Data protection declaration

Privacy policy (valid from: 05.2018) 

1    Introduction

Regardless of whether you are a customer, a potential customer, a job applicant or a visitor to our website, we, Ferd. Schmetz GmbH (referred to below as: "SCHMETZ", or "we") take the protection of your personal data very seriously. However, what does this mean in concrete terms?

Below we provide you with the opportunity to find out what personal data we collect and in what form it is processed. In addition you will receive an overview of the rights you are entitled to in accordance with the applicable data protection regulations. In addition we provide you with details of the contact persons you can get in touch with if you have any questions.

1.1    Who are we?

Ferd. Schmetz GmbH is a long established company specialising in premium-quality needles for textile joining processes. In more than 160 years since it was established, the SCHMETZ brand has acquired an excellent reputation as a guarantee of the best possible sewing results not just for designers, quality managers and producers, but also for fashion design companies and those for whom sewing is a hobby. The company's worldwide operations are provided by our own distributors and a dense network of dealerships on all continents. Worldwide the company has around 700 employees. SCHMETZ offers a seamless range of products and services for the individual requirements of more than 47 certain sectors of the sewing and textile processing industry as well as design ateliers and the hobby segment. The SCHMETZ mission is to apply the highest standards in terms of materials, production techniques and product quality, combined with tailor-made product solutions for every individual application.

The SCHMETZ brand is protected worldwide and enjoys a high level of confidence and recognition among consumers.

On joining the Groz-Beckert Group in January 2017, SCHMETZ was able to expand its technological resources and regional coverage.

The responsible party as defined by the applicable data protection legislation is

Ferd. Schmetz GmbH

Bicherouxstr. 53-59

52134 Herzogenrath

Email: info@schmetz.com
Tel.: +49 (0)2406 85-0
Fax: +49 (0)2406 85-222

We take all the measures required under the applicable data protection legislation in order to ensure the protection of your personal data.

On all questions regarding this privacy policy you are requested to contact our data protection officer.

2B Advice GmbH
Lars Holdorf
Joseph-Schumpeter-Allee 25
53227 Bonn

Tel.: +49 (0)228 926 165-120

2    Scope of the privacy policy

By the processing of personal data the law means activities such as the collection, recording, organisation, sorting, storage, adaptation or modification, reading, querying, use, disclosure by transmission, dissemination or any other form of providing, comparing or linking, restricting, deleting or destroying personal data..

Personal data is all information relating to an identified or identifiable natural person.

This privacy policy concerns the personal data of customers, potential customers, applicants or visitors,

and applies to our website www.schmetz.com.

3    What personal data do we collect?

We collect your personal data when, for example, you contact us as a customer or potential customer. This can happen, for example, if you contact us via our SERVICEHOUSE.

We process the following personal data:

  • Personal identification details, e.g.
    • first name and surname, address, email address, telephone number
  • Company-related data, e.g.
    • legal form
  • The information you provide us with relating to your interests and wishes, e.g.
    • via the contact form or our SERVICEHOUSE questionnaire

Further information comparable with these data categories.

3.1    Sensitive data

Sensitive data, i.e. specific categories of personal data such as information on membership of a specific religion or trade union is not collected in this way.

3.2    The personal data of minors

The personal data of children or minors is only collected if they make use of the offers in our SERVICEHOUSE.

3.3    Use of cookies

No cookies are set when you visit our website.

4    Why do we process your personal data, and on what legal basis?

4.1    Contractual fulfilment

We process your data so that we can fulfil our contracts. This also applies to any details you provide us with in the form of pre-contractual correspondence. The concrete purpose of the data processing depends on the individual product and your enquiry.

4.1.1    Implementation of the contractual relationship

For the purpose of the contractual relationship we require your name, address, telephone number and/or email address so that we can contact you.

4.1.2    Offer of goods and services and provision of information

We require your personal data in order to check if and what products and services we can and are permitted to offer you. We also process your personal data so that we can provide you with the information you require.

4.1.3    Fulfilment of the application process

We process the data which you send us as part of your application in order to check if your professional qualifications are suitable. We only use your information for the application procedure, and on the conclusion of a contract of employment we integrate it into your personal file. If no contract of employment is concluded, your information is deleted or destroyed. We will not use your information as an applicant for other purposes than for dealing with your application.

4.2    Consideration of your interests and ours We improve our services and offer you suitable products

4.2.1    Data processing and analysis for marketing purposes

Your requirements are important to us, and we attempt to provide you with customised information about our products and services. For this purpose we apply findings based on our business relationship as well as market research. The main purpose of this is to adapt our product suggestions to your requirements. In this context we guarantee that your data will always be used in compliance with the applicable data protection legislation. Important: You can at any time object to the use of your personal data for this purpose.

What do we analyse and process in concrete terms?

  • Information relating to your visit to our website

4.2.2    Measures which serve your security

Among other purposes we use your personal data in the following cases:

  • We analyse your data in order to protect you or your company against fraudulent activities. This can be the case, for example, if you become a victim of identity theft or if unauthorised persons have gained access to your user account in some other way.
  • Our IT support cooperates closely with you in the event of technical problems in order to improve the reliability of our online applications. In this context we also evaluate the logfiles relating to page access, actions implemented etc.
  • In order to ensure IT security;
  • In order to record and prove the facts of the situation in the event of possible legal disputes.

4.3    On the basis of your consent

If you have provided your consent for the processing of your personal data for one or more concrete purposes, the processing of your data by us will be permissible. With regard to the future you can withdraw this consent at any time, without incurring any costs other than the transmission costs relating to the basic tariff (cost of your Internet connection). Withdrawal of your consent will not, however, affect the legality of the processing implemented up to the time of withdrawal.

5    Where we send your data and why

5.1    Data use within SCHMETZ

Within SCHMETZ access to your personal data is only provided to those sections which require it in order to fulfil our contractual or legal obligations or to protect our legitimate interests.

5.2    Data use outside of SCHMETZ

We respect the protection of your personal data and only pass on information about you if required to do so by law, if you have given your consent, or to fulfil contractual obligations.

For the following recipients there is a legal obligation to pass on your personal data:

  • Public or regulatory authorities, e.g. tax or customs authorities;
  • Certified public accountants.

In order to fulfil our contractual obligations we cooperate with other companies.
These include:

  • Transport providers;
  • Organisers and training providers, if you have registered for trade fairs or events via us;
  • Banks and financial service providers for processing financial transactions.

Our own service providers
In order to make our operations more efficient, we use the services of external service providers who may receive personal data from you for the purposes described, including IT service providers, printing and telecommunications service providers, debt collection, consulting or sales companies.

Important: We pay close attention to your personal data!

In order to ensure that these service providers comply with the same data protection standards as our company, we have concluded appropriate contracts for order processing. These contracts regulate the following:

  • They ensure that third parties only receive access to data which they need to fulfil the tasks entrusted to them;
  • The service providers only grant access to your data to employees who have explicitly committed themselves to comply with data protection regulations;
  • The service providers comply with technical and organisational measures that guarantee data security and data protection;
  • What happens to the data when the business relationship between the service provider and us is terminated.

For service providers based outside the European Economic Area (EEA), we take special security measures (e.g. by using special contractual clauses) to ensure that the data is treated with the same level of care as in the EEA. We regularly check all our service providers for compliance with our specifications.

Highly important: Under no circumstances do we sell personal data to third parties!

5.3    Use of your data within the Groz-Beckert Group

In order to provide you with the best possible service, we occasionally exchange data within the group. We guarantee that the applicable data protection regulations are observed and that your personal data is adequately protected at all times.

For this reason, we have taken appropriate measures to ensure compliance with data protection within the Groz-Beckert Group:

We have concluded appropriate contracts with the relevant companies to ensure that personal data that is exchanged within the group always remains protected.

In accordance with these contracts and the applicable data protection laws, we transfer personal data only for the purposes stated in this privacy policy. The protection of your personal data is guaranteed by adherence to technical and organisational measures. If possible, we protect your data by measures for pseudonymisation or anonymisation. If subsidiaries are located outside the EEA, we take appropriate measures to ensure that the personal data processed there is just as protected as within the EEA.

6    Are you obliged to provide us with personal data?

In the context of the business relationship between you and SCHMETZ, we require the following categories of personal data from you:

  • All necessary data for the establishment and implementation of a business relationship;
  • Data required to fulfil contractual obligations;
  • Data that we are legally obliged to collect.

Without these data it is not possible for us to enter into or execute contracts with you.

7    Deletion periods

In accordance with the applicable data protection regulations, we do not store your personal data longer than we need it for the purposes of the respective processing. If the data is no longer required for the fulfilment of contractual or legal obligations, it will be regularly deleted by us, unless its temporary storage is still necessary. The following reasons may exist for further storage:

  • Obligations under commercial and tax law to retain data must be observed: The periods for storage, primarily in accordance with the provisions of the German Commercial Code and the Tax Code, are up to 10 years.
  • To obtain evidence in the event of legal disputes within the framework of the statutory limitation provisions: In civil law, limitation periods can be up to 30 years, with regular limitation periods occurring after three years.

8    Your rights

Within the scope of processing your personal data, you also have certain rights. More detailed information can be found in the corresponding provisions of the EU General Data Protection Regulation - GDPR (Articles 15 to 21).

8.1    Right to information and correction

You have the right to obtain information from us as to which of your personal data we process. If this information is not (no longer) correct, you can ask us to correct the data, or, if it is incomplete, to complete it. If we have passed on your data to third parties, we will inform the relevant third parties in the event of a corresponding legal situation.

8.2    Right to deletion

You can request the immediate deletion of your personal data under the following circumstances:

  • When your personal information is no longer needed for the purposes for which it was collected;
  • If you have revoked your consent and there is no other legal basis for the data processing;
  • If you object to the processing and there are no overriding legitimate reasons for the data processing;
  • If your data is processed unlawfully;
  • If your personal data must be deleted in order to comply with legal obligations.

Please note that before deleting your data we must check whether there is a legitimate reason for processing your personal data.

8.3    Right to limitation of processing ("right of blocking")

You may request us to restrict the processing of your personal data for one of the following reasons:

  • If you dispute the accuracy of the data, until we have had the opportunity to verify the accuracy of the data;
  • If the data is processed unlawfully, but instead of deletion you merely request the restriction of the use of the personal data;
  • If we no longer need the personal data for the purposes of processing, but you still need it to assert, exercise or defend legal claims;
  • If you have filed an objection against the processing and it is not yet clear whether your legitimate interests outweigh ours.


8.4    Right of objection

8.4.1    Right to object on a case-by-case basis

If the processing is carried out in the public interest or on the basis of a balance of interests, you have the right to object to the processing for reasons arising from your particular situation. In the event of an objection, we will not process your personal data further, unless we can prove compelling reasons worthy of protection for processing your data which outweigh your interests, rights and freedoms, or because your personal data serves to assert, exercise or defend legal claims. Any objection will not preclude the legality of the processing prior to the objection.

8.4.2    Objection to advertising

In cases where your personal data is used for advertising purposes, you can object to this form of processing at any time. We will then no longer process your personal data for these purposes.

The objection can be made free of specific form and should be addressed to:

Ferd. Schmetz GmbH
Bicherouxstr. 53-59

52134 Herzogenrath

Email: info@schmetz.com

Tel.: +49 (0)2406 85-0

8.5    Right to data transferability

You have the right to receive personal data that you have given us for processing in a transferable and machine-readable format upon request.

8.6    Right of appeal to the supervisory authority (Art. 77 GDPR)

We try to process your requests and claims as quickly as possible in order to protect your rights accordingly. Depending on the frequency of enquiries, however, it may take up to 30 days before we can inform you further about your request. If it should take longer, we will inform you promptly of the reasons for the delay and discuss the further procedure with you.

In some cases we may not or cannot give you any information. If legally permissible, we will inform you of the reason for refusing to provide the information.

However, if you are not satisfied with our answers and reactions or believe that we are in breach of applicable data protection laws, you are free to file a complaint with both our data protection officer and the relevant supervisory authority. The supervisory authority responsible for us is:

State Commissioner for Data Protection and Freedom of Information, North Rhine-Westphalia

PO Box 20 04 44

40102 Düsseldorf

Tel.: 0211/38424-0

Fax: 0211/38424-10

Email: poststelle@ldi.nrw.de