Data Protection

The controller within the meaning of Art. 4 No. 7 GDPR is:

INTERNORM Kunststofftechnik GmbH
Robert-Bosch-Strasse 5
D- 49401 damme

Email: info@internorm.de
Impressum: https://www.internorm.de/impressum/

(hereinafter also referred to as “INTERNORM Kunststofftechnik GmbH” or “we”)

If you have any questions about this privacy policy or the processing of your personal data by INTERNORM Kunststofftechnik GmbH, you can contact our data protection officer at any time:
Carla Holterhus
Email: datenschutz@internorm.de

This privacy policy informs you how and for what purposes we process your personal data when you visit our website or use the features and services offered through it. Personal data within the meaning of Article 4 No. 1 GDPR is any information relating to an identified or identifiable natural person. A natural person is considered identifiable if he or she can be identified directly or indirectly, in particular by association with an identifier such as a name, an identification number, location data, an online identifier or to one or more special characteristics. According to Article 4 No. 2 GDPR, the processing of personal data includes in particular the collection, collection, organization, storage, adjustment or modification, reading, retrieval, use, disclosure through transmission, dissemination or any other form of provision, reconciliation or linking, restriction, deletion or destruction of such data.
If you only use our website for informational purposes, we only process the personal data that is technically necessary to display our website to you and to ensure its stability and security.
If you are a customer, interested party, supplier, employee or applicant of INTERNORM Kunststofftechnik GmbH, we also process your personal data as part of the respective contractual or pre-contractual relationship or on the basis of legitimate interests, such as to process inquiries. In addition, our specific data protection information applies. Information about this can be found in the Information on how to handle your personal data.
Below, we explain in detail which data is processed when you visit our website, for what purposes this is done and on which legal basis this processing is based in each case. Information about data processing on our social media sites can be found in the separate Social media privacy notices.

3.1 Technically required data to provide the website

When using our website for purely informational purposes, i.e. if you do not register or otherwise provide us with information, we only collect the data that your browser automatically transmits to our server. This data is technically necessary to display our website to you and to ensure the stability and security of the online offering (Art. 6 (1) (f) GDPR). These include in particular:
‍
• IP address of the requesting device,
• Date and time of access,
• Name and URL of the retrieved file,
• Amount of data transferred,
• Access status/HTTP status code,
• Website from which access is made (referrer URL),
• Used browser, operating system and its interface,
• The name of the user's Internet service provider.
‍
This data is processed to ensure the functionality of the website, to optimize the content and to ensure system security and stability. This data is not combined with other data sources or personal user profiles are created.
The data is stored in so-called server log files and is used exclusively for administrative and security-relevant purposes, such as to defend against attacks (e.g. DDoS attacks) or to investigate cases of misuse. The log files are regularly deleted or anonymized after 30 days at the latest, unless longer storage is required to preserve evidence in individual cases.
To ensure the security of your personal data, we take technical and organizational measures in accordance with Art. 32 GDPR. This includes in particular the use of SSL/TLS encryption, firewalls, access restrictions and procedures to ensure data integrity and availability.

3.1.1 Webhosting und Bereitstellung des Onlineangebots

We process our users' personal data to ensure access to our online services and their functionalities. This requires the processing of the IP address so that the content and functions can be optimally transmitted to the user's device or browser.
The processed data includes in particular usage data such as the pages visited, length of stay, click histories, frequency and intensity of use, as well as information about the devices and operating systems used. Meta and communication data are also processed, including IP addresses, time information and identification numbers, as well as log data such as logins or access times. In addition, content data such as messages, contributions, or information about authorship and creation time can be processed.
This data processing primarily concerns users of our website and online services, but also business and contractual partners. Processing purposes include providing our online offerings and optimizing usability, operating and providing the IT infrastructure, securing through technical protective measures, using content delivery networks (CDNs) and fulfilling contractual services and office and organizational tasks.
Data is stored and deleted in accordance with the information under “General information on data storage and deletion”.
The legal basis for processing is our legitimate interest in accordance with Article 6 (1) (f) GDPR.
To provide our online offering, we use rented storage space, computing capacity and software from an external hosting service provider. This service is based on our legitimate interests in accordance with Art. 6 (1) (f) GDPR.
The use of our online offering is recorded in so-called “server log files.” These logs contain information such as the retrieved websites and files, date and time of access, amounts of data transferred, retrieval status messages, the browser used and the user's operating system, the referrer URL (previously visited website) as well as the IP address and provider. This data is used for server security, for example to avoid overloads, in particular in the event of abusive access (e.g. DDoS attacks) and to ensure server stability. This processing is carried out on the basis of legitimate interests in accordance with Article 6 (1) (f) GDPR. The log file data is stored for a maximum of 30 days and then deleted or anonymized, except in cases where the data must be kept longer to resolve specific incidents.

Webflow

To create, manage and host websites and forms, we use Webflow, Inc., 398 11th St., Floor 2, San Francisco, USA. Processing is carried out on the basis of legitimate interests in accordance with Article 6 (1) (f) GDPR. For more information, see the Webflow privacy policy. Data transfer to the USA takes place within the framework of the Data Privacy Framework (DPF) and on the basis of the concluded order processing agreement: Webflow DPA.
‍
Cloudflare

To deliver content faster and securely, in particular large media files such as graphics or scripts, we use the Content Delivery Network (CDN) from Cloudflare, Inc., 101 Townsend St., San Francisco, CA 94107, USA. This is done on the basis of our legitimate interests (Art. 6 (1) (f) GDPR). For more information, see the Cloudflare's privacy policy as well as in the order processing contract: Cloudflare DPA. Data transmission is also based on the Data Privacy Framework (DPF).
‍
Amazon CloudFront

For the delivery of online content, we also use Amazon CloudFront's CDN, operated by Amazon Web Services EMEA SARL, 38 avenue John F. Kennedy, Luxembourg. Here, too, processing is carried out on the basis of legitimate interests in accordance with Art. 6 (1) (f) GDPR. For more information, see the Amazon privacy policy and in Order processing contract. Data transmission is based on standard contractual clauses provided by the service provider.
‍
JsDelivr

We use jsDelivr as a content delivery network (CDN) to deliver media and files quickly and efficiently, especially with heavy access loads. The service provider is Prospectone, Królewska 65A/1, 30-081, Krakow, Poland. This data processing is also carried out on the basis of our legitimate interests in accordance with Article 6 (1) (f) GDPR. For more information, visit the Site by jsDelivr and in their Privacy statement.

3.2 Contact form and email contact

There is a contact form on our website, which can be used to contact us electronically. If a user chooses this option, the data entered by him in the input mask is transmitted to us and stored:
‍
• Company name
• Name
• Email address
• Telephone number
• Subject
• Customer/new customer
• Free field for individual text
• The user's IP address
• Date and time of sending
• Further voluntary information
‍
Alternatively, you can contact us via the email addresses provided on the websites. In this case, the user's personal data transmitted with the email will be stored by us. The legal basis for processing the data is Article 6 (1) (f) GDPR. If the purpose of contacting us is to conclude a contract, Article 6 (1) (b) GDPR is the legal basis.
The data is used exclusively to process the contact and subsequent communication. There is no transfer of data to third parties in this context. The personal data sent by e-mail will be deleted when the respective communication with the user has ended, i.e. as soon as it can be inferred from the circumstances that the matter in question has been finally clarified.

ReCAPTCHA
We include the “reCAPTCHA” function from the service provider Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) to be able to recognize whether inputs (e.g. in online forms) are made by people and not by automatically acting machines (so-called “bots”). The processed data may include IP addresses, information about operating systems, devices or browsers used, language settings, location, mouse movements, keystrokes, time spent on websites, previously visited websites, interactions with reCAPTCHA on other websites, possibly cookies and results of manual recognition processes (e.g. answering questions asked or selecting objects in images). Data processing is based on our legitimate interest in protecting our online offering from abusive automated crawling and spam. The legal basis for processing the data is Article 6 (1) (f) GDPR.
You can find more information about Google's privacy policy here (https://policies.google.com/privacy). Of course, you can object to the processing at any time using the opt-out plugin. (https://tools.google.com/dlpage/gaoptout?hl=de).

3.3 Information applications from other providers

Google Ads
Google Ads is an online advertising service provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google is responsible.
We use Google Ads to show you online advertising that matches your interests. Google uses DoubleClick cookies to measure the success of our advertising campaigns by recording parameters such as the display of ads or clicks by users. For example, we receive statistical evaluations from Google about which ads were clicked how often and at what prices. However, we do not receive any information about the use of advertising material that allows conclusions to be drawn about individual users.
Based on the statistics generated by Google Analytics, we can form target groups (e.g. for devices that accessed a specific product page) and send them to Google via Google Ads. These target groups consist of a list of advertising IDs filtered within Google Analytics according to specific criteria (which are also stored in the “DoubleClick cookie”, for example). Google uses the target groups so that online marketing primarily addresses you about products that you are interested in (e.g. because you have already found out about them on our website). For more information about how Google processes your data for ads, please see Google's privacy policy and Google Ads Help.
The legal basis for data processing is your consent in accordance with Article 6 (1) (a) GDPR or Section 25 (1) TDDDG.
‍
Cookie consent management
On our website, we use the “Usercentrics” cookie consent management tool from Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, Germany, to obtain, manage and document your consent to the storage of certain cookies or the use of certain technologies in accordance with legal requirements.
When you visit our website, the Usercentrics consent banner gives you the option to individually define which categories of cookies or services you would like to consent to. Usercentrics stores your respective consent status for each category in a technically necessary cookie (“uc_settings”) in your browser to automatically take your preferences into account during future visits. The processing of this data is necessary to provide legal proof of consent given or denied (Article 7 (1) GDPR) and to technically implement the consent decision (Section 25 (2) TDDDG).
For setting technically necessary cookies: Art. 6 (1) (c) GDPR (fulfilment of a legal obligation in conjunction with Section 25 (2) TDDDG). For documentation and administration of consents: Art. 6 (1) (f) GDPR (legitimate interest in the legally secure verification and functionality of the cookie banner). For cookies that are not necessary and comparable technologies (e.g. statistical, convenience or marketing cookies): Art. 6 (1) (a) GDPR in conjunction with Section 25 (1) TDDDG.
You can withdraw or adjust your consent at any time with effect for the future via the cookie icon at the bottom left of our website or via the “Change cookie settings” link.
Your consent decision (consent ID and selected preferences) will be stored for a period of three years, unless you delete the corresponding cookie yourself or withdraw your consent beforehand. After the deadline, the data is automatically deleted. We have concluded an order processing contract with Usercentrics GmbH in accordance with Art. 28 GDPR, which guarantees the security and confidentiality of the processing of your personal data.
For more information about data processing by Usercentrics, please visit: https://usercentrics.com/de/datenschutzerklaerung/.
‍
Google Tag Manager
We use Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Google Tag Manager is a tool that allows us to integrate tracking or statistics tools and other technologies on our website. The Google Tag Manager itself does not create user profiles, does not store cookies and does not carry out any independent analyses. It is only used to manage and play out the tools integrated via it. However, Google Tag Manager collects your IP address, which can also be transferred to Google's parent company in the United States.
Google Tag Manager is used on the basis of Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in quickly and easily integrating and managing various tools on his website. If a corresponding consent has been requested, processing is carried out exclusively on the basis of Article 6 (1) (a) GDPR; consent can be withdrawn at any time.
‍
Google Analytics
This website uses features of the web analysis service Google Analytics. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
Google Analytics enables the website operator to analyze the behavior of website visitors. Here, the website operator receives various usage data, such as page views, length of stay, operating systems used and origin of the user. Google may summarize this data in a profile that is assigned to the respective user or their device.
In addition, Google Analytics can record your mouse and scroll movements and clicks, among other things. Google Analytics also uses various modelling approaches to supplement the collected data sets and uses machine learning technologies in data analysis.
Google Analytics uses technologies that enable the user to be recognized for the purpose of analyzing user behavior (e.g. cookies or device fingerprinting). The information collected by Google about the use of this website is usually transmitted to a Google server in the USA and stored there.
The use of this analysis tool is based on your consent to the storage of cookies in accordance with Art. 6 para. 1 lit. a DSGVO. The consent can be withdrawn at any time.
Data transmission to the USA is based on the standard contractual clauses of the EU Commission. Details can be found here: https://privacy.google.com/businesses/controllerterms/mccs/.
We have activated the IP anonymization feature on this website. As a result, your IP address is abbreviated by Google within member states of the European Union or in other states party to the Agreement on the European Economic Area before transmission to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and abbreviated there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and Internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics is not combined with other data from Google.
More information about how Google Analytics handles user data can be found in Google's privacy policy: https://support.google.com/analytics/answer/6004245?hl=de.
We have concluded an order processing agreement with Google and fully implement the strict requirements of the German data protection authorities when using Google Analytics.
This website uses the “demographic characteristics” feature of Google Analytics to be able to show website visitors suitable advertisements within the Google advertising network. As a result, reports can contain statements about the age, gender and interests of site visitors. This data comes from interest-based advertising from Google and from visitor data from third parties. This data cannot be attributed to a specific person. You can deactivate this function at any time via the ad settings in your Google account or generally prohibit the collection of your data by Google Analytics as described in the “Objection to data collection” section.
User and event level data stored by Google, which is linked to cookies, user identifiers (e.g. user ID) or advertising IDs (e.g. DoubleClick cookies, Android advertising ID), is anonymized or deleted after 14 months. Details can be found under the following link: https://support.google.com/analytics/answer/7667196?hl=de
‍
Github
We use services from GitHub (GitHub, Inc., San Francisco, USA) to manage and deliver software projects. During use, personal data may be processed and stored on the servers of this third-party provider. User master data and contact details, data on processes, other processes and their content, insofar as these are necessary to provide our services, may be affected.
If users are redirected to third-party software or platforms as part of the communication or business relationship, the third-party provider may process usage data and metadata for purposes of security, service optimization or marketing measures. We therefore recommend that you follow GitHub's privacy policy. You can find them here: https://docs.github.com/en/site-policy/privacy-policies/github-privacy-statement.
‍
Google Maps
This website uses Google's “Google Maps” service to display maps or map sections and thus enables you to conveniently use the map function on the website. Google Maps is operated by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. This allows interactive maps to be displayed directly on the website and to enable the use of the map function. The processed data may include, in particular, users' IP addresses and location data, which, however, are not collected without their consent. For more information on the purpose and scope of data collection and processing by Google Maps, please see the provider's privacy policies. There you will also find further information about your rights in this regard and settings options to protect your privacy: https://www.google.de/intl/de/policies/privacy.
The legal basis for processing the data is Article 6 (1) sentence 1 lit. a GDPR.
‍
Newsletters
We only send newsletters, emails and other electronic notifications (hereinafter “newsletters”) with the consent of the recipients or legal permission. The content of our newsletter is information about us, our services, promotions and offers. If the content of the newsletter is specifically described as part of a subscription to the newsletter, they are decisive for the consent of the users. In order to subscribe to our newsletters, it is generally sufficient to provide your e-mail address. Registration for our newsletter generally takes place in a so-called double opt-in process. This means that after registration, you will receive an email asking you to confirm your registration. This confirmation is necessary so that no one can log in with foreign email addresses. Subscriptions to the newsletter are logged in order to be able to prove the registration process in accordance with legal requirements. This includes saving the time of registration and confirmation as well as the IP address. Changes to your data stored with the shipping service provider are also logged. In our newsletter process, we process the following types of data from our communication partners: inventory data (e.g. names, addresses); contact data (e.g. e-mail, telephone numbers); meta/communication data (e.g. device information, IP addresses); usage data (e.g. websites visited, interest in content, access times). We process this data for the following purposes: direct marketing (e.g. by email or post); reach measurement (e.g. access statistics, recognition of returning visitors); conversion measurement (measuring the effectiveness of marketing measures)
We can store the unsubscribed email addresses for up to three years on the basis of our legitimate interests before we delete them in order to be able to prove a previously given consent. The processing of this data is limited to the purpose of possible defense against claims. An individual request for deletion is possible at any time, provided that the former existence of consent is confirmed at the same time. In the event of obligations to permanently comply with objections, we reserve the right to store the email address for this purpose in a blocked list (so-called “block list”).
Your data is processed on the following legal basis: Consent (Article 6 (1) (a) GDPR); legitimate interests (Article 6 (1) (1) (f) GDPR).
The registration process is logged on the basis of our legitimate interests for the purpose of proving that it has been completed correctly. Insofar as we commission a service provider to send emails, this is done on the basis of our legitimate interests in an efficient and secure delivery system.
Opt-out option: You can cancel the receipt of our newsletter at any time, i.e. withdraw your consent or object to further receipt. You will either find a link to cancel the newsletter at the end of each newsletter or you can otherwise use one of the contact options listed above, preferably e-mail.
The newsletters contain a so-called “web beacon”, i.e. a pixel-sized file that is retrieved from our server when the newsletter is opened or, if we use a shipping service provider, from its server. As part of this retrieval, technical information, such as information about the browser and your system, as well as your IP address and the time of retrieval, is first collected. This information is used to technically improve our newsletter based on technical data or target groups and their reading behavior based on their retrieval locations (which can be determined using the IP address) or access times. This analysis also includes determining whether the newsletters are opened, when they are opened and which links are clicked. This information is assigned to individual newsletter recipients and stored in their profiles until they are deleted. The evaluations help us to recognize the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users. The measurement of opening rates and click rates as well as storage of measurement results in user profiles and their further processing are based on user consent. Unfortunately, it is not possible to cancel the performance measurement separately; in this case, the entire newsletter subscription must be cancelled or objected to. In this case, the stored profile information will be deleted; legal basis: consent (Art. 6 (1) (a) GDPR).
We use Brevo (service provider: Sendinblue GmbH, Köpenicker Str. 126, 10179 Berlin) for our newsletter delivery. For more information about our service provider's privacy policy, please visit: https://www.brevo.com/legal/privacypolicy/. We have concluded an order processing contract with the service provider.
‍
We only receive anonymized information about the effectiveness of our ads and can therefore check which online marketing measures have led to a so-called “conversion” (e.g. to the conclusion of a contract). This conversion measurement is used to analyze and evaluate our marketing measures. Unless otherwise stated, we assume that cookies will be stored for a period of two years.

‍Instagram and Facebook
To place advertisements and to evaluate advertising results on the Instagram and Facebook, we use the services of Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. This processing is based on user consent in accordance with Art. 6 (1) (a) GDPR. For more information on how we handle your personal data, please see their Instagram Privacy Policy und in der Facebook Privacy Policy. Users can manage their advertising and privacy settings directly in their profile.
‍
Meta-Pixel auf Facebook und Instagram
We use the “Meta Pixel” from Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Meta”) on our website. With the help of the Meta Pixel, we can track the behavior of website visitors after they have been redirected to our website via an advertisement on Meta's platforms (Facebook, Instagram). This serves to evaluate the effectiveness of our advertising campaigns (conversion tracking) and to optimize future marketing measures. In addition, we can use the Meta Pixel to create so-called “custom audiences” in order to place targeted, interest-based advertisements.The data is processed on the basis of your consent in accordance with Art. 6 (1) (a) GDPR in conjunction with § 25 (1) TDDDG. You can revoke your consent at any time with future effect via our cookie consent management system. Meta may link the collected data to your Facebook or Instagram profile and use it for its own advertising and analysis purposes in accordance with Meta's data policy. Data is transferred to the US on the basis of the EU-US Data Privacy Framework (DPF) or the standard contractual clauses approved by the EU Commission.Meta and we have entered into a joint controller agreement in accordance with Art. 26 GDPR (“Addendum for Controllers”), available at: https://www.facebook.com/legal/controller_addendum
‍
LinkedIn Insight Tag (LinkedIn-Pixel)
We use the “LinkedIn Insight Tag” (LinkedIn pixel) from LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (“LinkedIn”) on our website. This tool enables us to measure the success of our LinkedIn campaigns (conversion tracking) and to show you interest-based advertising. To do this, a cookie is set in your browser when you visit our website, which LinkedIn uses to record that you have visited our website. LinkedIn collects in particular the URL, referrer URL, IP address, device and browser characteristics, timestamp, and page views. This data is encrypted, pseudonymized, and deleted within seven days. We only receive anonymized reports from LinkedIn about the website audience and ad performance.Processing is based on your consent in accordance with Art. 6 (1) (a) GDPR in conjunction with § 25 (1) TDDDG. You can revoke your consent at any time with future effect via the cookie consent management system. If data is transferred to the USA, this is done on the basis of the standard contractual clauses of the EU Commission. Further information on data processing by LinkedIn can be found at: https://www.linkedin.com/legal/privacy-policy. We have concluded a data processing agreement with LinkedIn in accordance with Art. 28 GDPR.

TikTok-Pixel
We use the TikTok pixel from TikTok Technology Limited, 10 Earlsfort Terrace, Dublin D02 T380, Ireland, and TikTok Information Technologies UK Limited, Kaleidoscope, 4 Lindsey Street, London EC1A 9HP, United Kingdom (hereinafter collectively referred to as “TikTok”) on our website. The TikTok pixel is a code that is executed when you visit our online offering and enables us to track the behavior of users who have accessed our website via a TikTok ad. This allows us to measure conversions, form target groups (“custom audiences”) and optimize campaign content. During use, so-called event data is processed, i.e., information about what content users view or interact with, what actions they perform, as well as technical information about the devices used (e.g., IP address, operating system, browser type, language settings, cookie data) and information from the user's profile (e.g., country, city). Processing is based on your consent in accordance with Art. 6 (1) (a) GDPR in conjunction with § 25 (1) TDDDG.
‍
Consent can be revoked at any time with future effect, e.g. via our cookie consent management tool. We have a joint controller agreement with TikTok in accordance with Art. 26 GDPR, which regulates data security and the exercise of data subject rights in particular. Users can send requests for information, deletion, or objection directly to TikTok. The agreement can be viewed at the following link: https://ads.tiktok.com/i18n/official/policy/jurisdiction-specific-terms. Further information on data processing by TikTok can be found in the TikTok privacy policy: https://www.tiktok.com/legal/page/eea/privacy-policy/de. Personal data is transferred to third countries on the basis of standard contractual clauses (SCC) approved by the EU Commission.

Spotify-Pixel
We use the Spotify pixel from Spotify AB, Regeringsgatan 19, 111 53 Stockholm, Sweden, within our online offering. The Spotify pixel is used to analyze and optimize advertising measures and to create so-called custom audiences. When a user clicks on a Spotify advertisement placed by us, a pixel parameter is added to the URL of our linked page. The Spotify pixel enables this information to be stored in a cookie and read again when the website is visited at a later date. This allows Spotify to track whether and how users interact with our website after clicking on our advertisement (so-called “conversion tracking”).We use the pixel to measure the success and reach of our Spotify campaigns, to place interest-based advertisements, and to ensure that advertising is not perceived as disruptive. Data processing is carried out exclusively on the basis of your consent in accordance with Art. 6 (1) (a) GDPR in conjunction with § 25 (1) TDDDG. Consent can be revoked at any time via our cookie consent management tool. The data collected is anonymous to us and does not allow any conclusions to be drawn about the identity of users. However, Spotify may link this data to user profiles and use it for its own advertising and analysis purposes. For more information, please refer to Spotify's privacy policy: https://www.spotify.com/de/legal/privacy-policy/
‍
YouTube
Our website uses plugins from YouTube to integrate and display video content. The provider of the video portal is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.
When you call up a page with an integrated YouTube plugin, a connection to YouTube's servers is established. This tells YouTube which of our pages you have visited. YouTube can associate your surfing behavior directly with your personal profile if you are logged into your YouTube account. By logging out beforehand, you have the option to prevent this.
YouTube is used on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR.
Details on how to handle user data can be found in YouTube's privacy policy at: https://www.google.de/intl/de/policies/privacy.

Data will only be passed on to third parties if you have given your consent or if there is a legal obligation to do so.
Under these conditions, recipients of personal data may in particular be:
‍
• Law enforcement agencies
• other GRIMME Group companies
‍
Contracted service providers may also receive such data if they meet the special confidentiality requirements of INTERNORM Kunststofftechnik GmbH. In particular, these can be companies in the categories of IT services, consulting, and sales and marketing. Appropriate data protection agreements are then concluded with the service providers.

If the data mentioned in these notes is no longer required for the original purpose, it will be deleted. Something else only applies if their — temporary — further processing is necessary for other purposes.
If a different storage period is defined for certain services, this can be found in the description of the respective service.

Data that INTERNORM Kunststofftechnik GmbH receives as a result of visiting this website is generally not transmitted to international organizations or to third countries (countries outside the European Economic Area — EEA). Insofar as INTERNORM Kunststofftechnik GmbH uses service providers from the USA, you will find the explanations above under section 3.3 Information applications from other providers.

Data from visits to this website is not used for automated decision-making within the meaning of Article 22 GDPR.

We process the data that you have sent us in connection with your application in order to check your suitability for the position (or any other open positions in our companies) and to carry out the application process. The legal basis for processing your personal data in this application process is primarily Art. 6 para. 1 lit. b) GDPR. According to this, the processing of data necessary in connection with the decision to establish an employment relationship is permitted.
Should the data be required for legal prosecution after completion of the application process, data may be processed on the basis of the requirements of Article 6 GDPR, in particular to pursue legitimate interests in accordance with Article 6 (1) (f) GDPR. Our interest then lies in asserting or defending claims.
Applicants' data will be deleted after 6 months in the event of a rejection. If you have agreed to further storage of your personal data, we will add your data to our pool of applicants. There, the data is deleted after two years. If you have been accepted for a position as part of the application process, the data from the applicant data system will be transferred to our personnel information system.
We use a specialized software provider for the application process. He acts as a service provider for us and may also become aware of your personal data in connection with the maintenance and care of the systems. We have concluded a so-called order processing contract with this provider, which ensures that data processing is carried out in a permissible manner. Your applicant data will be reviewed by the HR department after receipt of your application. Suitable applications are then forwarded internally to department managers for each open position. The rest of the process is then coordinated. In principle, only people in the company have access to your data who need it to properly complete our application process. The data is processed exclusively in data centers in the Federal Republic of Germany.
You have the right to information about the personal data we process about you. In the event of a request for information that is not made in writing, we ask for your understanding that we may then require you to provide evidence that you are the person you claim to be. You also have the right to correct or delete or restrict processing, insofar as you are legally entitled to do so. You also have the right to object to processing within the framework of legal requirements. The same applies to a right to data portability.
We have appointed a data protection officer in our company. You can contact them using the contact options listed above. You have the right to complain to a data protection supervisory authority about the processing of personal data by us.

You have the following rights vis-à-vis INTERNORM Kunststofftechnik GmbH with regard to personal data concerning you:
Right to information
Right to correction or deletion
Right to restrict processing
Right to data portability
Right to withdraw consents granted

9.1 Right of objection under Art. 21 GDPR

Right to object on a case-by-case basis
You have the right, for reasons arising from your particular situation, to object at any time to the processing of personal data concerning you based on Article 6 (1) sentence 1 lit. e GDPR (data processing in the public interest) and Article Article 6 (1) sentence 1 lit. f GDPR (data processing based on a balance of interests); this also applies to profiling based on this provision within the meaning of Article 4 no. 4 GDPR.
If you file an objection, your personal data will no longer be processed by INTERNORM Kunststofftechnik GmbH. Unless it can prove compelling legitimate reasons for processing that outweigh your interests, rights and freedoms. Or the processing serves to assert, exercise or defend legal claims.
‍
Objection to the processing of your data for direct marketing
In individual cases, INTERNORM Kunststofftechnik GmbH processes your personal data for direct marketing. You have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct marketing.
If you object to processing for direct marketing purposes, INTERNORM Kunststofftechnik GmbH will no longer process your personal data for these purposes.
‍
The objection can be made informally and should, if possible, be addressed to:
‍
INTERNORM Kunststofftechnik GmbH
Robert-Bosch-Strasse 5
D- 49401 damme
‍
Email: datenschutz[at]internorm.de
‍
You also have the right to lodge a complaint with a supervisory authority for data protection in connection with the processing of your personal data:
The State Commissioner for Data Protection of Lower Saxony
Prinzenstraße 5
30159 Hanover
Telephone: 0511 120-450
Email: poststelle@lfd.niedersachsen.de

We ask you to regularly check the content of our privacy policy. We will adjust the privacy policy as soon as changes to the data processing carried out by us make this necessary. We will inform you as soon as the changes require your cooperation (e.g. consent) or other individual notification.
If we provide addresses and contact information of companies and organizations in this privacy policy, please note that the addresses may change over time and please check the information before contacting us.

Status: 07.11.2025