Privacy policy

Thank you for your interest in our website. This website provides information about the GMM Pfaudler Group and its business activities. Protecting your privacy when processing personal data and ensuring the security of all business data is important to us and is taken into account in our business processes. Here we provide detailed information about how we handle your data.

 

§ 1 General information about the collection of personal data in connection with visiting our website

 

(1) Below, we provide information about the collection of personal data when using our website. Personal data is all data that can be related to you personally, e.g., name, address, email addresses, user behavior. We would like to point out that data transmission over the Internet (e.g., when communicating by email) can have security gaps. It is not possible to completely protect data from access by third parties.

 

(2) Controller:

GMM Pfaudler Ltd.
Vithal Udyognagar, Anand – Sojitra Road
Karamsad – 388325
Gujarat
India

If a request or interaction relates to a specific offer or a specific group company, further processing will be carried out by the respective responsible company.

You can contact our data protection officer at privacy@gmmpfaudler.com .

 

(3) Personal data is processed for the following purposes in particular:

  • Provision and operation of the website
  • Processing of inquiries
  • Initiation and execution of business relationships
  • Execution of application procedures
  • Ensuring IT security

Where applicable, personal data is processed on the basis of:

  • Contractual or pre-contractual measures
  • Legitimate interests
  • Legal obligations
  • Consent given

Legitimate interests may include, in particular, the secure provision of the website and the efficient processing of inquiries.

Specific information on purposes and legal bases can be found in the respective explanations below.

 

(4) This website is hosted by an external service provider (host). The personal data collected on this website is stored on the host's servers. This may include IP addresses, contact requests, meta and communication data, contract data, contact details, names, website accesses, and other data generated via a website. The hoster is used for the purpose of providing our online offering securely, quickly, and efficiently by a professional provider on the basis of a balancing of interests. Our hoster will only process your data to the extent necessary to fulfill its service obligations and will follow our instructions regarding this data.

 

We use the following hosting provider:

ServerPlan
Via G. Leopardi, 22
03043 Cassino (FR)
Italy

We have concluded a contract with the website host for order processing, which ensures that they only process the personal data of our website visitors in accordance with our instructions.

 

(5) Unless a more specific storage period is specified in this privacy policy, your personal data will remain with us until the purpose for data processing no longer applies. If you assert a legitimate request for deletion or revoke your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial law retention periods); in the latter case, deletion will take place after these reasons no longer apply.

 

(6) If you have consented to data processing, we will process your personal data on the basis of your consent. This also includes the transfer of personal data to third countries. Consent can be revoked at any time. Furthermore, we process your data in appropriate cases to fulfill a contract or to carry out pre-contractual measures. In addition, we may process your data in appropriate cases to fulfill a legal obligation to which we are subject. Data processing may also be carried out on the basis of our legitimate interest after weighing up the interests involved. The relevant legal basis in each individual case is explained in the following paragraphs of this privacy policy.

 

(7) When using our website, responding to your enquiry and providing our services, it may be necessary to pass on personal data to other companies in the GMM Pfaudler Group or to involve external service providers in the processing. These may also be located in countries outside your country of residence, including countries where a different, possibly lower level of data protection applies than in your jurisdiction.

In any case, we ensure that appropriate technical, organizational, and contractual measures are taken to guarantee an adequate level of protection for your personal data. This can be done in particular by:

  • the conclusion of contractual agreements on data processing,
  • intra-group data protection requirements (Binding Corporate Rules),
  • the use of standard contractual clauses (SCC) or
  • the application of adequacy decisions by competent data protection authorities.

Further details on measures and specific recipients and countries of transfer can be found in the country-specific data protection notices and in the sections on individual services used.

 

§ 2 Collection of personal data when visiting our website

 

(1) Even if you use our website for informational purposes only, we collect at least the personal data listed below, which your browser transmits to our server each time you visit a page. This is necessary for technical reasons in order to display our website to you and to ensure its stability and security. The legal basis for this is our legitimate interest.

  • IP address
  • Host
  • Date and time of the request
  • Time zone difference to Greenwich Mean Time (GMT)
  • Content of the request (specific page)
  • Access status/HTTP status code
  • Amount of data transferred
  • Website from which the request originates (referrer)
  • The specific pages of our website that you have accessed
  • Browser: type, version, and language settings
  • Operating system: type and version
  • If JavaScript is enabled, also:
  • Screen resolution
  • Color depth
  • Browser window size
  • Installed browser plug-ins

 

(2) Use of cookies and other storage technologies:

Cookies are small text files that are stored on your device and assigned to the browser you are using. Websites can also store so-called HTML5 storage objects on your device. In both cases, information is stored and read again. This can be done for very different purposes, but it cannot be used to execute programs or transmit malware.

a\) Our consent tool provides detailed information about the elements used, their origin, purpose, and storage duration. You can also use this tool to give or withdraw your consent to specific elements or categories of elements. The legal basis for the use of these elements is your consent. The legal basis for the use of the remaining elements is generally our weighing of interests for the operation of our website based on technical necessity. If a different legal basis applies in individual cases, you will be informed of this in the description of the corresponding functionality to which an element is assigned. b\) You can configure your browser settings according to your preferences and, for example, refuse to accept third-party cookies or all cookies.
We generally recommend that you delete cookies, your browser history, and other temporary web storage objects automatically or manually on a regular basis to increase the protection of your privacy.

 

§ 3 Additional functions and offers on our website

(1) In addition to the purely informational use of our website, we offer various services that you can use if you are interested. To do so, you will usually need to provide additional personal data, which we will use to provide the respective service and to which the aforementioned principles of data processing apply. Mandatory fields are marked accordingly. Information in unmarked fields is purely voluntary.

(2) When you contact us by email or via a contact form, we store your email address and other data you provide in order to respond to your inquiry. If a business relationship exists between you and us or is established as a result of your inquiry, we will store this data for the duration of our business relationship. Otherwise, we will delete this data once it is no longer required for the complete processing of your inquiry. If legal retention obligations prevent deletion, we will restrict the processing of the data for the duration of these obligations and then delete it. When contacting us via a contact form, please note the mandatory field markings as described in paragraph 1 in order to avoid the unintentional transmission of unnecessary personal data. By submitting the contact form or your email, you declare your consent to us processing the data you have transmitted in the manner described above.

(3) In some cases, we use external service providers to process your data. These have been carefully selected and commissioned by us, and we have entered into agreements with them to protect your data to the extent required by data protection law.

Below, we provide detailed information about the special forms of use, email-based information services, tracking and analysis tools, social media offerings, and other third-party services used on our website.

Special forms of use

 

1. Use of our application portal

(1) On our website, you have the opportunity to apply online for jobs or training positions offered by us, as well as to submit unsolicited applications. When applying online, you provide us with personal data. It is particularly important to us to treat your personal data with confidentiality during the application process. It therefore goes without saying that we treat all personal data you entrust to us as strictly confidential and responsibly, in compliance with the applicable legal data protection regulations. We use technical and organizational security measures to protect your personal data from accidental or intentional manipulation, loss, destruction, or access by unauthorized persons. When collecting and processing personal data, it is transmitted in TLS-encrypted form to prevent misuse of the data by third parties. The legal basis for the processing of personal data that you provide to us in the context of your application is generally the implementation of pre-contractual measures initiated by your application. If the data you provide for the purposes of your application also contains particularly sensitive data of a special category, we will process this data on the legal basis of your consent, which you declare by sending this data to us.

(2) Within the framework of the application portal, we also use the services of Automatic Data Processing, Inc. (ADP). These are provided via an external application portal from ADP, to which you will be redirected from our website when you select the relevant job offers at . We have carefully selected this service provider and concluded a contract with them for order processing. This service provider is also obliged to comply with data protection rules and our instructions. The data you enter here and the attached documents, as well as all processing steps associated with your application, are stored securely on a server belonging to this service provider in the USA. Only authorized persons have access to the data stored by the service provider. Further information on ADP's data protection policy is available at <https://www.adp.com/privacy.aspx> and on the website of our application portal at ADP.

(3) If you wish to apply online for a job or training position using an application form on our website, you will be required to enter certain personal data marked as mandatory fields in the respective online application form, such as your first and last name and email address. To make it easier for us to contact you, you can also voluntarily enter additional contact details, in particular your landline and mobile phone numbers. To help us better meet your application requirements, you also have the option of voluntarily providing us with additional data and files, e.g., a personal message, information about your professional qualifications and experience, and files containing your application documents, such as your personal cover letter, resume, application photo, references, etc. Please note that resumes, references, or other data you submit for application purposes may also contain particularly sensitive data, such as information about your ethnic origin, political opinions, religious or philosophical beliefs, membership in a trade union or political party, physical or mental health, or sex life. We therefore recommend that you avoid providing such information if possible.

(4) The data and files you submit will be stored and used exclusively for purposes related to recording and processing your interest in employment or training with us and processing your online application, including contacting you for this purpose. Your application will be treated confidentially and will only be seen by authorized employees of the company to which you have applied. If your application is successful, the data and files you submit may be used further in the context of your employment relationship with us. If your application for a job vacancy is unsuccessful, we will store the data and files you submit in our applicant database for 6 months in order to be able to answer any questions relating to your application. After this period, the data and files will be automatically deleted. If you have agreed to be included in our applicant pool so that we can also consider your application for future vacancies, your data and files will be stored in the applicant database for the period specified in your declaration of consent and then automatically deleted.

(5) The data and files you submit as part of your online application will not be passed on to third parties unless you have given your express consent or there is an official order to do so. Companies in the GMM Pfaudler Group that are involved in processing your application for organizational reasons are not considered third parties in this sense.

(6) You have the option of withdrawing your application in whole or in part at any time. You can also request at any time that all or some of the data and files you have submitted be deleted or changed from our applicant database. However, certain data relating to your application must be stored for a limited period of time in order to comply with legal requirements. With regard to your fundamental rights, we would also like to refer you to § 2 of this privacy policy.

 

2. Downloading product documentation

(1) We offer you the option of downloading product documentation on our website. To do so, you must fill in the required fields, in particular your email address. The authenticity of the email address you provide will be verified.

(2) By downloading our product documentation, you are expressing your interest in our products and services. For this reason, we store the data you provide as prospect data in our CRM system on the basis of a balancing of interests.

Email, messenger, and other information services

 

1. Newsletter

(1) With your consent, you can subscribe to our newsletter. This can be done either via our newsletter subscription page or by checking the respective checkbox in our various contact forms. Your consent also extends to the processing of all data that you have provided as mandatory and voluntary information. Your consent includes the transfer of this data to affiliated companies of the GMM Pfaudler Group.

(2) You can revoke your consent to receive the newsletter at any time and unsubscribe from the newsletter. You can declare your revocation by clicking on the link provided in every newsletter email.

(3) We use the services of MailUp, a service provided by TeamSystems S.p.A., to send out the newsletter. We have carefully selected this service provider and concluded a contract with them for order processing. This service provider is also obliged to comply with data protection regulations and our instructions. The data required for sending out the newsletter is stored securely on a server belonging to this service provider in the EU. Only authorized persons have access to the data stored by the service provider. You can request further information directly from the service provider or refer to the data protection information on the company's website: TeamSystems S.p.A., Via Sandro Pertini 88, 61122 Pesaro (PU), Italy; <https://mailup.com/privacy-statement/>.

Web analytics

Unless another legal basis is specified in the explanations for the respective web analysis tool, the legal basis for the use of all web analysis tools mentioned in this section is your consent, which you have given by making your selection in our consent tool. If you have not given your consent there, the tools listed in this section will not be used. You can revoke your consent at any time by changing your selection in our consent tool.

Social media and other third-party services

 

1. Social media

We have placed direct links to our pages on the following social media providers: YouTube, X (formerly Twitter), LinkedIn. The mere presence of direct links does not result in the transfer of personal data to the respective provider. Only when you click on the link, which you can recognize by the respective social media icon, and thereby call up our page hosted by the respective provider, will the provider become aware of this.

(2) Addresses of the relevant social media providers and URLs with their privacy policies:

a\) X: Twitter International Unlimited Company, One Cumberland Place, Fenian Street, Dublin 2, DO2 AX07, Ireland; <https://twitter.com/de/privacy> b\) LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland; <https://www.linkedin.com/legal/privacy-policy> c\) YouTube: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; <https://policies.google.com/privacy>

 

2. Integration of YouTube videos

(1) We have integrated videos from the YouTube platform into our online offering in order to make our website more interesting and attractive for our visitors and to achieve a better presentation of content and facts. They are stored on <https://www.YouTube.com> and can be played directly from our website. The videos are all integrated in \"extended data protection mode,\" which means that no data about you as a user is transferred to YouTube if you do not play the videos. Only when you play the videos will the data mentioned in paragraph 2 be transferred. We have no influence on this data transfer.

(2) When you start an embedded YouTube video, YouTube receives the information that you have accessed this video and the corresponding subpage of our website. Information about how you interact with this video is also transmitted to YouTube. In addition, the data mentioned in § 2 (1) of this privacy policy is transmitted. These data transfers take place regardless of whether you have a YouTube user account and are logged in to it or not. If you are logged into YouTube, the transmitted data is directly assigned to your account. If you do not want the data to be assigned to your YouTube profile, you must log out before activating the video. YouTube stores your data as usage profiles and uses it for advertising, market research, and/or the needs-based design of its website. Such evaluation is carried out in particular (even for users who are not logged in) to provide needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact YouTube to exercise this right.

(3) The legal basis for the use of YouTube videos is your consent, which you have given by making a selection in our consent tool. If you have not given your consent there, you will not be offered any YouTube videos to play. You can revoke your consent at any time by changing your selection in our consent tool.

(4) Further information on the purpose and scope of data collection and its processing by YouTube can be found in the privacy policy. There you will also find further information about your rights and settings options for protecting your privacy: YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA, represented by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; <https://www.google.de/intl/de/policies/privacy>

 

3. Integration of Google reCAPTCHA

(1) We use Google reCAPTCHA on this website. In doing so, we pursue our legitimate interest in preventing the misuse of our contact forms by bots.

(2) The Google reCAPTCHA plug-in on our websites serves to distinguish between bots (automated programs) and humans. To do this, you must either make entries in the plug-in that bots are currently unable to make, or your interaction with our website will be analyzed by an algorithm. Your entries or interactions are transmitted to Google and evaluated by Google. The data mentioned in § 3 (1) of this privacy policy and other information, such as a complete screenshot of the browser window and the contents of Google cookies, are also used in the analysis. As a result, the plug-in provides feedback on whether you are likely to be a human or a bot, so that our site can respond accordingly.

(3) To ensure that Google reCAPTCHA is used in compliance with data protection regulations, we have entered into an agreement with Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, according to which Google may only process this data for our purposes and in accordance with our instructions and may not use it for its own purposes.

 

4. Consent management with Cookiebot

(1) We use the third-party solution Cookiebot on our website to obtain your consent to the use of certain plugins and technologies and to manage them. This involves establishing a connection to Cookiebot's servers and transferring the data listed in § 2. Cookiebot also stores data on your device and reads data in order to correctly implement your consent preferences. The collected data remains stored for 1 year or until you delete the cookie set by Cookiebot for this purpose. The legal basis for this data processing is the fulfillment of legal requirements to which we are subject.

(2) We have concluded a contract with the provider of Cookiebot within the scope of data protection law, which guarantees data processing in accordance with data protection regulations and binds the service provider to our instructions.

(3) The provider of Cookiebot is Usercentrics A/S, Hanvegade 39, 1058 Copenhagen, Denmark. Further information on Cookiebot's data protection can be found on the provider's website: <https://www.cookiebot.com/de/privacy-policy/>

 

5. Integration of other third-party services

(1) We have also integrated Google services (Google Tag Manager: management of tags/plug-ins) into this website.

We use this service on the basis of a balancing of interests due to technical necessity or in order to offer you a better user experience on our website and to increase the attractiveness of our website.

(2) When you visit the website, the respective third-party provider receives information that you have accessed the corresponding subpage of our website. In addition, the data specified in § 2 (1) of this privacy policy is transmitted. This occurs regardless of whether this third-party provider provides a user account through which you are logged in or whether no user account exists. If you are logged in to the third-party provider, your data will be directly assigned to your account. If you do not want this assignment to your profile with the respective third-party provider, you must log out before visiting our website. The third-party provider may store your data as a usage profile and use it for advertising, market research, and/or the needs-based design of its website. Such evaluation is carried out in particular (even for users who are not logged in) to provide needs-based advertising and, if necessary, to inform other users of the respective service about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact the respective third-party provider to exercise this right.

(3) Further information on the purpose and scope of data collection and its processing by third-party providers can be found in the privacy policies of these providers, which are listed below. There you will also find further information on your rights in this regard and settings options for protecting your privacy:

(4) Addresses of the respective providers and URLs with their privacy policies:

a\) Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland; https://www.google.de/intl/de/policies/privacy and <https://www.google.com/policies/privacy/partners/>

 

Information for data subjects within the scope of the EU GDPR

The processing of personal data of data subjects residing or staying within the European Union is carried out in accordance with the European General Data Protection Regulation (EU GDPR).

Processing is carried out on the basis of the legal grounds specified in Art. 6 EU GDPR, in particular:

  • to fulfill contractual obligations,
  • to safeguard legitimate interests,
  • on the basis of your consent, or
  • to fulfill legal obligations.

As a data subject, you have the following rights in particular:

  • information about the data stored about you (Art. 15 EU GDPR),
  • Correction of inaccurate or incomplete data (Art. 16 EU GDPR),
  • erasure (\"right to be forgotten,\" Art. 17 EU GDPR),
  • Restriction of processing (Art. 18 EU GDPR),
  • Objection to certain processing (Art. 21 EU GDPR),
  • Data portability (Art. 20 EU GDPR),
  • Withdrawal of consent (Art. 7(3) EU GDPR).

If you believe that the processing of your personal data violates the EU GDPR, you have the right to lodge a complaint with a data protection supervisory authority, in particular in the member state of your habitual residence, your place of work, or the place of the alleged violation (Art. 77 EU GDPR).

 

Data transfers to third countries:

Insofar as personal data is transferred to recipients outside the EU/EEA area (\"third countries\"), this is done exclusively in compliance with Art. 44 et seq. GDPR, e.g. through adequacy decisions (third countries with a comparable level of data protection, EU-U.S. Data Privacy Framework (DPF)) or standard contractual clauses (SCCs). For more information, please refer to the section \"International data transfers.\"

 

Information for data subjects within the scope of the UK GDPR

The processing of personal data of data subjects residing or staying within the United Kingdom is carried out in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018 (DPA 2018).

The UK GDPR is largely comparable to the EU GDPR. Here, too, the principle of lawful, purpose-bound, and transparent processing of personal data applies.

Processing is carried out on the basis of the legal grounds specified in Art. 6 UK GDPR, in particular:

  • to fulfill contractual obligations,
  • to safeguard legitimate interests,
  • based on your consent or
  • to fulfill legal obligations.

As a data subject, you have the following rights in particular:

  • Information about your processed personal data (Art. 15 UK GDPR),
  • Rectification of inaccurate data (Art. 16 UK GDPR),
  • erasure (\"right to erasure,\" Art. 17 UK GDPR),
  • Restriction of processing (Art. 18 UK GDPR),
  • Objection to certain processing (Art. 21 UK GDPR),
  • Data portability (Art. 20 UK GDPR),
  • Withdrawal of consent (Art. 7 UK GDPR).

You also have the right to lodge a complaint with the UK data protection authority, the Information Commissioner's Office (ICO).

 

Data transfers abroad:

If personal data is transferred from the United Kingdom to other countries, we ensure that this is only done in compliance with the provisions of the UK GDPR, e.g. through adequacy decisions by the UK Secretary of State, the use of International Data Transfer Agreements (IDTA) or the UK Addendum to the EU Standard Contractual Clauses.

 

Information for data subjects within the scope of the Swiss DSG

The processing of personal data of data subjects residing or staying in Switzerland is subject to the provisions of the Federal Act on Data Protection (FADP).

Your data will be processed in accordance with the principles of the DSG, in particular:

  • in good faith,
  • proportionately,
  • only for identifiable purposes, and
  • with appropriate data security.

In particular, you have the following rights under Swiss data protection law:

  • Information about your stored personal data (Art. 25 DSG),
  • correction of inaccurate data (Art. 32 para. 1 lit. a DSG),
  • deletion (within the scope of the principle of proportionality),
  • objection to unlawful processing, and
  • revocation of consent given.

Complaints can be addressed to the Federal Data Protection and Information Commissioner (FDPIC).

 

Data transfers abroad:
Where personal data is transferred to recipients outside Switzerland, this will only take place if an adequate level of data protection recognized by the Federal Council is guaranteed there or if suitable safeguards exist on the basis of standard data protection clauses or other contractual safeguards.

Status: March 06, 2026