Data processing by BOOSTER Precision Components GmbH (hereinafter referred to as BOOSTER) can principally be classified into two categories:
All data required for the processing of a contract with BOOSTER will be processed for the purpose of establishing and fulfilling such contract. If there are also external service providers involved, your data will be passed on to them to the extent required in each case.
By accessing the website of BOOSTER, various information is exchanged between your device and our server. This may also include personal data. The information collected in this way is used, among other things, to optimize our website or to display advertisement in the browser of your device.
Our online services available at www.booster-precision.com;
All those offers are also collectively referred to as “Services”.
- Data controller
The data controller – i.e. the person who decides on the purposes and means of processing personal data – in connection with the Services is
BOOSTER Precision Components GmbH
Bockenheimer Landstraße 9360325 Frankfurt/Germany
Phone: +49 (69) 76758-193
E-mail: firstname.lastname@example.org</a >
- Data privacy officer
You may contact our data privacy officer as follows:
Contact form: https://www.dsextern.de/anfragen</a >
DS EXTERN GmbH
Dipl.-Kfm. Marc Althaus Frapanweg 22
Data processing in detail
General information about data processing
Unless otherwise stated, the following applies to all processing operations described below:
No obligation to provide
There is no contractual or legal obligation to provide personal data. You are not obliged to provide data.
Consequences of failure to provide data
Failure to provide the required data (data marked as mandatory during entry) means that the service in question cannot be provided. Otherwise, failure to provide data may mean that they cannot be provided in the same form and quality.
Transmission to state authorities
We transfer personal data to state authorities (including law enforcement authorities) only if this is necessary to fulfil a legal obligation to which we are subject to (legal basis: Art. 6 para. 1 c) GDPR) or it is necessary to assert, exercise or defend legal claims (legal basis Art. 6 para. 1 f) GDPR).
We do not store your data longer than we need it for the respective processing purposes. If the data are no longer required for the fulfilment of contractual or legal obligations, they are regularly deleted, unless their temporary storage is still necessary. Reasons for this could be, for example, the following:
- The fulfilment of commercial and tax retention obligations
- Obtaining evidence for legal disputes within the framework of the statutory statute of limitations
- Account information: Login/user identification and password
- Person master data: Title, salutation/gender, first name, last name, date of birth
- Address data: Street, house number, address suffixes (if applicable), postcode, city, country
- Contact information: Telephone number(s), fax number(s), e-mail address(es)
- Credentials: Information about the service through which you signed in; dates and technical information on signing in, confirmation and log-out; data provided by you when you signed in
- Order data: Ordered products, prices, payment and delivery information
- Payment data: Account data, credit card data, data on other payment services such as PayPal
- Access data: Date and time of the visit to our service; the page from which the accessing system came to our site; pages accessed during use; session ID data; also, the following information about the accessing computer system: Internet protocol address used (IP address), browser type and version, device type, operating system and similar technical information.
- Application data: Curriculum vitae, certificates, proofs, work samples, certificates, pictures
- Data according to Art. 9 GDPR: Data revealing racial and ethnic origin, political opinions, religious or philosophical beliefs or trade union membership, as well as genetic data, biometric data uniquely identifying a natural person, health data or data relating to a natural person's sex life or sexual orientation.
Accessing the website/application
This section describes how we process your personal data when you access our Services. We would particularly like to point out that the transmission of access data to external content providers (see b.) cannot be avoided due to the technical functioning of information transmission on the Internet.
A - Information on processing Category of data Intended purpose Legal basis Justifiable interest, if applicable Storage period Access data Identification, contact, communication for contract initiation Art. 6 para. 1 f) GDPR Proper functioning of services, security of data and business processes, prevention of misuse, prevention of damage through interference in information systems 7 days B - Data Transfers Recipients Category of data Transfer outside of EU/EEA External content providers that provide content (such as images, videos, social network postings, fonts, information) required to view the service. Access data No
In an ongoing application process, we process your personal data in the following way:
A - Information on processing Category of data Intended purpose Legal basis Justifiable interest, if applicable Storage period Address data, contact details Identification, contact, communication for contract initiation Art. 6 para. 1 b) GDPR, § 26 BDSG-new - 6 month Person master data Identification, contact, age verification Application details Selection of applicants B - Data Transfers Recipients Category of data Transfer outside of EU/EEA External personnel service provider Address data, contact data, personal master data, application data No
How we process your personal data when you contact our customer service can be found here:
A - Information on processing Category of data Intended purpose Legal basis Justifiable interest, if applicable Storage period Personal master data, contact data, contents of inquiries/complaints Handling of customer inquiries and user complaints Art. 6 para. 1 b), f) GDPR Customer loyalty, improvement of our service Processing of the request B - Data Transfers Recipients Category of data Transfer outside of EU/EEA Only to other departments within our business Personal master data, contact data, contents of inquiries/complaints No
Processing of orders
The following information describes how your personal data is processed when you order articles or services from us:
A - Information on processing Category of data Intended purpose Legal basis Justifiable interest, if applicable Storage period Address data, contact details Identification, contact, communication, delivery Art. 6 para. 1 b) GDPR - 10 years Person master data Identification, contact Art. 6 para. 1 b) GDPR - 10 years Payment details Payment processing Art. 6 para. 1 b) GDPR - 10 years Ordered (and possibly returned goods) Processing of orders Art. 6 para. 1 b) GDPR - 10 years B - Data Transfers Recipients Category of data Transfer outside of EU/EEA Customer center Personal master data, contact data, contents of inquiries/complaints, ordered or returned articles, payment information No Service provider for parcel shipping, forwarding, direct suppliers Address data, contact data, if necessary personal master data No
Rights of data subjects
Right to object
If we process your personal data for direct marketing activities, you are entitled to object at any time with effect for the future to the processing of your personal data for the purpose of such advertising insofar as it is associated with such direct marketing activities.
Furthermore, you are entitled – for any personal reason – to object at any time with future effect to the processing of your personal data in accordance with Article 6(1)(e) or (f) GDPR.
You can exercise your right to object free of charge.
You can contact us using the contact details referred to in section I.2.
Right of access
You have the right to be informed as to whether we do or have processed your personal data, which data is affected in particular, as well as other information as established in Article 15 of the GDPR.
Right to correction
You have the right to request from us to correct without delay any of your personal data which are not correct (Art. 16 GDPR). Considering the purposes of the processing, you have the right to request the completion of incomplete personal data - also by means of a supplementary declaration.
Right to deletion (“Right to be forgotten”)
You have the right to request from us to delete your personal data without delay, provided that one of the reasons stated in Art. 17 para. 1 GDPR applies and the processing is not necessary for one of the purposes regulated in Art. 17 para. 3 GDPR.
Right to restriction of processing
You are entitled to demand a limitation on the processing of your personal data if one of the requirements laid down in Article 18, paragraph 1, letters a) to d) GDPR is fulfilled.
Right to data portability
You have the right to receive your personal data that you have provided to us in a structured, common and machine-readable format. Furthermore, you have the right to transmit these data to another data controller without any hindrance by us or to arrange for direct transmission by us, if this is technically possible. This should always apply if the basis of data processing is consent or a contract and the data is processed automatically. This does not apply to data stored in paper form only.
Right to revoke consent
Insofar as the processing of your personal data is predicated upon your declaration of consent, you have the right to withdraw that consent at any time. The legal permissibility of processing based upon your declaration of consent prior to such withdrawal shall remain unaffected.
Right of appeal
You have a right of appeal to a supervisory authority.
Friendly Captcha (bot/spam protection)
Our website uses the “Friendly Captcha” service provided by Friendly Captcha GmbH, Am Anger 3–5, 82237 Wörthsee, Germany. Friendly Captcha is a data protection-friendly protection solution to make it more difficult for automated programs and scripts (so-called “bots”) to use our website.
For this purpose, we have integrated a program code from Friendly Captcha into our website (e.g. for contact forms) so that the visitor's end device can establish a connection to the Friendly Captcha servers in order to receive a calculation task from Friendly Captcha. The visitor’s end device solves the calculation task, which requires certain system resources, and sends the calculation result to our web server. This contacts the Friendly Captcha server via an interface and receives a response as to whether the puzzle has been solved correctly by the end device. Depending on the result, we can apply security rules to requests via our website and, for example, process or reject them.
The data is used exclusively to protect against spam and bots as described above.
The following data is processed:
- The request headers User-Agent, Origin and Referer.
- The puzzle itself, which contains information about the account and the website key to which the puzzle relates.
- The version of the widget.
- A timestamp.
Friendly Captcha does not set or read any cookies on the visitor's end device.
IP addresses are only stored in hashed (one-way encrypted) form and do not allow us or Friendly Captcha to draw any conclusions about an individual person.
The legal basis for the processing is our legitimate interest in protecting our website from abusive access by bots, i.e. spam protection and protection against attacks (e.g. mass requests), Art. 6 para. 1 lit. f GDPR.
Further information on data protection when using Friendly Captcha can be found at https://friendlycaptcha.com/legal/privacy-end-users/
We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This ensures that the service provider only processes the personal data of our website visitors in accordance with our instructions and in compliance with the GDPR.