1. Responsibility for data processing

The responsible body, as defined by the Data Protection Regulation and other national data protection laws of the Member States as well as other data protection regulations, is

RBOmnishore

Winterhuder Weg 78a
Hamburg, 22085, Germany

2. Data protection officer at RBOmnishore

A data protection officer has been appointed for RB Omnishore.
If you have any questions, you can contact the following address or the person responsible:

Joachim Hader
secudor GmbH
Am Schulhof 1
D – 91757 Treuchtlingen

Email: datenschutz@rb-omnishore.de

Any data subject can contact our data protection officer at any time with any questions or suggestions regarding data protection.

3. Supervisory authority and right to appeal

If you believe that the processing of your personal data by RBOmnishore is not lawful, you can submit your complaint to any data protection supervisory authority. The supervisory authority responsible according to Art. 55 GDPR is:

Der Hamburgische Beauftragte für Datenschutz und Informationsfreiheit
Ludwig-Erhard-Str. 22
20459 Hamburg

https://datenschutz-hamburg.de

4. What rights do you have?

4.1. Your rights to processing

You can exercise the following rights at any time:

• Right to confirmation and information (Art. 15, GDPR)
• Right to rectification (Art. 16, GDPR)
• Right to erasure (“right to be forgotten”) (Art. 17, GDPR)
• Right to restriction of processing (Art. 18, GDPR)
• Right to data portability (Art. 20, GDPR)
• Right to object (Art. 21, GDPR)
• Right to automated decision-making, including profiling (Art. 22 GDPR)

If you have additional rights based on the processing, they will be listed within the description of the processing.

To exercise these rights or if you have any questions, simply contact the specified data protection officer or the responsible entity.

5. Customer management

5.1. What data is processed for what purpose?

5.2. On what legal basis is this data processed?

The processing of personal data in the context of customer management is based on Article 6.1.1(b) of the GDPR, which permits the processing of data for the fulfillment of a contract or the implementation of pre-contractual measures.

5.3. Are there other recipients of the personal data besides the responsible body?

In addition to the responsible body, other recipients of the data are SAP.

5.4. How long will the data be stored?

The retention of personal data is governed by statutory retention periods. These apply to the documentation of contract-relevant documents and records maintained as part of the customer management process. Therefore, the data is retained for the duration of the legally prescribed period and subsequently deleted in accordance with data protection regulations.

6. Accounting

6.1. What data is processed for what purpose?

6.2. On what legal basis is this data processed?

The processing of personal data in accounting is based on Article 6.1.1(b) of the GDPR, which permits the processing of data as a (pre-)contractual measure. This legal basis allows the handling of personal data in the context of contract execution or the management of business relationships.

6.3. Are there other recipients of the personal data besides the responsible body?

In addition to the responsible body, other recipients of the data include various systems and service providers for the accounting software.

6.4. How long will the data be stored?

The personal data in the accounting process is subject to a statutory retention period of 10 years. This period starts from the end of the calendar year in which the business transaction was documented. After this period expires, the data is systematically, and in compliance with data protection regulations, deleted unless there are further reasons for retention.

7. Project management

7.1. What data is processed for what purpose?

In the process of project management, personal data such as name, contact information, as well as information about work performance and volume through completed tasks are processed. This data assists in the effective organisation and management of resources and tasks within project teams. Various communication and task management tools are utilised for this purpose to coordinate work and enhance project efficiency.

7.2. On what legal basis is this data processed?

The data processing in project management is based on Article 6.1.1(b) of the GDPR, which defines data processing as a necessary measure for the performance of a contract. This legal basis allows for the processing of personal data for the preparation and execution of contractually agreed services.

7.3. Are there other recipients of the personal data besides the responsible body?

In addition to the responsible body, other recipients of the data are the software providers of our project tools. These tools are central to task management and communication within the project teams. Data may also be accessible to direct contacts of customers as well as other employees involved in the respective projects.

7.4. How long will the data be stored?

The data collected as part of project management is subject to a statutory retention period of 10 years. This period begins at the end of the calendar year in which the data was recorded. After this time, the information is deleted in accordance with data protection regulations and legal requirements.