PRIVACY POLICY SUPPLIERS

SUPPLIERS

PRIVACY POLICY

Controller

3CON Anlagenbau GmbH
Kleinfeld 16, 6341 Ebbs, Austria

Data Protection Coordinator

Any questions relating to the processing of your personal data and the exercise of your rights under the GDPR can be sent to our Data Protection Officer, who can be contacted at the above address using the designation “Data Protection Coordinator” or by email at: .

Purpose of Data Collection

We process personal data that we receive from you and/or your employer on the basis of our business relationships. We store this data as part of our contractual relationship. Your personal data will be used for the following purposes:

  • to request and negotiate the products and services offered by you or your company;
  • to coordinate delivery dates and process our orders, including payment and evaluation of your products and services;
  • to retain your business contact details for future deliveries or partnership;
  • to send you and conduct our supplier survey.

In addition, we collect personal data relevant to our business relationship from publicly accessible sources (e.g. commercial register, association register, press, media, internet, etc.), which we are lawfully permitted to receive and process.

Relevant personal data collected and processed in connection with our business relationship may include, for example:

  • Identification data for business purposes such as name, business telephone number and email address, business addresses and function;
  • Payment details;

Legal Basis

We process your personal data based on the following legislation:
Article 6 GDPR paragraph 1 lit. a
Article 6 GDPR paragraph 1 lit. b
Article 6 GDPR paragraph 1 lit. f

Legitimate Interests of the Controller

In order to receive contractually agreed services or to request an individual offer, we require a minimum amount of personal data. We always follow the principle of data economy. We do not collect any personal data that is not absolutely necessary for us in accordance with the “Purpose of Data Collection” as specified in this Data Protection Policy and which we are not legally obliged to collect.

Sharing your Personal Data Internally or Externally

Your personal data will only be shared internally to fulfil contractual obligations or further tasks. It will also be shared for matters related to those under “Purpose of Data Collection”.

If necessary, your personal data may be passed on externally to the following bodies:

  • administrative authorities, courts and public bodies;
  • certified public accountants for auditing purposes;
  • contractual partners who participate or are to participate in the delivery or service;
  • insurance companies in the event of the conclusion of an insurance contract regarding the service or the occurrence of an insurance event (e.g. liability insurance);
  • 3CON branches in the USA, Mexico and China as well as cooperation partners and legal representatives working for us;
  • in the area of financial and business accounting: to relevant banks.

Transfer of Data to Third Countries or International Organisations

With the exception of the international bodies listed under “Sharing your Personal Data Internally or Externally”, we do not transfer any personal data to EU third countries or international organisations. If this is necessary, you will be informed in advance and all necessary measures will be taken to ensure compliance with data protection.

Duration of Storage and Deletion of Personal Data

We observe the retention periods set in law with the greatest care. We will only store your personal data for as long as this is permitted by the defined purpose and as required by law for reasons of proof. If we want to store your data for longer as described above, we will have you confirm this in a voluntary declaration of consent.

Privacy Rights

Every data subject has the right to

  • Information (Article 15 GDPR) about the data processed;
  • Correction (Article 16 GDPR) or deletion (Article 17 GDPR);
  • Restriction of processing (Article 18 GDPR);
  • Objection (Article 21 GDPR) and a right to data portability (Article 20 GDPR). 

For the purposes mentioned, please contact our “Data Protection Coordinator” on

Profiling and Automated Decision Making

No profiling is conducted. No data is processed automatically to evaluate personal aspects. Furthermore, no decision based solely on automated processing within the meaning of Article 22 GDPR is made in order to establish and implement the business relationship.

© 3CON Anlagenbau GmbH
Imprint Data protection DEI Policy