Privacy policy
Here you can find out what information we collect and why we use the information and how you can check and update it.Terms of Service
Here we explain the rules you agree to by using our services.
B2B&C Privacy Policy
If you use our services, you trust us with your data. We recognize that this is a big responsibility and we do everything we can to protect your data and ensure that you remain in control.
As a rule, the use of our services will not be based on your private interests but on those of your employer or his business partner.
We are developing a variety of services related to occupational safety with the aim of avoiding accidents at work and optimizing communication between you, your employer and their business partners. Our services include:
- Safety training and instructions
- Entrance and identity checks
- Violation reports and their consequences
- Security Walkthroughs
- Ticket and internal messaging systems
Terminology
Customers:
Companies registered in the network.
This can be your employer, for example, but also a company affiliated with your employer.
Affected:
A data subject is any natural person whose data is collected, stored and processed in the network.
Order data processor:
3w-systems as the operator of the B2B&C network acts as a processor in relation to registered companies.
This means that the responsible persons of our customers are responsible for the data of those affected.
3w-systems automatically concludes an order processing contract with every customer who has registered in the network.
Contact information for questions or complaints
If you have any questions or complaints in connection with the use of B2B&C services, our data protection declaration, our terms of use or the contract for order processing, please contact us by e-mail.
When contacting us by e-mail, the details of the customer or data subject will be processed to process the contact request and its processing in accordance with Article 6 (1) (b) GDPR.
Of course, you also have the option of contacting the responsible persons of our customers. We will be happy to forward your request to the appropriate departments.
You also have the right, in accordance with Article 77 GDPR, to lodge a complaint with the competent supervisory authority.
In this data protection declaration, you will find out which data is collected by us or your employer and their business partners, what purposes are pursued with it and how you can update, manage, export and delete your data.
Effective from August 01, 2020 | Archived Versions | download PDF
Data collected by B2B&C
Legal bases for the collection, storage and processing of personal data.
The storage is based on the following legal bases (Article 6 (1) (b) GDPR):
- Fulfillment of contract (Article 6 (1) (a) GDPR)
- Legitimate interest (Art. 6, Para. 1, Letter f GDPR)
- Legal obligation under the Occupational Health and Safety Act
How do we receive your data
We obtain your personal information when you personally engage in the services we provide to our customers.
We receive your data when our customers (e.g. your employer) collect your data via our services.
We process data (e.g. names and addresses as well as contact details of customers and those affected), contract data (e.g. services used, names of contact persons) for the purpose of fulfilling our contractual obligations and services in accordance with Article 6 Paragraph 1 lit b. GDPR.
The entries marked as mandatory in online forms are required for the conclusion of the contract.
Deletion of data
The data processed by us will be deleted or their processing restricted in accordance with Art. 17 and 18 GDPR. Unless expressly stated in this data protection declaration, the data stored by us will be deleted as soon as they are no longer required for their intended purpose and the deletion does not conflict with any statutory storage requirements. If the data is not deleted because it is required for other and legally permissible purposes, its processing will be restricted. This means that the data will be blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax reasons.
Germany: According to legal requirements, storage takes place in particular for 6 years in accordance with Section 257 (1) HGB (books, inventories, opening balance sheets, annual financial statements, commercial letters, accounting documents, etc.) and for 10 years in accordance with Section 147 (1) AO (books, records , management reports, accounting documents, commercial and business letters, documents relevant to taxation, etc.).
Manage, review and update data
If you are logged into your account, you can check and update your personal data at any time in the services you use.For example, you can manage your contact information such as your name, email address and phone number.
Data transfer
We only transmit data of those affected and customers if this is necessary for the purpose of fulfilling our contractual obligations and services in accordance with Article 6 Paragraph 1 lit b. GDPR or to pursue legal claims.A transfer of personal data of those affected to third parties, e.g. for advertising purposes, expressly does not take place.
Cooperation with processors and third parties
If, as part of our processing, we disclose data to other people and companies (contract processors or third parties), transmit it to them or otherwise grant them access to the data, this is only done on the basis of legal permission (e.g. if the data is transmitted to third parties, as to payment service providers, pursuant to Art. 6 Para. 1 lit. b GDPR is required for the fulfillment of the contract), you have consented, a legal obligation provides for this or on the basis of our legitimate interests (e.g. when using agents, web hosts, etc.).
If we commission third parties to process data on the basis of a so-called "order processing contract", this is done on the basis of Art. 28 DSGVO.
Transfers to third countries
If we process data in a third country (i.e. outside the European Union (EU) or the European Economic Area (EEA)). the processing takes place e.g. on the basis of special guarantees, such as the officially recognized determination of a data protection level corresponding to that of the EU (e.g. for the USA through the “Privacy Shield”) or compliance with officially recognized special contractual obligations (so-called “standard contractual clauses”).
We use Google Maps in our services
If you use our services with your private devices, e.g. laptop, mobile phone, your personal IP address and other data such as browser, device settings, language will be transmitted to Google in the USA. Google uses unique IDs for this. This is a string of characters stored in cookies. These cookies are stored on your devices.
With the Privacy Shield certification, Google has committed to complying with the Privacy Shield agreement on the collection, use and storage of personal data between the EU and the USA.
Please also read Google's privacy policy: https://policies.google.com/privacy
Data security
In accordance with Art. 32 GDPR, taking into account the state of the art, the implementation costs and the type, scope, the circumstances and purposes of the processing and the different likelihood and severity of the risk to rights and freedoms natural persons, appropriate technical and organizational measures to ensure a level of protection appropriate to the risk; The measures include, in particular, securing the confidentiality, integrity and availability of data by controlling physical access to the data, as well as the access, input, transfer, securing of availability and their separation concerning them. In addition, we have established procedures which guarantee the exercise of data subject rights, deletion of data and reaction to data threats. We also take into account the protection of personal data already during the development or selection of hardware, software and processes, in accordance with the principle of data protection through technology design and through data protection-friendly default settings are taken into account (Article 25 GDPR).
The security measures include, in particular, the encrypted transmission of data between your browser and our server.
Rights of data subjects
You have the right to request confirmation as to whether the data in question is being processed and to request information about this data as well as further information and a copy of the data in accordance with Art. 15 GDPR.You have accordingly. Art. 16 DSGVO the right to request the completion of the data concerning you or the correction of incorrect data concerning you.
In accordance with Art. 17 GDPR, you have the right to demand that the data in question be deleted immediately, or alternatively, in accordance with Art. 18 GDPR, to demand a restriction of the processing of the data.
You have the right to request that you receive the data that you have provided to us in accordance with Art. 20 GDPR and to request that it be transmitted to other responsible parties.
You also have the right, in accordance with Article 77 GDPR, to lodge a complaint with the competent supervisory authority.
B2B&C Terms of Use
Our Terms of Use tell you what you can expect from us when using the B2B&C services and what we expect from you.
Even if you are using our Services on behalf of a business, you agree that you are entering into a legally binding relationship with B2B&C Enter into a contract - it is therefore important that you understand these Terms of Service as you must agree to them in order to use our Services.
If you wish to terminate this contract, you can do so at any time by deleting your account or by no longer using our services access or no longer use them.
You may terminate this Agreement at any time actively by deleting your account or passively, by no longer using our services - your account will be automatically deleted after 2 years of inactivity or this contract will be terminated.
Alongside these Terms of Use, we publish a Privacy Policy. This is not part of these terms of use. You should still read them so you know how to update, manage, export and delete your data.
Services
This contract applies to B2B&c.net, B2B&C apps, communication and other services that indicate that they are under this contract as "Services" are offered. Registered users of our services are "users", unregistered users are "visitors".
Service Provider
You are entering into this contract with B2b&C (also referred to as "we" or "us"). In the European Economic Area (EEA), Switzerland and countries outside the EU, the B2B&C services are offered by:
3w-systems
Osterberg 16
38536 Meinersen
Germany