This data protection declaration applies to the operator of this website, the Heinze Gruppe GmbH, and the other companies of the Heinze Gruppe GmbH additionally listed in the imprint.
Data privacy protection
We, the Heinze Gruppe GmbH, are happy to welcome you to our website www.heinze-gruppe.de and are pleased that you have expressed an interest in our group of undertakings. We take the protection and security of your personal data entrusted to us very seriously and would therefore like you to feel safe and comfortable when visiting our website and using our services.
It is particularly important to us that you know which personal data is collected when our offers and services are used and how we use this data afterwards.
Purpose of data processing
The Heinze Group is an association of leading enterprises from the fields of plastics technology, surface finishing, electroplating, plant construction, tool and fixture construction and engineering. At our locations in Germany, the Czech Republic and Kosovo we can offer you services with a range of production that is unique in Europe. Benefit from the interdisciplinary cooperation of a dynamic group that repeatedly sets standards with innovative solutions in the automotive, telecommunications, construction, sanitary technology, consumer goods, plant construction and engineering sectors. Insofar as Heinze Gruppe GmbH and its subsidiaries process personal data, this is done for the purposes stated in this data protection declaration.
Lawfulness of processing
Accessing our website
The IP address assigned to your computer is recorded and stored by us in order to transmit the website content you have accessed to your computer (e.g. texts, images and files made available for download, etc.) (cf. Art. 6 (1) lit. b General Data Protection Regulation (GDPR)). We also process this data to identify and prosecute misuse. The legal basis for this is Art. 6 (1) lit. f GDPR. Our legitimate interest in data processing is to ensure the proper functioning of our website and the transactions carried out on it.
If you also disclose personal data to us of your own accord, it will also be processed by us. This may be the case, for example, when making an enquiry via our contact form (https://www.heinze-gruppe.de/en/contact/) or when registering for our newsletter (https://www.heinze-gruppe.de/en/unternehmen/newsletter/). The legal basis for this is Art. 6 (1) lit. b GDPR. The data processed by us include customer data, employee data and data of suppliers and interested parties insofar as these are required for the purposes specified in this data protection declaration.
If we process your data as described above for the purpose of receiving and processing your respective inquiry (or newsletter registration), you are contractually obliged to provide us with this data. We cannot process your request without this information.
If you have consented to the processing of personal data (cf. Art. 6 (1) lit. a GDPR), you can revoke your consent at any time without affecting the legality of the processing carried out on the basis of the consent until revocation.
If you send us enquiries via our contact form above, all your details from the enquiry form, including the contact data you provided there for processing enquiries and any queries that may arise, will be stored and processed by us. Your aforementioned data will only be processed for the specific purpose of answering and processing your inquiry. The data will be processed in accordance with Art. 6 (1) lit. a GDPR on the basis of your voluntary consent. You can object to this at any time (right of withdrawal).
If you subscribe to one of our newsletters, you must enter your email address, as well as your first and last name. Using the double opt-in procedure, we ensure that the subscription to the newsletter is actually requested for the e-mail address provided when registering. If you confirm your subscription to the newsletter, you will receive interesting information about this website, our products and services at irregular intervals to the e-mail address you have provided. You can unsubscribe from the newsletter at any time by clicking on the unsubscribe link in any newsletter e-mail and thus revoke your consent. We do not pass on your e-mail address, nor the other data received from you during registration, to third parties without your consent.
We use Newsletter2Go as our newsletter software. Your data will be transmitted to Newsletter2Go GmbH, based in Berlin, Germany. Newsletter2Go is prohibited from selling your data and using it for purposes other than sending newsletters. Newsletter2Go is a German, certified provider selected in accordance with the requirements of the General Data Protection Regulation and the Federal Data Protection Act.
If you send us your application documents via our online application portal or via e-mail, we collect and process all your personal data provided to us, hereinafter also referred to as application data. This includes the following data:
- Name, first name
- Date of birth
- Street address
- Telephone number
Application documents (letter of application, curriculum vitae, certificates, photographs, etc.)
Your personal application data will be collected and processed exclusively for the purpose of filling positions within our company. In principle, the data is only forwarded to the internal departments and specialist departments of the job posting companies responsible for the specific application procedure. Your personal application data will not be passed on to other companies of the Heinze Gruppe GmbH without your prior and express consent. Your application data will not be used or passed on to third parties beyond this.
The personal application data sent to us will generally be deleted three months after completion of the application procedure. Exceptionally, we may also process the application documents after the aforementioned point in time if legal provisions prevent deletion, if further storage is necessary for the purpose of providing evidence or if you have expressly consented to longer storage.
If we are unable to offer you a current vacancy but believe that your application may be of interest to us for future vacancies due to your application profile, we will store your personal application data for 12 months. However, this will only be done if you have expressly consented to such storage and use.
We protect the data that we have collected in the context of your application against manipulation and unauthorised access by using various technical and organisational measures. In particular, the transfer of your application documents and the personal data contained therein is encrypted in accordance with currently recognised state-of-the-art technology.
By submitting your application, you consent to be contacted and informed by post, email and/or telephone during the application process. Furthermore, by sending us your application, you confirm that you have read and expressly consented to the information in this data protection declaration on the processing and use of your personal data. Please note that your application data will not be stored anonymously, but will be made available to the management and the relevant offices in our company for the position to be filled, including your personal data.
If you are under the legal age of majority, by sending us your application you confirm that you have obtained the consent of a parent or guardian to apply at our company before using our online application portal or sending your application documents by email. You further guarantee that all your details are correct.
Forwarding to third parties
Your details will be forwarded to the relevant subsidiaries for processing. There, further processing takes place depending on the enquiry you have made.
Insofar as it is necessary for the purposes stated in this data protection declaration or if the other companies of the Heinze Gruppe GmbH should act as service providers/processor, your data may also be processed by the other companies of the Heinze Gruppe GmbH.
Furthermore, we use Newsletter2go, headquartered in Germany, Berlin, as a forwarding service provider / service provider for our newsletter system.
Our service providers are service providers/processor bound by instructions and are accordingly obliged to process your data exclusively in accordance with our instructions and the applicable data protection laws. In particular, they are obligated to treat your data strictly as confidential. Furthermore, they are also forbidden to process the data for purposes other than those consented to.
The forwarding of data to processor is carried out on the basis of Art. 28 (1) GDPR.
Your data will not be sold or otherwise marketed to third parties.
The disclosure of this data is based on our legitimate interest in combating abuse, prosecuting criminal offences and securing, asserting and enforcing claims, provided that your rights and interests in the protection of your personal data are not outweighed, Art. 6 (1) lit. f GDPR.
Planned data transfers to third countries
We do not currently transfer your data to third countries, nor are we planning to do so. If data is to be transferred to third countries at a later date, the necessary legal requirements will be created. In particular, you will be informed about any recipients or categories of recipients in accordance with legal requirements.
In order to protect the data provided to us from accidental or intentional manipulation, loss, destruction or access by unauthorised persons, we use technical and organisational security measures. These technical and organisational security measures and their effectiveness are regularly reviewed by us and continuously improved in line with technological developments. When personal data is entered, it is always transmitted in highly encrypted form.
For security reasons and to protect the transmission of confidential content that you send to us as a site operator, our website uses an SSL or TLS encryption. Thus, data that you transmit via this website, for others not readable. You will recognize an encrypted connection at the "https: //" address bar of your browser and at the lock icon in the browser bar.
We use the following types of cookies:
These cookies are of fundamental importance for the functioning of our website. This includes, for example, the assignment of anonymous session IDs for bundling several queries to a web server or the error-free function of logins and orders.
These cookies collect information about how you use our website (e.g. internet browser used, number of visits, pages accessed, or time spent on the website). These cookies do not store any information that allows a personal identification of the visitor. The information collected with the help of these cookies is aggregated and therefore anonymous.
This website has a link to the map service Google Maps. Provider is Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.
This is a link, so your data will not be forwarded to the map service operator when visiting our website.
Only if you follow the link by clicking, you will be redirected to the website of Google Maps and leave the website of the Heinze Gruppe GmbH.
If you have clicked on the link and you have been redirected to the website of the map service provider, we have no influence on the data collected, data processing operations and are not responsible for this data processing. In this respect, we are not responsible for the aforementioned case within the meaning of the GDPR. We are not aware of the full extent of the data collection, its legal basis, the purposes and the retention periods. Consequently, the information we provide here is not necessarily complete.
Anonymised website tracking
In order to adapt our website to the needs of our customers, visits to our website are analysed. To do this, we use your IP address, which we previously make anonymous (and possibly similar numbers that are exchanged between computers during normal Internet use). This is done with the intention of being able to carry out an analysis. Among other things, this involves the analysis of the data of the websites visited via the Heinze Gruppe GmbH website, your browser and your computer. Cookies are also set for this purpose. Our cookie only contains a unique number so that we can recognize you on our websites - but not on third-party websites. The stored data is evaluated exclusively for statistical purposes. The IP address is not associated with a particular person.
Use of Google Universal Analytics
We use Google Universal Analytics, a web analysis service of Google Inc. ("Google"). Google Universal Analytics uses "cookies", which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of this website (including your IP address) is generally transmitted to and stored by Google on servers in the United States.
IP anonymisation has been activated on our website. Therefore, the IP address of Google users within member states of the European Union or in other signatory states to the Agreement on the European Economic Area will be shortened in advance. The transmission of a complete IP address to a Google server in the USA and its shortening there will only occur in exceptional cases. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide us with other services relating to website and Internet use. The IP address transmitted by your browser within the framework of Google Universal Analytics is not merged with other Google data. The storage of cookies can be deactivated by setting your browser software accordingly. However, if you deactivate cookie storage, you may no longer be able to use all functions of this website to their full extent. Furthermore, you can prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available at http://tools.google.com/dlpage/gaoptout?hl=de.
Please note that this website uses Google Universal Analytics with the code extension "anonymizeIp" to ensure that IP addresses are collected anonymously (so-called IP masking) and to exclude the possibility of any direct personal association.
Embedded plug-ins for social networks
Our website uses buttons for the following social networks:
- Facebook, Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA
- Google+, Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
- Twitter, Twitter Inc, 1355 Market St, Suite 900, San Francisco, CA 94103, USA
- Xing, XING AG, Gänsemarkt 43, 20354 Hamburg, Germany
Each social network is displayed by means of a button with the logo of the corresponding social network provider. However, these are not the usual social plugins, but buttons with embedded links. Each button must be activated (clicked on) by you. If you do not click on these buttons, no data will be transmitted to the social networks. The buttons only become active and connect to the corresponding social network when you click on them, thereby declaring your consent to communicate with the social network servers.
Clicking on the button will automatically activate a share plugin. The social network is provided with information about the page you visit, which you can share with your contacts on your social network. You must be logged in to use the "Share" function on the social network website. If you are not logged in, you will be redirected to the login page of the social network you clicked on and you will no longer be on the Heinze Gruppe GmbH website. Once you are logged in, the information will be sent that you would like to recommend the respective article.
By activating the social network button, the social network also receives information about when and when you have visited our website, your IP address, as well as information about the browser used and the language settings. When you click the button, your click is sent to the social network and used according to its data usage guidelines.
Once you have activated the social network button, we have no influence on the data collected, data processing processes and are not responsible for this data processing. In this respect, we are also not controller within the meaning of the GDPR. We are not aware of the full extent of data collection, its legal basis, the purposes and the storage periods. Consequently, the information we provide here is not necessarily complete.
As far as we know, the provider stores this information in user profiles and uses it for advertising purposes, market research and/or the design of their website according to their requirements. This evaluation takes place in particular (even for users who are not logged in) to display demand-oriented advertising and to inform other users of the social network about their activities on our website. You have the right to object to the creation of these user profiles. To exercise this right of objection, please contact the respective provider.
Please refer to the information provided by the listed links to the websites of the social network providers for the purpose and scope of data collection and the further processing and use of the data by the respective social network as well as your associated rights and setting options for the protection of your privacy:
- Facebook: http://www.facebook.com/about/privacy
- Google: http://www.google.com/intl/de/policies/privacy
- Twitter: http://twitter.com/privacy
- Xing: https://www.xing.com/privacy
If you do not want the social network to receive data about you, do not click the button.
Statutory retention periods for the deletion of data
Legislators have issued various retention periods and obligations. The corresponding data is routinely deleted after the expiry of these periods. Should data not be affected by the statutory retention periods and obligations, they will be deleted and made anonymous, provided that the purposes stated in this data protection declaration no longer apply. If no other provisions regarding the duration of data storage arise from this data protection declaration, the data collected by us will be stored for as long as they are necessary for the above purposes for which they were collected.
Other use of data and data deletion
Your personal data will only be processed or used further if permitted by law or if you have consented to the processing or use of your data. If further processing for purposes other than those for which data were originally collected should take place, you will be informed of the other purposes before any further processing and will receive any further relevant information.
Identifying and tracking misuse of data
We keep information, in particular your IP address, for a maximum of 14 days for the purpose of identifying and tracking misuse. The legal basis for this is Art. 6 (1) lit. f GDPR. We retain data for 14 days on the grounds of our legitimate interest in guaranteeing the proper functioning of our website and the transactions conducted over it, as well as being able to ward off cyber-attacks and the like. If necessary, we use anonymous usage information for the design of our website according to our requirements.
Right of access by the data subject
You have the right, upon request, to receive information from us at any time and free of charge about the personal data we have processed concerning you within the scope of Art. 15 GDPR. To do so, please send us an application by post or e-mail to the addresses below.
Right to rectification
You have the right to request us to rectify your personal data immediately and free of charge if it is incorrect (Art. 16 GDPR). Please contact us by post or e-mail at the addresses below.
Right to erasure ‚right to be forgotten‘
Furthermore, you have the right to request immediate and free deletion ("right to be forgotten") of your personal data if there are legal reasons in accordance with Art. 17 GDPR. This is the case, for example, if the data is no longer required for the original purpose for which it was collected, and you have declared your consent revoked and if there is no other legal basis and overriding reasons (e.g. legal obligations) for processing your data. If you wish to be deleted immediately, please contact us by post or e-mail at the addresses below.
Right to restriction of processing
You have the right to demand that we restrict processing of data free of charge if the conditions are met and in accordance with Art. 18 GDPR. In particular, processing the data may be restricted if the processing is unlawful and the data subject refuses to delete his or her personal data and instead requests that the use of the personal data be restricted. Furthermore, the restriction of processing may be required in the event that the data subject has filed an objection to the processing pursuant to Art. 21 (1) GDPR and it has not yet been determined whether our legitimate reasons for processing outweigh theirs. To request processing restrictions, please contact us by post or e-mail at the addresses below.
Right to data portability
Furthermore, you are entitled to data portability in accordance with Art. 20 GDPR. This is your right to receive the data that concerns you and is available to us in a common, structured and machine-readable format and to transfer this data to another controller, such as another service provider. This presupposes that the data processing is based on a consent or a contract and is carried out by means of automated procedures. To exercise your rights, please contact us by post or e-mail at the addresses below.
Right to object
In particular, you have the right, for reasons arising from your particular situation, to object at any time to the processing of personal data relating to you, which is based, inter alia, on Art. 6 (1) lit. e or f GDPR, in accordance with Art. 21 GDPR. If you have exercised your right to object, we will stop the processing of your personal data, unless we can prove compelling reasons warranting protection for the processing, which outweigh your interests, rights and freedoms, or also in the event that the processing serves to assert, exercise or defend legal claims. To exercise your right to object, please contact us by post or e-mail at the addresses below.
Right to lodge a complaint with a supervisory authority
You have the right to complain to the data protection supervisory authorities responsible for us if you believe that the processing of personal data concerning you by us is inadmissible. The contact details of the supervisory authorities responsible for us are as follows:
Responsible supervisory authority for Heinze Gruppe GmbH, Heinze Kunststofftechnik GmbH & Co. KG, HeiForm Werkzeug- und Formenbau GmbH, Heinze Anlagenbau GmbH, Linden GmbH, and HeRo Galvanotechnik GmbH:
The State Officer for Data Protection and Freedom of Information for North Rhine Westphalia
Tel.: +49 (0) 211 / 38 424-0
Fax: +49 (0) 211 / 38 424-10
Responsible supervisory authority for Sächsische Metall- und Kunststoffveredlungs GmbH:
The Data Protection Officer for Saxony
Tel.: +49 (0) 351 / 493-5401
Fax: +49 (0) 351 / 493-5490
Responsible supervisory authority for Heinze Cobiax Deutschland GmbH:
The Officer for Data Protection and Freedom of Information for Hessen
Prof. Dr. Michael Ronellenfitsch
Tel.: +49 (0) 611 / 1408-0
Fax: +49 (0) 611 / 1408-611
References and links
When you access internet pages referred to on this website, you may be asked again to provide information such as your name, address, e-mail address, browser properties, and so on. This data protection provision does not regulate the collection, transfer or handling of personal data by third parties.
Third party service providers can have their own and differing regulations in dealing with the collection, processing and use of personal data. It is therefore recommended to inform yourself on the websites of third parties about their practice for handling personal data before submitting personal data.
Amendments to our data protection provisions
If you have any further questions regarding the processing of your personal data, please contact our data protection officer directly. He or she is also available to you in the event of requests for information, applications or complaints:
Data protection officer:
Heinze Gruppe GmbH
-Data protection officer-
Eupener Str. 35
Tel.: +49 (0) 521-56 05 63-40
Fax: +49 (0) 521-56 05 63-41
Contact details of the controller:
Heinze Gruppe GmbH
- CEO -
Tel.: +49 (0) 5221-186-0
Fax: +49 (0) 5221-186-111
As of: May 2018