Privacy Policy

Thank you for your interest in our company. Data protection has a particularly high priority for the management of SHN International GmbH. It is generally possible to use the SHN International GmbH website without providing any personal data. However, if a data subject wishes to use our company’s special services via our website, processing of personal data may become necessary. If the processing of personal data is necessary and there is no legal basis for such processing, we generally obtain the consent of the data subject.

The processing of personal data, such as the name, address, email address or telephone number of a data subject, is always carried out in accordance with the General Data Protection Regulation and in accordance with the country-specific data protection regulations applicable to SHN International GmbH. By means of this data protection declaration, our company would like to inform the public about the type, scope and purpose of the personal data we collect, use and process. Furthermore, data subjects are informed about the rights to which they are entitled using this data protection declaration.
As the controller, SHN International GmbH has implemented numerous technical and organizational measures to ensure the most complete protection possible for the personal data processed via this website. However, Internet-based data transmissions can generally have security gaps, so that absolute protection cannot be guaranteed. For this reason, every data subject is free to transmit personal data to us by alternative means, for example by telephone.

Controller responsible for processing
The person responsible within the meaning of the General Data Protection Regulation, other data protection laws applicable in the member states of the European Union and other provisions of a data protection nature is:
SHN International GmbH
, Berliner Str. 45
, 14169 Berlin-
Germany, 
Tel.: 0049 (30) 43 777 936-0
, E-Mail: info@shninternational.com
 // Website: www.shninternational.com

Definitions
The data protection declaration of SHN International GmbH is based on the definitions used by the European legislator for directives and regulations when issuing the General Data Protection Regulation (GDPR). Our data protection declaration should be easy to read and understand for the public as well as for our customers and business partners. To ensure this, we would like to explain the definitions used in advance.
1) Personal data
Personal data is any information that relates to an identified or identifiable natural person (hereinafter also referred to as the “data subject”). A natural person is considered to be identifiable if he or she can be identified directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or
to one or more special characteristics that express the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person.
2) Data subject
Data subject is any identified or identifiable natural person, whose personal data is processed by the controller responsible for the processing.
3) Processing
Processing is any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
4) Restriction of processing
Restriction of processing is the marking of stored personal data with the aim of limiting their processing in the future.
5) controller responsible for the processing
Controller responsible for the processing is the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
6) Processor
Processor is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
7) Consent
Consent of the data subject is any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.

Cookies
The SHN International GmbH website uses cookies. Cookies are text files that are stored and stored on a computer system via an Internet browser.
Numerous websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a character string through which Internet pages and servers can be assigned to the specific Internet browser in which the cookie was stored. This enables the visited websites and servers to distinguish the individual browser of the data subject from other internet browsers that contain other cookies. A specific Internet browser can be recognized and identified via the unique cookie ID.
By using cookies, SHN International GmbH can provide the users of this website with more user-friendly services that would not be possible without the cookie setting.
A cookie can be used to optimize the information on our website. Cookies enable us to recognize the users of our website. The purpose of this recognition is to make it easier for users to use our website. The data subject can prevent the setting of cookies through our website at any time. Furthermore, cookies that have already been set can be deleted at any time via an Internet browser or other software programs. This is possible in all common internet browsers. If the data subject deactivates the setting of cookies in the Internet browser used, not all functions of our website may be fully usable.

Routine erasure of personal data
The data we process will be deleted or its processing will be restricted in accordance with Articles 17 and 18 of the GDPR. Unless expressly stated in this data protection declaration, the data stored by us will be deleted as soon as they are no longer required for their intended purpose and the deletion does not conflict with any legal retention obligations. Unless the data is deleted because it is required for other legally permissible purposes, its processing will be restricted. This means the data is blocked and not processed for other purposes. This applies, for example, to data that must be retained for commercial or tax reasons.

According to legal requirements in Germany, storage takes place in particular for 10 years in accordance with Sections 147 Paragraph 1 AO, 257 Paragraph 1 Nos. 1 and 4, Paragraph 4 HGB (books, records, management reports, accounting documents, trading books, more relevant for taxation). documents, etc.) and 6 years in accordance with Section 257 Paragraph 1 Nos. 2 and 3, Paragraph 4 HGB (commercial letters).

Rights of the data subject
Right of confirmation
Each data subject has the right granted by the European legislator to obtain from the controller the confirmation as to whether or not personal data concerning him or her are being processed.
Right to rectification
Each data subject shall have the right granted by the European legislator to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her.
Right to erasure
Each data subject has the right granted by the European legislator to obtain from the controller the erasure of personal data concerning him or her without undue delay, and the controller shall have the obligation to erase personal data without undue delay where one of the following grounds applies, as long as the processing is not necessary:
– The personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed.
– The data subject withdraws consent to which the processing is based according to point (a) of Article 6(1) of the GDPR, or point (a) of Article 9(2) of the GDPR, and where there is no other legal ground for the processing.
– The data subject objects to the processing pursuant to Article 21(1) of the GDPR and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing pursuant to Article 21(2) of the GDPR.
– The personal data have been unlawfully processed.
– The personal data must be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject.
– The personal data have been collected in relation to the offer of information society services referred to in Article 8(1) of the GDPR.
Right to object
Each data subject shall have the right granted by the European legislator to object, on grounds relating to his or her particular situation, at any time, to processing of personal data concerning him or her, which is based on point (e) or (f) of Article 6(1) of the GDPR. Right to withdraw data protection consent
Each data subject shall have the right granted by the European legislator to withdraw his or her consent to processing of his or her personal data at any time.

If a data subject would like to exercise one of the rights, they can contact an employee of the person responsible for processing at SHN International GmbH at any time.

Data protection for applications
The person responsible for processing collects and processes the personal data of applicants for the purpose of processing the application process. Processing can also take place electronically. This is particularly the case if an applicant sends relevant application documents to the person responsible for processing electronically, for example by email or via a web form on the website. If the person responsible for processing concludes an employment contract with an applicant, the data transmitted will be stored for the purpose of processing the employment relationship in compliance with legal regulations. If the person responsible for processing does not conclude an employment contract with the applicant, the application documents will be automatically deleted two months after the rejection decision is announced, provided that deletion does not conflict with any other legitimate interests of the person responsible for processing. Other legitimate interests in this sense include, for example, a burden of proof in proceedings under the General Equal Treatment Act (AGG).

Legal basis for the processing
Art. 6(1) lit. a GDPR serves as the legal basis for processing operations for which we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the data subject is party, as is the case, for example, when processing operations are necessary for the supply of goods or to provide any other service, the processing is based on Article 6(1) lit. b GDPR. The same applies to such processing operations which are necessary for carrying out pre-contractual measures, for example in the case of inquiries concerning our products or services. Is our company subject to a legal obligation by which processing of personal data is required, such as for the fulfillment of tax obligations, the processing is based on Art. 6(1) lit. c GDPR. In rare cases, the processing of personal data may be necessary to protect the vital interests of the data subject or of another natural person. This would be the case, for example, if a visitor were injured in our company and his name, age, health insurance data or other vital information would have to be passed on to a doctor, hospital or other third party. Then the processing would be based on Art. 6(1) lit. d GDPR. Finally, processing operations could be based on Article 6(1) lit. f GDPR. This legal basis is used for processing operations which are not covered by any of the above mentioned legal grounds, if processing is necessary for the purposes of the legitimate interests pursued by our company or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data. Such processing operations are particularly permissible because they have been specifically mentioned by the European legislator. He considered that a legitimate interest could be assumed if the data subject is a client of the controller (Recital 47 Sentence 2 GDPR).

Transfer of data to third countries
If we process data in a third country (outside the European Union (EU)) or if this occurs as part of the use of third-party services or disclosure or transmission of data to third parties, this will only occur if it is necessary to fulfill our pre-contractual obligations based on your consent, on the basis of a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual permissions, we only process or have the data processed in a third country if the special requirements of Art. 44 ff. GDPR are met. This means that processing is carried out, for example, on the basis of special guarantees, such as the officially recognized determination of a data protection level that corresponds to the EU or compliance with officially recognized special contractual obligations (so-called “standard contractual clauses”).

Contact form for inquiries and applications                                                                                                                                                                                                                                                                                                                                                                 If you send us inquiries using the contact form, your details from the inquiry form, including the contact details you provided there, will be stored by us for the purpose of processing the inquiry or application and in the event of follow-up questions. We will not pass on your data without your consent. The data entered into the contact form is processed exclusively on the basis of your consent (Art. 6 Para. 1 lit. a GDPR), which you can revoke at any time. All you need to do is send an informal email to info@shninternational.com. The legality of the data processing operations carried out up to the time of revocation remains unaffected by the revocation. The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request or application has been processed). Mandatory legal provisions – in particular retention periods – remain unaffected.

Google Maps
We incorporate the maps from the “Google Maps” service provided by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. The data processed may include, in particular, users’ IP addresses and location data, but these are not collected without their consent. This data may be processed in the USA. Data protection declaration: https://www.google.com/policies/privacy/, opt-out: https://adssettings.google.com/authenticated.