## #

Privacy policy

We are pleased that you are visiting our website and thank you for your interest. Data protection enjoys a high priority in our company. In the following, we inform you about the handling of your personal data when using our website. Personal data is all data with which you can be personally identified.

Operator within the meaning of the General Data Protection Regulation (GDPR):

ELMESS-Thermosystemtechnik GmbH & Co. KG
Nordallee 1
DE-29525 Uelzen

Telefon: +49 581 90830
+49 581 908344

Data Protection Officer

We have appointed a data protection officer for our company.
You can reach him as follows:

K&K Networks GmbH
Otto-Hahn-Str. 44
59423 Unna


1.     Collection of general information

When you access our website, information of a general nature is automatically collected. This information (server log files) includes the type of web browser, the operating system used, the domain name of your internet service provider and similar. This is exclusively information that does not allow any conclusions to be drawn about your person. This information is technically necessary in order to correctly deliver the contents of web pages requested by you and is compulsory when using the Internet. Anonymous information of this kind is statistically evaluated by us in order to continuously optimise our website and its technical platform.

2.     SSL encryption

To protect the security of your data during transmission, we use state-of-the-art encryption procedures (e.g. SSL) via HTTPS.

3.     Cookies

Like many other websites, we also use so-called "cookies". Cookies are small text files that are transferred from a website server to your hard drive. Through this, we automatically receive certain data such as IP address, browser used, operating system about your computer and your connection to the Internet.

Cookies cannot be used to run programs or deliver viruses to a computer. We use the information contained in cookies to facilitate your navigation and to enable the correct display of our web pages.

Under no circumstances will the data we collect be passed on to third parties or linked to personal data without your consent.

Of course, you can also view our website without cookies. Internet browsers are regularly set to accept cookies. You can deactivate the use of cookies at any time via your browser settings. Please use the help functions of your internet browser to find out how to change these settings. Please note that individual functions of our website may not work if you have deactivated the use of cookies.

4.     Contact form

If you contact us by e-mail or contact form, the information you provide will be stored for the purpose of processing the enquiry and for possible follow-up questions. This data will not be passed on to third parties without your consent.

5.     Legal basis of the processing

The legal basis for processing operations in which we obtain consent for a specific processing purpose is art. 6 (1) lit. a) GDPR. If the processing of personal data is necessary for the implementation of a contractual relationship, art. 6 (1) lit. b) GDPR forms the required legal basis. If our company is subject to a legal obligation by which the processing of personal data becomes necessary, such as in the area of tax law, the processing is based on art. 6 (1) lit. c) GDPR.

In some circumstances, the processing of personal data might become necessary in order to protect the vital interests of the data subject or another natural person. In this case, article 6(1)(d) of the GDPR would be the legal basis for the processing.

Processing operations may also be based on art. 6 (1) lit. f) GDPR, if applicable. This is the case if the processing of your personal data by us is based on a legitimate interest of our company or a third party.

6.     Deletion or blocking of the data

We adhere to the principles of data avoidance and data economy. We therefore only store your personal data for as long as is necessary to achieve the purposes stated here or as stipulated by the various storage periods provided for by law. After the respective purpose has ceased to exist or these periods have expired, the corresponding data is routinely blocked or deleted in accordance with the statutory provisions.

7.     Data protection in applications and the application process

We collect and process the personal data of applicants for the purpose of processing the application procedure. This processing may also take place electronically. If an employment contract with an applicant results from the application process, we store the data transmitted to us for the purpose of processing the employment relationship in compliance with the statutory provisions. If the application does not result in the applicant being employed, we will delete the application documents no later than three months after informing the applicant of the rejection, provided that no other legitimate interests of our company oppose deletion.

8.     Automated decision making

We do not carry out any automatic decision-making or so-called "profiling" with your data processed by us.

9.     Google reCAPTCHA

We use Google reCAPTCHA (hereinafter referred to as "reCAPTCHA") on our website. reCAPTCHA is provided by Google Ireland Ltd., Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland.

The purpose of reCAPTCHA is to check whether the data entry on our website (e.g. in a contact form) is carried out by a human or by an automated program. For this purpose, reCAPTCHA analyzes the behavior of the website visitor on the basis of various characteristics. This analysis begins automatically as soon as you enter our website. For this check reCAPTCHA evaluates various pieces of information (e.g. IP address, length of stay of the website visitor on the website or mouse movements), which are forwarded to Google.

Data processing is carried out in accordance with art. 6 (1) lit. f) GDPR based on our legitimate interest in protecting our website from misuse. For more information on Google reCAPTCHA and Google's privacy policy, please refer to the following links: https://www.google.com/intl/de/policies/privacy.

10.       Usage of jQuery (StackPath) as CDN

We use the jQuery CDN service of the jQuery Foundation on our website. jQuery is distributed via the so-called "Content Delivery Network" (short: "CDN") of the company StackPath, LLC, based in Dallas (Texas) in the USA. A content delivery network (CDN) is a network of regional servers that we use to make our website quite performant.

When using jQuery, some of your personal data is processed (e.g. IP address). StackPath explains in its privacy policy that they only use aggregated and anonymized data, so that you cannot be identified as a specific person. StackPath is certified according to the so-called "Data Privacy Framework", the current data protection agreement between the EU and the USA. Therefore, the data protection level when using jQuery/ StackPath is comparable to that in the EU.

We use jQuery in accordance with art. 6 (1) lit. f) based on our legitimate interest in a stable and high-performance operation of our website. Please find more information about data protection around jQuery/ StackPath here: https://www.stackpath.com/legal/privacy-statement.

11.       Social media

We also operate various social media channels in addition to this website. We currently have presences on Facebook, YouTube, LinkedIn and Twitter. You can reach our pages there via the corresponding buttons on our website. We expressly point out that you use these pages and their functions on your own responsibility.

When you visit our presence on the aforementioned platforms, personal data may be transmitted to and processed by the operator of the respective platform, e.g. IP address, processor type used and browser version including plug-ins. The data collected about you in this context will be processed by the provider of the social media and may also be transferred to countries outside the European Economic Area (EEA).

If you are logged in with your personal user account while visiting such a website, the operator can assign the visit to your account. If you wish to avoid this, you should log out from the operator of the respective platform before visiting our online presence there or deactivate the "stay logged in" function, delete the cookies present on your device and close and restart your browser.

The purpose and scope of the data collection and the further processing and use of the data by the operator of the respective platform as well as your rights in this regard and setting options for protecting your privacy can be found in the respective data protection notices:

Facebook: https://de-de.facebook.com/about/privacy/
Instagram: https://help.instagram.com/519522125107875
X: twitter.com/de/privacy

We do not collect or process any further data from your use of our presence on the corresponding social media platforms.

12.       Your rights to information, correction, blocking, deletion and objection

You have the right to obtain information about your personal data stored by us at any time. You also have the right to have your personal data corrected, blocked or, apart from the prescribed data storage for business processing, deleted. To do so, please contact our data protection officer by sending an e-mail to datenschutz(at)kloepper-therm.de.

In order that a blocking of data can be taken into account at any time, this data must be kept in a blocking file for control purposes. You can also request the deletion of the data if there is no legal obligation to archive it. If such an obligation exists, we will block your data upon request.

You have the right to revoke your consent to the processing of personal data at any time with effect for the future. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation. You can make changes or revoke consent with effect for the future by notifying us accordingly by e-mail to datenschutz(at)kloepper-therm.de.

We have a statutory comment period of four weeks for processing your request, which can be extended by a further four weeks in exceptional cases. We aim to process your request in full within the first four weeks of receiving it. Please note that due to legal storage periods, we may still be obliged to store certain of your personal data even after a request for deletion has been made.

If you believe that the processing of your personal data violates the GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in the EU member state of your place of residence, your place of work or the place of the alleged violation, without prejudice to any other administrative or judicial remedy.

The supervisory authority for data protection responsible for us is the

State Commissioner for Data Protection of Lower Saxony

Prinzenstraße 5
30159 Hannover

phone: +49 (0511) 120 45 00
fax: +49 (0511) 120 45 99
email: poststelle(at)lfd.niedersachsen.de

13.       Amendment of our data protection provisions

We reserve the right to adapt this data protection declaration if necessary so that it always complies with the current legal requirements or in order to implement changes to our services in the data protection declaration, e.g. when introducing new services. The new data protection declaration will then apply to your next visit.

Uelzen, March 2024