Home
Legal notes

Legal notes

Data protection

The contents of the website are made available by thyssenkrupp Infrastructure GmbH, so that website visitors can read information about the product range of thyssenkrupp Infrastructure GmbH and our company. The handling of personal data of the site visitors follows the strict requirements of the GDPR.

We take the protection of your privacy when using our website very seriously as this is important to us. In the following we are pleased to inform you about the collection of personal data.

Collection and processing of personal data

In general, you can visit the website of thyssenkrupp Infrastructure GmbH on an anonymous basis, i.e. without informing us of who you are. When you visit our website, our web servers in Germany save as standard the IP address of your internet service provider via which you access our website, the site from which you access our website and the files you access from us, as well as the date of your visit and general information about your browser. These data are processed to ensure the security of the web server and to adapt the output of the information retrieved to your output medium (e.g. your phone. laptop or other device). These data are only analyzed in anonymized form for statistical purposes.

Personal data is stored and processed only if you provide us with this information, e.g. when completing a contact form or registering for personalized services. On the respective website you will be informed about the intended use and, if necessary, your consent to the storage and processing requested. Disclosure will only take place at thyssenkrupp companies and service providers affiliated with us, for example to send you the requested written information. Of course, all service providers are committed to data secrecy and confidentiality. A transfer to other third parties does not take place. Your data is always encrypted before transmission and processing to protect this data against unauthorized access.

Cookies

Cookies are text files that are stored on your computer or other end device. The use of cookies helps us to analyze your website usage, to improve services and products offered, to improve security and to prevent fraud. We differentiate between various cookies:

Session cookies are temporary cookie files that are automatically deleted when you close your browser.
Persistent cookies are cookie files that are stored until they are actively deleted or automatically removed after a certain amount of time
First-party cookies are cookies that are set directly by us.
Third party cookies are cookies set by a third party
Functional cookies are used to provide you with standard services on our pages. Without the use of cookies, our website may work only very limited and possibly incorrect.
Optimization cookies enable us to analyze the use of our website. If you have not consented to the use of your personal data for this purpose, this will be anonymous. The analysis helps us to improve our services and offered products and services.
Personalization cookies allow us to determine your personal preferences, such as your preferred language. We use these cookies to improve usability and offer you a customized experience.
Security-relevant cookies are cookies that are necessary to protect the website against attacks and to prevent fraud

On individual pages, personal data may be stored in cookies if you have previously expressly consented to such, e.g. to not have to re-enter access data. In principle, you can also access all information on our website if you have deactivated cookies in your Internet browser. If you do not accept cookies, this may result in functional limitations of our offers.

Google Analytics

thyssenkrupp Infrastructure GmbH uses Google Analytics, a Web analysis service provided by Google Inc. (‘Google’). The operator of Google Analytics is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA. This service enables the user-friendly design and continuous optimization of our website.

Personal data is processed on the basis of Art. 6 (1) (f) GDPR. The optimization of our services constitutes our legitimate interest.

You may object to the use of your personal data for this purpose at any time.

Google Analytics uses so-called ‘cookies,’ which are text files placed on your computer, to help us analyze how you use our website. The cookies collect the following information about your use of the website:

Name: _ga
Purpose: Registers a unique ID that is used to generate statistical data on how the visitor uses the website
Provider: thyssenkrupp-infrastructure.com
Expiry: 1 year
Type: HTTP Cookie

Name: _gid
Purpose: Registers a unique ID that is used to generate statistical data on how the visitor uses the website.
Provider: thyssenkrupp-infrastructure.com
Expiry: Session
Type: HTTP Cookie

Name: cb_enabled
Purpose: This cookie is associated with a free script which shows a cookie alert notice on a website. It is used to record when the user has dismissed the notice to prevent it re-appearing on return visits.
Provider: thyssenkrupp-infrastructure.com
Expiry: 1 year
Type: HTTP Cookie

Name: _dc_gtm_UA-54741984-1
Purpose: Used to throttle request rate.
Provider: thyssenkrupp-infrastructure.com
Expiry: 1 minute
Type: HTTP Cookie

Name: _dc_gtm_UA-56072910-1

Purpose: Used to throttle request rate.

Provider: thyssenkrupp-infrastructure.com

Expiry: 1 minute

Type: HTTP Cookie

This information is transferred to and stored on a server. This information is used to evaluate your use of the website and to compile reports on website activities.

We use the ‘_gat._anonymizeIp’ feature to carry out Web analytics using Google Analytics. Google uses this feature to truncate the IP address of your Internet connection and anonymize it when you access our website from a member state of the European Union or another Contracting Party to the European Economic Area Agreement.

You can prevent cookies from being installed on your computer by adjusting your browser settings accordingly. However, please note that if you do this, you may not be able to use all the features of this website to the fullest extent.

The provision of your personal data is neither contractually nor legally prescribed, nor required for the conclusion of a contract. This service is only available to persons over the age of 18.

The user can object to the creation of user profiles at any time. To do this, you need to download the browser add-on at https://tools.google.com/dlpage/gaoptout?hl=de and install it. This browser add-on informs Google Analytics through JavaScript that any data and information about the visits of Internet pages may not be transmitted to Google Analytics. The installation of the browser add-on is considered an objection by Google. If the data subject’s information technology system is subsequently erased, formatted, or reinstalled, then the data subject must reinstall the browser add-on to disable Google Analytics. If the browser add-on is uninstalled or disabled by you or any other person under your sphere of control, it is possible to reinstall or reactivate the browser add-on.

Further information and the data privacy provisions of Google are available at https://www.google.de/intl/de/policies/privacy/ andhttp://www.google.com/analytics/terms/de.html. Google Analytics is explained in further detail here:https://www.google.com/intl/de_de/analytics/.

Google Tag Manager

thyssenkrupp Infrastructure GmbH uses Google Tag Manager, which does not collect any personal information. This tool causes other tags to be created, which in turn collect data under certain circumstances. Google Tag Manager does not access this data. If deactivation was carried out on the domain or cookie level, it remains in place for all tracking tags which were implemented with Google Tag Manager. You can find Google’s Privacy Notice regarding Google Tag Manager here: https://www.google.de/tagmanager/use-policy.html

Google reCAPTCHA

thyssenkrupp Infrastructure GmbH uses Google reCAPTCHA. This service is provided by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Google reCAPTCHA allows us to verify that any input made on our website (for example, using a contact form) is made by a human, rather than by an automated computer program.

To this end, reCAPTCHA analyzes the behavior of website visitors based on various factors. This analysis starts automatically as soon as the website visitor accesses the website. To carry out the analysis, reCAPTCHA evaluates various data (for example, IP address, how long the visitor has been on the website, or mouse movements made by the user). The reCAPTCHA analyses run completely in the background. The legal basis for this is Art. 6 (1) (f) GDPR. We have a legitimate interest in detecting whether our website features (such as the use of a contact form) are being used by a human or machine and in protecting our site from misuse, automated reconnaissance, and spam.

The data collected during the analysis will be forwarded to Google (legal basis: EU-U.S. Privacy Shield).

For further information about Google reCAPTCHA and Google’s Privacy Policy, please refer to the following links:

https://www.google.com/intl/de/policies/privacy/

https://www.google.com/recaptcha/intro/android.html .

Contact Form

To respond to your request thyssenkrupp Infrastructure GmbH will process the following personal data if provided in the contact form: form of address, first name, last name, email, street, zip code, town/city, telephone number and content of your request. We will forward your personal data to recipients where this is necessary to meet your request. The legal basis for processing your personal data depends on your request and may take the form of a contract with you (Art.6 (1) (b) GDPR), your consent (Art. 6 (1) (a) GDPR) or our legitimate interests in providing you with a good service based on a balance of interests (Art. 6 (1) (f) GDPR). We are supported in the operation of our contact form by our IT service providers as order processors. We will process your data – where processing is based on your consent – until your consent is withdrawn or – where processing is based on a balance of interests – until you object to this or your request has been completed. Unless you provide the data required to contact you and to understand and process your request, we will not be able to process your request. All other information is optional. This service is only for persons over the age of 18.

If we process your personal data on the basis of your consent (Art. 6 (1) (a) GDPR), you can withdraw this consent at any time for the future. If we process your personal data on the basis of a balance of interests (Art. 6 (1) (f) GDPR), you can object to this at any time for the future.

In addition we process the referrer information in connection with use of the contact form (Art. 6 (1) (b) GDPR), which is erased after 4 weeks at the latest. It is technically not possible to use the contact form without collecting this information.

Your data protection rights

You have the right to information about the personal data in question and the right to rectification, erasure, restriction of processing and data portability, and in the case of processing in accordance with Art.6 (1) (e) and (f) GDPR the right to object to processing. Insofar as you have provided us with your consent to process your personal data in accordance with Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR, you can withdraw this consent at any time without affecting the lawfulness of processing based on your consent prior to its withdrawal. You have the right to complain to the supervisory authority.

Responsible and data protection officer

Responsible for the collection and processing of personal data is:

thyssenkrupp Infrastructure GmbH
Hollestraße 7a
45127 Essen, Germany
Phone: +49 201 844-562313
E-Mail: info.tkinfrastructure@thyssenkrupp.com

You can reach our data protection officer at:

thyssenkrupp Infrastructure GmbH
Hollestraße 7a
45127 Essen, Germany
email: gdpr.tkinfrastructure@thyssenkrupp.com

Scope and amendments to this privacy statement

This privacy statement applies exclusively to the use of our website. It does not apply to the websites of other service providers to which we provide a link. We accept no responsibility or liability for third-party statements and guidelines with no connection to our website.

We reserve the right to amend these data privacy rules from time to time in accordance with future changes relating to the collection and processing of personal data.

Information for Business Partners

Information about the processing of personal data in the context of business relationships with customers, suppliers and other business contacts

1. What information does this document contain for you?

The thyssenkrupp Infrastructure GmbH ("We") is in a business relationship with you or your employer/client, e.g. the initiation or execution of a contractual relationship as part of our business activities.

We make sure that we comply with the requirements of the applicable Data Protection Acts. Below is a detailed overview of how we handle your data and your rights.

2. Who is responsible for the data processing and who is the data protection officer (DPO)?

The controller for the data processing is

thyssenkrupp Infrastructure GmbH
Hollestr. 7A, 45127 Essen
Telephone: +49 201844563861
Fax: +49 201844563974
Email: info.tkinfrastructure@thyssenkrupp.com

Our data protection officer can be reached at

thyssenkrupp Infrastructure GmbH
Data protection officer
Hollestr. 7A, 45127 Essen
Email: gdpr.tkinfrastructure@thyssenkrupp.com

3. Which data categories do we process and where do they come from?

We process personal data that you provide to us as part of the business relationship. If our business relationship is with your employer or client, we also collect the personal data from you or your employer or client. This includes the following data or categories of data:

Master data (e.g. name and salutation, title, job title/description)
Contact details (e.g. telephone number, fax number, email address, address)
Communication data (e.g. content of personal, telephone or written communication)
Payment data (e.g. payment history, information on payment history, creditworthiness)

Moreover, we process the following categories of personal data that we generate inde-pendently:

Master data (e.g. customer number)
Contract data (e.g. contract ID, contract history)
Communication data (e.g. consulting protocols)

4. For what purposes and on what legal basis is data processed?

We process your data in compliance with the provisions of the EU General Data Protection Regulation (GDPR) and all other applicable laws.

We primarily process personal data for the fulfillment of contractual obligations (Article 6 paragraph 1 lit. b GDPR), more precisely for the purpose of initiating, executing or fulfilling a contract. This includes, for example, placing orders, internal sales, shipping and payment of merchandise or contract negotiations.

Unless you are not yourself a contracting party (for example, you are an employee of a business partner), processing for the same purposes takes place as a legitimate interest in accordance with Article 6 paragraph 1 lit. f GDPR. With your employer/client, we are in the initiation or execution phase of a contractual relationship as part of our business activities. We are processing your personal data due to your activity for your employer/client.

If necessary, we also process personal data to fulfill statutory requirements (Article 6 para-graph 1 lit. c GDPR) for the following purposes:

Preservation of statutory storage requirements
Preservation of legal reporting obligations

Furthermore, we process personal data in order to safeguard the following legitimate inter-ests (Article 6 paragraph 1 lit. f GDPR):

Maintenance of the business relationship with existing customers
Organization of events (for example, admission control)
Asserting legal claims and defense in legal disputes
Inclusion in our contact database, human relations after business contact (e.g. after leaving your business card)
Direct marketing to customers or employees of customers (e.g. information about prod-ucts and events, newsletters)

In addition, we potentially process personal data for which we received consent (Article 6 paragraph 1 lit. a GDPR). We will collect them separately and in the following cases:

Direct marketing to interested parties/other business contacts (e.g. information about products and events, newsletters)

5. Who receives your data?

Your data will be processed within the thyssenkrupp Materials Services GmbH by the employees involved in the initiation/implementation of the business relationship and the execution of the respective business processes.

Within our group of companies your data will be transmitted to certain companies when they perform centralized data processing tasks for the group's affiliated companies (e.g. centralized contact data management, centralized contract management, file disposal).

In addition, to fulfill our contractual and legal obligations, we sometimes use different exter-nal service providers who are required by data processing agreements to observe data protection laws, Article 4 No. 8 GDPR. These are service providers in the following areas

IT services
Logistics
Marketing
Legal advice

In addition, we transmit your data to other recipients outside the company who process your data at their own responsibility, Article 4 No. 7 GDPR. For example, this may include the following categories of responsible persons:

Public institutions due to statutory provisions (e.g. tax authorities)
Third parties such as credit institutions, credit bureaus - if a transfer of legitimate inter-est is permissible

6. How long will your data be stored?

We process your personal data as long as it is necessary for the above referenced purposes. After completion of the business relationship your data will be stored as long as we are legally obligated to do so. This is regularly the result of legal proof and retention obligations, which are regulated in the Commercial Code and the Tax Code. According to these codes, the storage periods are up to ten years. In addition, it may be necessary to retain personal data for the time during which claims can be asserted against us (statutory limitation period of up to thirty years)

7. Are you required to provide your data?

There is no contractual or legal obligation to provide personal data. However, without processing your personal data, we are not in a position to carry out the necessary pre-con-tractual measures or execute the contractual relationship with you or your employer/client.

8. Which data protection rights can you claim as the person affected?

You have the right to request information about the data stored about you, Art. 15 GDPR. In addition, you may request the rectification or erasure of your data, Art. 16, 17 GDPR. You may also be entitled to restrict the processing of your data and a right to release the data you provided in a structured, common, machine-readable format, provided this does not affect the rights and freedoms of others, Art. 18, 20 GDPR.

If you have given us consent to the processing of your personal data, you can revoke this consent at any time. The legality of the processing carried out based on the consent until the revocation remains unaffected.

To exercise your rights, please contact the responsible body or data protection officer listed under section 2.

In addition, you have a right of objection, which is explained in more detail at the end of this privacy policy.

You also have the option to file a complaint with a data protection authority, Art. 77 GDPR. The right of appeal is without prejudice to any other administrative or judicial remedy. The data protection authority responsible for us is:

Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen
Postfach 20 04 44
40102 Düsseldorf
Deutschland

30. August 2018

Information about your right of objection according to Art. 21 of the General Data Protection Regulation (GDPR)

"For reasons that arise from your particular situation, you have the right to object to the processing of your personal data at any time pursuant to Article 6 para. 1 f of the GDPR (data processing on the basis of a balance of interests); this also applies to any profiling based on this provision as defined in Article 4 No. 4 GDPR.

If you file your objection, we will no longer process your personal data unless we can establish compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is for the purposes of asserting, exercising or defending legal claims.

In individual cases, we may also process your personal data in order to generate direct mail. You have the right to object to the processing of your personal data used for such advertising at any time; this also applies to profiling insofar as it is associated with such direct mail advertising.

If you object to the processing for direct marketing, we will no longer process your personal data for these purposes.

The objection can be informal and should ideally be addressed with the responsible body or data protection officer listed in the privacy statement under section 2."

Intellectual property and rights of use

The content including pictures and the design of the thyssenkrupp Infrastructure GmbH website are subject to copyright protection and other laws for the protection of intellectual property. This website does not grant any license to use the intellectual property owned by companies of the thyssenkrupp Infrastructure GmbH. In particular, duplication, distribution, reproduction, transmission, processing, modification, or any other use of the content on this website for commercial purposes without written permission from thyssenkrupp Infrastructure GmbH is not permitted.

Liability

The information that thyssenkrupp Infrastructure GmbH presents to you on this website is compiled and updated periodically. Despite the utmost care, we cannot guarantee the content of this website to be free of errors. There is no warranty of merchantability, no warranty of fitness for a particular use, and no other warranty of any kind, express or implied, regarding the information or any aspect of this website. The content does not constitute a pledge or guarantee with regard to our products, especially concerning their marketability or their contractual suitability for a specific purpose. Any forward-looking statements on our website are based solely on opinions, (preliminary) estimates, or assumptions on the part of management at thyssenkrupp Infrastructure GmbH. As such, they are subject to risks and uncertainties. thyssenkrupp Infrastructure GmbH is not obliged to update such forward-looking statements. thyssenkrupp Infrastructure GmbH reserves the right to undertake alterations or additions to the information or data provided at all times without further notice.

This website references third-party providers, in some cases by means of hyperlinks. thyssenkrupp Infrastructure GmbH has no influence over the content of third-party websites. For this reason, thyssenkrupp Infrastructure GmbH disclaims all liability regarding the content and data protection practices of the third-party websites to which it links. Before you use third-party websites, we recommend that you review the relevant terms and conditions and data protection provisions of said providers.

Trademarks

Unless otherwise indicated, all of the trademarks used on the thyssenkrupp Infrastructure GmbH websites are protected by trademark law and may not be used without written permission from thyssenkrupp Infrastructure GmbH. The same applies to company logos and signs.