Data Protection Burnickl Group

We take data protection seriously

The protection of your privacy during the processing of personal data is an important concern for us.

By visiting our website, our web servers automatically record the IP address of your internet service provider, the website from which you visit us, the pages on our website you visit and the date and duration of your visit. This information is absolutely necessary for the technical transmission of the web pages and the secure server operation. A personalized evaluation of this data does not take place. 

If you send us data via contact form, this data will be stored on our servers in the course of data backup. Your data will be used by us exclusively to process your request. Your data will be treated strictly confidential. The data will not be passed on to third parties.

Responsible body:

Burnickl Group GmbH

Untere Gasse 51

92355 Velburg/Germany 

Phone  +49 9182 939915-0


Personal data

Personal data is data about you. These include your name, address and email address. You do not have to divulge any personal information in order to visit our website. In some cases we need your name and address as well as further information to offer you the desired service.

The same applies in the event that we supply you with information material on request or if we answer your inquiries. In these cases we will always point this out to you. In addition, we only store data that you have transmitted to us automatically or voluntarily.

When you use one of our services, we usually only collect the data necessary to provide you with our service. We may ask you for more information, which is voluntary in nature. Whenever we process personal information, we do so to provide you with our service or to track our commercial goals.

Automatically stored non-personal data:

When you visit our website, we store certain information for administrative and technical reasons. These are: type and version of the browser used, date and time of access, as well as the IP address.


These data are anonymized and used only for statistical purposes or to improve our internet and online services. These anonymized data are stored separately from personal data on secure systems and can not be assigned to individual persons. This means that your personal information remains protected at all times.


When you visit our website, we may store information on your computer in the form of cookies.

Cookies are small files that are transferred from an Internet server to your browser and stored on its hard disk. The legal basis for the use of cookies is Article 6(1) (f) GDPR.

Only the Internet Protocol address is stored here - no other personal data. This information, which is stored in the cookies, allows you to automatically recognize the next time you visit our website, which will facilitate your use.


Of course, you can also visit our website without accepting cookies. If you do not want your computer to be recognized the next time you visit, you can also decline to use cookies by changing the settings in your browser to decline cookies. The respective procedure can be found in the operating instructions  of your respective browser. If you refuse the use of cookies, however, it may come to restriction in the use of some areas of our website.

Google SiteSearch (Google AJAX Search API)

On our site, Java Script Code is downloaded from Google Inc. 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. If you have activated Java Script in your browser and have not installed a Java Script Blocker, your browser may transfer personal data to Google. We do not know what data Google associates with the data received and why Google uses that information. To prevent the execution of Google's Google Script code altogether, you can install a Java Script Blocker (for example, For details, see the privacy policy of the provider:

Facebook social plugins

Our website uses social plugins from the social network, which is operated by Facebook Inc. 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook"). The plugins are marked with a Facebook logo or the addition"Facebook Social Plugin".

If you visit a website of our website that contains such a plugin, your browser established a direct connection with the Facebook servers. The content of the plugin is transmitted by Facebook directly to your browser and integrated by this in the website.

By integrating the plugins, Facebook receives the information that you have accessed the corresponding page of our website.

If you are logged in to Facebook, Facebook can assign the visit to your Facebook account. If you interact with the plugins, for example, press the "Like" button or leave a comment, the corresponding information is transmitted from your browser directly to Facebook and stored there.


The purpose and scope of the data collection and the further processing and use of the data by Facebook, as well as your related rights and settings options to protect your privacy, please refer to the privacy policy of Facebook.


If you do not want Facebook to collect data about you via our website, you must log out of Facebook before visiting our website.

New Relic  


This website uses a plugin from New Relic's web analytics service. This service is provided by New Relic Inc., 188 Spear Street, Suite 1200 San Francisco, CA 94105, USA. This allows to record statistical evaluations about the speed of the website. Through the plugin New Relic receives the information that a user has accessed the corresponding page of the offer. For this purpose, New Relic collects system data on deployed addons, browsers as well as hardware and software and usage times, so-called application data, for which cookies are set in your browser. If you are logged in as a user at New Relic, New Relic can assign the visit to your local account. If you are not a member of New Relic, there is still the option for New Relic to get and store your IP address. The purpose and scope of the data collection, as well as how New Relic processes and uses the data, as well as user privacy settings, can be found in New Relic's privacy notices.

If you are a member of New Relic and you do not want New Relic to collect information about you on our Sites to associate it with your Membership information stored on New Relic, you must log out of New Relic before visiting our pages.

Xing referral components  


We use components of the network on our site. These components are a service of XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany. Each time you visit our website, which has such a component, this component causes the browser you are using to download a corresponding representation of the XING component.


To the best of our knowledge, XING does not store any personal data of the user by calling our website. Likewise, XING does not store IP addresses. In addition, there is no evaluation of the user behavior regarding the use of cookies in connection with the "XING Share Button". Further information can be found in the privacy policy for the XING Share button at:

Vimeo plugins


We use for the integration of videos u.a. the provider Vimeo. Vimeo is operated by Vimeo, LLC, with headquarters at 555 West 18th Street, New York, New York 10011. On some of our websites we use plugins of the provider Vimeo. If you access the Internet pages of our Internet presence provided with such a plugin - for example our media library - a connection to the Vimeo servers will be established and the plugin will be displayed. This will be transmitted to the Vimeo server, which of our websites you have visited. If you are logged in as a member of Vimeo, Vimeo assigns this information to your personal user account. When using the plugin such. Clicking on the start button of a video also assigns this information to your user account. You can prevent this association by logging out of your Vimeo user account before using our website and deleting the corresponding cookies from Vimeo. For more information about data processing and privacy by Vimeo, see


Google Maps


This website uses Google Maps to display maps and create directions.

Google Maps is operated by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.

By using Google Maps on this site, you consent to the collection, processing, and use by Google, one of its agents, or third parties of the information collected and collected by you.

The Terms of Use for Google Maps can be found here. The privacy policy of Google Maps can be viewed here.


We have taken technical and administrative precautions to protect your personal data against loss, destruction, manipulation and unauthorized access. All our employees as well as service providers working for us are obliged to the valid data protection laws.  


Whenever we collect and process personal information, it will be encrypted before being transferred. This means that your data can not be misused by third parties. Our security measures are subject to a constant improvement process and our data protection statements are constantly being revised. Please make sure you have the latest version.

Affected Rights

Please contact us at any time if you would like to find out which personal data we store about you or if you want to have them corrected or deleted. Furthermore, you have the right to restrict processing (Art. 18 GDPR), a right to object to processing (Art. 21 GDPR) and the right to data portability (Art. 20 GDPR).


In these cases, please contact us directly.

Changes to this Privacy Policy


We reserve the right to change our privacy policy if necessary due to new technology. Please make sure you have the latest version. If any fundamental changes are made to this privacy policy, we will post it on our website.

All interested parties and visitors of our website reach us in privacy issues at:


Matthias Hassler LL.M.
Projekt 29 GmbH & Co. KG
Ostengasse 14
93047 Regensburg/Germany


Phone   +49 941 2986930
Fax       +49 941 29869316


If our data protection officer is unable to answer your request to your satisfaction, you will in any case remain entitled to file a complaint with the data protection supervisory authority responsible for your state.

Information duties according to Art.13 DS-GVO


The protection of your personal data is of particular concern to us. We therefore process your personal data (in short "data";) exclusively on the basis of the statutory provisions. With this data protection declaration, we want to inform you comprehensively about the processing of your data in our company and the data protection claims and rights to which you are entitled within the meaning of Art. 13 of the European Data Protection Basic Regulation (EU DS-GVO).


1. Who is responsible for data processing and whom can you contact?


Responsible is

Burnickl Group GmbH

Untere Gasse 51

92355 Velburg

Tel.: +49 (0) 9182 939915-0



The company data protection officer is

Matthias Haßler (LL.M.)

Project 29 GmbH & Co. Kg

East Timasses 14

93047 Regensburg


Phone: 0941-2986930



2. Which data are processed and from which sources do these data originate?


We process the data which we have received from you within the framework of contract initiation or processing, on the basis of consents or within the framework of your application to us or within the framework of your staff.




Personal data includes personal data:


Your master/contact data, for example first and last name, address, contact data (e-mail address, telephone number, fax), bank data for customers.


For applicants and employees, this includes, for example, first and last name, address, contact data (e-mail address, telephone number, fax), date of birth, data from curriculum vitae and job references, bank data, religious affiliation, photographs.


For business partners, this includes, for example, the name of their legal representative, company, commercial register number, VAT number, tax number, company number, address, contact person contact data (e-mail address, telephone number, fax), bank data.


In the case of visitors to our company, this includes first name and surname.


For journalists, this includes first and last name, e-mail address, fax number.


For lottery participants this includes first name, surname and e-mail address.


In addition, we also process the following other personal data:

-   Information on the type and content of contract data, order data, sales and document data, 

    customer and supplier history and consulting documents,

-   Advertising and sales data,

-   Information from your electronic dealings with us (e. g. IP address, log-in data),

-   other data that we have received from you in the context of our business relationship (e. g. in

    discussions with customers),

-   Data that we generate ourselves from master/contact data and other data, such as customer 

    requirement and customer potential analyses,

-   Photography in the context of events.



3. For what purposes and on what legal basis are the data processed?

We process your data in accordance with the provision oft he Data Protection Basic Regulation (DS-GVO) and the Federal Data Protection Act 2018, as amended:


-   to fulfil (pre-)contractual obligations (Art.6 para. 1lit. B DS-GVO):

    The processing of your data takes place for the contract winding up on-line or in one of our

    branches, for the contract winding up of your coworkers in our enterprise. The data will be   

    processed in   

    particular during the initiation of business transaction and the execution of contracts with you.

-   to fulfil legal obligations  (Art. 6 para. 1lit. F DS-GVO):

    A processing of your data is necessary for the purpose of the fulfilment of different legal   


    e. g. from the commercial code or the tax code.

-   to safeguard legitimate interests (Art. 6 para. 1lit. F DS-GVO):

    On the basis of a weighing of interests, data processing may take place beyond the actual

    fulfilment  of the contract in ordert o safeguard the legitimate interests of us or third parties. Data   

    processing to safeguard legitimate interests is carried out in the following cases, for example:

Advertising or marketing (see point 4),

-   Measures for business management and further development of services and products;

-   Maintaining a group-wide customer database to improve customer service

-   in connection with legal proceedings

-   Sending of non-promoting information and press releases.

-   within the scope of your consent (Art. 6 para. 1lit. a DSGVO):

    If you have given us permission to process your data, e. g. for the publication of photos,     







4. processing of personal data for advertising purposes


You may at any time object to the use of your personal data for advertising purposes in whole or for individual measures without incurring any costs other than the transmission costs according to the basic tariffs.


We are entitled under the legal requirements of § 7 Abs. 3 UWG to use the e-mail address you provided when concluding the contract for direct advertising for our own similar goods or services. You will receive these product recommendations from us regardless of whether you have subscribed to a newsletter or not.

If you do not wish to receive such recommendations by e-mail from us, you can object to the use of your address for this purpose at any time without incurring any costs other than the transmission costs according to the basic tariffs. A text message is sufficient for this purpose. Of course, every e-mail always contains a unsubscribe link.


5. Who receives my data?

If we use a service provider in the sense of an order processing, we remain nevertheless responsible for the protection of your data. All contract processors are contractually obliged to treat your data confidentially and to process it only within the scope of the service provision. The contract processors commissioned by us will receive your data insofar as they require the data for the performance of their respective services. These are, for example, IT service providers that we need for the operation and security of our IT system as well as advertising and address publishers for our own advertising campaigns.

These data will be made available to the affiliated companies if necessary for the execution of the contract. The storage of customer data is company related and separate.

If there is a legal obligation and in the context of legal prosecution, authorities and courts as well as external auditors may be recipients of your data.

In addition, insurance companies, banks, credit agencies and service providers may be recipients of your data for the purpose of initiating and fulfilling contracts.




6. How long will my data be stored?

We process your data until the termination of the business relationship or until the expiry of the applicable statutory retention periods (e. g. from the German Commercial Code, the Tax Code or the Working Hours Act); furthermore until the termination of any legal disputes in which the data is required as evidence.




7. Is personal data transferred to a third country?


In principle, we do not transfer any data to a third country. A transfer will only take place on a case-by-case basis on the basis of an adequacy decision of the European Commission, standard contractual clauses, appropriate safeguards or your express consent.



8 What data protection rights do I have?


You have the right at any time to information, correction, deletion or restriction of the processing of your stored data, a right of objection to the processing as well as a right to data transfer and a right of complaint in accordance with the requirements of data protection law.





Right to information:

You can request information from us as to whether and to what extent we process your data.


Right to rectification:

If we process your data that is incomplete or inaccurate, you may request that we correct or complete it at any time.

Right to deletion:

You can demand that we delete your data if we process it unlawfully or if the processing disproportionately interferes with your legitimate protection interests. Please note that there may be reasons that prevent an immediate deletion, e. g. in the case of legally regulated storage obligations.

Irrespective of the exercise of your right to deletion, we will delete your data immediately and completely, insofar as there is no legal or statutory obligation to retain data in this respect.


Right to limit the processing:

You can ask us to restrict the processing of your data if

-   you dispute the accuracy oft he data for a period of time that allows us to verify the accuracy of 

    the data.

-   the processing of the data is unlawful, but you refuse to delete it and instead demand a restriction 

    on the use oft he data,

-   we no longer need the data for the intended purpose, but you still need this data to assert or     

    defend legal claims, or

-   you have objected to processing of data.

Right to datatransferability:

You may request that we provide you with the information you have provided to us in a structured, common and machine-redable format and that you may provide that information to another responsible person without our interference, provided that

-   we process this data on the basis of an agreement given and revocable by you or for the fulfilment      of a contract between us, and

-   such processing is carried out using automated procedures.

    If technically feasible, you may request to transfer your data directly to another responsible person.



Right of objection:
If we process your data for legitimate reasons, you may object to such processing at any time; this would also apply to profiling based on these provisions. We will then no longer process your data unless we can prove compelling grounds for processing worthy of protection which outweigh your interests, rights and freedoms or the processing serves the assertion, exercise or defence of legal claims. You can object to the processing of your data for the purpose of direct marketing at any time without giving reasons.

Right of appeal:
If you are of the opinion that we violate German or European data protection law when processing your data, we ask you to contact us in order to clarify any questions you may have. Of course, you also have the right to contact the supervisory authority responsible for you, the respective state office for data protection supervision.

If you wish to assert any of the aforementioned rights against us, please contact our data protection officer. In case of doubt, we may request additional information to confirm your identity.





9. Am I obliged to provide data?


The processing of your data is necessary to conclude or fulfil your contract with us. If you do not provide us with this data, we will generally have to refuse to enter into the contract or will no longer be able to perform an existing contract and will therefore have to terminate it. However, you are not obliged to give your consent to data processing with regard to data which is not relevant for the fulfilment of the contract or which is not required by law.


© 2019 by Burnickl Ingenieur GmbH