Legal notice

sedak GmbH & Co. KG
Einsteinring 1
86368 Gersthofen
Germany

Phone +49 821 2494 - 222
Fax +49 821 2494 - 777
Email: info @ sedak.com

HRA Augsburg No. 16098
Jurisdiction Augsburg, Germany
VAT Reg. No. DE257351719

Personally Liable Partner:
sedak verwaltungs GmbH
HRB Augsburg No. 22977
CEO: Bernhard Veh

The content on our website is created and updated with great care. However, the information provided is intended solely for non-binding general information and does not replace detailed individual consultation and planning. We make no guarantee for the timeliness, accuracy, or completeness of the information on our site, nor for uninterrupted access at all times. For references (links) to third-party websites, sedak GmbH & Co. KG assumes no responsibility for the content of linked pages, as they are not reviewed by us. When leaving our site and accessing third-party offerings, different regulations, particularly regarding data protection, may apply. sedak GmbH & Co. KG disclaims liability for service-related actions, especially for any minor negligent breaches of duty in connection with the download of files we make available on our website.

Please find here our Terms and Conditions of Sale.

1. Controller & Data Protection Officer

Controller:

sedak GmbH & Co. KG
Einsteinring 1
86368 Gersthofen
Germany
Phone: +49 821 2494 222
E-Mail: info @ sedak.com

Data Protection Officer: Our external Data Protection Officer is Markus Achatz, Qualitätsmanagementakademie.
Please send inquiries to: datenschutz @ sedak.com

Supervisory authority: Bavarian State Office for Data Protection Supervision, Promenade 18, 91522 Ansbach, email: poststelle @ lda.bayern.de

Legal Basis
– Art. 13 GDPR (Information obligation regarding the type, scope, and purpose of data processing)

2. General Information on Data Processing

The protection of your privacy and personal data is important to us. We process personal data exclusively in accordance with the applicable data protection laws (in particular the GDPR and TTDSG).

Personal data means any information relating to an identified or identifiable natural person (Art. 4 No. 1 GDPR).

​​​​​​​3. Visiting the Website / Server Log Files

Each time our website is accessed, data from the accessing system is automatically collected, in particular:

- Browser type and version
- Operating system
- IP address
- Date and time of access
- Referrer URL
- Pages and files accessed

Purpose: Provision of the website, detection of malfunctions, ensuring security and stability.
This data is not combined with other data sources.

Storage Period:

- Access log: stored for 14 days
- Error log: stored for 7 days
- SMTP log: stored for 7 days

Legal Basis:

- Art. 6 (1) lit. c GDPR (legal obligations)
- Art. 6 (1) lit. f GDPR (legitimate interest: functionality, security, and prevention of misuse of the website)

4. Contact Form and Inquiries

If you contact us via the contact form, we collect the following data:

- First and last name
- Email address
- Company (if applicable)
- Address (street, house number, postal code, city – if applicable)
- Telephone number (if applicable)
- Content of your message
- Options selected by you (e.g., brochure request or request for information)

Purpose: Processing your inquiry and conducting communication.

Storage Period: Until the purpose has been fulfilled; generally no later than 6 months after completion of processing, unless statutory retention obligations apply.

Obligation to Provide Data
The provision of data marked as mandatory is required to process your request. Without this information, processing is not possible.

Right to Object
If processing is based on Art. 6 (1) lit. f GDPR, you may object at any time. Further information about your rights can be found in the section “Data Subject Rights” of this privacy policy.

Legal Basis:

- Art. 6 (1) lit. b GDPR (contract-related inquiries)
- Art. 6 (1) lit. f GDPR (legitimate interest in efficient handling of inquiries and maintaining business relationships)

5. Applications / Recruiting

We appreciate your interest in working at sedak GmbH & Co. KG. For all applications, including unsolicited applications, we collect the following data:

- Name, address, date of birth
- Contact details (email, telephone number)
- Application documents (CV, cover letter, certificates, qualifications)
- Additional voluntary information (e.g., portfolio, social media profiles, photographs)

Purpose: Processing the application, conducting the recruitment process, and deciding on the establishment of an employment relationship.

Storage Period: Generally 6 months after completion of the procedure; longer only with consent or due to statutory retention obligations.

Obligation to Provide Data: Without the required information, the application cannot be considered.

Right to Object / Withdrawal: Voluntary data can be deleted at any time.

Data Processing on Behalf: If your data is passed on to third parties for the purpose of carrying out the recruitment process (e.g., HR software providers, recruitment agencies), this is done exclusively on the basis of a data processing agreement pursuant to Art. 28 GDPR.

Additional Information:

- No transfer to third parties for advertising purposes without consent
- Only relevant data is processed for the duration of the recruitment process
- Technical and organizational measures pursuant to Art. 32 GDPR protect your data
- No profiling or automated decision-making

Legal Basis:

- Art. 6 (1) lit. a GDPR (voluntary data, e.g., portfolio, social media links)
- Art. 6 (1) lit. b GDPR (pre-contractual measures)
- Art. 6 (1) lit. c GDPR (statutory retention obligations)

6. Analytics, Cookies & Integrated Services

Matomo (Web Analytics): We use Matomo for anonymized analysis of website usage. Data collection and storage generally take place on servers within the EU/EEA. Should processing or storage take place outside the EU/EEA, this will be based on EU data protection regulations, including an EU adequacy decision or appropriate safeguards such as standard contractual clauses.
Further information can be found in Matomo’s privacy policy.

Purpose: Optimization of our website and analysis of user behavior
Storage Period: Generally 6 months

Legal Basis:

- Art. 6 (1) lit. f GDPR (legitimate interest: improvement of the website and analysis of user behavior)

Social Media Links / Platforms: The website contains links to Facebook, Instagram, LinkedIn, YouTube, Xing, X, and TikTok. Clicking these links does not automatically transfer data; you are merely redirected to the respective platform.

Note: The processing of personal data by these platforms is subject to their own data protection regulations. Please refer to the respective providers’ privacy policies.

Legal Basis:

- Art. 6 (1) lit. f GDPR (legitimate interest in presenting our social media channels)

Cookies: We only use necessary cookies, e.g., for the technical functionality of the website and for analysis with Matomo. Separate consent is not required.

Fonts (Local Hosting): Fonts used on our website are hosted locally and delivered directly from our server or our hosting provider’s server. No personal data is transmitted to third parties.

7. Data Subject Rights

You have the right to obtain information about the personal data we have stored about you. You may also exercise the following rights:

- Access to your stored personal data (Art. 15 GDPR)
- Rectification of incorrect or incomplete data (Art. 16 GDPR)
- Erasure of your data where legally permissible (Art. 17 GDPR)
- Restriction of processing (Art. 18 GDPR)
- Objection to processing (Art. 21 GDPR)
- Data portability (Art. 20 GDPR)
- Withdrawal of consent given (Art. 7 (3) GDPR)

You also have the right to lodge a complaint with a data protection supervisory authority regarding the processing of your personal data (Art. 77 GDPR).

Contact for Exercising Your Rights:
Email: datenschutz @ sedak.com

Legal Basis:

- Arts. 13, 15–22 GDPR (information and data subject rights)

8. Data Security

We implement appropriate technical and organizational measures (TOMs) to protect your personal data against unauthorized access, loss, or misuse. These include, among others:

- SSL encryption of data transmission
- Access restrictions to authorized persons
- Regular security updates and backups
- Review of measures through internal controls

Legal Basis:

- Art. 6 (1) lit. c GDPR (legal obligation)
- Art. 6 (1) lit. f GDPR (legitimate interest: protection of personal data)

9. Amendments to the Privacy Policy

We adapt our privacy policy as necessary, for example due to legal changes or new services, to ensure you are always informed. Please always refer to the current version published on our website.

Status: March 2026

Legal Basis:

- Art. 6 (1) lit. c GDPR (legal obligation)
- Art. 6 (1) lit. f GDPR (legitimate interest: updating and informing about changes)