backtotop

Privacy policy declaration

In the following, we will inform you about the processing of your personal data within the framework of using our online offer.

Data Controller
OKE Group GmbH
Nobelstraße 7
48477 Hörstel, Germany
Phone: +49 5459 914-0
Fax: +49 5459 914-200
Email: info@oke.de

Data Protection Officer
Nils Volmer, Meibers Datenschutz GmbH, n.volmer@meibers-datenschutz.de

Storage duration

We generally delete your personal data when it is no longer necessary for the purposes for which it was collected or otherwise processed.
If we asked for your consent and you granted it, we will delete your personal data in case you withdraw your consent and there is no other legal basis for any processing.
We will delete your personal data if you object to the processing and there are no overriding legitimate grounds for the processing or if you object to the processing for the purposes of direct marketing or related profiling.
If deletion is not possible because processing is still necessary to comply with a legal obligation (statutory retention periods, etc.) to which we are subject, or to assert, exercise or defend legal claims, we will restrict the processing of your personal data.
Further information on the storage period can also be found in the following sections.

Your rights

You have the following rights with regard to your personal data:
– Right to information
– Right to correction
– Right to deletion
– Right to restriction of processing
– Right to object to processing
– Right to data portability
For reasons arising from your particular situation, you have the right to object at any time to the processing of your personal data which is carried out on the basis of Article 6 (1) (e) or (f) GDPR; this also applies to profiling based on these provisions. We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing is for the assertion, exercise or defence of legal claims.
If we process your personal data for the purpose of direct marketing, you have the right to object at any time to this processing of your personal data for the purpose of such marketing; this also applies to profiling insofar as it is related to such direct marketing. We will then no longer process your personal data for these purposes.
You have the right to revoke consent to the processing of your personal data at any time if you have given us such consent. The revocation of consent shall not affect the lawfulness of the processing carried out on the basis of the consent up to the time of revocation.
You have the right to complain to a supervisory authority about our processing of your personal data.

Provision of your personal data

The provision of your personal data is generally not required by law or contract and is not necessary for the conclusion of a contract. In principle, you are not obliged to provide your personal data. If this should nevertheless be the case, we will inform you in this regard separately when collecting your personal data (for example, by marking the mandatory fields in input forms).
Failure to provide your personal data regularly results in us not processing your personal data for one of the purposes described below and you not being able to take advantage of an offer related to the respective processing (example: without providing your email address, you will not receive our newsletter).

Web hosting

We use external services for web hosting. These services may have access to personal data that is processed in the context of using our online offer.

Web server log files

We process your personal data in order to be able to display our online offer to you and to guarantee the stability and security of our online offer. In doing so, information (for example, requested element, accessed URL, operating system, date and time of the request, browser type and the version used, IP address, protocol used, amount of data transferred, user agent, referrer URL, time zone difference to Greenwich Mean Time (GMT) and/or HTTP status code) is stored in so-called log files (access log, error log, etc.).
If we asked for your consent and you granted it, the legal basis for the processing is Art. 6 (1) (a) GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 (1) (f) GDPR. Our legitimate interest in this case is the proper display of our online offer and ensuring the stability and security of our online offer.

Security

For security reasons and to protect the transmission of your personal data and other confidential content, we use encryption on our domain. You can recognise this by the character string “https://” in the browser line and by the lock symbol.

Contact

If you contact us, we will process your personal data in order to process your contact.
If we asked for your consent and you granted it, the legal basis for the processing is Art. 6 (1) (a) GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 (1) (f) GDPR. Our legitimate interest in this case is the processing of your contact. If the processing is necessary for the performance of a contract with you or for the implementation of pre-contractual measures based on your request, the legal basis for the processing is also Art. 6 (1) (b) GDPR.
We use external services to provide and maintain our email in-boxes. These services may have access to personal data processed in the course of contacting us. Further information on the services used, the scope of data processing and the technologies and processes involved in the use of the respective services can be found below in the further information section on the services we use and under the links provided there:

Microsoft Exchange
Provider: Microsoft Corporation, United States of America.
Website: https://www.microsoft.com/de-de/microsoft-365/exchange/email
Further information & data protection: https://privacy.microsoft.com/de-de/ and https://www.microsoft.com/de-de/trust-center/privacy
Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.
To support the processing of your initial contact, we use support systems (video conferencing software, appointment booking systems, live chats, ticket systems or help desks, etc.) and employ external services for this purpose. These services may have access to personal data processed in the course of contacting us via a support system. Further information on the services used, the scope of data processing and the technologies and processes involved in the use of the respective services can be found below in the further information section on the services we use and under the links provided there:

Skype
Provider: Microsoft Corporation, United States of America.
Website: https://www.skype.com/de/
Further information & data protection: https://privacy.microsoft.com/de-de/ and https://www.microsoft.com/de-de/trust-center/privacy
Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

Microsoft Teams
Provider: Microsoft Corporation, United States of America.
Website: https://www.microsoft.com/de-de/microsoft-teams/group-chat-software/
Further information & data protection: https://privacy.microsoft.com/de-de/ and https://www.microsoft.com/de-de/trust-center/privacy
Guarantee: EU standard contractual clauses.. You can request a copy of the EU standard contractual clauses from us.

Cookies & similar technologies

We use cookies. Cookies are text information that is stored on your terminal device. A distinction is made between session cookies, which are deleted immediately after you close your browser, and long-term cookies, which are only deleted after a certain time.
In addition to cookies, similar technologies (tracking pixels, web beacons, etc.) may also be used. In this respect, the following explanations on cookies also apply to similar technologies. These explanations also apply to further processing in connection with cookies and similar technologies (analysis & marketing, etc.). This also applies in particular to any consent you may have given for the use of cookies. This also extends to other technologies and to further processing related to cookies and similar technologies.
Cookies can be used to enable the use of certain functions. Cookies can also be used to measure the reach of our online offer, to design it according to needs and interests and thus to optimise our online offer and our marketing. Cookies may be used by us and by external services.
We use a consent tool to manage the cookies used and the related consents. Details on the cookies used (purpose, storage period, external service, etc.) and the consent tool can be found in the following sections and in the consent tool we use.
If we asked for your consent and you granted it, the legal basis for the processing is Art. 6 (1) (a) GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 (1) (f) GDPR. Our legitimate interest lies in the management of the cookies used and the related permissions. Depending on the purpose of the processing, our legitimate interests can be inferred from the following sections.
You can prevent cookies from being stored by setting your browser accordingly. Below, we provide links for typical browsers where you can find further information on managing cookie settings:
– Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen
– Chrome: https://support.google.com/chrome/bin/answer.py?hl=de&hlrm=en&answer=95647
– Internet Explorer / Edge: https://windows.microsoft.com/de-DE/windows-vista/Block-or-allow-cookies
– Safari: https://support.apple.com/en/guide/safari/sfri11471/mac
– Opera: https://help.opera.com/de/latest/web-preferences/#cookies
– Yandex: https://browser.yandex.com/help/personal-data-protection/cookies.html
You can find further options regarding objection under the following links: https://www.youronlinechoices.eu/, https://youradchoices.ca/en/tools, https://optout.aboutads.info and https://optout.networkadvertising.org/?c=1.
If you prevent cookies from being stored, this may impair the proper functioning of our online offer. If you delete all cookies, the above settings will also be lost and have to be reset.

Furthermore, you can activate the ‘Do-Not-Track’ function of your browser to signal that you do not want to be tracked. In the following, we provide links for typical browsers where you can find further information on the ‘Do-Not-Track’ setting:

– Firefox: https://support.mozilla.org/de/kb/wie-verhindere-ich-dass-websites-mich-verfolgen
– Chrome: https://support.google.com/chrome/answer/2790761?co=GENIE.Platform%3DDesktop&hl=de
– Internet Explorer / Edge: https://support.microsoft.com/de-de/help/17288/windows-internet-explorer-11-use-do-not-track
– Opera: https://help.opera.com/de/latest/security-and-privacy/
– Safari no longer supports the ‘Do-Not-Track’ function as of February 2019. You can prevent cross-website tracking in Safari using the following link:
https://support.apple.com/de-de/guide/safari/sfri40732/12.0/mac
– Yandex: https://browser.yandex.com/help/personal-data-protection/do-not-follow.html
You can also revoke or manage your consent with regard to the cookies used in the consent tool we use.

Cookie Settings

[borlabs-cookie type=”btn-cookie-preference” title=”Change cookie settings”/]

Newsletter

If we asked for your consent and you granted it, we will process your email address in order to carry out email marketing and, where applicable, other personal data in order to address you personally in the process. The legal basis for the processing is Art. 6 (1) (a) GDPR. The contents of the email marketing are clearly described when obtaining your consent. Furthermore, the email marketing contains information about us, our goods and services.
We use the so-called double opt-in procedure to prevent possible misuse of your personal data. For this purpose, after obtaining your email address, we will send you an email to the email address you have provided in which we ask you to confirm that you actually wish to receive email marketing. The legal basis for the processing is Art. 6 (1) (f) GDPR. Our legitimate interest in this case is the legally compliant implementation of email marketing.
We log the time you gave your consent and the time of your confirmation as well as your IP address and the content of your declaration of consent in order to be able to prove that your consent was obtained in accordance with the law. The legal basis for the processing is Art. 6 (1) (f) GDPR. Our legitimate interest in this case is the legally compliant implementation of email marketing.
We use external services for email marketing. For further information on the services used, the scope of data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place in the use of the respective services and, where applicable, information on the logic involved and the scope and intended effects of such processing for you, please refer to the further information on the services we use at the end of this section and the links provided there.

You can revoke your consent at any time. The revocation of your consent shall not affect the lawfulness of the processing carried out on the basis of the consent up to the time of revocation. To revoke your consent, you can use the link provided for this purpose in the emails or contact us via the contact details given above.
If you have revoked your consent, we reserve the right to process your personal data in a so-called blacklist/block list in order to be able to ensure that no further email marketing takes place in connection with this personal data in the future. The legal basis for the processing is Art. 6 (1) (f) GDPR. Our legitimate interest in this case is the avoidance of unwanted email marketing.
We process your personal data in the context of tracking or success assessments in order to measure the coverage of our email marketing, to design it based on needs and interests and thus optimise our email marketing. This may also involve profiling (for the purposes of advertising, personalised information, etc.). Profiling may also take place across services and devices. If we asked for your consent and you granted it, the legal basis for the processing is Art. 6 (1) (a) GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 (1) (f) GDPR. Our legitimate interest in this case lies in the optimisation of our email marketing. A separate revocation of your consent or objection with regard to tracking or performance assessments is unfortunately not possible. You must use the preceding options to withdraw your consent or object to the processing of your personal data for the purpose of email marketing altogether.

CleverReach

Provider: CleverReach GmbH & Co KG, Germany.
Website: https://www.cleverreach.com/de/
Further information & data protection: https://www.cleverreach.com/de/datenschutz/

Analysis & Marketing

We process your personal data in order to measure the coverage of our online offer, to design it based on needs and interests and thus optimise our online offer and our marketing.
If we asked for your consent and you granted it, the legal basis for the processing is Art. 6 (1) (a) GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 (1) (f) GDPR. Our legitimate interest in this case is in optimising our online offer and marketing.
We use external services for analysis and marketing. This may also involve profiling (for the purposes of advertising, personalised information, etc.). Profiling may also take place across services and devices. For further information on the services used, the scope of data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place in the use of the respective services and, where applicable, information on the logic involved and the scope and intended effects of such processing for you, please refer to the further information on the services we use at the end of this section and the links provided there.
You can prevent cookies from being stored by setting your browser accordingly. Below, we provide links for typical browsers where you can find further information on managing cookie settings:

– Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen
– Chrome: https://support.google.com/chrome/bin/answer.py?hl=de&hlrm=en&answer=95647
– Internet Explorer / Edge: https://windows.microsoft.com/de-DE/windows-vista/Block-or-allow-cookies
– Safari: https://support.apple.com/en/guide/safari/sfri11471/mac
– Opera: https://help.opera.com/de/latest/web-preferences/#cookies
– Yandex: https://browser.yandex.com/help/personal-data-protection/cookies.html

You can find further options regarding objection under the following links: https://www.youronlinechoices.eu/, https://youradchoices.ca/en/tools, https://optout.aboutads.info and https://optout.networkadvertising.org/?c=1.
If you prevent cookies from being stored, this may impair the proper functioning of our online offer. If you delete all cookies, the above settings will also be lost and have to be reset.
Furthermore, you can activate the ‘Do-Not-Track’ function of your browser to signal that you do not want to be tracked. In the following, we provide links for typical browsers where you can find further information on the ‘Do-Not-Track’ setting:

– Firefox: https://support.mozilla.org/de/kb/wie-verhindere-ich-dass-websites-mich-verfolgen
– Chrome: https://support.google.com/chrome/answer/2790761?co=GENIE.Platform%3DDesktop&hl=de
– Internet Explorer / Edge: https://support.microsoft.com/de-de/help/17288/windows-internet-explorer-11-use-do-not-track
– Opera: https://help.opera.com/de/latest/security-and-privacy/
– Safari no longer supports the ‘Do-Not-Track’ function as of February 2019. The following link can be used in Safari to prevent cross-site tracking:
 https://support.apple.com/de-de/guide/safari/sfri40732/12.0/mac
– Yandex: https://browser.yandex.com/help/personal-data-protection/do-not-follow.html

Google Analytics

Provider: in the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: https://marketingplatform.google.com/intl/de/about/analytics/
Further information & data protection: https://support.google.com/analytics/answer/6004245?hl=de and https://policies.google.com/?hl=de
The transfer of personal data to third countries takes place depending on the respective Google service and subject to the application of the various EU standard contractual clauses if these are offered by Google. Further information on this and Google’s responsibility can be found at the following link: https://business.safety.google/gdpr/. A copy of the EU standard contractual clauses can be found there.

Matomo – On-Premise

Provider: Self-hosted
Website: https://matomo.org/
Further information & data protection: https://matomo.org/gdpr-analytics and https://matomo.org/privacy-policy/

Social media presence

We maintain social media presences with external services in order to be able to communicate with users and thus optimise our online offer and marketing.
This privacy policy also applies to the following social media presences:

https://www.instagram.com/oke_group/
https://www.facebook.com/OKEplus/
https://de.linkedin.com/company/oke-automotive-gmbh-&-co.kg
https://twitter.com/gmbhoke
https://www.youtube.com/user/TheOKEGroup
https://www.xing.com/pages/okegroupgmbh

If we asked for your consent and you granted it, the legal basis for the processing is Art. 6 (1) (a) GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 (1) (f) GDPR. Our legitimate interest in this case is in optimising our online offer and marketing.

In the context of using external services, profiling (for the purposes of advertising, personalised information, etc.) may also occur. Profiling may also take place across services and devices. For further information on the services used, the scope of data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place in the use of the respective services and, where applicable, information on the logic involved and the scope and intended effects of such processing for you, please refer to the further information on the services we use at the end of this section and the links provided there.

Facebook

Provider: Meta Platforms Ireland Limited, Ireland. Meta Platforms Ireland Limited is a subsidiary of Meta Platforms, Inc., United States of America.
Website: https://www.facebook.com
We and the provider are jointly responsible. We have concluded an agreement to this effect with the provider. You can view this agreement at https://www.facebook.com/legal/terms/page_controller_addendum and https://www.facebook.com/legal/controller_addendum.
Further information & data protection: https://developers.facebook.com/docs/plugins/, https://www.facebook.com/legal/terms/information_about_page_insights_data, https://www.facebook.com/privacy/policy/, https://de-de.facebook.com/policies/cookies/, https://www.facebook.com/help/566994660333381?ref=dp and https://de-de.facebook.com/help/568137493302217
Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

Instagram

Provider: Meta Platforms Ireland Limited, Ireland. Meta Platforms Ireland Limited is a subsidiary of Meta Platforms, Inc., United States of America.
Website: https://www.instagram.com
Further information & data protection: https://help.instagram.com/581066165581870 and https://help.instagram.com/519522125107875
Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

LinkedIn

Provider: if you are in the EU, in the European Economic Area (EEA) or in Switzerland, this service is provided by LinkedIn Ireland Unlimited Company, Ireland. If you are located outside the EU, the European Economic Area (EEA) or Switzerland, this service is provided by LinkedIn Corporation, United States of America.
Website: https://www.linkedin.com
Further information & data protection: https://de.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy and https://de.linkedin.com/legal/cookie-policy?trk=homepage-basic_footer-cookie-policy
Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

Twitter

Provider: if you live within the European Union, EFTA countries or the United Kingdom, the controller is Twitter International Unlimited Company, Ireland. If you live in the United States of America or in another country outside the European Union, EFTA countries or the United Kingdom, the controller is Twitter, Inc. United States of America.
Website: https://www.twitter.com
Further information & data protection: https://twitter.com/de/privacy, https://help.twitter.com/de/rules-and-policies and https://help.twitter.com/de/safety-and-security
Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

Xing

Provider: New Work SE, Germany.
Website: https://www.xing.de
Further information & data protection: https://privacy.xing.com/de and https://privacy.xing.com/de/datenschutzerklaerung

YouTube

Provider: in the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: https://www.youtube.com
Further information & data protection: https://policies.google.com/?hl=de
The transfer of personal data to third countries takes place depending on the respective Google service and subject to the application of the various EU standard contractual clauses, if these are offered by Google. Further information on this and Google’s responsibility can be found at the following link: https://business.safety.google/gdpr/. A copy of the EU standard contractual clauses can be found there.

Maps

We use maps from external services to show you our location and to enable you to use the other features of these external services in connection with the maps.
If we asked for your consent and you granted it, the legal basis for the processing is Art. 6 (1) (a) GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 (1) (f) GDPR. Our legitimate interest in this case lies in the simplified use of maps.
In the context of using external services, profiling (for the purposes of advertising, personalised information, etc.) may also occur. Profiling may also take place across services and devices. For further information on the services used, the scope of data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place in the use of the respective services and, where applicable, information on the logic involved and the scope and intended effects of such processing for you, please refer to the further information on the services we use at the end of this section and the links provided there.

OpenStreetMap

Provider: Openstreetmap Foundation, United Kingdom.
Website: https://wiki.osmfoundation.org/wiki/Main_Page
Further information & data protection: https://wiki.osmfoundation.org/wiki/Privacy_Policy
Adequate level of data protection for transfers of personal data to the United Kingdom: EU Commission adequacy decision.

Applications

If you apply for a job with us, we process your personal data in order to carry out the application procedure and to make a decision on the establishment of an employment relationship. After the application process has ended, we restrict the processing of your personal data and delete or destroy it no later than 6 months after you have received the rejection notice, or we return the application documents to you and delete or destroy any copies, unless you have approved our further use of your personal data.
If we asked for your consent and you granted it, the legal basis for the processing is Art. 6 (1) (a) GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 (1) (f) GDPR. Our legitimate interest in this case lies in the proper implementation of the application process and, if necessary, the defence against claims due to the rejection of an application. If the processing is necessary to make a decision on the establishment of an employment relationship, the legal basis for the processing is also Section 26 (1) sentence 1 BDSG (Federal Data Protection Act).

Captchas

We use captchas to protect our online offer from misuse, machine and/or automated entries (for example, in forms) and to prevent any misuse.
If we asked for your consent and you granted it, the legal basis for the processing is Art. 6 (1) (a) GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 (1) (f) GDPR. Our legitimate interest in this case is the protection of our online offer and the prevention of misuse.
We use external services to provide captchas. Profiling may also occur in the process. Profiling may also take place across services and devices. For further information on the services used, the scope of data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place in the use of the respective services and, where applicable, information on the logic involved and the scope and intended effects of such processing for you, please refer to the further information on the services we use at the end of this section and the links provided there.

Google reCAPTCHA

Provider: in the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: https://www.google.com/recaptcha/
Further information & data protection: https://policies.google.com/?hl=de

The transfer of personal data to third countries takes place depending on the respective Google service and subject to the application of the various EU standard contractual clauses, if these are offered by Google. Further information on this and Google’s responsibility can be found at the following link: https://business.safety.google/gdpr/. A copy of the EU standard contractual clauses can be found there.