts for digital access, emergency plan...). In addition, every employee is regularly informed about the forms of legal processing, the necessary integrity and the special protection needs of personal data. In addition, the data protection policy is announced by the management or the data protection officer, regular training and proofs of employees, and evaluation of security measures implemented and to be improved by MEV's IT service provider. The IT service provider of MEV Elektronik Service GmbH and thus contract processor in accordance with Art. 28 GDPR is SIEVERS-SNC Computer & Software GmbH & Co. KG, Hans-Wunderlich-Strasse 8, 49078 Osnabrück, Germany.

Why does MEV share personal data?

MEV shares your personal data with your consent or as required in order to be able to offer a product that you have requested or released (Art. 6 para. 1 lit. b GDPR), if this is required by law or necessary in response to a legal procedure or on the basis of the legitimate interest of MEV pursuant to Art. 6 para. 1 lit. f GDPR. In principle, your data will only be passed on to the employees and service providers of MEV and to manufacturers whose products you request.

In the course of sales projects, quota and price inquiries, export licences or other activities for the fulfilment and/or preparation of a (potential) contract between you (or your company) and MEV, it may be necessary to transfer your personal data mentioned above to a third country (e.g. USA & China) or an international organisation (e.g. international linecard partner of MEV) without an adequacy resolution or a suitable guarantee (Art. 49 para. 1 lit. a & b GDPR). In this case, there is a risk that there is no adequate level of data protection, that the rights of the data subjects may not be enforceable and that the personal data can be used by unauthorized third parties.

What rights exist vis-à-vis MEV?

MEV Elektronik Service GmbH takes appropriate measures to ensure that personal data is correct, complete and up-to-date wherever possible. Of course, you have the right of access (Art. 15 GDPR), rectification (Art. 16 GDPR), erasure (Art. 17 GDPR) or restriction of processing (Art. 18 GDPR) as well as the right to object to processing (Art. 21 GDPR) and the right to data portability (Art. 20 GDPR). If consent has been given, you have the right to withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal. You also have the right, of course, to complain to a supervisory authority. In the aforementioned cases - with the exception of the right of appeal - you must contact MEV's data protection officer.

In accordance with applicable law, MEV Elektronik Service GmbH will respond immediately to your enquiries. For your protection and that of MEV, however, MEV can only transmit information on personal data to which the e-mail address to which an inquiry was made is linked. It may also be necessary to verify your identity before providing information. MEV may refuse to process your requests if they are unfounded, could endanger the data protection of other persons, are particularly difficult to carry out, or if MEV is required to act in such a way that is inadmissible under applicable laws. To the extent permitted by law, MEV may also have to store certain personal data for a longer period of time for recording purposes, even after a request for deletion, for example for guarantee cases or tax and accounting purposes.

Inquiries regarding origin, access, correction, restriction, deletion of data or other questions regarding data protection of MEV, please contact the data protection officer of MEV Elektronik Service GmbH!

Changes to this Privacy Policy

MEV Elektronik Service GmbH reserves the right to change the data protection declaration at any time in order to adapt it to changed legal situations or in the event of changes to the service, the contractors and data processing in general. However, this only applies with regard to declarations on data processing. If user consents are required, they will of course be communicated accordingly. The data protection measures are always subject to technical innovations and for this reason we ask you to inform yourself about the data protection measures of MEV at regular intervals by inspecting the MEV data protection declaration.