We are pleased about your visit on the website of our company. Information protection and in particular data protection is of great importance to our management. In principle, you can use this website without providing any personal data. Should you disclose data to us in connection with the processing described below, we will treat your personal data confidentially and in accordance with the legal data protection regulations of the European Union and the Federal Republic of Germany as well as this data protection declaration.
As the data controller, a+f Großserien GmbH has implemented numerous technical and organizational measures to ensure the complete protection of personal data processed via this website. However, Internet-based data transmissions can generally have security gaps, so that absolute protection cannot be guaranteed. For this reason, you as the person concerned are free to transmit personal data to us by alternative means, for example by telephone or mail.
a+f Großserien GmbH’s data protection declaration is based on the terms used by the European legislator when the basic data protection regulation (GDPR) was issued. The detailed definitions can be found in Art. 4 GDPR.
Essentially, these are the following terms, described here in simplified form:
a) Personal data:
This is all information available to us as a responsible person to determine you as a natural person. (e.g. name, address, e-mail, telephone number, IP address etc.)
b) Person concerned:
This is you as a natural person, if we have identified you or can identify you.
Processing is any collection, storage, further processing, forwarding, archiving and deletion of data. It is irrelevant whether the process is carried out automatically with the aid of IT systems or whether it is carried out manually (e.g. by letter).
d) Restriction of processing:
Restriction of processing is the marking of stored personal data with the aim of restricting their future processing.
Profiling is any type of automated processing of your data, which consists in using these data to evaluate certain personal aspects relating to you. In particular, to analyse or predict aspects relating to your job performance, economic situation, health, personal preferences, interests, behaviour, whereabouts or change of location.
This is a process to identify your personal data. In the following, only this identifier will be used and without the original key or a “reference database” this pseudonym cannot be resolved (e.g. allocation of a customer number).
g) Responsible Person:
The person responsible or responsible for processing is a+f Großserien GmbH with whom you have a contractual relationship. It is crucial that we can decide independently on the processing methods and means.
h) Contract processor:
A processor is a company that has been commissioned by a+f Großserien GmbH to assist you in the collection, processing, storage, forwarding or deletion of your data. Usually these are IT service providers, but also waste disposal companies that are commissioned, for example, with the destruction of documents.
Consent is any expression of will given by you for a specific individual case. You will be fully informed about what you are consenting to.
The person responsible for this website and the central services of a+f Großserien GmbH within the meaning of the Data Protection Basic Regulation and other regulations of a data protection nature is:
a+f Großserien GmbH
Street: Friedrich-Bergius-Ring 15
City: D-97076 Würzburg
Phone: +49 931-329305-0
A data protection officer has been appointed for a+f Großserien GmbH. He is available at any time to answer your questions in connection with data processing.
Data Protection Officer – Confidential –
Am Alten Bahnhof 8
Phone: +49 9381 71 77 8 – 59
In accordance with Chapter 3 of the GDPR, you have the following rights as a data subject. In order to fulfil our obligations in connection with your rights in accordance with the law, please address appropriate inquiries to our data protection officer.
a) Art. 15 Right to information You have an unlimited right to request information about the personal data processed by you. This information must be provided to you free of charge. You may request information on the following information, a copy of which must also be sent to you
– the purpose of processing your data,
– the categories of the data,
– the internal and external recipients of your data,
– the duration of the data storage,
– their rights under Chapter 3, in connection with data processing,
– the origin of the data, if it was not collected from you,
– whether a profile was created,
– whether your data has been transferred to a third country (non-EU and non-
– which data protection authority is responsible for our respective company,
j) Art. 16 Right of rectification
Should we process incorrect data from you, you can have this corrected at any time by your contact person.
k) Art. 17 Right of cancellation
You have the right to request the deletion of your personal data at any time. We may be required by law to retain your data for a certain period of time (e.g. 6 years for business mail or 10 years for tax-related documents). In such a case we will block your data record until the retention period has expired and then delete the data record accordingly. Please address deletion requests to the data protection officer, who will exercise your rights in our company on your behalf.
l) Art. 18 Right to limit processing
If you dispute the accuracy of our personal data, or if you refuse to have your data deleted and instead demand the restriction (e.g. in the case of advertising mail), you can demand the restriction of processing from us. We will then set your data to blocked.
m) Art. 19 Obligations of notification in connection with correction, deletion or restriction We are obliged to inform all recipients of your data of any correction, deletion or restriction you have commissioned, insofar as this is possible and can be implemented with a reasonable amount of effort. We will inform you about the recipients of your data if you request this.
n) Art. 20 Right to data transfer
You have the right at any time to request our company to transfer your data to another responsible person. This refers to all master data that we keep about you. If technically possible, we will provide the data record in a common machine-readable format (e.g. .csv).
o) Art. 21 Right of objection
If a data processing has been justified on the basis of article 6, paragraph I, letter f (so-called legitimate interest), you may object to the processing in this context.
p) Art. 77 Right to appeal to a supervisory authority
You have the right to complain to the data protection supervisory authority responsible for our company at any time if you believe that we have violated the provisions of the GDPR in any way. The following authority is responsible for a+f Großserien GmbH:
Bayerisches Landesamt f. Datenschutzaufsicht (BayLDA)
You can access the website of the data protection supervisory authority via the
following link: https://www.lda.bayern.de/de/index.html
In this section we will describe the data processing that is connected with our internet offer or that applies to a general business relationship between you and our company.
The following legal bases serve us for the processing of your data.
Art. 6 I lit. a GDPR serves our company as a legal basis for processing operations for which we obtain consent for a specific processing purpose. If the processing of your data is necessary for the performance of a contract to which you are a party, as is the case, for example, with processing operations required for the delivery of goods or the provision of other services or consideration, the processing is based on Art. 6 I lit. b GDPR. The same shall apply to such processing operations which are necessary for the performance of pre-contractual measures, for example in cases of inquiries about our products or services. If our company is subject to a legal obligation which makes the processing of personal data necessary, for example to fulfil tax obligations, the processing is based on Art. 6 I lit. c GDPR. In rare cases, the processing of personal data may be necessary to protect the vital interests of the person concerned or of another natural person. This would be the case, for example, if a visitor to our company was injured and his name, age, health insurance details or other vital information had to be passed on to a doctor, hospital or other third party. In this case the processing would be based on Art. 6 I lit. d GDPR.
Finally, processing operations could be based on Art. 6 I lit. f GDPR. Processing operations that are not covered by any of the above legal bases are based on this legal basis if the processing is necessary to protect a legitimate interest of our company or a third party, unless the interests, fundamental rights and freedoms of you outweigh the processing. We are permitted to carry out such processing operations in particular because they have been specifically mentioned by the European legislator.
a) Website processing
We operate this website and collect various data in this context.
The Internet pages partly use so-called cookies. Cookies do not damage your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, effective and safer. Cookies are small text files that are stored on your computer and saved by your browser.
Most of the cookies we use are so-called “session cookies”. They are automatically deleted at the end of your visit. Other cookies remain stored on your end device until you delete them. These cookies enable us to recognize your browser on your next visit.
Server log data
a+f Großserien GmbH or our website provider collects data about access to our website and stores it as “server log files”. The following data is logged in this way:
– Visited website
– Time at the time of access
– Amount of data sent in bytes
– Source/reference from which you reached to the page
– Used Browser
– Operating system used
– IP address used (anonymized)
The data collected is only used for statistical analysis and to improve the website. However, we reserve the right to check the server log files
subsequently if there are concrete indications of illegal use.
Third party modules
(1) Google Maps
On our website we use Google Maps, a map service of Google Inc. to display an interactive map.
The provider of the service is Google Inc, 1600
Amphitheatre Parkway, Mountain View, CA 94043, USA.
To use the functions of Google Maps it is necessary to store your IP address.
This information is usually transferred to a Google server in the USA and stored there. We have no influence on this data transfer at this point. The integration of Google Maps pursues the goals of an appealing presentation of our online offers as well as an easy findability of the places indicated by us on the website. This data processing is carried out on the basis of Art. 6 para. 1 lit. a GDPR. As soon as you activate the map service by clicking, you give us your consent. More information on the handling of user data can be found in Google's
(2) Google reCaptcha
We use the reCAPTCHA feature of Google Ireland Limited, Gordon House, 4
Barrow St, Dublin, D04 E5W5, Ireland (“Google”) on this website.
This function is mainly used to detect bots, i.e. to distinguish whether an entry is made by a natural person or abusively by machine and automated processing. The service includes the sending of the IP address and, if applicable, other data required by Google for the reCAPTCHA service to Google and is carried out in accordance with Art. 6 para. 1 lit. f GDPR on the basis of our legitimate
interest in establishing individual responsibility on the Internet and avoiding misuse and spam. In the course of using Google reCAPTCHA, personal data may also be transferred to the servers of Google LLC. in the USA.
q) Contact / Inquiries
In the following we describe the possibilities of contacting the companies and employees of our company.
If you send us enquiries via the contact form, your details from the enquiry form including the contact data you provided there will be stored by us for the purpose of processing the enquiry and in the event of follow-up questions. These data will not be passed on without your consent. The processing of the data entered in the contact form thus takes place in the first step on the basis of your consent (Art. 6 para. 1 lit. a GDPR). You can revoke this consent at any time. For this purpose, an informal e-mail notification to us is sufficient. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation. In further correspondence, there may be a change of legality (e.g. if you request an offer), then your data will be processed in accordance with Art. 6 para. 1 lit b GDPR.
The data entered by you in the contact form will remain with us until you request deletion, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory legal provisions – in particular retention periods – remain unaffected by this.
E-Mail / Phone inquiry
If you send us inquiries by e-mail or telephone, your data from the e-mail or conversation, including the contact data you provided there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. We will not pass on this data without your consent. The processing of the data provided in the e-mail or telephone conversation is therefore based on your consent (Art. 6 para. 1 lit. a GDPR). You can revoke this consent at any time. For this purpose, an informal communication by e-mail to us is sufficient. The legality of the data processing operations carried out up to the point of revocation remains unaffected by the revocation. In further correspondence, there may be a change in legality (e.g. if it is business correspondence), in which case your data will be processed in accordance with Art. 6 Para. 1 lit. b GDPR. The data provided by you in the mail or from the telephone conversation will remain with us until you request us to delete it, revoke your consent for storage or the purpose for which the data was stored ceases to apply (e.g. after your inquiry has been processed). Mandatory legal provisions – in particular retention periods – remain unaffected by this.
r) Data processing for the fulfilment of contracts
If you have entered into a business relationship with our company, e.g. if you have placed an order with us, the data processing will be carried out on the basis of Art. 6 para. 1 lit. b GDPR. All data necessary to initiate, fulfill or complete this order, such as contact data, object data, service providers involved, photo documentation, plans, orders for goods, etc., may be collected and processed by us without separate consent. Should it be necessary to call in a subcontractor (e.g. other IT service providers, special software suppliers) to fulfill the contract with you, we may also pass on your data to this subcontractor. We guarantee that we have committed our subcontractors to the same strict data protection requirements that you can expect from us.
In individual cases, it may happen that we obtain a company information from Creditrefom to initiate an order. If the data obtained in this way has consequences for the order, we will clarify this with you separately. In rare cases, we will also check individuals. For this purpose, our company randomly checks your creditworthiness when concluding contracts and, in certain cases where there is a legitimate interest, also with existing customers. For this purpose, we work together with Creditreform Boniversum GmbH, Hellersbergstraße 11, 41460 Neuss, from which we receive the necessary data. For this purpose, we transmit your name and contact details to Creditreform Boniversum GmbH. The information according to article 14 of the EU data protection basic regulation regarding data processing at Creditreform Boniversum GmbH can be found here: https://www.boniversum.de/eu-dsgvo/?lang=en
The data related to orders are subject to different retention periods. For example, general business letters must be proven for 6 years and tax law documents for 10 years. We will only pass on your data within our company to the extent necessary, if this is justified by the subject of the order.
s) Handling of applications Documents
The legal basis for the processing of your personal data for application purposes is § 26 BDSG.
Data is only collected and processed for this purpose to the extent required by law. Insofar as other data may not be directly required for the establishment of the employment relationship, the processing is based on a legitimate interest of the company in accordance with Art. 6 para. 1 lit. f GDPR. A legitimate interest may arise, for example, from internal organizational and administrative purposes, for the protection of the company's facilities, installations and assets as well as data processing installations and data. A processing of your data is permitted here if the protection of your interests, basic rights and fundamental freedoms does not prevail. In individual cases we can also obtain your consent to the processing or transmission of your data. Your consent is voluntary in these cases and can be revoked by you at any time in the future, unless otherwise agreed. The application documents will be transmitted within the group of companies. The respective specialist department is thus involved in the application process. The specialist departments are instructed to treat application documents in strict confidence. The documents will not be transferred to a third country.
a+f Großserien GmbH is the competent and responsible body for the collection, processing and use of your personal data.
Your personal data will only be stored as long as knowledge of the data is necessary for the above-mentioned purposes or as long as legal or contractual retention regulations exist. Application documents are usually deleted 6 months after the application process is completed.
It is possible to store your data for a longer period if you give us your consent. During this extended period, a+f Großserien GmbH may contact you about new job offers.
This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content such as orders or inquiries that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line. If the SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.
As a responsible company, we avoid automatic decision making or profiling.
This data protection declaration has the current status of June 2021 and is subject to constant updating and adaptation to new legal requirements and technical developments.