Privacy Policy

We greatly appreciate your interest in MKCL Deutschland GmbH (hereinafter “MKCL,” “we,” or “us”). Data protection has a particularly high priority for our management. Accordingly, safeguarding your privacy in the processing of personal data and the use of our websites is of utmost importance to us.

The use of our websites is generally possible without providing personal data. However, if you wish to make use of special services of our company via our website or contact us, the processing of personal data may become necessary. Where the processing of personal data is required and no legal basis exists for such processing, we will always obtain the consent of the individual concerned.

The processing of personal data—such as the name, address, e-mail address, or telephone number of a data subject—takes place in accordance with the requirements of the EU General Data Protection Regulation (GDPR) and in compliance with the other applicable data protection regulations in Germany.

By means of this Privacy Policy, we would like to inform the public about the nature, scope, and purpose of the personal data we process. Furthermore, this Privacy Policy explains the rights to which data subjects are entitled and fulfills the information obligations under Articles 13 and 14 GDPR.

1. Contact details of the controller

The controller within the meaning of the GDPR and other national data protection laws is:

MKCL Deutschland GmbH
Lily-Braun-Str. 19-21
23843 Bad Oldesloe
Phone: +49 4531 1290-100
Fax: +49 4531 1290-199
E-Mail: info@mkcl.de

Managing Directors: Thomas Riege, Sören Dehnbostel
Commercial Register: Amtsgericht Lübeck HRB 1832 OD

2. Contact details of the Data Protection Officer

Our Data Protection Officer is:

Oscar Nissen (NNW Consulting GmbH)
Lily-Braun-Str. 19-21
23843 Bad Oldesloe
E-Mail: on@mkcl.de

You may contact our Data Protection Officer at any time with questions or suggestions regarding data protection.

3. Website use / Collection of general data and information

Each time the MKCL website is accessed by you or an automated system, a series of general data and information is collected and stored in the server log files.

This may include: the name of the page accessed, file, date and time of access, volume of data transferred, status message regarding successful access, browser type and version, the user’s operating system, referrer URL (previously visited page), IP address, Internet service provider, and other similar data and information necessary for defending against attacks on our IT systems.

No conclusions about the individual user are drawn from this information. Instead, the data is needed to:

• correctly deliver the website’s content,
• optimize the content and performance of the website,
• ensure the long-term functionality of our IT systems, and
• provide law enforcement authorities with the information required in the event of a cyberattack.

The anonymously collected data and information is therefore evaluated statistically and also with the aim of increasing data protection and data security at our company, ultimately ensuring an optimal level of protection for the personal data we process. The data of server log files is stored separately from all personal data provided by a data subject.

3.1 Cookies

The MKCL websites use cookies. Cookies are text files that are stored on a computer system via an internet browser.

Many websites and servers use cookies. A cookie often contains a so-called cookie ID. A cookie ID is a unique identifier of the cookie and allows internet pages and servers to distinguish the individual browser of the user from others that store different cookies.

By using cookies, MKCL can provide more user-friendly services that would not be possible without cookies. Cookies enable us, for example, to recognize users pseudonymously and make the use of our website easier.

Users can prevent the setting of cookies at any time by configuring their internet browser accordingly, and they may delete cookies already stored at any time. If cookies are disabled, some website functions may not be fully usable.

Session cookies used by MKCL are automatically deleted once the browser session ends.

4. Social Media Presence

We maintain online presences within social networks and platforms in order to communicate with customers, prospects, and users who are active there, and to inform them about our services.

We would like to point out that user data may be processed outside the European Union. This can create risks for users because, for example, the enforcement of user rights could be more difficult.

In relation to US providers that are certified under the EU-U.S. Data Privacy Framework (DPF), we point out that they commit themselves to complying with EU data protection standards.

User data is generally processed for market research and advertising purposes. For example, user behavior and the resulting interests can be used to create user profiles. These user profiles can in turn be used, for example, to place advertisements inside and outside the platforms that are presumed to correspond to the interests of users. For these purposes, cookies are generally stored on the users’ computers, in which user behavior and interests are stored.

The processing of users’ personal data is based on our legitimate interests in effective information for users and communication with users pursuant to Article 6(1)(f) GDPR. If users are asked by the respective providers for their consent to data processing (e.g. by checking a box or confirming via a button), the legal basis of processing is Article 6(1)(a) GDPR.

For a detailed description of the respective processing activities and opt-out options, please refer to the information provided by the providers linked below.

In the case of requests for information and the exercise of data subject rights, we note that these can most effectively be asserted with the providers themselves. Only the providers have access to the data of users and can directly take appropriate measures and provide information.

We operate the following social media presences:

• TikTok: https://www.tiktok.com/@mkcl.deutschland
  Privacy policy: https://www.tiktok.com/legal/privacy-policy?lang=en
• YouTube: https://www.youtube.com/@Notebookswieneu
  Privacy policy: https://policies.google.com/privacy?hl=en
• LinkedIn: https://de.linkedin.com/company/mkcl-deutschland-gmbh
  Privacy policy: https://www.linkedin.com/legal/privacy-policy

5. Applications (Job Candidates)

We process applicant data only for the purpose and within the scope of the application process, and in accordance with legal requirements. Applicant data is processed to fulfill our (pre-)contractual obligations in the context of the application process within the meaning of Article 6(1)(b) GDPR, Article 6(1)(f) GDPR, and, if applicable, Article 6(1)(a) GDPR if data subjects have given their consent.

The application process requires applicants to provide us with applicant data. The necessary applicant data is marked as such in our online form; otherwise, it results from the job descriptions and typically includes personal details, postal and contact addresses, and the documents belonging to the application (e.g. cover letter, CV, references). In addition, applicants can voluntarily provide us with additional information.

By submitting an application to us, applicants consent to the processing of their data for the purposes of the application process in the manner and scope described in this Privacy Policy.

If provided voluntarily, applicants can submit their applications to us via e-mail. Please note, however, that e-mails are generally not encrypted and applicants must ensure encryption themselves. We therefore cannot accept responsibility for the transmission path of the application between the sender and our server.

If the application is successful, the data provided by applicants will be further processed by us for the purposes of the employment relationship.

If the application is unsuccessful, the data of applicants will be deleted. Applicants’ data will also be deleted if an application is withdrawn, which applicants are entitled to do at any time. Subject to a justified withdrawal by the applicant, the deletion will take place after a period of six months at the latest, so that we can answer any follow-up questions about the application and comply with our obligations under the General Equal Treatment Act (AGG). Invoices for any reimbursement of travel expenses are archived in accordance with tax law requirements.

6. Contractual Relationships

In the context of business relationships with customers, suppliers, and partners, we process personal data to the extent necessary for initiating, establishing, and executing contractual and pre-contractual obligations. The legal basis for processing is Article 6(1)(b) GDPR.

Data processing may also take place on the basis of statutory obligations under Article 6(1)(c) GDPR (e.g., retention obligations under commercial and tax law). In addition, processing may take place on the basis of our legitimate interests in accordance with Article 6(1)(f) GDPR, e.g., for internal administrative purposes, ensuring IT security, or establishing and defending legal claims.

7. Categories of Personal Data

The categories of personal data processed by us include, in particular:

• Master data (e.g., names, addresses, contact details)
• Contract data (e.g., contractual relationships, product or service interests)
• Communication data (e.g., e-mail, telephone, correspondence)
• Payment and accounting data (e.g., bank details, payment history)
• Applicant data (see Section 5)

8. Contact Options

When contacting us (e.g., via contact form, e-mail, telephone, or social media), the information provided by the user is processed in order to handle the contact request and its processing pursuant to Article 6(1)(b) GDPR (in the context of contractual/pre-contractual relationships) or Article 6(1)(f) GDPR (other inquiries).

9. Storage and Deletion of Data

We process and store personal data only for the period necessary to achieve the purpose of storage, or as required by laws or regulations to which we are subject.

If the purpose of storage no longer applies, or a storage period prescribed by the GDPR or other relevant regulations expires, the personal data will be routinely blocked or deleted in accordance with legal requirements.

10. Rights of Data Subjects

Every data subject has the following rights under the GDPR:

• Right of access (Article 15 GDPR) – to obtain information about the data stored about them.
• Right to rectification (Article 16 GDPR) – to correct inaccurate or incomplete data.
• Right to erasure (Article 17 GDPR) – to request deletion of personal data.
• Right to restriction of processing (Article 18 GDPR).
• Right to data portability (Article 20 GDPR).
• Right to object (Article 21 GDPR) – to object to the processing of personal data on grounds relating to their particular situation.
• Right to withdraw consent (Article 7(3) GDPR) – if processing is based on consent, it can be withdrawn at any time with effect for the future.

To exercise these rights, data subjects can contact us or our Data Protection Officer at any time (see Sections 1 and 2 of this Privacy Policy). In addition, there is a right to lodge a complaint with a supervisory authority pursuant to Article 77 GDPR.

11. Security of processing

MKCL implements technical and organizational security measures in accordance with Article 32 GDPR to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. This includes encryption of website access using state-of-the-art methods.

MKCL has also established a procedure for regular review, assessment, and evaluation of the effectiveness of technical and organizational measures to ensure continuous improvement of our security practices.

Status: February 2025