Privacy & Terms of Use

Data protection at VSB

Welcome to VSB!

VSB respects your privacy. The protection and lawful processing of your personal data are important to us. We therefore inform you here about what personal data we collect and to what extent we use it when you visit our website.

This privacy policy was last updated in December 2024. Due to the further development of our websites and the implementation of new technologies, it may be necessary to adapt the privacy policy.

1. Who is responsible for the processing of my personal data?

The controller pursuant to Art. 4 (7) GDPR is:

VSB Energia Verde SRL
Via della Chimica,

103 85100, Potenza Italy

Phone: +39 0971 281981
E-mail: info[at]vsb-energiaverde.it

2. How can I contact the data protection officer?

You can contact our data protection officer as follows:

VSB Holding GmbH
Schweizer Str. 3 a
01069 Dresden

Phone: +49 351 21183 430
datenschutz[at]vsb.energy

3. For what purposes and on what legal basis will my personal data be processed?

3.1 Accessing our website

When you visit our website, we collect connection data that your browser automatically transmits to us to enable you to visit the website. This is the following data:

  • IP address
  • Date and time of the request
  • Time zone difference to Greenwich Mean Time (GMT)
  • Content of the request (specific page)
  • Access status/HTTP status code
  • Amount of data transferred in each case
  • Website from which you visit us (referrer URL)
  • Website you visit
  • Browser type and version used
  • Operating system and its interface
  • Language and version of the browser software.

The processing of this data is necessary in order to be able to display the website to you, to ensure the functionality and security of our systems and to maintain the website administratively. The storage of data in log files is necessary for the operation of the website. The legal basis for this processing is Art. 6 (1) (b) GDPR, insofar as the page view occurs in the course of the initiation or execution of a contract, and otherwise Art. 6 (1) (f) GDPR due to our legitimate interest in enabling you to visit our websites and keeping our systems permanently functional and secure.

3.2 Use of cookies

To optimize our online presence, our websites use cookies, i.e. small text files that are stored on your computer by us or by third parties and that enable an analysis of the use of our website. Cookies cannot execute programs or transmit viruses. Personal data is only stored in cookies if you have given your consent or if this is technically necessary, e.g. to enable a secure login. You can prevent the storage of cookies by selecting the appropriate settings in your browser software. In this case, however, please note that you may no longer be able to use all the functions of our website to their full extent.

3.2.1 Strictly necessary cookies

We use cookies and technologies to offer you the following functions and services:

  • Google Tag Manager
  • Matomo
  • Usercentrics Consent Management Platform

The legal basis for the respective data processing is § 25 (2) TDDDG in conjunction with Art. 6 (1) (f) GDPR. The purpose of the processing is to make it easier for you to use our websites, to manage your consent and to be able to offer you our services as requested. Some functions of our websites also do not work without the use of these cookies and could therefore not be offered, from which our legitimate interest in the processing of cookies is derived.

3.2.2 Cookies and technologies requiring consent

We use the services listed in this section on our websites on the basis of your consent, which you have given us via the cookie banner in accordance with § 25 (1) TDDDG in conjunction with Art. 6 (1) (a) GDPR. You can use the following link to grant your consent at a later date or revoke it at any time:

Privacy settings

Alternatively, you can prevent the storage of cookies by selecting the appropriate settings in your browser. Please note that the browser settings you make only apply to the browser you are using.

  • Bing Conversion
  • Facebook Connect
  • Flockler
  • Google Ads Conversion
  • Google Analytics
  • Google Maps
  • LinkedIn Analytics
  • YouTube video

3.3 Applications

You can apply for jobs on our website. This portal is operated by Talentsconnect, which is initially responsible for the processing of your personal data. You can find Talentsconnect's privacy policy here. After your application has been submitted to us, we are the controller of your personal data.

We initially process your application on the basis of your consent in accordance with Art. 6 (1) (a) GDPR. If your application is successful, we will process your personal data on the basis of Art. 6 (1) (b) GDPR. If your application is rejected, we will process your personal data on the basis of Art. 6 (1) (f) GDPR, as our legitimate interest is to defend ourselves against any legal claims.

3.4 Lead generation via LinkedIn

We process personal data of potential new sales contacts when they fill out the lead generation form on LinkedIn. The purpose of this processing is to get in touch with potential leads and we base this on consent, Art. 6 (1) (a) GDPR. Specifically, we then process the following personal data

  • First name and last name
  • Company
  • Position
  • Email address

If you have completed a lead generation form and wish to withdraw your consent after submitting it, please contact our data protection officer.

3.5 Online presence in social networks

Our websites also contain links to other providers and links to social media offerings (Facebook, LinkedIn, YouTube), which are only loaded if you have previously given your consent by clicking on the link.  The legal basis for the use of these links is your consent, Art. 6 (1) (a) GDPR). We have no influence on the nature and scope of the data that is transmitted from and to the servers of these providers or operators of the social media platforms in this context. For further information on the purpose, scope and legal basis for the data processing carried out by the social networks on their own responsibility, please refer to the data protection information of the respective social network.

4. Where does my personal data come from?

We generally collect your personal data directly from you. We may also obtain your personal data from public sources and third parties.

5. To which recipients will my personal data be transmitted?

Your personal data may be transmitted to the following recipients:

  • Service providers such as IT, personnel, survey and marketing service providers, analysis specialists as well as file and data carrier disposal;
  • Company of the VSB Group;
  • Lawyers and tax consultants; and
  • Authorities and other government agencies.

6. will my personal data also be transferred to recipients outside the EU?

Your data will usually be processed in Germany and treated confidentially. If you contact one of our offices in other European countries, the data processing will also take place there.

In individual cases, we transfer your personal data to a third country, i.e. to countries outside the European Union (EU) or the European Economic Area (EEA). For some countries, e.g. the USA, the European Commission has decided that they have an adequate level of data protection. In this case, our data transfer is based on the respective adequacy decision of the European Commission (Art. 45 GDPR).

If personal data is to be transferred to other third countries that are not the subject of an adequacy decision, the data transfer is carried out on the basis of standard contractual clauses of the EU Commission (Article 46 (2) (c) GDPR).

7. How long will my personal data be stored?

If your personal data are no longer required to fulfill the purposes for which they are processed, they are regularly deleted, unless they must continue to be retained due to commercial/tax retention periods or for evidence purposes in accordance with the statutory limitation periods. We are subject to various retention and documentation obligations, including those arising from the German Commercial Code (HGB) and the German Fiscal Code (AO), which amount to up to ten years. Finally, the storage period is also assessed according to the statutory limitation periods, which are defined, for example, in Sections 195 et seq. German Civil Code (BGB), for example, can be up to thirty years, whereby the regular limitation period is three years.

If an IP address is stored, it will be deleted or anonymized after 30 days at the latest.

Session cookies are deleted at the end of the session (e.g. logging out or closing the browser), persistent cookies are deleted after a specified period of time. You can view the cookies that have been set and their duration at any time in your browser settings. Cookies can also be removed manually.

In the case of applications, we may store them in our talent pool in the event you have given your separate consent for this. In this case, your personal data will be stored for up to 1 year. Otherwise, your personal data will be deleted after 6 months.

8. What rights do I have as a data subject?

You have the following rights as a data subject:

  • the right to obtain information as to whether and which personal data concerning you are being processed (Art. 15 GDPR);
  • the right to request the rectification or completion of inaccurate or incomplete personal data (Art. 16 GDPR);
  • the right to request the deletion of your personal data, provided that the requirements are met (Art. 17 GDPR);
  • the right to request the restriction of the processing of your personal data (Art. 18 GDPR);
  • the right to data portability, i.e. you can receive the data you have provided to us in a commonly used, machine-readable format and, if necessary, request that it be transmitted to other controllers (Art. 20 GDPR);
  • the right to withdraw consent at any time with effect for the future, without affecting the lawfulness of processing based on consent before its withdrawal (Art. 7 (3) GDPR); and
  • the right to object, on grounds relating to your particular situation, to data processing which is based on a legitimate interest, including profiling based on those interests, and to direct marketing (Art. 21 (1) and (2) GDPR).

 

You also have the right to lodge a complaint at any time with a supervisory authority about the processing of your personal data, including with the data protection authority responsible for us: Garante per la protezione dei dati personali, Piazza Venezia 11, 00187 Rome.

 

energy for you