Privacy Notice for visitors to the website

In accordance with Art. 13 GDPR and Art. 14 GDPR, we inform you about the type, scope and purpose of the processing of the data collected in the course of using our website.

Content

I. Controller
II. Data protection officer
III. Collection of data
VI. Integration of services of external providers
VII. Web analytics services
VIII. Online marketing
IX. Cookies
X. Rights of the data subject
XI. Deletion and blocking of personal data
XII. Right to information and right to object
XIII. Social plugins
XIV. Data security
Changes to the data protection notice

I. Controller

The Controller according to Art. 4 No. 7 GDPR is the:

Scheer GmbH
Uni-Campus Nord
D-66123 Saarbrücken
Phone number: +49 681 96777-0
E-Mail: info@scheer-group.com (general)
E-Mail: karriere@scheer-group.com (concerning recruiting and application procedures)

(hereinafter also: "we" or "us")

A detailed provider identification can be called up in the imprint.

II. Data protection officer

If you have any questions regarding data protection, please contact our data protection officer:

Scheer GmbH
Attn: Data Protection Officer
University Campus Nord
D-66123 Saarbrücken
E-mail: datenschutz@scheer-group.com

III. Collection of data

When you visit our website, different data is processed. A distinction can be made between exclusive informational use and the use of special functions of our website.

The contents and services of this website are generally not intended for persons under the age of 16. If you are under the age of 16, please do not enter or provide any personal data via the website.

a. Collection of (personal) data in the case of exclusive informational use of the website

We would like to point out that in the case of purely informative use of our website, where no login, registration or other transmission of data is necessary, no personal data is collected. Excluded from this is data that is transmitted by your browser to enable the visit of the website. Our web server temporarily stores each access locally in a log file.

The following data is collected:

• IP address
• Date and time of access
• Name and URL of the retrieved file
• Amount of data transferred
• Message whether the retrieval was successful
• Recognition data of the browser and operating system used
• Website (URL) from which the access is made
• Time zone difference from Greenwich Mean Time (GMT)
• Content of the request (Concrete page)
• Access status / HTTP status code

This data is processed for the purpose of enabling the use of the website (connection establishment) and for the purpose of system security, problem diagnosis and technical administration of the network infrastructure. The IP address is only evaluated in the event of attacks on the network infrastructure or for other reasons of data and information security.

b. Collection of personal data when using special functions of our websites

In addition to the purely informational use of the website, we offer special services in which certain personal data is processed. If you are asked to provide personal information on our website, e.g., when registering for our events, this information is voluntary. They are used to provide you with the requested information and services in the context of your inquiries, as well as to maintain the interested party or customer relationship.

If you do not provide us with this data, we will unfortunately not be able to provide you with our offer in this regard, as we will not be able to process your request. Your data will be treated in accordance with the legal provisions, in particular for the purposes for which you have voluntarily provided it to us.

We will only process your data beyond these purposes if you have consented to this or if we are permitted to do so by law.

Contact form/ contact us by E-mail

You can contact us by e-mail or via a contact form. Such personal data transmitted by you to us on a voluntary basis will be stored and used for the purpose of processing the request or contacting you.

If your contact is aimed at concluding a contract or is otherwise a pre-contractual measure, data from your contact and about you will be processed to respond to your request based on Art. 6 (1) p. 1 lit. b) GDPR. If you contact us for any other reason, we process your personal data based on our legitimate interests in responding to requests and using information provided to us pursuant to Art. 6 (1) S. 1 lit. f) GDPR. We store the data in connection with your inquiry for the duration of our business relationship with you or until you have objected, and your interests prevail over ours pursuant to Art. 6 (1) p. 1 lit. f) GDPR or the balance of interests is in your favor without objection.

Register for a webinar (remote) or an event (on-site)

If you would like to participate in one of our events (remote or on-site), you must register for it and provide us with some personal data about yourself as a participant to process the event. Your personal data will be used exclusively for planning (e.g., contacting you in case of cancellation or rescheduling of the event) and execution of the event as well as, if applicable, for payment processing, insofar as it is a paid event, unless you have given us further consent. The processing is based on Art. 6 (1) p. 1 lit. b) GDPR and otherwise on Art. 6 (1) p. 1 lit. f) GDPR. In this context, we have a legitimate interest in knowing who registers for an event organized or co-organized by us or to whom we pass on knowledge and our know-how of products and services.

In this context, please also note the point IV. "Integration of services of external providers" - subitem LogMeIn, Inc. 7414 Hollister Avenue Goleta, CA 93117, USA of this privacy policy as well as for events together with partners (e.g., SAP SE) also their privacy notices.

For events offered via Microsoft Teams, please refer to our Privacy Notice for Participants in Online Meetings via Microsoft Services.

Access to white papers, case studies, information brochures, technical papers, reports and studies as well as recorded webinars

If you want to access a whitepaper, case study, info brochure, technical paper, report/study or recorded webinar, you must register for it and provide us with your personal data. Your personal data will be used to find out to whom we share our knowledge and know-how of products and services and to contact you if necessary. We base the collection of your data in this context on our legitimate interest according to Art. 6 para. 1 p. 1 f) GDPR, the contacting on Art. 6 para. 1 p. 1 a) GDPR.

Registration/ User account

To use our Knowledge Corner, you can create a user account. As part of the registration process, the required mandatory information is provided to users and processed based on Art. 6 (1) (b) GDPR for the purposes of providing the user account and our interest in knowing with whom we share our know-how. The processed data includes in particular login information (e.g., email address, username, password, first name/last name). The data entered during registration is used for the purposes of using the user account and its purpose. The mandatory information requested during registration must be provided in full. Otherwise, we will reject the registration.

Users can be informed about information relevant to their user account, such as technical changes, by e-mail. The data collected during registration will be stored by us for as long as you are registered on our website and will then be deleted. Legal retention periods remain unaffected.

Within the scope of the use of our registration and login functions as well as the use of the user account, we store the IP address and the time of the respective user action. The storage is based on our legitimate interests, as well as the interests of the registered users in the protection against misuse and other unauthorized use of their data. As a matter of principle, this data is not passed on to third parties. Should a disclosure be necessary due to the enforcement of our legitimate claims (e.g., in case of misuse) or should we be obliged to disclose data during a legal obligation, we base this disclosure on Art. 6 para. 1 p. 1 f) GDPR or Art. 6 para. 1 p. 1 c) GDPR.

Applications

If you are interested in working for our company, we make our current job offers available to you via the https://jobs.scheer-group.com/  page. There, in addition to a wealth of information about us as an employer or about the application process, you will also find our current job offers, which we coordinate via the application portal of a service provider (SAP SuccessFactors).

In principle, we process your personal data in application procedures at your instigation in accordance with Art. 6 (1) p. 1 lit. b) GDPR, Art. 88 (1) GDPR in conjunction with Section 26 (1) Federal Data Protection Act [BDSG] for the purpose of handling application procedures.

You are under no legal or contractual obligation to provide us with your data. However, since we require information about you in the application process, the possible consequence of not providing it is that we unfortunately cannot consider you in the application process.

With the help of our application portal, you as a candidate can apply directly for advertised positions. For this purpose, a corresponding registration is required. You have the option of viewing, deleting, blocking and releasing your data at any time during the entry of your online application. We will inform you about the processing in the application process at the beginning of the registration process.

IV. Processing within the group of companies

Your request may require your data to be passed on within the group of companies and affiliated companies in accordance with Section 15 of the German Stock Corporation Act [AktG]. The disclosure of your data in this context is based on our legitimate interest pursuant to Art. 6 para. 1 p. 1 f) GDPR.

V. Newsletter

You have the option to register for our general newsletter. The registration is done by the so-called double opt-in process, i.e., after your registration we will send you an e-mail to the specified e-mail address, in which we ask you to confirm that you wish to receive the newsletter. If you do not confirm your registration within one week, your information will be blocked and automatically deleted after one month. The processing is thus based on your consent according to Art. 6 para. 1 p. 1 lit. a) GDPR.

Of course, you have the option to unsubscribe from our newsletters at any time and to revoke the consent you have given for the future. You can do this either by clicking the corresponding button within the newsletter or by sending an e-mail to the following contact.

VI. Integration of services of external providers

Individual pages of our website integrate third-party content. In these cases, your IP address is also recognized by the third-party provider to provide you with the content. These third parties thus receive personal data from you, whereby the processing of this data outside the EU cannot be ruled out.

The transfer of personal data is independent of whether you have a user account with the third-party provider and whether you are logged in at the same time. However, if you have a user account and are logged in, it can be assumed that the data will be assigned to your user account. To prevent this, you should log out of the third-party provider.

You have the option to prevent the execution of scripts from these providers by installing a corresponding plugin in your browser (e.g., NoScript for a Mozilla Firefox browser). However, this may result in a restriction of the website's functions.

We are not responsible for the online collection on third-party websites and recommend that you familiarize yourself with the privacy policies of these providers. Below you will find an overview of our external providers integrated within the framework of the offer presented here:

VII. Web analytics services

Web analytics (also referred to as "reach measurement") is used to evaluate the flow of visitors to our online offering and may include behavior, interests, or demographic information about visitors, such as age or gender, as pseudonymous values. With the help of reach measurement, we can, for example, recognize at what time our online offer or its functions or content are most frequently used or invite re-use. Likewise, we can understand which areas require optimization.

In addition to web analytics, we may also use testing procedures, for example, to test and optimize different versions of our online offering or its components.

For these purposes, user profiles may be created and stored in a file (so-called "cookie") or similar procedures may be used with the same purpose. This information may include, for example, content viewed, websites visited, and elements used there, and technical information such as the browser used, the computer system used, and information on usage times. If users have consented to the collection of their location data, this may also be processed, depending on the provider.

Although the IP addresses of users are stored, we use an IP masking procedure (i.e., pseudonymization by shortening the IP address) to protect users. In general, we do not store any clear user data (such as e-mail addresses or names) for the purposes of web analysis, A/B testing and optimization, but rather pseudonyms. This means that we, as well as the providers of the software used, do not know the identity of the users, but only the information stored in their profiles for the purposes of the respective procedures.

Notes on legal bases: If we ask users for their consent to use third-party providers, the legal basis for processing data is consent. Otherwise, users' data is processed based on our legitimate interests (i.e., interest in efficient, economical, and recipient-friendly services). In this context, we would also like to draw your attention to the information on the use of cookies in this privacy notice (below).

Services used and service providers:

• Google Analytics: Reach measurement and web analytics; service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; website: https://marketingplatform.google.com/intl/de/about/analytics/; privacy policy: https://policies.google.com/privacy.
• Google Tag Manager: Google Tag Manager is a solution with which we can manage so-called website tags via an interface and thus integrate other services into our online offering (please refer to further information in this privacy policy). With the Tag Manager itself (which implements the tags), therefore, no profiles of users are created or cookies are stored, for example. Google only learns the IP address of the user, which is necessary to run the Google Tag Manager. Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA;
  Website: https://marketingplatform.google.com; Privacy policy: https://policies.google.com/privacy.
• Google Maps: This site uses the mapping service Google Maps via an API. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, a company of Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter referred to as "Google"). To use the functions of Google Maps, it is necessary to store your IP address. This information is usually transferred to a Google server in the USA and stored there. We have no influence on this data transmission. The use of Google Maps is in the interest of an appealing presentation of our online offers and an easy location of the places indicated by us on the website. We do this in our legitimate interest within the meaning of Art. 6 (1) p. 1 lit. f) GDPR. Further information can be found in Google's privacy policy at: https://policies.google.com/privacy?hl=en.

VIII. Online marketing

We process personal data for online marketing purposes, which may include, in particular, marketing advertising space or displaying promotional and other content (collectively, "Content") based on users' potential interests and measuring its effectiveness.

For these purposes, so-called user profiles are created and stored in a file (so-called "cookie"), or similar procedures are used, by means of which the information about the user relevant for the presentation of the aforementioned content is stored. This information may include, for example, content viewed, websites visited, online networks used, but also communication partners and technical information such as the browser used, the computer system used and information on usage times. If users have consented to the collection of their location data, this may also be processed.

The IP addresses of the users are also stored. However, we use available IP masking procedures (i.e., pseudonymization by shortening the IP address) to protect users. In general, no clear data of the users (such as e-mail addresses or names) are stored in the context of the online marketing process, but pseudonyms. This means that we, as well as the providers of the online marketing procedures, do not know the identity of the users, but only the information stored in their profiles.

The information in the profiles is usually stored in the cookies or by means of similar procedures. These cookies can later generally also be read on other websites that use the same online marketing procedure and analyzed for the purpose of displaying content as well as supplemented with further data and stored on the server of the online marketing procedure provider.

Exceptionally, clear data may be associated with the profiles. This is the case if, for example, the users are members of a social network whose online marketing procedures we use, and the network links the users' profiles with the aforementioned data. We ask that you note that users can make additional agreements with the providers, e.g., by giving their consent as part of the registration process.

In principle, we only receive access to summarized information about the success of our advertisements. However, as part of so-called conversion measurements, we can check which of our online marketing methods have led to a so-called conversion, i.e., for example, to a contract being concluded with us. The conversion measurement is used solely to analyze the success of our marketing measures.

Unless otherwise stated, we ask you to assume that cookies used will be stored for a period of two years.

Notes on legal bases: If we ask users for their consent to the use of third-party providers, the legal basis for the processing of data is consent pursuant to Art. 6 (1) p. 1 lit. a) GDPR. Otherwise, user data is processed based on our legitimate interests (i.e., interest in efficient, economic and recipient-friendly services) pursuant to Art. 6 (1) S. 1 lit. f) GDPR. In this context, we would also like to refer you to the information on the use of cookies in this privacy policy.

Targeting with Google Analytics: We use Google Analytics to display the ads placed through within advertising services of Google and its partners, only to those users who have also shown an interest in our online offer or have certain characteristics (e.g. interests in certain topics or products determined on the basis of the websites visited), which we transmit to Google (so-called "Remarketing Audiences", or "Google Analytics Audiences"). With the help of Remarketing Audiences, we also want to ensure that our ads correspond to the potential interest of users.

Facebook pixel and targeting (Custom Audiences): With the help of the Facebook pixel (or comparable functions, for the transmission of event data or contact information by means of interfaces in apps), it is possible for Facebook, on the one hand, to determine the visitors to our online offer as a target group for the display of ads (so-called "Facebook ads"). Accordingly, we use the Facebook pixel to display the Facebook ads placed by us only to those users on Facebook and within the services of partners cooperating with Facebook (so-called "Audience Network" www.facebook.com/audiencenetwork/ ) who have also shown an interest in our online offer or who have certain characteristics (e.g. interest in certain topics or products that are evident from the websites visited) that we transmit to Facebook (so-called "Custom Audiences"). With the help of the Facebook pixel, we also want to ensure that our Facebook ads correspond to the potential interest of users and do not have a harassing effect. Furthermore, with the help of the Facebook pixel, we can track the effectiveness of the Facebook ads for statistical and market research purposes by seeing whether users were redirected to our website after clicking on a Facebook ad (so-called "conversion measurement").

We are jointly responsible with Meta Platforms Ireland Ltd. for the collection or receipt during a transmission (but not the further processing) of "Event Data" that Facebook collects or receives during a transmission by means of the Facebook Pixel and comparable functions (e.g., interfaces) that are executed on our online offer for the following purposes:

a) Display of content advertising information that corresponds to the presumed interests of users;

b) Delivery of commercial and transactional messages (e.g., addressing users via Facebook Messenger);

c) Improving ad delivery and personalization of features and content (e.g., improving the identification of which content or advertising information is likely to be of interest to users). We have concluded a special agreement with Facebook ("Addendum for Responsible Parties", www.facebook.com/legal/controller_addendum), which regulates especially which security measures Facebook must observe (www.facebook.com/legal/terms/data_security_terms) and in which Facebook has agreed to fulfill the data subject rights (i.e., users can direct information or deletion requests to Facebook, for example).

Note: If Facebook provides us with metrics, analytics, and reports (which are aggregated, i.e., do not receive information about individual users and are anonymous to us), then this processing is not carried out under shared responsibility, but rather on the basis of a contract processing agreement ("Data Processing Terms", www.facebook.com/legal/terms/dataprocessing), the "Data Security Terms" (www.facebook.com/legal/terms/data_security_terms), and, with regard to processing in the U.S., on the basis of standard contractual clauses ("Facebook EU Data Transfer Addendum”, www.facebook.com/legal/EU_data_transfer_addendum). The rights of users (especially to information, deletion, objection, and complaint to the competent supervisory authority), are not restricted by the agreements with Facebook.

• Types of data processed: Usage data (e.g., websites visited, interest in content, access times), meta/communication data (e.g., device information, IP addresses), location data (information about the geographical position of a device or a person), event data (Facebook) ("event data" is data that may be transmitted by us to Facebook, e.g., via Facebook Pixel (via apps or in other ways), and relates to individuals or their actions; the data includes, e.g., information about visits to websites, interactions with content, functions, installations of apps, purchases of products, etc.; the event data is used for the purpose of forming target groups for content and advertising information. For example, information about visits to websites, interactions with content, functions, installations of apps, purchases of products, etc.; Event data is processed for the purpose of forming target groups for content and advertising information (Custom Audiences); Event data does not include the actual content (such as comments written), no login information and no contact information (i.e. no names, email addresses and phone numbers). Event data is deleted by Facebook after a maximum of two years, the target groups formed from them with the deletion of our Facebook account).

• Data subjects: Users (e.g., website visitors, users of online services), interested parties.

• Purposes of processing: tracking (e.g. interest/behavior-based profiling, use of cookies), remarketing, conversion measurement (measurement of the effectiveness of marketing measures), interest-based and behavioral marketing, profiling (creation of user profiles), reach measurement (e.g., access statistics, recognition of returning visitors), targeting (determination of target groups relevant for marketing purposes or other output of content), cross-device tracking (cross-device processing of user data for marketing purposes).

• Security measures: IP masking (pseudonymization of the IP address).

• Legal basis: Consent (Art. 6 para. 1 p. 1 lit. a) GDPR), Legitimate Interests (Art. 6 para. 1 p. 1 lit. f) GDPR)

• Possibility of objection (opt-out):

We refer to the data protection notices of the respective providers and the objection options (so-called "opt-out") given for the providers. If no explicit opt-out option has been specified, you have the option of deactivating cookies in your browser settings. However, this may restrict functions of our online offer. We therefore recommend the following additional opt-out options, which are offered in summary for the respective areas:

Europe: www.youronlinechoices.eu.
Canada: www.youradchoices.ca/choices. 
USA: www.aboutads.info/choices.
Inter-territory: optout.aboutads.info.

IX. Cookies

We use our own- and third-party cookies on our websites, these include essential cookies, statistics cookies, marketing cookies and external media cookies.

If you click "Accept all", you agree to the use of all cookies. Or make an individual selection of which cookies you would like to accept. The given consent can be revoked at any time for the future.

a. What are cookies?

Cookies are small text files that are stored locally in the cache of your internet browser on your computer or mobile device. The information stored in cookies is used to automatically recognize you the next time you visit our websites and to make our offer more user-friendly, for example, to make navigation easier for you.

b. Deletion of all cookies

You have the option to set your browser to reject cookies or to inform you before they are stored. The specific procedure can be found in the manufacturer's instructions for the respective browser type. If you do not accept cookies, this may lead to functional restrictions of our offers. Cookies may also be used on linked pages without us being able to inform you in advance.

Please note that when deleting cookies, e.g., by using appropriate browser add-ons, any installed opt-out cookies will also be deleted.

Any other data details are not linked to the stored information from the cookies. The data is stored separately from each other.

You can find out how to manage (including disabling) cookies on the main browsers by following the links below:

Chrome Browser: https://support.google.com/accounts/answer/61416?hl=de
Internet Explorer: https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies
Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-und-website-daten-in-firefox-loschen
Safari: https://support.apple.com/de-de/guide/safari/manage-cookies-and-website-data-sfri11471/mac

c. Objection to processing

You may refuse the use of cookies by selecting the appropriate settings on your browser, however, please note that if you do this you may not be able to use the full functionality of this website. However, we would like to point out that in this case you may not be able to use all functions of this website to their full extent.

You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google. To do so, access the following link and install the add-on to disable Google Analytics for your browser: http://tools.google.com/dlpage/gaoptout?hl=en. The tracking code of our website is used with an extension so that the IP addresses are processed in a shortened form. Thus, a direct personal reference can be excluded.

d. Types cookies

Depending on their purpose and function, we divide cookies into the following categories:

1. Essential
2. Statistics
3. Marketing
4. External media

We inform you in detail below about the different types of cookies and which cookies - if applicable after your consent - are set and used in each case.

X. Rights of the data subject

You have a variety of rights regarding the processing of your personal data within the scope of the respective regulations (especially Art. 15-21 GDPR):

• Right to information
• Right of rectification
• Right of deletion
• Right to restriction of processing
• Right to data portability
• You also have the right to be subject to an individual decision that is not exclusively automated
• Right to complain to a competent data protection supervisory authority

The right to information and the right of deletion are subject to legal restrictions, for example according to § 34, 35 Federal Data Protection Act. You also have the right to object to the processing of your personal data for direct marketing purposes. If we process your data to protect legitimate interests, you can object to this processing if reasons arise from your particular situation that speak against data processing.

If you have given us consent to process personal data for certain purposes, you can revoke this consent at any time with effect for the future.

If you as a data subject would like to exercise one of these rights, you can contact the offices mentioned under I. or II. at any time.

XI. Deletion

In principle, we delete your data as soon as it is no longer required for the above-mentioned purposes, unless temporary storage is still necessary. For example, we store your data based on statutory obligations to provide proof and to retain data, which result, among other things, from the German Commercial Code and the German Fiscal Code. The storage periods are then up to ten years.

In addition, we retain your data for the period during which claims can be asserted against our company (statutory limitation period of three or up to thirty years).

XII. Right of information and objection

In accordance with Art. 15 (1) GDPR, you can request information about your personal data processed by us. Under the conditions of Art. 16 GDPR, you can also request a correction of your data (if they are not (anymore) accurate), addition or deletion of your data.

Furthermore, you have the right to withdraw your consent to processing, if you have given such consent, in part or in full for the future.

Please direct any concerns to the office listed under

II.

To prevent unauthorized access or even misuse, it may be necessary for us to contact you directly to verify your request.

XIII. Social Media Plugins/ Third Party Cookies

As a matter of principle, we do not permanently integrate any direct "share" or "like" social network buttons on our own websites.

However, we are very pleased if your interest in our company, our products and services is not limited to visiting our website, but you also visit us on our presences in the social networks. We offer you the opportunity to do this by clicking on the respective link on our website. You can recognize the links by the logo of the respective service, among other things.

We expressly recommend that you familiarize yourself with the privacy statements and notices of the respective social network!

We have no influence on the collected data and data processing procedures of the plug-in providers, nor are we aware of the full extent of the data collection, the purposes of the processing or the storage periods. We also have no information on the deletion of the collected data by the plug-in provider.

Below we inform you about our social media presences:

XIV. Data security

For data security, we use various measures that are adapted to the respective state of the art. These serve especially to protect your personal data. However, we would like to point out that data transmission on the Internet (e.g., e-mail communication) may have security vulnerabilities and cannot be completely protected against access by third parties. In the case of particularly sensitive information, we therefore recommend using alternative methods, e.g., encrypted communication or the postal service.

Modification and update

This data protection notice must be adapted to the actual circumstances and the legal situation from time to time. Please check the data protection information before you use our offer to be up to date with possible changes or updates.

As of September 2023