Privacy Policy

The company’s contact details:

Name: Schipper CertPers UG (haftungsbeschränkt)  

Telephone number: +49 211 27014187

E-mail address: info@schipper-certpers.de 

The contact details oft he data protection officer:

Name: Michael Dreyer

Telephone number: +49 211 27014187

E-mail address: info@schipper-certpers.de

Privacy Policy

Basics

This privacy policy is intended to inform users of this website about the nature, scope and purpose of the collection and use of personal data by us as the website operator.

We take your privacy very seriously and treat your personal data confidentially and in accordance with legal regulations. Since new technologies and the continuous development of this website may result in changes to this privacy policy, we recommend that you review it regularly.

Definitions of the terms used (e.g. “personal data” or “processing”) can be found in Art. 4 GDPR.

Access data

We, the website operator or site provider, collect data about website access based on our legitimate interest (see Art. 6 (1) (f) GDPR) and store this data as "server log files" on the website's server. The following data is logged:

• Visited website
• Time of access
• Amount of data sent in bytes
• Source/reference from which you came tot he page
• Browser used
• Operating system used
• IP address used

The server log files are stored for a maximum of 7 days and then deleted. The data is stored for security reasons, for example, to investigate cases of misuse. If data must be retained for evidentiary purposes, it will be exempt from deletion until the incident has been definitively resolved.

Reach measurement & cookies

This website uses cookies for pseudonymized reach measurement, which are transferred either from our server or a third-party server to the user's browser. Cookies are small files that are stored on your device. Your browser accesses these files. The use of cookies increases the user-friendliness and security of this website.

If you do not want cookies to be stored on your device for reach measurement purposes, you can object to the use of these files here: 

• Network Advertising Initiative cookie opt-out page:              https://optout.networkadvertising.org/?c=1#!

• Cookie deactivation page of the US American website: https://optout.aboutads.info/?c:2#!/

• European website cookie deactivation page: https://optout.networkadvertising.org/?c=1#!/

Common browsers offer the option to refuse cookies. Note: There is no guarantee that you will be able to access all functions of this website without restrictions if you make the appropriate settings.

We use the following cookies:

• Category: Necessities (5)

Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. Without these cookies, the website cannot function properly. 

• Category: Preferences (8)

Preference cookies allow a website to remember information that changes the way a website behaves or looks, such as your preferred language or the region you are in.

• Category: Statistics (2)
  

Statistical cookies help website owners understand how visitors interact with websites by collecting and reporting information anonymously.

• Category: Marketing (11)

Marketing cookies are used to track visitors across websites. The goal is to deliver ads that are relevant and engaging to the individual user and therefore more valuable to publishers, third-party vendors, and advertisers.

• Category: Unclassified cookies (0)

Unclassified cookies are cookies that we are currently trying to classify, together with providers of individual cookies.

 Last Cookie scan: 08.08.2025

Collection and processing of personal data

The website operator collects, uses and discloses your personal data only if this is permitted by law or if you consent to the data collection.

Personal data is all information that can be used to identify you and that can be traced back to you - for example, your name, email address and telephone number.

You can also visit this website without providing any personal information. However, to improve our online service, we store your access data to this website (without any personal reference). This access data includes, for example, the file you requested or the name of your Internet provider. Because the data is anonymized, it is not possible to identify you personally.

• What personal data do we process?                                                                                           We process personal data such as first name, last name, IP address, email address, place of residence, postal code and content information from the contact form.                                       
• How do we process personal data?                                                                                            We process personal data only with the express permission of the users concerned and in compliance with applicable data protection regulations.  
• Why do we process personal data?                                                                                            The processing of personal data is based on our legitimate interest in fulfilling our contractually agreed services and in optimizing our online offerings.                                                                                                    

Handling contact data

If you contact us as the website operator using the contact options provided, your information will be saved so that it can be used to process and respond to your inquiry. This data will not be passed on to third parties without your consent.

• Contact form: The contact form we provide does not store any data, it only sends the corresponding email to our email address and then deletes this email on the server side.
• Personnel certification forms: The forms we provide for the certification of operational personnel (employees and supervisors), assignments, and self-disclosures are available for download. All records are identified, managed, and destroyed in accordance with Schipper CertPers specifications. Destruction occurs after 11 years at the latest, or sooner if necessary. We undertake to treat all agreed information resulting from the certification process confidentially. No data will be passed on to third parties or authorities without the written consent of the person concerned, unless mandatory or required by law. If the information is passed on, the person concerned will be informed.
  

Information on data processing and its legal basis in the context of personnel certification

Schipper CertPers processes personal data of customers, test participants, auditors, examiners, and interpreters on the basis of Art. 6 (1) (b) GDPR for the performance of a contract to which the data subject is a party or to carry out pre-contractual measures taken at the request or instigation of the data subject. Furthermore, the processing of personal data of customers and business partners is based on Art. 6 (1) (f) GDPR. The personal data is processed for the preparation and implementation of certification procedures according to the relevant certification programs, as well as to demonstrate the competence of auditors, interpreters, examiners, and certification personnel. Contract fulfillment is not possible without this data.

The data is:

• personal contact details of contact persons in companies involved in the certification process;
• personal data on the function and operational position of contact persons in companies in the certification process;
• Data on the use of consulting services in companies of data subjects;
• Data on professional qualifications, experience and exams already passed
• Data on the professional qualifications and training of auditors, interpreters, examiners and certification staff;

This data may originate from the company commissioning us (third parties) and is not public. Furthermore, the following data is processed as part of certification procedures:

• personal contact details of business partners to safeguard the legitimate interest in carrying out certification procedures, in particular the coordination of location and time;
• personal contact details of the personnel deployed for the testing or certification process, in particular the coordination of location and time;
• Data of business partners and auditors, examiners and interpreters to safeguard the legitimate interest of the orderly coordination of certification procedures and the analysis of risks to impartiality;
  
• Data to pursue the legitimate interest of preventing fraud.

The type and scope of the required personal data are determined by and vary depending on the certification program that is the subject of the contract. This is:

• Certification of SGU personnel on the basis of "Normative Document Personnel Certification: Operational personnel in the SGU area

Recipients of personal data in the certification process are the personnel assigned to the auditing/testing or evaluation, as well as the personnel assigned to the certification decision or assessment/certification decision. Furthermore, personal contact details of contact persons in companies and, if applicable, their consultants, on the one hand, and auditors/examiners/interpreters, on the other, are passed on to the respective other party in the certification process.

All data listed on certificates will be confirmed to inquiring third parties upon request. Transfer to other third parties, third countries, institutions, or international organizations is not permitted. As part of the accreditation process, representatives of the German Accreditation Body (DAkkS) may be granted access to certification processes and the underlying records regarding qualifications, experience, and continuing education.

If a contractual relationship exists, the data will be stored for the duration of the contractual relationship and in accordance with the retention rules underlying the respective certification program. These are derived from ISO 17024 and the corresponding regulations of the certification program; the retention periods stipulated by the German Fiscal Code and other tax regulations are observed. If a business relationship exists, the data of business partners is generally stored for the duration of the business relationship; beyond that, it will be stored after the end of the business relationship, depending on the specifics of the respective certification process, and deleted at the latest after the expiration of the retention period of the respective certification process.

In the certification process, certification decisions are made exclusively by employees of the certification body; there is no automated decision-making process.

No consents are accepted in accordance with Art. 8 GDPR and, in principle, no data is processed in accordance with Art. 9 GDPR.

Dealing with comments and posts

If you leave a post or comment on this website, your IP address will be saved. This is done based on our legitimate interests within the meaning of Art. 6 (1) (f) GDPR and serves the security of us as website operators: If your comment violates applicable law, we may be held liable, which is why we have an interest in the identity of the comment or post author.

Google Analytics

Based on our legitimate interests in optimizing and analyzing our online offering within the meaning of Art. 6 (1) (f) GDPR, this website uses the "Google Analytics" service, which is provided by Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). This service (Google Analytics) uses "cookies," text files that are stored on your device. The information collected by the cookies is usually sent to a Google server in the USA and stored there.

Google LLC complies with European data protection law and is certified under the Privacy Shield Agreement: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active

IP anonymization is activated on this website. The IP address of users is shortened within the member states of the EU and the European Economic Area, as well as in other contracting states to the agreement. Only in exceptional cases is the IP address initially transmitted in full to a Google server in the USA and shortened there. This shortening eliminates the personal reference to your IP address. The IP address transmitted by the browser of the user is not combined with other data stored by Google.

As part of the data processing agreement that we, as website operators, have concluded with Google Inc., Google uses the information collected to evaluate website usage and website activity and to provide services related to internet usage.

The data collected by Google on our behalf is used to evaluate the use of our online offering by individual users, e.g. to compile reports on website activity in order to improve our online offerings.

You have the option to prevent cookies from being stored on your device by selecting the appropriate settings in your browser. There is no guarantee that you will be able to access all functions of this website without restrictions if your browser does not accept cookies.

Furthermore, you can use a browser plug-in to prevent the information collected by cookies (including your IP address) from being sent to and used by Google Inc. The following link will take you to the corresponding plug-in: https://tools.google.com/dlpage/gaoptout?hl=de

Alternatively, you can prevent Google Analytics from collecting data about you on this website by clicking on this link: https://tools.google.com/dlpage/gaoptout?hl=de.  By clicking on the above link, you will download an "opt-out cookie." Your browser must therefore generally allow cookies to be stored. If you delete your cookies regularly, you will need to click the link again each time you visit this website. 

Here you can find further information on data usage by Google Inc.:

• https://policies.google.com/privacy/partners?hl=de (Data collected by Google partners)
  
• https://adssettings.google.de/authenticated (Settings about advertising that is shown to you)
• https://policies.google.com/technologies/ads?hl=de (Use of cookies in ads)

User rights

As a user, you have the right to receive, upon request, free information about which personal data has been stored about you. You also have the right to correct inaccurate data and to restrict the processing or delete your personal data. If applicable, you can also exercise your right to data portability. If you believe that your data has been processed unlawfully, you can file a complaint with the relevant supervisory authority.

Deletion of data

Unless your request conflicts with a legal obligation to retain data (e.g., data retention), you have the right to have your data deleted. Data stored by us will be deleted if it is no longer required for its intended purpose and there are no statutory retention periods. If deletion is not possible because the data is required for permissible legal purposes, data processing will be restricted. In this case, the data will be blocked and not processed for other purposes.

Right of objection

Users of this website can exercise their right to object and withdraw their consent to the processing of their personal data at any time.

If you wish to correct, block, delete or request information about the personal data stored about you, or if you have questions regarding the collection, processing or use of your personal data, or if you wish to revoke consent you have given, please contact the following email address: info@schipper-certpers.de

Third-party content and services

The offerings on our website may also include content, services and offerings from other providers that complement our services. Examples of such offerings are maps from Bing Maps or graphics from third parties. Accessing these third-party services regularly requires the transmission of your IP address. This enables these providers to recognize and store your user IP address. We make every effort to only include third-party providers who use IP addresses solely to deliver content. However, we have no influence on which third-party provider stores the IP address. This storage may be for statistical purposes, for example. Should we become aware of storage processes by third parties, we will inform our users immediately. In this context, please also note the specific data protection declarations of individual third-party providers and service providers whose services we use on our website. You can also find them in this data protection declaration.

Bing Maps Plugin

We use a plug-in from the internet service Bing Maps on our website. Bing Maps is operated by Microsoft Corporation, located in the USA, WA 98052, 6399 One Microsoft Way, Redmond. When you use Bing Maps on our website, information about the use of this website and your IP address is transmitted to a Microsoft server in the USA and stored there. We have no knowledge of the exact content of the transmitted data or its use by Bing. In this context, the company denies linking the data with information from other Microsoft services and the collection of personal data. However, Microsoft can transmit the information to third parties. If you deactivate JavaScript in your browser, you will prevent Bing Maps from running. However, you will then also not be able to use map displays on our website. By using our website, you consent to the described collection and processing of information by Microsoft Corporation. You can find out more about the privacy policy and terms of use for Bing Maps here:

http://help.bing.microsoft.com/#apex/18/de/n1999/-1/de

OnlineStreet-Link

We have included a link to the internet provider onlinestreet.de on our website. Onlinestreet.de is a digital street directory, business directory, and local reference work for Germany. When you access the website onlinestreet.de/ via this link, the browser used on your device – or possibly its hosting provider – automatically sends information to the server of the website onlinestreet.de. Click here to read the onlinestreet.de privacy policy.  

Klick-it Link

We include a link from the internet provider KLICK-IT.de on our website. KLICK-IT.de is the online company directory for German-speaking companies and the DACH region. Companies from Germany, Austria, and Switzerland list their locations, local offers, and the best links for interested parties free of charge. Our visitors can find German-speaking experts from all industries worldwide here. Click here for the KLICK-IT.de privacy policy.

Server Logfiles

Server log files are anonymized data collected when you access our website. This information does not allow any conclusions to be drawn about you personally, but is essential for technical reasons for the delivery and presentation of our content. Furthermore, it is used for our statistics and the continuous optimization of our content. Typical log files include the date and time of access, the amount of data, the browser used for access and its version, the operating system used, the domain name of the provider you have commissioned, the page from which you came to our website (referrer URL), and your IP address. Log files also enable a detailed investigation if there is suspicion of illegal use of our website.

Use of social media plugins from Facebook

Due to our legitimate interest in analyzing, optimizing, and operating our online services (as defined in Art. 6 (1) (f) GDPR), this website uses the Facebook social plug-in, which is operated by Facebook Inc. (1 Hacker Way, Menlo Park, California 94025, USA). The integrations can be recognized by the Facebook logo or the terms "Like," "Like," and "Share" in Facebook's colors (blue and white). Information about all Facebook plug-ins can be found at the following link: https://developers.facebook.com/docs/plugins/
Facebook Inc. complies with European data protection law and is certified under the Privacy Shield Framework: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active
The plug-in establishes a direct connection between your browser and the Facebook servers. The website operator has no influence whatsoever on the nature and extent of the data transmitted by the plugin to the Facebook Inc. servers. Information about this can be found here: https://www.facebook.com/help/186325668085084
The plugin informs Facebook Inc. that you, as a user, have visited this website. Your IP address may be saved. If you are logged into your Facebook account while visiting this website, this information will be linked to it.
If you use the plugin's features—for example, by sharing or "liking" a post—the corresponding information will also be transmitted to Facebook Inc.
If you would like to prevent Facebook Inc. from linking this data to your Facebook account, please log out of Facebook before visiting this website and delete the stored cookies. You can configure further settings for data processing for advertising purposes or object to the use of your data for advertising purposes via your Facebook profile. You can access the settings here:

• Profile settings on Facebook: https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen
• Cookie deactivation page of the US website: https://optout.aboutads.info/?c=2#!/
• Cookie deactivation site of the European website: https://optout.networkadvertising.org/?c=1#!/

You can find out what data Facebook collects, uses, and processes, for what purpose, and to what extent, as well as what rights and settings options you have to protect your privacy, in Facebook's privacy policy. You can find it here: https://www.facebook.com/about/privacy/

SSL encryption

To best protect your transmitted data, the website operators use SSL encryption. You can recognize such encrypted connections by the prefix "https://" in the page link in your browser's address bar. Unencrypted pages are marked with "http://."

All data that you transmit to this website - for example when making inquiries or logging in - cannot be read by third parties thanks to SSL encryption.

DNSSec encryption

Our website uses DNSSec encryption. DNSSec refers to a series of security extensions for our domain. These security extensions protect the website from certain types of attacks, such as the falsification of DNS cache data: "Fake" or falsified DNS entries or messages can redirect internet users to false systems, where they can be spied on, have their data stolen, etc.

With DNSSec, DNS requests and responses are signed using asymmetric encryption methods. This ensures data integrity (e.g., tampering during transport is no longer possible) and source authentication ("The person I asked is the person who answered").

As of: April 26, 2025