Data protection information for B2B customers and suppliers
according to Art. 12 ff. GDPR
This data protection information informs you about the processing of your customer or supplier data at PAUL M. MUELLER GMBH. Which data is processed in detail and how it is used depends largely on the scope of services within the scope of the contractual relationship or within the framework of contractual relationships similar to contractual obligations.
Which data is processed
During the contractual relationship or within the framework of contractual relationships similar to contractual obligations, PAUL M. MUELLER GMBH collects and processes information (both in paper format and in digital form).
This data primarily includes:
- Company master data:
E.g. company name and address, commercial register data, industry, legal form, tax number, VAT ID, company size, year of founding, email, telephone number, bank details, sales and creditworthiness data, URL and, if applicable, other technical company specifications.
- Data about contact persons:
E.g. last name, first name, year of birth, academic degree, function and position (e.g. authorized representative, owner, department head), telephone numbers, email address).
- Offer or order data
E.g. products, quantity, prices, order value, delivery address,
The majority of your customer data or supplier data that we process is not personal data. Under no circumstances do we collect or process sensitive personal data (e.g. data revealing ethnic origin, political opinions, etc.). In general, PAUL M. MUELLER GMBH company protects all data, whether with or without personal reference, with appropriate care.
Why and on what legal basis is your data processed
We always process personal data in accordance with the provisions of the GDPR and the German Federal Data Protection Act latest version.
If personal data (Art. 4 No. 2 GDPR) is collected as part of the offer or order processing, this is done in order to execute our contracts or pre-contractual measures (Art. 6 Para. 1, lit. b GDPR) with you and the execution of your or . our orders from all persons entrusted with the operation and administration to carry out the contractual service.
Further details on the purpose of data processing can be found in the respective contract documents.
To the extent necessary, we also process your data to protect our legitimate interests or to protect the legitimate interests of third parties (Art. 6 Para. 1, lit. f GDPR), including for internal communication purposes and for administrative purposes, to ensure the IT security, building and system security (e.g. video surveillance, access controls).
If you have given us your consent to process personal data for specific purposes, the processing will be carried out on the basis of Art. 6 Para. 1, lit. a GDPR. Consent can be revoked at any time. Please note that the revocation will only take effect in the future.
Within the company, data processing is carried out on a functional basis to fulfil our contractual and legal obligations.
Our processors may also receive data for these purposes.
Proper handling also includes, among other things, the transfer of data to authorities or other third parties if there is a legitimate interest (Art. 6 Para. 1, lit. c GDPR), provided that the legal requirements are met (e.g. tax code, tax laws, lawyer, court).
As a rule, data is not transferred to third countries or other international organizations.
Duration of storage
If necessary, we process various of your personal data for the duration of our business relationship, for example: B. also includes the initiation and processing of an order.
In addition, we are subject to various retention and documentation obligations, e.g. B. from the Commercial Code and the Tax Code. The storage period can also result from the statutory limitation periods, which according to § 195 ff. BGB (German Civil Code) usually lasts 3 years.
Responsible body for the processing of your personal data
Unless otherwise contractually agreed, the competent and responsible body for the collection, processing and use of your personal data is PAUL M. MUELLER GMBH in the Federal Republic of Germany.
Our contact details are:
Company: PAUL M. MÜLLER GMBH
Name: Thomas Schneidawind, Helmut Fabian Kretschmer
Address: Raiffeisenallee 5 82041 Oberhaching
The customer data is stored and processed in our order processing system. The technical installation is designed in such a way that only a narrow circle of specially authorized persons has access and any other access or knowledge of the data is excluded according to the state of the art.
Your data protection rights
Your data protection rights are regulated in Chapter III (Art. 12 ff.) of the European General Data Protection Regulation (GDPR). According to these regulations, all natural persons have the right to information about the personal data stored about them, about the purposes of processing, about possible transfers to other bodies and about the duration of storage.
To exercise your right to information, you can also receive extracts or copies. If data is incorrect or is no longer necessary for the purposes for which it was collected, you can request correction, deletion or restriction of processing. If provided for in the processing procedures, you can also view your data yourself and correct it if necessary.
If your particular personal situation gives rise to reasons against the processing of your personal data, you can object to the processing to the extent that the processing is based on a legitimate interest. In such a case, we will only process your data if there are special compelling interests for doing so.
If you have any questions about your rights and how to exercise your rights, please contact us or our data protection officer:
DATA PRO SECURITY @ Maass Consulting GmbH
82343 Pöcking / Starnberg
+49 8151 4468967
Complaints about the processing of your personal data
If you have any concerns or questions about the processing of your personal data and information, you can contact your human resources department. You can also contact the external data protection officer (see above) using the contact details below or complain to the data protection supervisory authority.
Your right to object
You have the right, for reasons arising from your particular situation, to object at any time to the processing of personal data concerning you based on Article 6 Paragraph 1, Letter e of the GDPR (data processing in the public interest) and Article 6 Paragraph 1, Letter e . f GDPR (data processing based on a balance of interests) to lodge an objection;
If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
The objection can be made informally.