You and the protection of your data are important to us!
The company STILL GmbH is delighted that you have visited our website and that you are interested in our company and products. We respect your privacy and take the protection of your personal data seriously. We therefore rely on your trustworthy cooperation when you visit our websites.
Compliance with the statutory provisions on privacy and data security is obvious for us. Our employees and agents are obligated to comply with the legal requirements of the provisions under data protection law.
The body responsible for the collection, processing and use of personal data within the meaning of the GDPR, in other data protection laws applicable in the member states of the European Union and in other data protection provisions of a legal nature is:
Collection of general access data and information
With each visit to our website, a series of general access data and information is automatically sent by the browser used on your terminal device to the server of our website/application and is temporarily stored in a so-called logfile. This data is not stored together with the rest of your personal data.
Without you actively doing anything the following information can be collected and stored until automated deletion takes place:
- the IP address of your enquiring Internet-enabled device;
- the date and time of your access to the website;
- the website/application from which the access has taken place (referrer URL);
- the browser type and version used by you;
- the operating system of your web-enabled computer;
- the name of your Internet service provider;
- the subsites that are activated on our website via your accessing system;
- the files downloaded from our website (e.g. PDF or Word documents)
The legal basis for the processing of the IP address is Section Subsection 1 (f) of the GDPR. Our legitimate interest ensues from the above listed data collection objectives. In its use of the general access data and information, STILL GmbH therefore does not draw any direct conclusions as to your personal identity. It is rather the case that the IP address of your terminal device and the other data listed above are required to
- get to know the user’s behaviour and evaluate it statistically;
- correctly deliver the content of our website;
- optimize the content of our website and the publicity for the website;
- ensure the long-term dependability of our information technology systems and of the techniques of our website;
- provide penal prosecution authorities with the information necessary for penal prosecution in the event of a cyber attack
The data is automatically deleted as soon as it is no longer required for achieving this purpose. In the case of processing data for the provision of the website, this is achieved when the respective session is ended. When the data is stored in log files, this data is deleted automatically after seven days at the latest.
Handling of personal data
Use of the online platform of STILL GmbH is fundamentally possible without any personal data. However, if you would like to call on the services of our website, the processing of your personal data could be required.
The processing of your personal data always takes place expressly in conformity with the GDPR, the new BDSG and the TMG (German Teleservices Act), and also in compliance with the country-specific data protection regulations that apply to STILL GmbH. This means that the data of users is processed only if it is legally allowed, i.e. if the data processing is required by law, the consent of the user is in hand or on account of our legitimate interest within the meaning of Section Subsection 1 (b) of the GDPR.
Personal information is any information that is explicitly used to determine your identity. This includes information such as your name, your postal or e-mail address, your telephone number, your location, your (online) identifier or any other distinctive features that are an expression of your physical, physiological, genetic, mental, economic, cultural or social identity.
Your personal data will be collected by us, in addition to the access data, only if you voluntarily specify it, e.g. as part of a survey, contact request, registration for a newsletter or for the purpose of placing an online order. In addition, personal data will be used only to the extent necessary and only for the purpose consented to by you or for a legally permissible purpose. For the use of personal data for any other purposes—in particular for advertising purposes—STILL GmbH will always obtain your express consent before collecting the data.
STILL products can be ordered via the STILL Online Shop. The applicable data processing in this context is explained to you in the Terms and Conditions of the online shop.
The STILL Newsletter
Our newsletter gives you the opportunity of receiving information about innovations and the latest offers from the company STILL, and what is happening in our industry.
Provided that you enter your e-mail address in the e-mail input box and optionally your first name and surname, then press the ‘Register for the Newsletter’ button and confirm your registration via the link that will then be sent to you at the e-mail address initially provided by you (the double opt-in procedure), we shall process and use your e-mail address to send you regular issues of the requested newsletter. Subscribing to the newsletter is voluntary and your personal data will be treated confidentially.The data processing takes place on the basis of your express consent within the meaning of Section Subsection 1 (a) of the GDPR and will be used exclusively for dispatch of the STILL Newsletter.
For dispatch of the newsletter we use the Internet-based services of the provider flatrate NEWSLETTER for the automatic consignment of personalized e-mails. Flatrate-Newsletter.de is a service of Indoblo Commerce Limited, Branch Office Germany, Am Heidberg 1, 24226 Heikendorf. We have concluded a contract with the provider in accordance with Section of the GDPR, to the effect that the latter is obligated to process user data only in accordance with our instructions and to comply with the EU data protection standard.
If you no longer wish to receive our newsletter, you have the right to be removed from the newsletter mailing list at any time. All you need to do is send an e-mail to firstname.lastname@example.org Furthermore, we offer you the possibility of removing yourself from the mailing list via the unsubscribe link in the newsletter.
When contacting our company—via our contact form or e-mail—your details, including the personal contact data cited by you for the purpose of dealing with the contact request and the processing of it, are processed in accordance with Section Subsection 1 (b) of the GDPR (for the performance of a pre-contractual measure).
For the purpose of lead generation and for long-term and successful dialogue marketing with our target groups, we use the Lead Management System (LMS)—a service of lead on GmbH, Am Kanal 1618 in 14467 Potsdam. We have concluded a contract with the provider in accordance with Section of the GDPR, to the effect that the latter is obligated to process user data only in accordance with our instructions and to comply with the EU data protection standard.
When applying for a job through our STILL website, your personal data, such as your contact details (surname, first name, address, phone number and email address) as well the data from the application documentation submitted by you (cover letter, CV and references) are processed. Your data will be processed with utmost confidentiality and will exclusively be used for the application and recruitment process. The data transfer takes place in an encrypted form.
You have the opportunity to revoke your application and have all your personal data deleted at any time. In this case, your data will be deleted and your application removed from the application process.
STILL’s online presence and website optimization
We want to get to know you better, so that we can offer you better service and at the same time be able to respect your wishes better with regard to the use of your personal data by us. For this reason, on the basis of Section Subsection 1 (f) of the GDPR we use so-called cookies (our own and those of third-party providers) and similar technologies on our website.
Cookies are small text files used by many websites worldwide and in Germany. Cookies are automatically created by your browser during your visit to our website and are stored by our server on the hard disk of your terminal device (computer or mobile device). Cookies do not harm your terminal device and do not contain any viruses, Trojans or other malicious software. In the cookie, information is stored that in each case results in connection with the specific terminal device used by you. Our cookies do not contain any personal information. Furthermore, cookies stored by our servers can be read by us only and not by any third-party websites.
In order to make the use of our platform more pleasant for you, we use so-called session cookies to be able to recognize that you have already visited individual pages on our website. After leaving our website, these are automatically deleted. For the sake of user friendliness, we also use temporary cookies, which are stored on your device for a specifically defined period of time.If you visit our site again to make use of our services, it is automatically recognized that you have already been on our website and what inputs and settings you made, so you do not have to enter them again.
You can of course also view our website without any cookies. If you do not want to make use of the advantages of cookies, you can completely disable this feature in your browser. However, this can lead to our service features being restricted. Furthermore, the storage period of cookies depends on their purpose and is not the same for all of them. The following list provides more information about disabling and managing your cookie settings in the browser used by you:
To ensure the needs-based configuration and continuous optimization of our websites, on the basis of Section Subsection 1 (f) of the GDPR (legitimate interest) we use Google Analytics—a web analysis service provided by Google Inc. of 1600 Amphitheater Parkway, Mountain View, CA 94043, USA, hereinafter referred to as Google. This creates pseudonymized usage profiles and uses a specific form of cookies.The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. Google is certified under the Privacy Shield Agreement, which provides a guarantee to comply with the EU data protection standard.
We draw your attention to the fact that Google Analytics is used only with activated IP anonymization, ‘_anonymizeIp()’, on our websites. This means that the IP address of users is truncated by Google within the territory of the European Union and in other members states that are party to the agreement on the European Economic Area in order to exclude any direct personal referability. The complete IP address will only be transmitted to a Google server in the United States and truncated there in exceptional cases.
Google will use this information on our behalf to evaluate the use of our online platform by our users, to compile reports on the activities within this online platform and to provide us with further services associated with the use of this online platform and of the Internet. Pseudonymous usage profiles of the users can be created from the data processed.
Google Analytics is not combined with any other Google data. If you, the user, would like to prevent the collection of data generated by the cookie and relating to use of the website (incl. your IP address) by Google and the processing of this data by Google, you can do this by downloading and installing the add-on for disabling Google Analytics. The browser add-on is available for Internet Explorer, Google Chrome, Mozilla Firefox, Apple Safari and Opera at: tools.google.com/dlpage/gaoptout
As an alternative to the browser plug-in or within browsers on mobile devices, it is possible via this link to set an opt-out cookie that will prevent collection by Google Analytics on this website in the future. To do so, your browser must fundamentally allow cookies to be stored. If you delete your cookies regularly, you will need to click on the link each time you visit this website.
For more information on the terms of service and privacy, please visit www.google.com/analytics/terms/en.html or www.google.com/intl/en/analytics/privacyoverview.html
Google Data Studio
On the basis of Section Subsection 1 (f) of the GDPR (legitimate interest), we use an additional data management tool of Google Analytics—Google Data Studio (beta version)—to visually create user-defined reports and interactive dynamic dashboards for our users.
For this purpose we use data from Google Analytics and no other interfaces with data sources (such as Google AdWords, Attribution 360, BigQuery, Cloud SQL, MySQL, Google Sheets, YouTube Analytics, etc.). This web tool does not require a local application and can be started via the web. Access is via a browser and the data sources are directly connected via Google Data Studio.For more information about using Google Data Studio, please visit: support.google.com/datastudio/answer/6283323
On the STILL website, data for marketing and optimization purposes are collected and stored using technologies of the analysis service provided by etracker GmbH, Erste Brunnenstrasse 1, 20459 Hamburg. This is done on the basis of Section Subsection 1 (f) of the GDPR (legitimate interest).
Usage profiles can be compiled from this data using a pseudonym. Cookies are used for this purpose.Cookies are small text files that are stored locally in the cache of your Internet browser. These cookies enable the recognition of your Internet browser. The personal data collected using etracker technology is not used without the specifically granted consent of the person concerned to personally identify visitors to our website and is not merged with any personal data about the bearer of the pseudonym.
Furthermore, you have the right at any time to object to the data collection and storage in future. In order to object to the collection and storage of your visitor data in future, you can use the following link to obtain an opt-out cookie from etracker that ensures that no visitor data of your browser will be collected or stored by etracker in the future.
This causes an opt-out cookie with the name "cntcookie" to be set by etracker. Please do not delete this cookie, if you want to uphold your objection.
In addition, our online offerings use Microsoft's Conversion Tracking (Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA) on the basis of Art. 6 (1) (f) DS-GVO (legitimate interest). Microsoft Bing Ads places a cookie on your computer if you have accessed our website via a Microsoft Bing ad. Microsoft Bing and we can thus see that someone clicked on an ad, was redirected to our website, and reached a previously determined landing page (conversion page). We only get to know the total number of users who clicked on a Bing ad and were then redirected to the conversion page. No personal information about the identity of the user is given.
If you do not want to participate in the tracking process, you can also refuse the required setting of a cookie - for example, via a browser setting that generally disables the automatic setting of cookies. For more information about privacy and cookies used with Microsoft Bing, visit the Microsoft website https://privacy.microsoft.com/en-us
Integration of services and contents of third parties
We are an agile company, so it is extremely important to us to be present and attainable wherever our customers are. On the basis of Section Subsection 1 (f) of the GDPR (legitimate interest), social plug-ins and links of social networks (Meta, LinkedIn, XING, Google+, YouTube) are therefore integrated elements on our websites. The underlying promotional purpose can be considered as a legitimate interest within the meaning of the GDPR. The responsibility for operation in compliance with data protection must be ensured by the respective providers of the social networks.
In addition, on the basis of our legitimate interests (i.e.our interest in the analysis, optimization and economic operation of our online platform within the meaning of SectionSubsection 1 (f) of the GDPR) or on the basis of your consent within the meaning of Section Subsection 1 (a) of the GDPR, we use service platforms of third-party providers to integrate their contents and services into our online platform.
Before a connection to the provider can be made, you must expressly declare yourself in agreement with the process described below and with the data transmission:
You will recognize links to the Internet pages of the social media services by the respective corporate logo.If you follow a social link, you will reach the corporate online presence of STILL on the respective social media service site. Please take into consideration that activating a link results in a connection being made to the servers of the social media service and consequently certain data may be transferred to the provider of the social media service. Such data is, for example:
- your name and e-mail address for authentication in the course of registration and the login process;
- the address of the website at which the activated link is located;
- the date and time when the website was accessed or when the link was activated;
- information about the browser used and the operating system used;
- the IP address of the enquiring Internet-enabled terminal device.
If you are logged in as a member of the respective social media service, the social media service can associate this information with your personal user account at the social media service. You can exclude the possibility of being associated with your personal user account, if you log out of your user account beforehand. The servers of the social media services are located in the USA and other countries outside of the European Union. We draw your attention to the fact that companies in these countries are subject to data protection law that does not protect general personal data to the same degree as is the case in the member states of the European Union. STILL GmbH has no influence on the scope, nature or purpose of the data processing performed by the provider of the respective social media service. We have provided you below with detailed information about the social media channels used by us:
On the basis of our legitimate interests for the purpose of analysis, optimization and the economic operation of our online platform within the meaning of Section Subsection 1 (f) of the GDPR, we—STILL GmbH—use the social plug-ins of the social network Meta. The provider is Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, hereafter referred to as ‘Meta’ for short. Plug-ins can visualize interaction elements or content, such as: videos, graphics and text articles and are recognizable by one of the Meta logos (a white ‘f’ on a blue tile, the terms "Like", "I like this" or a „thumbs-up“ sign) or are identified by the "Meta social plug-in" extension. You can view the list and appearance of the Meta social plug-ins here: developers.facebook.com/docs/plugins/
Once a user invokes a feature of this online platform that includes such a plug-in, their device establishes a direct connection with the Meta servers. The content of the plug-in is transmitted by Meta directly to the user's device and is integrated by the latter into the online platform. In the process, usage profiles of the users can be created from the data processed. We draw your attention to the fact that we have no control whatsoever over the extent of the data that Meta collects with the aid of this plug-in.
Furthermore, through integration of the plug-ins, Meta receives the information that a user has accessed the corresponding page of the online platform. If the user is logged in on Meta, Meta can associate the visit with his Meta account. If users interact with the plug-ins (e.g. by clicking the Like button or by submitting a comment), the corresponding information is transmitted by your device directly to Meta and stored there. If a user is not a member of Meta, the possibility still exists that Meta will recognize and store her/his IP address. According to information provided by Meta, only an anonymized IP address is stored in Germany.
Further information on the opt-out procedure can be found here:
On the basis of our legitimate interests for the purpose of analysis, optimization and the economic operation of our online platform within the meaning of Section Subsection 1 (f) of the GDPR, the features of the social network XING.The provider is the company XING AG, Dammtorstrasse 2932, 20354 Hamburg, Germany. Each time you visit one of our pages that contains XING features, a connection will be made to XING servers. To the best of our knowledge, no storage of personal data takes place.In particular, no IP addresses are stored nor is the usage behaviour evaluated.
We, STILL GmbH, utilise the functions of the social network Instagram on the basis of our legitimate interests for the purposes of analysing, optimising and economically operating our online service within the meaning of Section 6(1)(f) of the GDPR. The provider is Meta Platforms Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland.
On the basis of our legitimate interests for the purposes of analysis, optimization and the economic operation of our online platform within the meaning of Section Subsection 1 (f) of the GDPR, we—STILL GmbH—integrate the features of the web service YouTube for the display and replaying of videos.The provider of these features is YouTube, LLC 901 Cherry Ave.San Bruno, CA 94066 USA.YouTube, LLC is a subsidiary of Google Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, USA.
Google Tag Manager
On the basis of our legitimate interest (within the meaning ofi.e. our interest in the analysis, optimization and economic operation of our online platform within the meaning of Section 6 Subsection 1 (f) of the GDPR) the STILL website uses Google Tag Manager.This service enables website tags to be managed via an interface. Google Tag Manager implements tags only.No cookies are set and no personal data is collected. Google Tag Manager also triggers other tags that collect data where required. Google Tag Manager does not access this data. If it has been disabled at domain or cookie level, it is retained for all tracking tags, provided that they have been implemented with Google Tag Manager.
You can find detailed information about Google Tag Manager at the following link: https://marketingplatform.google.com/about/analytics/tag-manager/use-policy/
The STILL website uses the ‘Google Maps’ component to display maps and create travel directions.Google Maps is operated by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043 USA, hereinafter referred to as ‘Google’.
By using this website the user agrees to the collection, processing and use of automatically collected data and data entered by the user (including the IP address) by Google, an agent of Google or third parties. The data processing takes place on the basis of your consent within the meaning of Section Subsection 1 (a) of the GDPR.
In addition, each time the component ‘Google Maps’ is accessed, a cookie is set by Google in order to process user settings and user data for display of the page on which the component ‘Google Maps’ is integrated. This cookie is usually not deleted by closing the browser, but expires after a certain amount of time, unless it is manually deleted by you beforehand.
If you disagree with the processing of your data, you have the option of disabling the ‘Google Maps’ service and, by doing this, preventing the transmission of data to Google. To do so, you must disable the Java Script feature in your browser. However, we draw your attention to the fact that in this case you will not be able to use ‘Google Maps’ or only to a limited extent.
The terms of service for Google Maps can be found at the following link: www.google.de/intl/en/policies/terms/regional.html
Use of other active content
Transfer of data to third parties
Recipients outside of the EU
Your rights as an affected person
According to the GDPR, in addition to the right of cancellation, subject to existence of the respective statutory requirements you are entitled to the following additional rights:
- the right to confirmation of the processing of your personal data by the party responsible for the processing and the right to gratuitous information about stored data relating to your person or to your pseudonym either in writing or at your request in electronic form in accordance with Section 15 of the GDPR;
- the right to immediate correction of any incorrect personal data concerning you or to the completion of any incomplete correct personal data—also by means of a supplementary declaration—in accordance with Section 16 of the GDPR;
- the right to immediate deletion (‘right to be forgotten’) of your personal data stored by us in accordance with Section 17 of the GDPR, provided that no statutory or contractual retention periods or other statutory obligations or rights relating to further storage have to be observed; if the personal data is made public by STILL GmbH and if our company is obligated as the responsible party in accordance with Section 17 Subsection 1 of the GDPR to delete the personal data, STILL GmbH will take appropriate measures, including measures of a technical nature, in consideration of the available technology and implementation costs, to notify other parties responsible for the data processing, who process the published personal data, that the person affected has demanded from these other parties responsible for the data processing the deletion of all links relating to this personal data and of any copies or replications of this personal data, where processing is not required. The privacy officer of STILL GmbH will instigate the necessary action in individual cases. If statutory regulations do not allow deletion, your data will instead be locked by us, so that it is only accessible for the purpose of compulsory statutory provisions.
- the right to restriction of the processing of your data in accordance with Section18 of the GDPR;
- the right to data portability in accordance with Section 20 of the GDPR; in doing so you are entitled to receive the personal data relating to you, with which the person responsible at our company was provided by you, in a structured, standard and machine-readable format.Furthermore, you have the right to have your personal data transmitted directly by our responsible party to another responsible party, provided that this is technically feasible and that this does not affect the rights and freedoms of any other persons;
- the right to complain to a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence or work or that of the registered office of our company.
Right of objection
If you no longer want your personal data to be actively used for the internal purposes of STILL GmbH, in accordance with Section 21 Subsections 24 of the EU GDPR you are entitled to object at any time to such use and processing. To do so, it is sufficient to send a corresponding e-mail to email@example.com. The special case of a legally required locking of the data instead of data deletion in accordance with Section 17-19 of the EU GDPR remains unaffected.
STILL GmbH continuously applies appropriate technical and organizational security measures to protect your personal data as comprehensively as possible against manipulation, partial or complete loss and unauthorized access by third parties. Our security measures are continually being improved in line with technological development.
In addition to securing the operating environment, we use, for example, an encryption procedure on our entire web platform. All data personally transmitted by you, including your payment data, is transferred by means of the generally used and secure standard SSL (Secure Socket Layer) protocol to prevent misuse of the data by third parties. SSL is a secure and proven standard that is also used in online banking. You can recognize a secure SSL connection, among other things, by the locked padlock symbol on the status bar of your browser and if the address line contains ‘https’.
Nevertheless, we draw your attention to the fact that Internet-based data transfers fundamentally have security vulnerabilities (e.g. when communicating by e-mail), so that absolute protection of the data against access by third parties cannot be guaranteed.
Date of the last update: March 2018
Read our Terms of service