en|de
Go to content
Data Protection Statement
1. Data protection

We take the protection of the data you send us, including your personal data, very seriously. ALS GmbH performs all data processing operations with due consideration of statutory data protection regulations.
We would like to point out that there may be technical security gaps when data is transferred on the internet (e.g. during e-mail  communication). It is not possible to guarantee absolute protection of the data against access by third parties.
2. Name and address of the responsible person

The responsible person in the sense of the General Data Protection Regulation (GDPR) and other national data protection laws of the member states, as well as other data protection provisions, is

ALS Automated Lab Solutions GmbH
represented by the Managing Directors Jens Eberhardt, Gerd Bornmann and Carsten Wolter
Otto-Eppenstein-Str. 30
07745 Jena
Deutschland

Telefon: +49 (3641) 4820 -0
E-Mail:   info@als-jena.de
Website: www.als-jena.com
3. Processing of personal data related to our website

3.1. Consent to data processing / General

Your consent / possibility to revoke it
It is generally possible to use our website without providing any personal data.
If names, addresses, telephone numbers or e-mail addresses are collected on our websites and subsequently processed, this is done based on the following provisions.
If you have to actively input this data yourself, the data is processed on the basis of your voluntary consent, which you grant through your input and by using our options for getting in touch. You can revoke your consent in written form at any time; the legitimacy of the data that was lawfully processed up to the point of revocation shall not be affected by this. The legal foundation for the consent can be found in Article 6 (1) a), Article 7 GDPR.
Your consent applies to the purpose of the response to your communication with us through to the final termination of the correspondence.
Furthermore, the authorisation for the data processing can be extended to other permissions e.g. executing or initiating contracts per Article 6 (1) b), initiating and executing an employment relationship as per § 26 GDPR and others as explained below.
Personal data will not be passed on to third parties without your express authorisation unless this is required by the technical foundations of the communication via our contact data. We use our internet providers and telephone providers for transmitting your request sent to us electronically. We have data processing contracts with these providers, which ensure compliance with the legal foundations of the  GDPR.

Legal foundation for processing personal data
If we gather consent for processing personal data from the data  subject, Article 6 (1) a) of the EU General Data Protection Regulation (GDPR) shall serve as the legal foundation.
If processing personal data is required for executing a contract where the contractual party is the data subject, Article 6 (1) b GDPR shall serve as the legal foundation. This shall also apply to processing operations required for performing precontractual measures.
If processing personal data is required for fulfilling a legal obligation of our company, Article 6 (1) c GDPR shall serve as the legal foundation.
In the event that the essential interests of the data subject or another natural person make processing of personal data necessary,  Article 6 (1) d GDPR shall serve as the legal foundation.
If the processing is required for protecting a legitimate interest of our company or a third party, and if the interests, fundamental rights and fundamental freedoms of the data subject do not override the  first-mentioned interest, Article 6 (1) f GDPR shall serve as the legal foundation for the processing.

Deletion of data and duration of storage
The personal data related to the data subject is deleted or blocked  as soon as the reason for storing it has lapsed. Furthermore, data can be stored if this is foreseen by the European or national legislator in EU decrees, laws or other regulations to which the responsible party is  subject. Data can also be blocked or deleted if a storage period specified by the stated norms comes to an end, unless there is a requirement to store the data further for concluding or executing a contract.
3.2. Creation of log files

Description and scope of the data processing
The website operator collects and automatically saves information in so-called server log files, which your browser automatically sends to us. These are:
  • IP address
  • Date and time of the enquiry
  • Time zone difference from GMT
  • Content of the website
  • Access status (http status)
  • Data volume transferred
  • Websites from which the user’s system accesses our website
  • Web browser, operating system, language and version of the browser
This data will not be combined with other data sources. We reserve the right to review this data retrospectively if we become aware of specific indications of unlawful use.

Legal foundation for the data processing
The legal foundation for the temporary storage of date and log files is Article 6 (1) f of the GDPR.

Purpose of the data processing
Storage in log files aims to guarantee the functionality of the  website. We also use the data to ensure the security of our information technology systems. The data is not evaluated for marketing purposes.
3.3. Use of Cookies

Description and scope of the data processing
Our website partly uses so-called cookies. Cookies do not damage your computer and do not contain viruses. Cookies serve to make the use of our website more comfortable and to offer you an extensive range of functions. Cookies are small files that are stored on your computer with the help of your Internet browser.
The user data collected by technically necessary cookies are not used to create user profiles.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, accept cookies for certain cases or generally exclude them and activate the automatic deletion of cookies when closing the browser.
Please note that if you deactivate cookies, the functionality of this website may be restricted.

How you can deactivate Cookies
You can deactivate cookies in your browser with the following instructions.

Firefox:
Open the Firefox browser.
Select "Menu" and then "Settings" in your function bar.
Select the "Privacy" tab.
Select for "Enhanced tracking protection" "user-defined settings".
Here you can select which type of cookies you want to deactivate.

Internet Explorer:
Open Internet Explorer.
Click on the "Tools" button and then on "Internet Options".
Click the Privacy tab.
Under "Cookies and Privacy," select the following option: "Reject cookies and Web site data (may cause problems with Web sites).

Microsoft Edge:
Open Microsoft Edge
Click on the menu button in the upper right corner and select "Settings".
Scroll down to the bottom and select "Show advanced settings".
Below you will find the category "Cookies" with several selection options.
If you select the option "Block all cookies", they will no longer be saved.
Note: Please note that some websites may not work without cookies.

Google Chrome:
Open Google Chrome.
Select "Preferences".
Click 'Advanced'.
On the Privacy tab, click Content Settings.
In the "Cookies" section, disable "Sites are allowed to store and read cookie files" (recommended).

Safari:
Open Safari.
Select "Settings" in the feature list (grey gear in upper right corner) and click "Privacy".
Under "Accept cookies", you can specify whether and when Safari should accept cookies from websites.

Legal foundation for the data processing
The legal foundation for the processing of personal data using cookies is Art. 6 para. 1 lit. f DSGVO.
3.4. Use of Cookiebot

Description and scope of the data processing
We use the consent management service Cookiebot provided by Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark (Cybot) on our website. Cookiebot enables us to obtain and manage consent from website users for data processing by means of a cookie banner. The software automatically creates a DSGVO-compliant cookie notice for our website visitors. In addition, Cookiebot scans, controls and evaluates all cookies and tracking measures on our website.

If you allow cookies, the following data will be sent to Cybot and stored:

IP address (anonymized, the last three digits are set to '0').
Date and time of consent
website URL from which the consent was sent
anonymous, random and encrypted key
cookies allowed by the user as proof of consent

The key and consent status are stored in the browser for 12 months using the "CookieConsent" cookie. This preserves your cookie preference for subsequent page requests. With the help of the key, your consent can be proven and traced.


Please refer to Cybot's Cookie Statement at https://www.cookiebot.com/de/cookie-declaration/ for detailed information on which cookies may be used by Cookiebot.

Place and duration of data storage
The processing of the collected data takes place exclusively in the European Union. All user data will be deleted by Cookiebot after 12 months from cookie consent or immediately after cancellation of the Cookiebot service. For more information on how to object to and remove Cybot and its data collection, please visit: https://www.cookiebot.com/de/privacy-policy/.

Prevention of data storage or deletion of data
You have the right to access and have your personal data deleted at any time. By rejecting the use of cookies via the cookie banner, you can prevent data collection and storage.

Please also see our general comments on deleting and deactivating cookies in section 5.

Legal foundation for the data processing
The processing is necessary for the fulfillment of a legal obligation (Art. 7 para. 1DSGVO) to which we are subject (Art. 6 para. 1 p. 1 lit. c DSGVO).
3.5. Use of Google Analytics

Description and scope of the data processing
This website uses Google Analytics, a web analysis service of Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google").
Processing is for the purpose of analysing this website and its visitors. For this, Google will use the information obtained to analyse your use of the website on behalf of the operator of this website, to generate reports on website activity and provide other services to the website operator in connection with website and internet use. Google does not combine the IP address transmitted by your browser in connection with Google Analytics with other data.

Place and duration of data storage
Google Analytics uses cookies which enable an analysis of your use of the website. The information about your use of this website generated by the cookies is generally transferred to a Google server in the USA and stored there. IP anonymisation is activated on this website. This means that Google first truncates your IP address within member states of the European Union or other member states of the Agreement on the European Economic Area. The full IP address is only transferred to a Google server in the USA and truncated there in exceptional cases. Your data may also be transferred to the USA. Transfer of data to the USA requires an Adequacy Decision by the European Commission.  
All user data will be deleted by Google Analytics after 14 months.

You can find more information concerning the terms and conditions of use and data protection at https://www.google.com/analytics/terms/gb.html or https://policies.google.com/?hl=en.

Prevention of data storage or deletion of data
By rejecting the use of cookies via the cookie banner, you can prevent data collection and storage.
You can also block the storage of the cookies by making an appropriate setting on your browser; however, please note that in this case you may not be able to fully use all the functions of this website. You can also prevent transfer of the data generated by the cookie relating to your use of the website (including your IP address) to Google and the processing of these data by Google by downloading and installing the browser plugin available at the following link https://tools.google.com/dlpage/gaoptout?hl=en.

Please also see our general comments on deleting and deactivating cookies in section 5.

Legal foundation for the data processing
Processing takes place in accordance with Art. 6(1)f GDPR based on the legitimate interest in providing a needs-based and goal-oriented website.
3.6. Contact via the opportunities for making contact offered on our website

Description and scope of the data processing
You can contact us via the contact media provided on the website  (e-mail addresses, fax, telephone, contact forms). In this case, the personal data sent by the user will be processed.
No data will be transferred to third parties in this regard. The data will solely be used for processing the conversation.

Contact forms
On our website contact forms are available, which can be used for electronic contact. If a user makes use of this possibility, the data entered in the input mask will be transmitted to us and stored. These data are:
  • name and address
  • telephone number
  • e-mail address
  • position
  • industry / university
  • working area
  • areas of interest
Your consent will be obtained for the processing of the data as part of the sending process and reference will be made to this data protection declaration.
The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.

Legal foundation for the data processing
The legal foundation for processing the data is the consent granted above as per Article 6 (1) a, and in addition Article 6 (1) f GDPR. Our legitimate interests lie in being able to follow up on the contact and respond to it appropriately and in good time. If the contact is aimed at concluding a contract, Article 6 (1) b GDPR shall be an additional legal foundation for the processing.

Purpose of the data processing
The personal data collected during the contact process is only processed for handling the content of the contact request and responding to it.

Duration of the storage
The data will be deleted as soon as it is no longer required for processing purposes.
If the conversation results in further permissions for data  processing (e.g. concluding and then executing a contract), we shall be authorised to continue with the data processing through to completion of  the contract performance and the corresponding warranty and guarantee timeframes. The data will then be deleted after these timeframes have come to an end.
3.7. Use of YouTube

On some of our pages, we directly integrate videos stored on YouTube. However, YouTube videos are only accessed by clicking on them separately. This technique is also called "framing".

YouTube content is only integrated in the "extended data protection mode". YouTube provides this itself, thereby ensuring that YouTube does not initially save any cookies on your device. However, when you access the relevant pages, the IP address and the other data mentioned in Section 4 are transmitted and YouTube are thus informed in particular which of our Internet pages you have visited. However, this information cannot be assigned to you unless you have registered with YouTube or another Google service (e.g. Google+) or are permanently registered before accessing the site.

As soon as you start the playback of an integrated video by clicking on it, YouTube only stores cookies on your device that do not contain any personally identifiable data, unless you are currently logged in to a Google service. These cookies can be prevented by appropriate browser settings and extensions.

Address and link to third-party privacy notices:

Google/YouTube: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland - Privacy Policy: https://policies.google.com/privacy
4. Processing of personal data related to our business relationship

In the context of your business relationship with ALS, we may process the following categories of personal data of contact persons at (prospective) customers, suppliers, vendors and partners (each a “Business Partner”):
  • Contact information (such as full name, work address, work telephone number, work mobile phone number, work fax number and work email address);
  • Payment data (such as data necessary for processing payments and fraud prevention, including credit/debit card numbers, security code numbers and other related billing information);
  • Further information necessarily processed in a project or contractual relationship with ALS or voluntarily provided by the Business Partner, such as personal data relating to orders placed, payments made, requests, and project milestones;
  • Personal data collected from publicly available resources, integrity data bases and credit agencies; and
  • If legally required for Business Partner compliance screenings: date of birth, ID numbers, identity cards and information about relevant and significant litigation or other legal proceedings against Business Partners.

We may process the personal data for the following purposes:
  • Communicating with Business Partners about products, services and projects of us or Business Partners, e.g. by responding to inquiries or requests or providing you with technical information about purchased products;
  • Planning, performing and managing the (contractual) relationship with Business Partners; e.g. by performing transactions and orders of products or services, processing payments, performing accounting, auditing, billing and collection activities, arranging shipments and deliveries, facilitating repairs and providing support services;
  • Administrating and performing marketing campaigns, market analysis, sweepstakes, contests, or other promotional activities or events;
  • Conducting direct marketing activities;
  • Maintaining and protecting the security of our products, services and websites, preventing and detecting security threats, fraud or other criminal or malicious activities;
  • Ensuring compliance with legal obligations (such as record keeping obligations), export control and customs, Business Partner compliance screening obligations (to prevent white-collar or money laundering crimes), and ALS policies or industry standards; and
  • Solving disputes, enforce our contractual agreements and to establish, exercise or defend legal claims.

The legal basis for ALS processing data about you is that such processing is necessary for the purposes of:
  • ALS exercising its rights and performing its obligations in connection with any contract ALS makes with you (Art. 6 (1) (b) GDPR),
  • Compliance with legal obligations of ALS (Art. 6 (1) (c) GDPR), and/or
  • Legitimate interests pursued by ALS (Art. 6 (1) (f) GDPR).

Generally the legitimate interest pursued by ALS in relation to our use of your personal data is the efficient performance or management of our business relationship with you.
In some cases, we may ask if you consent to the relevant use of your personal data. In such cases, the legal basis for ALS processing that data about you may (in addition or instead) be that you have consented (Art. 6 (1) (a) GDPR).

5. Retention periods

We delete your personal data when the storage of this personal data is no longer necessary for the purposes for which it was collected or otherwise processed, or to fulfill legal obligations (e.g. tax or commercial law retention obligations).
6. Recipients

Within affiliate companies of ALS the organisational units provided with your data are those that require them for the purpose of processing them. Your personal data may be provided to external processors contracted by ALS for these same express purposes. These are companies providing services in the fields of IT services, telecommunications, printing services, etc.
7. Third country transfer

Some of the above recipients of your data may be located in countries outside the European Union whose data protection laws may be less comprehensive. In such cases, we will ensure that appropriate safeguards are in place to protect your personal data in accordance with our legal obligations.
8. Your further rights

Your further rights linked to the processing of your personal data are presented below.

Right to data portability
You have the right to request that we transfer your data to another body if the processing is based on your consent or the execution of a contract, and we perform the processing via an automated procedure.

Right to information
You have the right to demand confirmation from us whether and how we obtain personal data from you. If this is the case, you can demand the following information about the details already provided in this data protection statement:
  • purpose of the processing;
  • the categories of personal data that are processed;
  • the recipient or categories of recipients to whom the data has been or will be disclosed;
  • duration of the storage and the criteria for establishing the duration;
  • possible  further information as per Article 15 GDPR, if this has not already been captured through a previous data protection statement or this one.

Right to amendment, deletion or blocking
With consideration of the purposes for the data processing, you have the right to amend your data. You also have the right to delete or block your data if it is no longer required for the purpose of the processing if you have raised an objection as per Article 21 Paragraph 2 GDPR, insofar as personal data was unjustly and unlawfully processed or the further grounds for deletion as per Article 17 GDPR exist, and insofar as the exceptions under Article 17 Paragraph 3 GDPR do not apply. Data is blocked if the legal situation does not permit deletion

Restriction in processing
As per Article 18 GDPR, you can demand that the processing of your data be restricted in the event of an objection to the correctness for the duration of the examination by the responsible person, in the event that we reject the request to delete the data with reference to the option to restrict processing, in the event of your objection against the processing as per Article 21 GDPR as long as the extent to which our legitimate reasons prevail over the further processing of your data has not been established, and if the data is no longer required for processing purposes but is still needed for asserting claims.

Right of appeal
You have the right to lodge a complaint with a supervisory authority or competent body if you have a reason to complain. For asserting this right and the two previously stated ones, please get in touch with us via the contact person named in this data protection statement or using the address stated in the legal notice. You also have the opportunity to file a complaint with the responsible data protection authority. For our registered office, this is the Thüring State Authority for Data Protection and Freedom of Information, P.O. Box 900455, 99107 Erfurt or Häßlerstraße 8, 99096 Erfurt.
Back to content