Privacy policy

Protecting your personal data during the processing of personal data when you visit our website is important to us. Your data is protected in accordance with statutory provisions. In the following, we would like to inform you about the nature and scope of the processing of personal data through this website in accordance with Article 13 of the General Data Protection Regulation (GDPR).

I. Information on the responsible controller

REDPATH DEILMANN GmbH
Haustenbecke 1
44319 Dortmund
Tel.: +49 231 2891 396
Fax: +49 231 2891 493
Email: infogermany(at)redpathmining.com

II. Information on the data protection officer

Our external data protection officer is happy to answer any questions about data protection:
GINDAT GmbH
Mr Arndt Halbach
Wetterauer Str. 6
42897 Remscheid
Germany
Tel.: +49-2191 / 909 430
Email: redpath-deilmann-datenschutz@gindat.de

III. Data processing through the website

Your visit to our website is recorded. We generally collect the following data that your browser sends to us:

• IP address currently used by your computer or your router
• Date and time
• Browser type and version
• Operating system of your computer
• Webpages you visit
• Name and size of requested file(s)
• URL of referral website, if applicable

This data is only collected for the purposes of data security, improving our website offer and analysing errors based on Art. 6 (1) f) GDPR. The IP address of your PC is only analysed in anonymised form (shortened by the last three digits). In all other respects, you are able to visit our website without providing information on your identity. We would like to point out that data transmission on the Internet (such as email communication) is subject to security vulnerabilities. It is not possible to completely protect data from access by third parties. Confidential data should therefore be sent to us by other means, such as by post.

Applications

The data processor processes the personal data of applicants for the purpose of conducting the application process. Legal basis is § 26 Abs. 1 S. 1 BDSG. Processing may also take place electronically. This is particularly the case if an applicant transmits to the data processor corresponding application documents electronically, such as by email or using an online form on the website. Should the data processor conclude an employment contract with an applicant, the transmitted data shall be stored for the purpose of executing the employment relationship in accordance with statutory provisions. If the data processor does not conclude an employment contract with the applicant, the application documents shall be deleted following the staffing of the vacancy in accordance with statutory provisions provided such deletion is not opposed by any other legitimate interests of the data processor. Other legitimate interests in this sense includes, for example, evidence in a proceeding according to the General Equal Treatment Act (AGG). Therefor the personal data will be stored during a period of 6 month after finishing the application process.

We can only process applications if they are sent to the email address: bewerbung(at)REDPATH DEILMANN.com. Should you use a different email address belonging to our company, your application will unfortunately not be recognised by our systems and will not therefore be taken into consideration. Please consider that email is not a secure means of communication. Should your application reach our server via the above-mentioned methods, we will protect your application with suitable technical and organisational measures. We have no influence on data protection while your application is transmitted to our company via the public Internet and we are not therefore able to guarantee the level of protection for your application. Should your dispatching email server support STARTTLS, our email server will also support STARTTLS and thus offer transport encryption.

Contact form

Personal data (such as your name, address data or contact details) which you voluntarily disclose to us, for example in connection with a request or otherwise, will be stored by us and only processed for correspondence with you and only for the purpose for which you have provided us with this data. This data is processed on the basis of Art. 6 (1) a) and Art. 6 (1) f) GDPR.

Secure data transmission

In order to protect the security of your data during transmission, we use encryption techniques (SSL) via HTTPS, which accord with state-of-the-art technology.

IV. Recipients of personal data

We may utilise service providers in connection with data processing in order to perform and execute processes.

Specifically, we have involved service providers for the purposes of hosting our website.

Contractual relationships are established with our service providers, which meet the requirements of Art. 28 GDPR; the contractual provisions contain the statutorily required points on data protection and data security.

V. Google Maps

This website uses the map service Google Maps via an API. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

In order to use the functions of Google Maps, it is necessary to store your IP address. This information is generally transmitted to a Google server in the USA, where it is then stored. The provider of this website has no influence on this data transmission.

The use of Google Maps occurs in the interest of providing an attractive presentation of our website offers and allowing the user to find the locations indicated on our website more easily. This constitutes a legitimate interest in the meaning of Art. 6 (1) f) GDPR.

If you do not agree to this processing of your data, you have the option to deactivate the service of ‘Google Maps’ and to thereby prevent the transmission of data to Google. To this end, the JavaScript function in your browser must be deactivated. However, we would like to point out that, in this case, you will only be able to use ‘Google Maps’ to a limited extent if at all. More information on the handling of user data can be found in the Google privacy policy:

Google Privacy

VI. Use of cookies

Cookies are used in our website offer. Cookies are small text files that are saved by your browser and stored on your computer. The use of cookies allows the website offer to be designed in a more user-friendly manner. For instance, it is possible to recognise the user for the duration of the session, without the user being required to constantly re-enter their user name and password. Cookies do not cause any damage to your computer and are deleted after your session is ended. The basis for data processing is Art. 6 (1) f) GDPR.

Some of the cookies we use are deleted directly after you close your browser (‘session cookies’).

Other cookies remain on your terminal device and enable your browser to be recognised when you next visit the website (‘persistent cookies’).

Data processing in connection with cookies, which only serve to facilitate the functionality of our website offer, occurs on the basis of our legitimate interest pursuant to Art. 6 (1) f) GDPR.

If you do not wish to use cookies, you can configure your browser to prevent the storage of cookies. However, please note that, in this case, you may not be able to use the full functionality of our websites.

VII. Your rights

According to Articles 15–21 GDPR, you may exercise the following rights with respect to personal data we store provided the relevant requirements of the GDPR are met.

Right of access

You have the right to access information about your personal data that we process.

Right to rectification

You are able to request the correction of incomplete or incorrectly processed personal data.

Right to erasure

You have the right to the deletion of your personal data, in particular on the basis of one of the following reasons:

• Your personal data is no longer required for the purposes for which it was collected or processed.
• You withdraw your consent on which the processing of your data was based.
• You have asserted a right of objection to processing.
• Your data was unlawfully processed.

The right of erasure does not apply, however, if such deletion is opposed by the legitimate interest of the controller. For instance, this may include:

• Personal data that is required for the assertion, exercising or defence of legal claims.
• Deletion is not possible due to retention obligations.

Insofar as data cannot be deleted, you may exercise a right to the restriction of processing (as follows).

Right to the restriction of processing

You have the right to request us to restrict the processing of your personal data, if:

• You dispute the correctness of the data and we must therefore review the correctness.
• The processing is unlawful and you decline data erasure and instead request restriction of use.
• We no longer require the data, but you still need the data in order to assert, exercise or defend legal claims
• You have submitted an objection to the processing of your data and it has not yet been determined whether our legitimate interests prevail over your interests.

Right to data portability

You have the right to receive your personal data, which you have provided to us, in a structured, commonly available and machine-readable format. Moreover, you have the right to have us transmit this data to another controller without hindrance by us, provided that the processing is based on a contract or consent, and our processing takes place with the aid of automated processes.

Right to object

You have the right at any time to submit an objection to the processing of your personal data, which takes place based on Art. 6 1) e) or f), for reasons arising from your particular situation; this also applies to profiling based on one of these conditions. Insofar as the processing of your personal data is based on a consent, you have the right to withdraw this consent at any time.

Right to withdraw

If the processing of your personal data is based on a consent, you have the right to withdraw this consent at any time.

VIII. Statutory deadlines for the erasure of data

Insofar as no statutory retention obligation applies, the data shall be deleted or destroyed once it is no longer required for fulfilling the purpose of data processing. Various deadlines apply to the retention of personal data. For instance, data of tax relevance is generally stored for ten years, while other data is typically retained for six years in accordance with provisions under the Commercial Code. Furthermore, the storage period may also be determined by statutory limitation periods, which may generally amount to three years in the case of Articles 195 et seqq. of the Civil Code, for example, or in certain cases up to even thirty years.

IX. Right to lodge a complaint with a supervisory authority

In accordance with Art. 77 GDPR, each data subject has the right to lodge a complaint with a supervisory authority, if they believe that the processing of their personal data is in violation of the GDPR. The competent supervisory authority in data protection matters is the state data protection officer of the federal state in which our company has its registered office.

Die Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen

Helga Block
Kavalleriestraße 2-4
40213 Düsseldorf
Germany
Tel.: +49 211 38424 - 0
Fax: +49 211 38424 - 10
E-Mail: poststelle@ldi.nrw.de

X. Disclaimer

Liability for content

As service provider, we are responsible for our own content on these webpages in accordance with general laws (pursuant to Art. 7 (1) Telemedia Act, ‘TMG’). However, as service provider, we are not obliged to monitor transmitted or stored external information or to investigate circumstances that indicate unlawful activity (Articles 8–10 TMG). This shall be without prejudice to obligations to remove or block the use of information according to general laws. Liability in this connection is only possible from the time we receive knowledge of an actual violation of the law. We will immediately remove the relevant content as soon as we become aware of corresponding violations of the law.

Liability for links

Our offer contains links to the external websites of third parties, over whose content we have no influence. For this reason, we are unable to accept any liability for this external content. The respective provider or operator of the website is always responsible for the content of the linked webpages. The linked webpages will be reviewed for possible violations of the law at the time of linking. Unlawful content could not be found at the time of linking. However, it is not feasible to review the content of the linked webpages on an ongoing basis, without specific indications of a violation of the law. We will immediately remove corresponding links as soon as we become aware of violations of the law.

XI. Consent with Usercentrics

This website uses the consent technology of Usercentrics to obtain your consent to the storage of certain cookies on your device or for the use of specific technologies, and to document the former in a data protection compliant manner. The party offering this technology is Usercentrics GmbH, Sendlinger Straße 7, 80331 München, Germany, website: https://usercentrics.com/ (hereinafter referred to as “Usercentrics”).

Whenever you visit our website, the following personal data will be transferred to Usercentrics:

• Your declaration(s) of consent or your revocation of your declaration(s) of consent
• Your IP address
• Information about your browser
• Information about your device
• The date and time you visited our website
• Geolocation

Moreover, Usercentrics shall store a cookie in your browser to be able to allocate your declaration(s) of consent or any revocations of the former. The data that are recorded in this manner shall be stored until you ask us to eradicate them, delete the Usercentrics cookie or until the purpose for archiving the data no longer exists. This shall be without prejudice to any mandatory legal retention periods.

The Usercentrics banner on this website has been configured with the assistance of eRecht24. This can be identified by the eRecht24 logo. To display the eRecht24 logo in the banner, a connection to the image server of eRecht24 will be established. In conjunction with this, the IP address is also transferred; however, is only stored in anonymized form in the server logs. The image server of eRecht24 is located in Germany with a German provider. The banner as such is provided exclusively by Usercentrics.

Usercentrics uses cookies to obtain the declarations of consent mandated by law. The legal basis for the use of specific technologies is Art. 6(1)(c) GDPR.

Data processing

We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This is a contract mandated by data privacy laws that guarantees that they process personal data of our website visitors only based on our instructions and in compliance with the GDPR.

XII. Analysis tools and advertising

Google Tag Manager

We use the Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland

The Google Tag Manager is a tool that allows us to integrate tracking or statistical tools and other technologies on our website. The Google Tag Manager itself does not create any user profiles, does not store cookies, and does not carry out any independent analyses. It only manages and runs the tools integrated via it. However, the Google Tag Manager does collect your IP address, which may also be transferred to Google’s parent company in the United States.

The Google Tag Manager is used on the basis of Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the quick and uncomplicated integration and administration of various tools on his website. If appropriate consent has been obtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TTDSG, insofar the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) within the meaning of the TTDSG. This consent can be revoked at any time.

The company is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the US, which is intended to ensure compliance with European data protection standards for data processing in the US. Every company certified under the DPF is obliged to comply with these data protection standards. For more information, please contact the provider under the following link: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt000000001L5AAI&status=Active

Google Analytics

This website uses functions of the web analysis service Google Analytics. The provider of this service is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics enables the website operator to analyze the behavior patterns of website visitors. To that end, the website operator receives a variety of user data, such as pages accessed, time spent on the page, the utilized operating system and the user’s origin. This data is summarized in a user-ID and assigned to the respective end device of the website visitor.

Furthermore, Google Analytics allows us to record your mouse and scroll movements and clicks, among other things. Google Analytics uses various modeling approaches to augment the collected data sets and uses machine learning technologies in data analysis.

Google Analytics uses technologies that make the recognition of the user for the purpose of analyzing the user behavior patterns (e.g., cookies or device fingerprinting). The website use information recorded by Google is, as a rule transferred to a Google server in the United States, where it is stored.

The use of these services occurs on the basis of your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TTDSG. You may revoke your consent at any time.

Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://privacy.google.com/businesses/controllerterms/mccs/.

The company is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the US, which is intended to ensure compliance with European data protection standards for data processing in the US. Every company certified under the DPF is obliged to comply with these data protection standards. For more information, please contact the provider under the following link: https://www.dataprivacyframework.gov/s/participant-search/participant-detail?contact=true&id=a2zt000000001L5AAI&status=Active

IP anonymization

Google Analytics IP anonymization is active. As a result, your IP address will be abbreviated by Google within the member states of the European Union or in other states that have ratified the Convention on the European Economic Area prior to its transmission to the United States. The full IP address will be transmitted to one of Google’s servers in the United States and abbreviated there only in exceptional cases. On behalf of the operator of this website, Google shall use this information to analyze your use of this website to generate reports on website activities and to render other services to the operator of this website that are related to the use of the website and the Internet. The IP address transmitted in conjunction with Google Analytics from your browser shall not be merged with other data in Google’s possession.

Browser plug-in

You can prevent the recording and processing of your data by Google by downloading and installing the browser plugin available under the following link: https://tools.google.com/dlpage/gaoptout?hl=en.

For more information about the handling of user data by Google Analytics, please consult Google’s Data Privacy Declaration at: https://support.google.com/analytics/answer/6004245?hl=en.