The protection of your personal data when personal data is processed during your visit to our homepage is an important concern for us. Your data will be protected within the framework of the legal regulations. We would like to inform you about the type and scope of personal data processing activities on this website in accordance with Article 13 of the General Data Protection Regulation (GDPR).
- Controller details
Gebr. Brill Substrate GmbH & Co. KG
Phone: +49 (0) 5946 / 9123-0
- Details of the data protection officer
If you have any questions regarding data protection, please contact our external data protection officer:
Mr Arndt Halbach from GINDAT GmbH
Wetterauer Str. 6, D-42897 Remscheid
Phone +49 (0)2191 / 909 430
- Data processing via the website
Every visit to our website is logged. Initially, we record the following data which your browser shares with us:
- IP address currently used by your PC or router
- Date and time
- Browser type and version
- Operating system of your PC
- Pages that you have looked at
- Name and size of the requested file(s)
- and, if applicable, the URL of the referring website.
This data is collected solely for the purposes of data security, to improve our website and for error analysis on the basis of Article 6, paragraph 1 GDPR. We reserve the right to use this data in the event of system misuse in order to determine the reasons and the trigger for the misuse, and to take legal action if necessary. Incidentally, the IP address of your computer is always evaluated anonymously (the last 3 digits are dropped).
You can visit our website without providing any personal information.
We would like to point out that data transmission via the Internet (e.g. communication by e-mail) may be subject to security gaps. It is not possible to completely prevent third parties from accessing data. You should therefore send us confidential data by other means, e.g. by postal mail.
The controller processes the personal data of applicants for the purpose of carrying out the application procedure. The legal basis is § 26 paragraph 1 sentence 1 of the German Federal Data Protection Act (BDSG). Processing can also be carried out electronically. This is particularly the case if an applicant submits relevant application documents to the controller by electronic means, such as by e-mail or via a web form available on the website. If the controller concludes an employment contract with an applicant, the transmitted data is stored for employment relationship purposes in compliance with the statutory provisions. If the controller does not conclude an employment contract with the applicant, the application documents will be deleted after the advertised position has been filled, taking into account the legal provisions, unless deletion conflicts with any other legitimate interests of the controller. Other legitimate interests in this sense include, for example, a duty of proof in proceedings under the German General Equal Treatment Act (AGG). For this purpose, the data will be stored for 6 months after completion of the application procedure and then deleted.
Applications can only be processed by us if they are sent to the e-mail address firstname.lastname@example.org. If you use one of our company’s other e-mail addresses, your application will unfortunately not be recognised by our systems and therefore not be considered. Please keep in mind that e-mail is not a secure medium. Should your application reach our e-mail server at the above-mentioned e-mail address, we will protect your application with a high level of technical and organisational effort. We have no influence on the data transfer paths of your application through the public Internet before it reaches our company and cannot guarantee an appropriate level of protection for your application. If your outbound e-mail server supports STARTTLS, our e-mail server will also use STARTTLS and thus guarantee transport encryption.
Personal data (e.g. your name, address or contact details) that you provide us with on your own initiative, e.g. in the context of an enquiry or in any other way, will be stored by us and processed only for the purposes of correspondence with you and only for the purpose for which you have made this data available to us. This data will be processed on the basis of our legitimate interest in providing a prompt reply to enquiries from interested parties pursuant to Article 6 paragraph 1 letter f. GDPR.
Secure data transmission
In order to protect the security of your data during transmission, we use a state-of-the-art encryption process (SSL) via HTTPS.
- Recipient of personal data
With regard to commissioned data processing, we may hire service providers to execute and handle processing procedures.
Specifically, we have hired service providers to host our website.
The contractual relationships with our service providers are regulated in accordance with the provisions of Art. 28 GDPR, which contain the legally required elements of data protection and data security.
To ensure a uniform presentation of fonts, this website uses web fonts provided by Adobe Systems Software Ireland Limited, 4-6 Riverwalk, Citywest Business Campus, Dublin 24, Republic of Ireland. When you access a page, your browser loads the required web fonts into its cache in order to display texts and fonts correctly. To do this, the browser you are using must connect to Adobe’s servers. This informs Adobe that your IP address has been used to access our website. We use Adobe Web Fonts in the interest of a uniform and attractive presentation of our online services. This constitutes a legitimate interest within the meaning of Article 6 paragraph 1 letter f GDPR. If your browser does not support Web Fonts, a standard font from your computer will be used. For more information on Adobe Typekit, please visit
- Google Web Fonts
- Google Analytics
This website uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
Google Analytics enables the website operator to analyse the behaviour of website visitors. In doing so, the website operator receives various usage data, such as page impressions, length of stay, operating systems used and the origin of the user. This data may be summarised by Google in a profile which is assigned to the respective user or his terminal device.
Google Analytics uses technologies that facilitate recognition of the user for the purpose of analysing user behaviour (e.g. cookies or device fingerprinting). The information collected by Google about the use of this website is usually transferred to a Google server in the USA and stored there.
The basis for data processing is your consent in accordance with Article 6 paragraph 1 letter a GDPR. You can revoke your consent at any time with effect for the future by changing the appropriate settings in our Cookie Consent Tool. You can revoke your consent at any time.
The IP anonymisation function has been activated on this website. This will cause your IP address to be truncated by
Google within Member States of the European Union or in other States party to the Agreement on the European Economic Area before it is transmitted to the United States. It is only in exceptional cases that the full IP address is transferred to a Google server in the USA and truncated there. On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and
internet usage for the website operator. The IP address transmitted by your browser through Google Analytics is not combined with other data from Google.
You can prevent Google from collecting and processing your data by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de.
For more information on how user data is handled at Google Analytics, please refer to
We have concluded a contract with Google for job processing and fully implement the strict requirements of the German data protection authorities when using Google Analytics. Data stored by Google at user and event level, which are linked to cookies, user IDs (e.g. User ID) or advertising IDs (e.g. DoubleClick cookies, Android advertising ID), are anonymised or deleted after 14 months. Details can be found at the following link: https://support.google.com/analytics/answer/7667196?hl=de
Data stored by Google at user and event level, which are linked to cookies, user IDs (e.g. User ID) or advertising IDs (e.g. DoubleClick cookies, Android advertising ID), are anonymised or deleted after 14 months. Details can be found at the following link: https://support.google.com/analytics/answer/7667196?hl=de
- Your rights
You are entitled to exercise the following rights in relation to the personal data processed by us in accordance with articles 15-21 GDPR, if the conditions described therein are met.
Right to information
You have the right to obtain information about any personal data that we process that relates to your person.
Right of rectification
You can request the correction of incomplete or incorrectly processed personal data.
Right of deletion
You have the right to have your personal data deleted, in particular if one of the following reasons applies
- Your personal data is no longer necessary for the purposes for which it was collected or otherwise processed.
- You revoke the consent on which the processing of your data was based.
- You have exercised your right to object to the processing of your data and there are no legitimate reasons for processing the data that take precedence.
- Your data has been processed unlawfully.
However, the right of deletion does not apply if this is contrary to the legitimate interests of the controller. A legitimate interest must be assumed in the following cases:
- Personal data is required for the assertion, exercise or defence of legal claims.
- Deletion is not possible due to storage obligations.
However, if data cannot be deleted, there may be a right to restrict processing (see following section).
Right to restriction of processing
You have the right to demand that we limit the processing of your personal data if
- you dispute the accuracy of the data and we therefore need to check the accuracy of the data,
- the processing activity is unlawful and you oppose the deletion and request restriction of use instead,
- we no longer need the data, but you need the data to assert, exercise or defend legal claims,
- you have lodged an objection to the processing of your data and it is not yet clear whether our legitimate reasons outweigh your reasons.
Right to data transferability
You have the right to receive the personal data that you have provided us with in a structured, established and machine-readable format and you have the right to transfer this data to another controller without hindrance from us, provided that the processing activity is based on consent or a contract and that the processing activity at our company is carried out using automated procedures.
Right of objection
The data subject has the right to object at any time, for reasons arising from his or her particular situation, to the processing of personal data concerning him or her carried out pursuant to Article 6 paragraph 1 letters e) or f) GDPR, including profiling based on these provisions.
Right of revocation
If your personal data is processed on the basis of consent, you have the right to revoke this consent at any time.
- Mandatory periods for the deletion of data
In the absence of a statutory retention requirement, the data will be deleted or destroyed when it is no longer required for the purpose of data processing. Different periods apply to the retention of personal data. Data relevant to tax law is generally retained for 10 years, other data is generally retained for 6 years in accordance with commercial law regulations. Finally, the storage period may also be governed by the statutory limitation periods, which, for example, according to §§ 195 et seq. of the German Civil Code (BGB), are generally three years, but in certain cases may be up to thirty years.
- Right of appeal to a supervisory authority
Pursuant to Art. 77 GDPR, every data subject has a right of appeal to a supervisory authority if he/she believes that the processing of personal data relating to him/her violates the GDPR. The competent supervisory authority in matters of data protection law is the Data Protection Commissioner of the federal state in which our company has its registered office.
Die Landesbeauftragte für den Datenschutz Niedersachsen (The State Commissioner for Data Protection of Lower Saxony)
Phone: +49 (0)511-120 4500
Fax: +49 (0)511-120 4599
Liability for contents
As a service provider, we are responsible for our own content on these pages in accordance with the general laws (in accordance with § 7 para.1 TMG). However, we are not obliged to monitor transmitted or stored information from third parties or to investigate circumstances that indicate illegal activity. (§8 to §10 TMG). Obligations to remove or block use of information according to general laws remain unaffected by this. However, liability in this respect is only possible from the time a specific infringement becomes known. If we become aware of any such legal infringements, we will remove the content in question immediately.
Liability for links
Our website contains links to external websites of third parties, over whose content we have no influence. Therefore, we can assume no liability for this external content. The respective provider or operator of the linked site is always responsible for its content. The linked pages were checked for possible legal violations at the time of linking. Illegal content was not identified at the time of linking. However, constant monitoring of the contents of the linked pages is not reasonable without specific evidence of a violation of the law. If we become aware of any infringements, we will remove such links immediately.