Data Protection Information

In the event of discrepancies in the translations of this Website, the German original is the sole relevant version to be considered.

Thank you for visiting our Website. We continuously optimise our Website’s functions and services in order to improve your user experience, with safety as our utmost priority. When using our online services, you entrust us with your personal data. We appreciate your trust and therefore take great care when handling said data.

This data protection information is to explain which data we collect on our Website, why and on which legal basis we do so. Additionally, we will inform you about your rights and who to contact should you have questions regarding data protection or wish to lodge a complaint.

General Information

This data protection information applies to the following associations:

Ingram Micro CFS Germany GmbH, An der Anhalter Bahn 6, 14979 Großbeeren, Germany

Ingram Micro CFS Eurohub Fulfilment GmbH, An der Anhalter Bahn 6, 14979 Großbeeren, Germany

At our company, we named a data protection officer who is responsible for supervising the adherence to data protection in all departments. You can contact said data protection officer in case you have any questions or ideas:

Entity responsible for Ingram Micro CFS Germany GmbH and Ingram Micro CFS Eurohub Fulfilment GmbH:

Email: DE-Datenschutz@ingrammicro.com

The responsible data protection supervisory authority for a specific company (company main office) can be found by consulting the list of URLs (Infothek) on the German website of the Federal Commissioner for Data Protection and Freedom of Information (Bundesbeauftragter für den Datenschutz und die Informationsfreiheit, BfDI): https://www.bfdi.bund.de.

Personal Data

“Personal data” means particulars regarding personal or factual circumstances relating to an identified or identifiable natural person. This includes information such as your name, address, telephone number, job position, and company. Information which is not directly related to your identity – such as the amount of a site’s users – does not constitute personal data.

Anonymous Data Collection

Unless stated otherwise in the following paragraphs, we generally do not collect, process, or use personal data when you are using our Websites. When accessing our Website, some information will be transferred, e.g. IP address, type and version of your web browser, the operating system, the website you visited before, and the time you accessed our Website.

We cannot use this data to identify individual users. We only evaluate the information statistically and use it for the sole purpose of improving our Websites’ user-friendliness, contents, and functionality.

Intended Purpose of Collecting, Processing or Using Data

Processing

Personal data is collected and processed solely within the necessary scope of closing and performing a contract with you, processing orders, delivering and billing the ordered goods, and fulfilling our contractual or legal obligations. The legal basis for processing your personal data is set out in Art. 6 para. 1 b of the General Data Protection Regulation (GDPR). Furthermore, we process your data, insofar as is admissible for our business purposes in accordance with Art. 28 para. 1 f GDPR, this does not oppose compelling grounds on your part, and you did not object to the processing. We will inform you about this processing in advance. Should none of these prerequisites apply, we will ask for your consent beforehand.

Transfer

Personal data, as well as other information, will not be transferred to third parties, except for data transfers required by law (e.g. to transfer payroll and church tax, and social insurance contributions).
The legal basis for collecting, storing, processing and using your personal data is the contract underlying the processing of your data. The legal basis for processing data regarding employees’ personal data is set out in the contract of employment in conjunction with Section 26 of the Federal Data Protection Act (Bundesdatenschutzgesetz, BDSG).

Storage

Data is stored electronically and processed in company-consistent data processing procedures, some of them by the parent company Ingram Micro Inc. in the USA. In order to do so, Ingram Micro Inc. acquired a certificate in line with the EU-US Privacy Shield framework negotiated between the European Union and the United States Department of Commerce. We made a contract in accordance with guidelines set out by the European Commission for the data processing by order in the USA. This contract and the certification guarantee that data protection guidelines are adhered to during every phase of data processing, and that the data is processed solely for the purpose you revealed your data to us for. Your personal data is neither processed nor used for other purposes. Art. 45 and 46 GDPR form the legal basis.

Groups of People Affected and Data Categories

The data protection regulations apply to all natural persons. Data is stored on the following groups of people:

Groups of People

Employees (including applicants)
Clients and end clients
Suppliers
Carriers
Stakeholders
Other business partners
Website visitors

Data Categories

The following types of data are stored and processed electronically:

Employees

Master data and address, data relating to personnel management and salary slips. Communications data, protocol data on the usage of IT systems.

Clients, suppliers, stakeholders, other business partners

Master data and address, contractual data, sales data, ordering and billing data, banking information, logistical data, communications data and contact people’s data.

Carriers

Logistical data

Data Recipients or Categories of Data Recipients

Personal data may be transferred to the following institutions, depending on the group of people:

Public institutions, to which data must be transferred due to legal regulations, e.g. social insurance institutes, tax offices

Banks to handle payment transactions

External service providers within the scope of data processing by order or to conduct the ordered services, as set out in Art. 28 GDPR.

We transfer the necessary address data to carriers and logistics service providers in order to provide logistics services and dispatch of goods.

We may use your data for credit checks by commercial credit agencies. In case of payment issues, your data will be forwarded to a collection agency. Additionally, we also use data to check the mandatory embargo lists and blocking lists according to embargo regulations within the legal scope. Art. 6 para. 1 b and f GDPR form the legal basis.

Internal departments, which contribute to fulfilling the tasks (Purchasing, Marketing, Sales, Accounting, Human Resources, Controlling)

Order Processing

Service providers that are commissioned for some data processing procedures and maintenance work are carefully checked and selected for data protection reasons. The kind and scope of the data processing procedures to be conducted are stipulated, alongside the mandatory contract set out by data protection regulations (Art. 28 GDPR) on job processing.

Collection and Processing of Personal Data

Server Protocols

Every access of any of these webpages is recorded and stored in so-called server log files. These files are used for security reasons and a technical analysis of server usage only.

The Following Data is Collected:

• requesting host address (IP address)
• date and time of the request
• name of the accessed file
• HTTP status code
• volume of data transmitted
• webpage requiring the file
• browser/operating system/interface
• facebook, Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA
• Instagram, Instagram LLC, 1601 Willow Rd, Menlo Park, CA 94025, USA
• Facebook: http://www.facebook.com/about/privacy
• Instagram: https://help.instagram.com/155833707900388

Collection Purpose

This data is collected to enable establishing a connection and using the Website, for system security, technical administration of the network infrastructure, as well as to optimise the Website. The IP address is only analysed in case of attacks on the network infrastructure.

The data is not transferred to third parties.

Legal basis for the collection:

Processing is necessary for the purposes of the legitimate interests pursued by the controller (Art. 6 para. 1 f GDPR).

Cookies

We use cookies for statistical evaluations. Cookies are files that can be stored on your computer’s hard drive and facilitate navigation. Cookies are used to avoid re-entering all the necessary data when using a webpage. We use cookies to tailor our Website to your specific needs, such as language preferences or favourite fields of interest.

Cookies can only contain information we send to your computer – private data cannot be read. When you accept our Webpages’ cookies, we do not have access to your personal information; we can, however, identify your computer using cookies.

You can also use our Website without any cookies. Most web browsers automatically accept cookies. You can prevent cookies from being stored on your hard drive by selecting “block cookies” in your web browser’s settings. Please consult your browser’s manual for detailed instructions. You can delete existing cookies on your computer at any time. However, if you do not accept cookies, some features and services on our Websites may not work properly.

Cookies Used

We use session cookies and persistent cookies. Session cookies expire when you close your web browser. Persistent cookies on the other hand are saved on your device until their fixed expiration date.

Session Cookies Used:

Legal basis for this data collection and use:

Art. 6 para. 1 a GDPR (consent using cookie banner),

Persistent Cookies Used:

Legal basis for this data collection and use:

Art. 6 para. 1 a GDPR (consent using cookie banner),

Objecting the Use of Cookies:

You can change your web browser’s settings to reject any cookies or notify you when you receive a cookie. This means you can immediately decide whether you want to block cookies. However, by rejecting all cookies, using some features on our Websites may be limited. You can consult your browser’s help menu or the software manufacturer’s website for detailed instructions on how to change your computer’s or mobile device’s browser settings to block cookies.

Online Applications

Data Collection Purpose

When you want to apply at our company online, we need your personal details. We assure you that your data will be treated confidentially. The data collected is processed for the sole purpose of selecting applicants, and is transferred to and used by internal departments as far as is necessary for selecting applicants.
Legal basis for this data collection: Art. 88 GDPR, in conjunction with Section 26 of the new Federal Data Protection Act (Bundesdatenschutzgesetz-neu, BDSG-neu).

Applicants’ Information

Information on ethnicity, gender, religion or ideology, handicaps, age, or sexual identity is not relevant for selecting applicants. Therefore, we would like to ask you not to hand in any such information.

Processing and Deleting your Application

You may ask to have your application changed or deleted at any time by contacting our HR department. Personal data will then be deleted in accordance with the respective applicable legal regulations. This does not apply in case there are legal provisions opposed to the erasure, further storage is mandatory for reasoning, or you consented to a longer storage period. Personal data is deleted after the application process is concluded, or, at the latest, 6 months after the application process is concluded.

Upon forming a contract of employment, we will include your data in your personnel file for the usual organisational and administrational process, taking into account the applicable legal regulations. You have the right to revoke your application at any time.

Indeed

This Website uses the Indeed tracking pixel, which is a service that analyses the performance of job postings. Indeed use so-called cookies which are stored on your device to record user activity on this Website, and to personalise job searches on Indeed websites. Please read the respective Indeed data protection information for further details on Indeed’s data collection, processing and use, your related rights, and your available settings: https://www.indeed.com/legal.

Social Media Buttons

Our website uses the following company’s redirection buttons:

These Social Media buttons only offer a redirection to the respective provider. As long as you do not click any of these buttons, you will not be redirected to said providers.

When you click these buttons, you will be redirected to the respective provider’s website. Depending on whether you were logged in to the respective provider’s website when you clicked their icon, your data will be processed by said provider in accordance with their data processing guidelines, and might be used to create a profile, which is not part of our responsibility.

You can find further information on the respective service provider’s data processing guidelines here:

In case you do not wish that these companies collect your data, you should not click these buttons.

Google Maps

This Website uses Google Inc.’s Google Maps. By using this Website, you agree to Google Inc., its representatives and third parties recording, handling, and using data collected in an automated manner.

You can find the Google Maps Terms of Use here: http://www.google.com/intl/de_de/help/terms_maps.html (source only available in German).

Google Web Fonts

This Website uses so-called web fonts, made available by Google, to ensure a uniform display of fonts. When accessing a webpage, your browser downloads the web fonts needed into your browser cache in order to display texts and fonts correctly.

The browser you use must establish a connection to Google servers for this process. This is how Google gains knowledge of the fact that our Website was accessed by your IP address. The use of Google Fonts is in the interest of a uniform and appealing presentation of our online services. According to Art. 6, para. 1 f GDPR, this constitutes a legitimate interest.

In case your browser does not support web fonts, your computer will use a default font.

You can find further information on Google Fonts here: https://developers.google.com/fonts/faq and in the Google Privacy Policy: https://www.google.com/policies/privacy/.

Data Subject Rights

Your Rights / Right to Information, Right to Object, Right to Erasure, Right to Rectification, Right to Lodge a Complaint

According to the European General Data Protection Regulation (GDPR) and the new Federal Data Protection Act (Bundesdatenschutzgesetz-neu, BDSG-neu) respectively, you have a right to obtain, free of charge, information about data that pertains to you and is retained, the origin and addressee and the processing purposes of your data. You also have the right to rectification, restriction of processing, erasure, or portability of said data. Art. 15 to 20 GDPR form the legal basis.

Contact the abovementioned address of the respective company in this regard.

When we ask for your consent to process your personal data, your consent is voluntary and can be revoked at any time in the future. There will be no disadvantages for you following non-consent or a potential future revocation of consent.

You can contact the responsible data protection officer via the abovementioned email address if you have questions regarding this matter.

You can contact the responsible supervisory authority directly via the abovementioned contact information if you wish to lodge a complaint.

Time Limits for Data Erasure

Personal data is subject to various statutory retention periods, especially in accordance with regulations relating to commercial law and tax law, and will be erased upon the expiry of these retention periods. In case there are no legal retention periods for particular data, said data will be deleted as soon as it is no longer required for fulfilling the underlying purposes. Art. 6 para. 1 c GDPR forms the legal basis for data retention.

Video Surveillance

We monitor individual areas on company premises using CCTV. These areas are identified by signs. For further information on the CCTV purpose and scope, you can consult the signage and an information leaflet you can request at the respective company location’s reception. The guidelines set out in this data protection information apply to our CCTV too. Art. 6 para. 1 f GDPR forms the legal basis for video surveillance.