Hamburg, 15.05.2020
HELM AG (hereinafter “we” or “Controller”), Nordkanalstrasse 28, 20097 Hamburg, Germany is responsible for the Helm Community Portal (referred to as Helm Portal or portal).
Our Data Protection Officers can be contacted via the following e-mail address: datenschutzbeauftragter@helmag.com.
We process the personal data that you make available to us for usage of the Helm Portal itself as well as for running and optimizing the portal.
For using the Helm Portal you will be invited via e-mail, which allows you to get access to the portal website after you successfully registered to the portal. For the registration process we will need your e-mail-address as well as further professional data for creating your account. It is possible that you already provided the professional data and e-mail-adress, such as the company you work for and professional contact details in the past. The legal basis for processing your personal data in this context is Art. 6 (1) 1(b) of Regulation (EU) 2016/679 (General Data Protection Regulation = GDPR). The processing is necessary for the performance of the contract for accessing and using the Helm Portal.
When you visit our portal, your browser automatically sends us information that is then temporarily saved in a logfile. This information includes your IP address, the date and time of your visit, time deviation from GMT, HTTP status code as well as the domain name of the website from which you visited ours (referrer URL). We process these data to ensure the correct display, use, stability and security of the portal.
The legal basis for data processing is Art. 6 (1) 1(f) GDPR. Legitimate interest is provided by the above-mentioned data-processing purposes.
We additionally use cookies on our website. Further information on these is available below.
Should you have questions about the portal or regarding other matters, we give you the option of contacting us via email or other means. In this context we process your personal data which you provide us for your enquiry and which enables us to be able to provide you with an individualised response to your request.
Within this, the processing of your data is necessary either to carry out pre-contractual measures with you (Art. 6 (1) 1(b) GDPR) or is based on our legitimate interest in responding to your enquiry (Art. 6 (1) 1(f) GDPR) in an effective and adequate fashion.
We use ‘cookies’ on the Helm Portal. These are text files that are saved on your computer or other end-devices such as your smartphone or tablet. Using cookies helps us design our portal to meet the needs of users and to continually optimize it, as well as to analyse how you use our portal in order to improve it to better serve your interests. We only use cookies which are required for the functionality of the Helm Portal.
For instance, session cookies show us when you have visited individual pages of our website. Session cookies are automatically deleted when you leave the Helm Portal.
In addition, we also use temporary cookies that are saved on your computer or end-devices for a limited period of time. These cookies indicate to us what data you entered and what settings you selected on a previous visit to our portal, so that you do not have to re-enter or reselect these.
Our use of cookies may involve processing of your personal data, e.g. your IP address and information on how you interact with our website. The processing of your data in connection with our use of cookies for the above-mentioned purposes is based on our legitimate interest in order to fulfil the purposes listed above (Art. 6 (1) 1(f) GDPR).
When you first visit the Helm Portal, you will be required to expressly accept the use of cookies through an “Accept” button, which will be enabled in the cookie notification. In any case, please note that you can block or disable cookies by configuring your browser to block the installation of some or all cookies. Almost all browsers allow you to be alerted to the presence of cookies or block them automatically.
HELM AG’s personnel have access to your data. Furthermore, Helm subsidiary companies located in the EU will have access to your data. It is in our legitimate interest (Art. 6 (1) 1(f) GDPR) to provide access to your data to our subsidiary companies for effective usage of the Helm Portal. Only the subsidiary company which is involved in the relevant trade relation will have access to your data.
Additionally, we commission third parties to carry out data processing on our behalf, such as a cloud provider or other entities involved in running the portal. In such cases their contractual relationships with us are governed by the requirements of the applicable data protection law.
Otherwise your data will not be transferred to third parties (as Controllers) unless we specifically inform you of this in advance, and such data transfer to third parties is permitted under an applicable statutory provision (e.g. your explicit consent, the execution of a contract, or on the basis of other statutory provisions), or we are legally obliged to make this data available to fulfil an applicable statutory requirement.
As a general principle we only store personal data until the originally intended and approved purpose of saving and storing it has been fulfilled. Any personal data which is required for running the portal (user data for example) is processed and stored as long as you are a user of the portal.
Otherwise any personal data is deleted as soon as it is not required anymore. Notwithstanding the above general principle, data is not deleted if this information is necessary to fulfil a statutory obligation that we are required to uphold. For instance, we are subject to statutory commercial as well as taxation data-storage provisions that require certain data to be stored for up to ten years under applicable local law.
You have the following rights:
You have the right to lodge an official complaint with the responsible supervisory authority.
You have the right under the provisions of Art. 21 (1) and Art. 21 (2) GDPR to refuse the processing of your personal data at any time that is carried out in pursuit of our legitimate interests (Art. 6 (1) 1(f) GDPR).
If you have consented to the processing of your personal data, you have the right to withdraw this consent at any time.
To exercise these rights please e-mail our Data Protection Officers using the contact details provided above.