Name and address of data controller

The controller (referred to below as ‘we’ or ‘us’) for the purposes of the General Data Protection Regulation (GDPR), other national data protection legislation of the Member States or other data protection regulations is

European Translation Company
Karen and Steven Blanchard
Dannenkamp 39
48432 Rheine
Germany
Phone: +49 (0) 5975 306514
Email: info(at)eurotranslationco.com
Web: www.eurotranslationco.com

General information on data processing

1. The personal data we process

We process the personal data of our users only to the extent necessary for the functioning of our website and delivery of our services. Personal data are generally processed only after users give their consent. An exception exists in those cases where factors preclude obtaining prior consent and the processing of the data is permitted by law.

2. Legal basis for processing personal data

Point (a) of Article 6(1) GDPR provides the legal basis for processing operations involving personal data when we obtain the data subject’s consent.

Point (b) of Article 6(1) GDPR provides the legal basis for processing personal data necessary for the performance of a contract to which the data subject is a party. This also applies to processing operations necessary to implement pre-contractual measures.

Point (c) of Article 6(1) GDPR provides the legal basis for processing the personal data necessary for compliance with a legal obligation to which we are subject.

Point (d) of Article 6(1) GDPR provides the legal basis for the processing of personal data necessitated by the vital interests of the data subject or another natural person.

Point (f) of Article 6(1) GDPR provides the legal basis when processing is necessary to safeguard our or a third party’s legitimate interests, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject.

3. Erasure and storage period

The data subject’s personal data will be erased or rendered unavailable from the moment storage is no longer necessary. Storage is also possible if the European or national legislator so provides in EU regulations, laws or other provisions to which we are subject. Data will also be erased or rendered unavailable if a storage period stipulated in the above instruments expires, unless continued storage of the data is necessary for the conclusion or fulfilment of a contract.

Provision of website and creation of log files

1. Description and scope of data processing

Each time our website is accessed, our system automatically collects data and information from the accessing computer.

The following data are collected:

(1) the type and version of browser used;
(2) the user’s operating system;
(3) the user’s internet service provider;
(4) the user’s IP address;
(5) date and time of access;
(6) websites from which the user’s system accesses our website, and
(7) websites accessed by the user’s system via our website.

The data are also stored in the log files of our system. These data are not stored together with other personal data of the user.

2. Legal basis for data processing

Point (f) of Article 6(1) GDPR provides the legal basis for the temporary storage of data in log files.

3. Purpose of data processing

Temporary storage of the IP address by the system is necessary to enable delivery of the website to the user’s computer. The user’s IP address must be kept for the duration of the session to achieve this.

Storage in log files takes place to safeguard the website’s functionality. In addition, the data are used to optimise the website and safeguard the security of our IT systems. This does not involve an evaluation of data for marketing purposes.

We also have a legitimate interest in the processing of data in accordance with point (f) of Article 6(1) GDPR for these purposes.

4. Duration of storage

The data are erased from the moment they are no longer necessary for the purposes for which they were stored. In terms of data collection for the provision of the website, this is the case when the respective session has ended.

In terms of data stored in log files, this is the case within seven days maximum. Storage may take place for longer periods. User IP addresses are erased or modified in such cases to prevent identification of the accessing client.

5. Objection and removal

Data collection for the provision of the website and data storage in log files is essential for the operation of the website. Consequently, the user is not able to object.

Use of cookies

1. Description and scope of data processing

Our website makes use of cookies. Cookies are text files stored in the Web browser or by the Web browser on the user’s computer system. If a user visits a website, a cookie may be stored on the user’s operating system. This cookie contains a distinctive character string that enables unique identification of the browser when the website is accessed again.

We use cookies to make our website more user-friendly. Some elements of our website require identification of the accessing browser when moving to a new page.

The following data are then stored and transmitted in the cookies:

(1) language settings;
(2) login information.

2. Legal basis for data processing

Point (f) of Article 6(1) GDPR provides the legal basis for processing personal data with the use of cookies.

3. Purpose of data processing

Cookies used for technical reasons aim to make our website more user-friendly. Some of the functions of our website cannot be provided without the use of cookies. For example, the browser needs to be recognised when you move to a new page.

We need cookies for the following applications:

(1) PM system for translators;
(2) maintaining language settings.

User data collected with technical cookies are not used to create user profiles.

We also have a legitimate interest in the processing of personal data in accordance with point (f) of Article 6(1) GDPR for these purposes.

4. Duration of storage; objection and disposal

Cookies are stored on the user’s computer and transmitted to our site from there. This means that you, the user, have full control over the use of cookies. By changing the settings in your internet browser, you can disable or restrict the transmission of cookies. You can clear cookies that have been stored previously at any time. This can also be done automatically. By disabling cookies for our website, you may no longer be able to use all the features available.

Registration

1. Description and scope of data processing

On our website, we offer translators the opportunity to register for assignments by providing personal data. The data are then entered in an input mask, transmitted to us, and stored. The data are not transmitted to any third party. The following data are collected as part of the registration process:

(1)   First name
(2)   Last name
(3)   Road
(4)   Postal (or Zip) code
(5)   Town/City
(6)   Country
(7)   Phone
(8)   Fax
(9)   Email
(10) Native language(s)
(11) Language pair(s)
(12) Pricing
(13) Qualifications
(14) Memberships
(15) References
(16) Software used

The following data are also stored at the time of registration:

(1) the user’s IP address;
(2) date and time of registration.

Translator’s give their consent to the processing of these data as part of the registration process.

2. Legal basis for data processing

Point (a) of Article 6(1) GDPR provides the legal basis for processing the data with the translator’s consent.

3. Purpose of data processing

Translators must register in order to be awarded translation or proofreading assignments.

4. Duration of storage

The data are erased from the moment they are no longer necessary for the purposes for which they were stored. This is the case for data collected during the registration process if registration on our website is cancelled or altered.

5. Objection and removal

Translators may cancel or alter their registration at any time by sending an email to info(at)eurotranslationco.com.

Contact form, RFQ form and email contact

1. Description and scope of data processing

Our website contains a contact form and a RFQ (request for quotation) form, which can be used for electronic communication. If you make use of one of these options, then the data entered in the input masks will be transmitted to us and stored.

In the contact form, these data include:

(1) Company
(2) Email
(3) Name

In the RFQ form, these data include:

(1) Company
(2) Email
(3) Name
(4) Phone

The following data are also stored when the message is transmitted:

(1) the user’s IP address;
(2) date and time of registration.

As part of the transmission process, your consent to data processing will be obtained and you will be referred to this Data Protection Statement.

Alternatively, contact can be initiated using the email address provided. In this case, the personal data transmitted with the email will be stored.

This does not involve forwarding data to third parties. The data will only be used for processing the correspondence.

2. Legal basis for data processing

Point (a) of Article 6(1) GDPR provides the legal basis for processing the data with the user’s consent.

Point (f) of Article 6(1) GDPR provides the legal basis for processing the data transmitted when an email is sent. If the email contact is geared towards the conclusion of a contract, then point (b) of Article 6(1) GDPR provides an additional legal basis for processing.

3. Purpose of data processing

Personal data sent via the input masks are processed for the sole purpose of handling communication. In the case of communication by email, we also have a legitimate interest in processing the data.

The remaining personal data processed during transmission are used to prevent misuse of the electronic forms and to underpin the security of our IT systems.

4. Duration of storage

The data are erased from the moment they are no longer necessary for the purposes for which they were stored. This is the case for personal data entered in the input mask of the contact form and data sent by email when the correspondence with you has ended, i.e. where circumstances make clear that the matter in hand has been resolved.

Personal data additionally collected during the transmission process will be erased within seven days maximum.

5. Objection and removal

Users may withdraw their consent to the processing of personal data at any time. Users who contact us by email may object to the storage of their personal data at any time. Correspondence cannot be continued in such cases.

Users may withdraw their consent or object to storage by sending an appropriate email to info(at)eurotranslationco.com.

All personal data stored during this period of communication will be deleted in such cases.

Web services

1. Google Maps

We make use of the ‘Google Maps’ service offered by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States, on our website. In particular, the data processed may include your IP addresses and location data, which will not be collected without your consent (usually based on your mobile device’s settings). The data may be processed in the United States. Privacy policy: https://www.google.com/policies/privacy/. Opt-out: https://adssettings.google.com/authenticated.

Rights of the data subject

When your personal data are processed, you are the data subject within the meaning of the GDPR and have the following rights vis-à-vis us:

1. Right of access

You may obtain from us confirmation as to whether we are processing your personal data, and, where that is the case, access to the personal data and the following information:

(1) the purposes for which the personal data are processed;
(2) the categories of personal data being processed;
(3) the recipients or categories of recipients to whom the personal data concerning you have been or will be disclosed;
(4) the envisaged period for which the personal data concerning you will be stored, or, if specific information on this is not possible, criteria for determining the storage period;
(5) the existence of the right to request from us rectification or erasure of personal data or restriction of processing of personal data concerning you or to object to such processing;
(6) the right to lodge a complaint with a supervisory authority;
(7) any available information as to the source of the data where personal data have not been obtained from the data subject, and
(8) the existence of automated decision-making, including profiling, referred to in Article 22(1) and (4) GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.

You have the right to request information as to whether personal data concerning you are transferred to a third country or to an international organisation. In this context, you may request to be informed of the appropriate safeguards pursuant to Article 46 GDPR in connection with the transfer.

2. Right to rectification

You have a right to rectification and/or completion by us if any personal data being processed, which concern you, are incorrect or incomplete. We are required to rectify without undue delay.

3. Right to restriction of processing

You may request that the processing of personal data concerning you be restricted if the following requirements are met:

(1) if you contest the accuracy of the personal data concerning you for a period enabling us to verify the accuracy of the personal data;
(2) the processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead;
(3) we no longer need the personal data for the purposes of the processing, but you require them for the establishment, exercise or defence of legal claims, or
(4) if you have objected to processing pursuant to Article 21(1) GDPR pending verification of whether our legitimate reasons override your reasons.

Where the processing of personal data concerning you has been restricted, such data will, apart from storage, only be processed with your consent or for the establishment, exercise or defence of legal claims or the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or a Member State.

We will inform you before the restriction of processing is lifted when processing was restricted in accordance with the requirements set out above.

4. Right of erasure

a) Obligation to erase

You may request that we erase personal data concerning you without undue delay and we will have the obligation to erase such data without undue delay where one of the following grounds applies:

(1) the personal data concerning you are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
(2) you withdraw your consent on which the processing is based according to point (a) of Article 6(1) or point (a) of Article 9(2) GDPR and there is no other legal basis for the processing;
(3) you object to the processing pursuant to Article 21(1) GDPR and there are no overriding legitimate grounds for the processing or you object to the processing pursuant to Article 21(2) GDPR;
(4) the personal data concerning you have been unlawfully processed;
(5) the personal data concerning you must be erased for compliance with a legal obligation under Union or Member State law to which we are subject, or
(6) the personal data concerning you have been collected in relation to the offer of information society services referred to in Article 8(1) GDPR.

b) Information to third parties

If we have made the personal data concerning you public and are obliged to erase the personal data pursuant to Article 17(1) GDPR, then we, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform controllers which are processing the personal data that you, as data subject, have requested the erasure by such controllers of any links to, or copy or replication of, those personal data.

c) Exceptions

The right to erasure does not exist to the extent that processing is necessary:

(1) for exercising the right of freedom of expression and information;
(2) for compliance with a legal obligation which requires processing by Union or Member State law to which we are subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in us;
(3) for reasons of public interest in the area of public health in accordance with points (h) and (i) of Article 9(2) as well as Article 9(3) GDPR;
(4) for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes in accordance with Article 89(1) GDPR in so far as the right referred to in section a) is likely to render impossible or seriously impair the achievement of the objectives of that processing, or
(5) for the establishment, exercise or defence of legal claims.

5. Right to notification

If you have exercised your right to rectification, erasure or restriction of processing by us, then we are obliged to inform all recipients to whom personal data concerning you have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves disproportionate effort.

You have a right of notification of such recipients from us.

6. Right to data portability

You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format. You also have the right to transmit those data to another controller, without hindrance by us, where:

(1) the processing is based on consent pursuant to point (a) of Article 6(1) GDPR or point (a) of Article 9(2) GDPR or on a contract pursuant to point (b) of Article 6(1) GDPR, and
(2) the processing is carried out by automated means.

In exercising this right, you also have the right to request that the personal data concerning you be transferred directly from one controller to another controller, insofar as technically feasible. This must not affect the freedoms and rights of any other person.

The right to data portability does not apply to processing personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in us.

7. Right to object

You have the right to object, on grounds relating to your particular situation, at any time to the processing of personal data concerning you which is based on point (e) or (f) of Article 6(1) GDPR, including profiling based on those provisions.

We will no longer process the personal data concerning you, unless we are able to demonstrate compelling legitimate grounds for the processing, which override your interests, rights and freedoms or the processing is for the establishment, exercise or defence of legal claims.

Where the personal data concerning you are processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing.

If you object to processing for direct marketing purposes, then the personal data concerning you shall no longer be processed for such purposes.

In the context of the use of information society services, and notwithstanding Directive 2002/58/EC, you may exercise your right to object by automated means using technical specifications.

8. Right to withdraw declarations of consent relating to data protection

You have the right to withdraw declarations of consent relating to data protection at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.

9. Automated individual decision-making, including profiling

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. This shall not apply if the decision:

(1) is necessary for entering into, or performance of, a contract between you and us;
(2) is authorised by Union or Member State law to which we are subject and which also lays down suitable measures to safeguard your rights, freedoms and legitimate interests, or
(3) is carried out with your explicit consent.

However, such decisions must not be based on special categories of personal data referred to in Article 9(1) GDPR, unless point (a) or (g) of Article 9(2) GDPR applies and suitable measures to safeguard your rights, freedoms and legitimate interests are in place.

In the cases referred to in (1) and (3), we will implement suitable measures to safeguard your rights, freedoms and legitimate interests, at least the right to obtain human intervention by us, to express your point of view and to contest the decision.

10. Right to lodge a complaint with a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you believe that the processing of personal data concerning you infringes the GDPR.

The supervisory authority with which the complaint has been lodged shall inform the complainant on the progress and the outcome of the complaint, including the possibility of a judicial remedy pursuant to Article 78 GDPR.