Please contact us:

+49 9221 807-0

 

info@raps.com

All contact options

Further Information

Important information on the processing of personal data at RAPS GmbH & Co. KG

It is our highest priority to protect your personal data and your privacy. Our processing of your personal data is connected to the contracted customer and/or supplier relationship or a potential customer or supplier relationship and complies with the corresponding data protection provisions. When processing personal data, we are especially subject to the European General Data Protection Regulation (GDPR) as well as to the Bundesdatenschutzgesetz [DE-Federal Data Protection Act].

Additional information on how we deal with personal data can be found in the attached privacy statement. This also includes information on the authorities to contact in case of questions or further assistance.

Privacy statement according to the EU General Data Protection Regulation

I. Name and address of the Data Owner

The data owner according to the General Data Protection Regulation is:

RAPS GmbH & Co. KG
Adalbert-Raps-Str. 1
95326 Kulmbach
Tel.: +49 9221 807-0
Fax: +49 9221 807-100
E-Mail: info@raps.com

The data protection officer of the data owner is:

RAPS GmbH & Co. KG
Datenschutzbeauftragter
Adalbert-Raps-Str. 1
95326 Kulmbach
Tel.: +49 9221 807-106
Fax: +49 9221 807-66314
E-Mail: datenschutz@raps.com

II. Data origin and types of data for data processing

We process personal data that we receive from you in your function as representative/proxy of the legal entity (prospects, customers and/or suppliers).

Relevant personal data of the authorized representative/proxy can be or are:

Name, first name and contact data (telephone number and e-mail address).

After having entered into a contract or in case of use of our services, other personal data may be collected, processed and saved in addition to the data mentioned above. Essentially, these data are:

Details and loggings on customer requirements, contract terms and declarations of consent for marketing activities, if applicable.

III. Legal basis and purpose of the processing

We process the aforementioned personal data in line with the provisions of the General Data Protection Regulation (GDPR) and the Bundesdatenschutzgesetz (BDSG, DE-Federal Data Protection Act):

a. To perform contractual obligations (article 6 (1) b GDPR)

Personal data is being processed to provide services in connection with the performance of contracted measures. Further details on the purpose of data processing can be found in the respective contract documents and the terms and conditions.

b. Due to legal requirements (article 6 (1) c GDPR)

RAPS is subject to various legal obligations, i.e. legal requirements (e.g. tax and trade legislation, tax code).

c. In connection with the weighing of interests (article 6 (1) f GDPR)

Where necessary, we process your data beyond the actual performance of the contract to protect the legitimate interest of ours and of third parties. Examples:

  • Enforcing legal claims and defense in litigation,
  • Maintaining IT security and IT operations at the RAPS Group,
  • Preventing crimes,
  • Video surveillance to exercise the domestic authority,
  • Measures to maintain building and plant safety (e.g. access control)
     

d. Based on your consent (article 25 (1) TDDDG [DE- Telecommunications Digital Services Data Protection Act], article 6 (1) a GDPR)

Where any processing of information on your device is absolutely necessary to enable your desired usage of our website, this information will be saved on your device or information already saved on your device will be accessed according to art. 25 (2) no. 2 of the Telekommunikation-Digitale-Dienste-Datenschutz-Gesetz (TDDDG, DE-Telecommunications Digital Services Data Protection Act). Any further processing of data on your device is done with your consent according to art. 25 (1) TDDDG.

Insofar as you have provided your consent for the processing of personal data for specific purposes (e.g. sending information material), such processing is justified based on your consent. The legal basis in this case is art. 6 (1) a GDPR. Such consent may be recalled at any time. Please note that such revocation only applies for the further and does not affect any processing that occurred up to this point. 

IV. Data sharing

Your data will be accessible to those positions within RAPS that have a need to access them for the performance of our contractual and legal obligations. Data may also be shared with our service providers (e.g. shipping companies) and vicarious agents (e.g. data processors, waste management companies) for these purposes, provided they maintain and warrant the data protection requirements resulting from the General Data Protection Regulation and other data protection provisions.

V. Data transfer to third countries or to international organizations

Data will only be transferred to instances outside of the EU or the EEA (so-called third countries), where this is necessary to complete the orders of a customer or a supplier or where there is a legal obligation to do so (tariff regulations). In case of contracting processors located in third countries without an adequacy decision by the EU Commission, these contractors are bound to maintain a European level of data protection by agreeing to EU standard contractual clauses or as based on the EU-US Privacy Shield. 

VI. Duration of data storage

We process and save your personal data for as long as you are authorized to represent the correspondent legal entity with which we have a business relationship. Where data is no longer needed to perform contractual or legal obligations, such data will be deleted on a regular basis, unless there is a need for temporary further processing due to the following purposes:

  • To comply with retention obligations according to trade and tax law, resulting from the Handelsgesetzbuch [DE-Code of Commerce] and the Abgabenordnung [DE-General Tax Code]. The corresponding retention or documentation periods stated there may be for a term of up to ten years.
  • To keep elements of evidence in connection with provisions on the statute of limitations. According to art. 194 ff. of the Bürgerliche Gesetzbuch (BGB, DE-Civil Code) these statutes of limitations may be up to 30 years, with the regular term for the statute of limitations being three years.
     

VII. Rights towards the data owner

Every data subject has the right to information according to article 15 GDPR, the right to rectification according to article 16 GDPR, the right to erasure according to article 17 GDPR, the right to restrict processing according to article 18 GDPR, the right to object as stated in article 21 GDPR. Furthermore, they have the right to file a complaint with a data protection authority according to article 77 GDPR in connection with art. 19 BDSG.

VIII. Obligations towards the data owner

In connection with the business relationship that we maintain with the legal entity that you represent towards us, you need to provide us with such personal data as is necessary to enter into and maintain a representation/authorization and to perform the contractual obligations in connection with such a relationship or that we must collect due to corresponding legal obligations. Without such data, we are usually forced to reject you as an authorized representative/proxy, or we must cancel any existing representation/authorization.

Current as of: February 2025