Omnilab

Privacy policy

We appreciate your visit to our website. In the following, we would like to inform you about the handling of your data according to Article 13 of the Basic Data Protection Regulation (DSGVO).

[borlabs-cookie type=”btn-cookie-preference” title=”Cookieeinstellungen bearbeiten”/]

The office named in the Imprint is responsible for the data processing described below.

When processing your personal data, the GDPR grants you certain rights as a data subject:

Right of access (Art. 15 of the GDPR)

You have the right to request confirmation as to whether personal data concerning you is being processed; if this is the case, you have a right to information about this personal data and to the information listed in detail in Article 15 of the GDPR.

Right of rectification (Art. 16 of the GDPR)

You have the right to request the correction of inaccurate personal data concerning you and, if necessary, the completion of incomplete data without delay.

Right of deletion (Art. 17 of the GDPR)

You have the right to request that personal data concerning you be deleted without undue delay, provided that one of the reasons listed in detail in Art. 17 GDPR applies.

Right to restriction of processing (Art. 18 GDPR)

You have the right to request the restriction of processing if one of the conditions listed in Art. 18 GDPR applies, e.g. if you have objected to the processing, for the duration of the review by the controller.

Right to data portability (Art. 20 GDPR)

In certain cases, which are listed in detail in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, common and machine-readable format or to request the transfer of this data to a third party.

Right of withdrawal (Art. 7 GDPR)

If the processing of data is based on your consent, you are entitled to revoke your consent to the use of your personal data at any time in accordance with Art. 7 (3) of the GDPR. Please note that the revocation is only effective for the future. Processing that took place before the revocation is not affected.

Right of objection (Art. 21 of the GDPR)

If data is collected on the basis of Art. 6 (1) p. 1 lit. f GDPR (data processing for the protection of legitimate interests) or on the basis of Art. 6 (1) p. 1 lit. e GDPR (data processing for the protection of public interest or in the exercise of official authority), you have the right to object to the processing at any time for reasons arising from your particular situation. We will then no longer process the personal data unless there are demonstrably compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

Right of appeal to a supervisory authority (Art. 77 GDPR)

Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you are of the opinion that the processing of data relating to you violates data protection provisions. The right of appeal may be asserted in particular before a supervisory authority in the Member State of your habitual residence, your place of work or the place of the alleged infringement.

Assertion of your rights

Unless otherwise described above, please contact the office mentioned in the imprint to assert your data protection rights.

Our external data protection officer will be happy to provide you with information on the subject of data protection under the following contact details:

datenschutz nord GmbH
Konsul-Smidt-Straße 88
28217 Bremen

Web: https://www.datenschutz-nord-gruppe.de/

Email: office@datenschutz-nord.de

If you contact our data protection officer, please also indicate the responsible office in the imprint.

When you visit our web pages, so-called usage data is temporarily evaluated on our web server for statistical purposes as a log in order to improve the quality of our web pages. This data set consists of

  • User IP address of the requesting computer, which is shortened in such a way that it is no longer possible to establish a personal reference
  • Optional user ID
  • Date and time of visit
  • Title of the called up page
  • URL of the called up page
  • URL of the page that was called up before the current page
  • Screen resolution used
  • Time in the local user’s time zone
  • Files that have been clicked and downloaded
  • Links to an external domain that have been clicked on
  • Page generation time (the time it takes the web server to generate the pages and then download them from the user: Page speed)
  • Location of the user: Country, region, city, approximate latitude and longitude
  • Main language of the browser used
  • User agent of the browser used (based on the user agent, we recognize the browser, operating system, device used (desktop, tablet, mobile, TV, car, console, etc.), make and model).

Some information is also stored in first-party cookies and then collected by Matomo:

  • Random unique visitor ID
  • Time of the first visit of this user
  • Time of the last visit of this user
  • Number of visits of this user

The aforementioned log data is only evaluated anonymously.

In addition, we store the full IP address transmitted by your web browser for a strictly specific purpose for a period of seven days, in the interest of being able to detect, limit and eliminate attacks on our websites. After this period, we delete or anonymize the IP address. Legal basis is Art. 6 para. 1 p. 1 lit. f German Data Protection Act (DSGVO).

In order to protect your data from unwanted access as comprehensively as possible, we take technical and organizational measures. We use an encryption process on our websites. Your information is transmitted from your computer to our server and vice versa via the Internet using TLS encryption. You can usually recognize this by the fact that the lock symbol is closed in the status bar of your browser and the address line starts withhttps://.

We use cookies on our websites, which are necessary for the use of our websites.

Cookies are small text files that are stored on your terminal device and can be read. A distinction is made between session cookies, which are deleted as soon as you close your browser, and permanent cookies, which are stored beyond the individual session.

We do not use these required cookies for analysis, tracking or advertising purposes.

In part, these cookies only contain information about certain settings and are not personally identifiable. They may also be necessary to enable user navigation, security and implementation of the site.

We use these cookies on the basis of Art. 6 para. 1 p. 1 lit. f German Data Protection Regulation (DSGVO).

You can set your browser to inform you about the placement of cookies. This makes the use of cookies transparent for you. You can also delete cookies at any time using the appropriate browser settings and prevent the setting of new cookies. Please note that our web pages may then not be displayed and some functions may no longer be technically available.

We use the web analysis tool “Matomo” to design our websites according to demand. Matomo creates usage profiles based on pseudonyms. For this purpose, permanent cookies are stored on your terminal device and read by us. In this way, we are able to recognize returning visitors and count them as such.

The data processing is based on your consent according to Art. 6 para. 1 p. 1 lit. a of the German Data Protection Act (DSGVO) or § 15 para. 3 p. 1 of the German Telemedia Act (TMG), if you have given your consent via our banner.

You can revoke your consent at any time. To do this, please follow the link on the “Edit cookie settings” button and make the appropriate settings via our banner.

You have the possibility to contact us via our contact form. To use our contact form, we first require the data marked as mandatory from you.

We use this data on the basis of Art. 6 para. 1 p. 1 lit. f of the German Data Protection Act (DSGVO) in order to respond to your inquiry.

In addition, you can decide for yourself whether you wish to provide us with further details. This information is provided voluntarily and is not mandatory for contacting us. We process your voluntary information on the basis of your consent pursuant to Art. 6 (1) p. 1 lit. a of the German Data Protection Act (DSGVO).

Your data will only be processed to respond to your request. We will delete your data if it is no longer required and there are no legal retention obligations to the contrary.

Insofar as your data transmitted via the contact form is processed on the basis of Art. 6 para. 1 p. 1 lit. f of the German Data Protection Act (DSGVO), you may object to the processing at any time. In addition, you can revoke your consent to the processing of the voluntary data at any time. For this purpose, please contact the e-mail address given in the imprint.

You can order a newsletter on our website. Please note that we need certain data (at least your e-mail address) to subscribe to the newsletter.

The newsletter will only be sent if you have given us your express consent pursuant to Art. 6 (1) p. 1 lit. a of the German Data Protection Act (DSGVO). You can revoke your consent at any time. An uncomplicated way to unsubscribe is provided, for example, by the unsubscribe link in every newsletter.

Within the scope of the newsletter registration, we store further data in addition to the data already mentioned, insofar as this is necessary for us to be able to prove that you have ordered our newsletter. This may include storing the full IP address at the time of the order or newsletter confirmation, as well as a copy of the confirmation email we send. The corresponding data processing is based on Art. 6 para. 1 p. 1 lit. f DSGVO and is carried out in the interest of being able to account for the legality of the newsletter dispatch.

We use the Google service reCaptcha to determine whether a human or a computer makes a certain entry in our contact or newsletter form. Google uses the following data to check whether you are a human or a computer: IP address of the end device used, the website you visit with us and on which the captcha is embedded, the date and duration of the visit, the recognition data of the browser and operating system type used, Google account if you are logged in to Google, mouse movements on the reCaptcha areas and tasks that require you to identify images. The legal basis for the described data processing is Art. 6 para. 1 lit. f of the General Data Protection Regulation. There is a legitimate interest on our side in this data processing to ensure the security of our website and to protect us from automated entries (attacks). The Privacy Policy and Terms of Use  of Google   apply.

We have integrated Wordfence on this website. Provider is Defiant Inc, Defiant, Inc, 800 5th Ave Ste 4100, Seattle, WA 98104, USA (hereinafter Wordfence).

Wordfence is used to protect our website from unwanted access or malicious cyberattacks. For this purpose, our website establishes a permanent connection to Wordfence’s servers so that Wordfence can check its databases against the accesses made to our website and block them if necessary.

The use of Wordfence is based on Art. 6 para. 1 lit. f of the German Data Protection Act (DSGVO). The website operator has a legitimate interest in protecting its website against cyberattacks as effectively as possible. If a corresponding consent was requested, the processing is based exclusively on Art. 6 para. 1 lit. a of the German Data Protection Regulation (DSGVO); the consent can be revoked at any time.

Data transfer to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.wordfence.com/help/general-data-protection-regulation/.

When you visit our social media pages, it may be necessary for data concerning you to be processed. Therefore, we would like to inform you in accordance with Art. 13 of the General Data Protection Regulation (DSGVO) about the handling of your data and your rights resulting from this.

Person responsible

We, OMNILAB-LABORZENTRUM GmbH & Co. KG, operate the following social media pages:

– Twitter: https://twitter.com/omnilabgroup

– Facebook: https://www.facebook.com/omnilabgroup

– XING: https://www.xing.com/pages/omnilab-laborzentrumgmbh-co-kg

– LinkedIn: https://www.linkedin.com/company/omnilab-laborzentrum

– Instagram: https://twitter.com/omnilabgroup

You can find our contact details in the imprint.

In addition to us, the respective operator of the social media platform is also responsible for the processing of your personal data. Insofar as we can influence this and parameterize the data processing, we work within the scope of the possibilities available to us to ensure that the operator of the social media platform handles the data in a manner that complies with data protection law. In this context, please also note the privacy statements of the respective social media platform.

Data processing through us

The data you enter on our social media pages, such as usernames, comments, videos, pictures, likes, public messages, etc., will be published by the social media platform and will not be processed by us for any other purpose at any time. We only reserve the right to delete content if this should be necessary. Where applicable, we share your content on our site if this is a feature of the social media platform and communicate with you through the social media platform.

If you send us a request on the social media platform, depending on the content, we may also refer you to other secure communication channels that guarantee confidentiality. For example, you can send us your inquiries at any time to the address or e-mail address given in the imprint. The choice of the appropriate communication channel is your own responsibility here.

The legal basis for the processing of your data is Art. 6 para. 1 p. 1 lit. f of the German Data Protection Act (DSGVO). The data processing is carried out in the legitimate interest of conducting public relations for our company and being able to communicate with you.

Some social media platforms create statistics based on usage data and contain information about your interaction with our social media site. We cannot influence or prevent the implementation and provision of these statistics. However, we do not make use of optional statistics from the social media platform.

We process this information in accordance with Art. 6 (1) p. 1 lit. f of the German Data Protection Act (DSGVO) in the legitimate interest of validating the use of our social media pages and improving our content in a target group-oriented manner.

We also occasionally use the social media platforms described to play out targeted advertising.

For this purpose, we use target group definitions provided to us by the social media provider. We only use anonymous target group definitions – defining characteristics based on, for example, general demographics, behavior, interests, and connections. The operator of the social media platform uses these to play advertisements to its users accordingly. The legal basis for this is the consent that the operator of the social media platform has obtained from its users. If you wish to revoke this consent, please use the revocation options provided by the social media platform provider, as the social media platform operator is responsible for this processing. Occasionally, we or the provider of the social media platform also use publicly available data to define target groups. The legal basis for this processing is then Art. 6 para. 1 lit. f of the German Data Protection Act (DSGVO). The legitimate interest on our part here is to define a target group that is as suitable as possible. We never use sensitive categories of personal data mentioned in Art. 9 and 10 GDPR for target group definition.

We do not use target group definition based on location data. We do not pass on any personal data to the operator of the social media platform as part of the target group definition.

Occasionally, we also use information about visits to or interaction with other sites (so-called remarketing) to define target groups. For this purpose, we also use cookies, among other things. In these cases, however, we obtain the consent of the user in advance via a consent banner on the respective other pages and provide information about the data processing at this point. You can revoke this consent at any time by calling up the consent banner of the corresponding website again.

If you wish to object to certain data processing over which we have control, please contact us using the contact details provided in the imprint.

Storage duration

We delete your personal data when they are no longer required for the aforementioned processing purposes and no legal retention obligations prevent deletion.

Data processing by the operator of the social media platform

The operator of the social media platform uses web tracking methods. Web tracking can also take place regardless of whether you are logged in or registered with the social media platform.

We would therefore like to point out that it cannot be ruled out that the provider of the social media platform may use your profile and behavioral data, for example, to evaluate your habits, personal relationships, preferences, etc. In this respect, we have no influence on the processing of your data by the provider of the social media platform, so that the use of the social media platform is your own responsibility.

More information on data processing by the provider of the social media platform, configuration options to protect your privacy, as well as further objection options and, if available and concluded, the agreement according to Art. 26 GDPR can be found in the privacy policy of the provider:

– Twitter: https://www.twitter.com/privacy

– Facebook: https://www.facebook.com/about/privacy/update and https://www.facebook.com/legal/terms/page_controller_addendum

– Xing: https://privacy.xing.com/

– LinkedIn: https://www.linkedin.com/static?key=privacy_policy and https://legal.linkedin.com/pages-joint-controller-addendum

– Instagram: https://www.instagram.com/legal/privacy/ and https://www.facebook.com/legal/terms/page_controller_addendum

Information about processing of personal data

The protection of your personal data is an essential concern for us and we want you to be transparently informed about the processing of your personal data in the context of video conferences, webinars or other digital events.

We would like to point out in particular that as a rule the webinars are recorded. Please read the following privacy policy before using the video conferencing solution.

Description of data processing, purposes and types of data

To conduct digital events and webinars, we use the ClickMeeting application. Depending on the type and extent of use of the application, different types of data are collected or processed. These include in particular:

  • Personal data (e.g. first and last name, e-mail address)
  • Meeting metadata (e.g. date, time and duration of the webinar, name of the meeting, attendee IP address).
  • Device/hardware data (e.g. IP addresses, MAC addresses, client version)
  • Text, audio and video data (e.g. chat histories, video, audio and presentation recordings)
  • Connection data (e.g., phone numbers, country names, start  and end times, IP addresses.

In the following, we would like to inform you in more detail about the scope of data processing. When registering for the webinar, you must provide your name and email address. As an attendee, you can participate in webinars directly through the browser without installing an application.

In addition, the tool collects user data that is required for the provision and technical and operational support and improvements of the services provided. This includes, in particular, technical data about your devices, network and Internet connection, such as IP address, MAC address, other device IDs (UDID), device type, operating system type and version, client version, camera type, microphone or speaker, type of connection).

Voluntary information and functions

You can provide further personal information voluntarily. You are free to use the available chat function during the event. If you use the chat function, the text entries you make are processed in order to display them during the video conference. A logging of the chat takes place.

Please note that any information you or others upload, provide, or create during an online meeting will be processed at least for the duration of the meeting. This includes, in particular, chat/ instant messages and other information shared while using the service.

Other functions

For more information about the processing of your data during the use of ClickMeeting and a detailed list, the collected and processed data, as well as the privacy notice, please visit: https://knowledge.clickmeeting.com/privacy-security/

Legal basis for data processing

If you participate in a webinar or other digital event as an external participant, your data is processed on the basis of Art. 6 (1) p. 1 lit. b of the German Data Protection Regulation (DSGVO), insofar as your participation in the event is necessary for the fulfillment of a contract concluded with you. The same also applies if the implementation of the video conference is necessary for the implementation of pre-contractual measures, which are carried out at your request.

If the data processing is not required for the fulfillment of a contract concluded with you or for the implementation of pre-contractual measures, the data processing is carried out on the basis of Art. 6 para. 1 p. 1 lit. f of the German Data Protection Act (DSGVO). Our legitimate interest here is the organization and implementation of location-independent information events and seminars as well as location-independent communication with interested parties who have registered for webinars offered.

If, in the course of your participation, you also provide voluntary information about yourself or voluntarily use functions that are not mandatory, the associated data processing will be based on your revocable consent in accordance with the Art. 6 (1) sentence 1 lit. a DSGVO. You can revoke your consent at any time with effect for the future. Please note that processing that took place before the revocation is not affected.

Sharing your data

As a matter of principle, we do not transfer your data to third parties. Data will only be passed on if it is intended to be passed on, if you have expressly consented to the transfer in advance, or if we are obliged or entitled to do so by law.

When processing your data, the service provider ClickMeeting Sp. z.o.o. supports us as a processor within the meaning of Art. 28 GDPR. As an order processor, the service provider used processes your data strictly in accordance with instructions and on the basis of a separately concluded order processing agreement.

Deleting your data 

As a matter of principle, we only process your data for as long as it is required for the purposes for which it was collected. Therefore, your data will be deleted after 365 days, unless the processing or storage of your data is necessary for the assertion, exercise or defense of legal claims. In the case of statutory retention obligations, deletion is only considered after the expiry of the respective retention obligation.

Information for applicants in accordance with Art. 13 of the General Data Protection Regulation (DSGVO)

Compliance with data protection regulations is a high priority for our company. We would like to inform you below about the collection of your personal data by us:

Data required for the decision on the establishment of the employment relationship

As part of the application process, we process data from you that we require for the decision on the establishment of the employment relationship. In particular, this includes your contact data, such as your name and address, as well as all data related to your application, such as your resume, references, qualifications, answers to questions, etc. If you submit an application for reimbursement of travel expenses, we also require your bank details. The legal basis for the processing of your data results from § 26 of the German Federal Data Protection Act (BDSG).

If you also voluntarily provide us with personal data, we process this on the basis of your revocable consent in accordance with Art. 6 Para. 1 Sentence 1 lit. a, Art. 7 Data Protection Regulation (DSGVO) in conjunction with § 26 Para. 2 Federal Data Protection Act (BDSG).

Sources of data

We only process the personal data that you provide to us as part of the application process.

Data deletion

If there is no legal retention period, the data will be deleted as soon as storage is no longer necessary or the legitimate interest in storage has expired. If the employee is not hired, this is usually no later than six months after completion of the application process or receipt of the rejection. We also delete data if you withdraw your consent to the processing of your data.

In individual cases, individual data may be stored for a longer period of time (e.g. travel expense report). The duration of storage then depends on the statutory retention obligations, which may result from the German Fiscal Code or the German Commercial Code, among other things, and may be 6 to 10 years. Further storage of your data is also permitted insofar as further processing is necessary for the assertion, exercise or defense of legal claims after we have weighed up your interests.

If you have not been hired, but your application is still of interest to us, we will ask you if we may keep your application on file for future openings. This longer storage is based on your revocable consent in accordance with Art. 6 Para. 1 Sentence 1 lit. a, Art. 7 DSGVO iVm § 26 Para. 2 BDSG.

Recipients of your data

Of course, we treat your personal data confidentially and do not transmit them to third parties. Data will only be transferred within the Omnilab group of companies as part of the application process, insofar as this is permissible under data protection law in individual cases.

When processing your data in the application process, HRworks GmbH supports us as a processor within the meaning of Art. 28 of the German Data Protection Regulation (DSGVO). As an order processor, HRworks GmbH processes your data strictly in accordance with instructions and on the basis of a separately concluded order processing agreement.

If necessary, we use other service providers who are strictly bound by instructions, who support us and with whom separate contracts for order processing have been concluded.

Description of data processing, purposes and types of data

Using the digital contact form “Onboarding at OMNILAB – Questionnaire” you have the opportunity to contact us for the purpose of a potential business relationship In the context of providing the contact form by means of the Microsoft Forms tool, we use Microsoft Ireland Operations Limited as a processor pursuant to Art. 28 of the GDPR.

If you fill out the contact form completely, we will only process your full name, your specified e-mail address and your telephone number in accordance with Art. 6 (1) p. 1 lit. b of the German Data Protection Act (DSGVO) for the purpose of initiating or fulfilling a contract. This also includes an appropriate response to your contact request.

Data recipient 

We will only transfer your data to third parties if we are authorized to do so under data protection law (e.g. in accordance with the legal provisions mentioned above).

Your data may also be passed on by us to external service providers (e.g. IT service providers), who support us in data processing within the framework of order processing strictly bound by instructions.

We transfer your data to a US service provider as part of an order processing. As a suitable guarantee for the lawfulness of the data transfer, we have, among other things, concluded a standard EU contract with the processor in accordance with Art. 46 (2) lit. c of the GDPR. Upon your request, we will be happy to provide you with access to the contract or provide you with a copy.  

Deleting your data

The data required to fulfill the contract will be deleted immediately after termination of the contractual relationship. As a matter of principle, we only process your data for as long as it is required for the purposes for which it was collected. The data required to fulfill the contract will be deleted immediately after termination of the contractual relationship.

In the case of statutory retention obligations, deletion is only considered after the expiry of the respective retention obligation.

Datenschutz-Information zur Erfüllung der Nachweispflicht im Rahmen der Vermarktung und Verwendung von Ausgangsstoffen für Explosivstoffe.

Kategorien von Daten:

Wir verarbeiten folgende personenbezogene Daten zu Ihrer Person:
• Name, Vorname
• Ausweisnummer
• Funktion im Unternehmen
• Telefonnummer
• E-Mail-Adresse
• Signatur

Art, Zweck und Rechtsgrundlage der Datenverarbeitung Kategorien von Daten:

Der Zweck der Datenverarbeitung liegt in der Erfüllung und Einhaltung der gesetzlichen Pflicht zur Identitätsüberprüfung und zur Einhaltung der Nachweispflicht im Rahmen der Vermarktung und Verwendung von Ausgangsstoffen für Explosivstoffe.
Rechtsgrundlage der Datenverarbeitung ist Art. 6 Abs. 1 S. 1 lit. c DSGVO in Verbindung mit Art. 8 Abs. 2 lit. a der Verordnung (EU) 2019/1148. Die zu diesem Zweck erhobenen Daten werden streng vertraulich und nur von befugten Mitarbeitenden zur Prüfung Ihrer Identität verarbeitet. Zur Überprüfung der Identität und der Einhaltung der gesetzlichen Auflagen ist vorliegend Herrn Schierholz als Gefahrgutbeauftragter bei der OMNILAB-LABORZENTRUM GmbH & Co. KG zuständig. Sofern Sie uns zur Überprüfung Ihrer Identität eine Kopie des amtlichen Ausweisdokumentes zur Verfügung stellen, können Sie diese auf die oben genannten Daten begrenzt und in geschwärzter Form, an folgende Adresse senden: eschier@OMNILAB.de

Empfänger der Daten:

Die Daten werden streng vertraulich behandelt und bis zur Vernichtung unter Verschluss ausschließlich bei unserem Gefahrgutbeauftragten aufbewahrt. Im Rahmen von Kontrollmaßnahmen auf Einhaltung der gesetzlichen Vorgaben des § 6 Abs. 1 S. 1 AusgStG in Verbindung mit Artikel 8 Abs. 4 der Verordnung (EU) 2019/1148 kann eine Weitergabe im Rahmen der bestehenden gesetzlichen Mitwirkungspflicht an die zuständigen Behörden erfolgen. Eine anderweitige Weitergabe Ihrer Daten an Dritte erfolgt nicht.

Datenlöschung:

Ihre Daten werden nach Art. 8 Abs. 4 der Verordnung (EU) 2019/1148 für die Dauer von 18 Monaten nach erfolgter Transaktion gespeichert und danach datenschutzkonform vernichtet.

In agreement with the credit insurer we use, we reserve the right to obtain a credit report when a new customer is created or when the granted credit limit is exceeded. A credit check may affect the payment terms offered to you in connection with orders you place.