Data protection declaration of Siteco GmbH

This data protection declaration specifies how your personal data is processed as a customer, lessee, supplier or partner of Siteco GmbH ("Siteco GmbH"). It explains how Siteco GmbH uses your personal data, which measures are taken to protect your data and which rights you have regarding your personal data.


The protection of personal data is highly important for Siteco GmbH. For this reason, Siteco GmbH processes your personal data in accordance with regulations of the European basic data protection regulation (DSGVO) and further applicable legislative regulations for the protection of personal data and for data security.

1. Purpose of processing, data categories and legal basis of the processing

Siteco GmbH only processes your personal data to communicate with you, to prepare or conclude business processes, or if you have requested this, to inform you about new products and developments. In this context a range of processing activities is created as follows:

  • support for customers and interested parties
  • preparation and conclusion of contracts
  • planning and implementation of projects
  • information from customers and interested parties about latest developments and new products
  • compliance with legal obligations, such as: requirements of financial statements, accounting and auditing

For the above-specified purposes, Siteco GmbH processes personal data that you yourself have supplied or that we gain as part of your business relationship with us. This hereby concerns the following data categories:

  • contact information
  • data required for the generation and conclusion of business processes
  • financial, bank and creditworthiness data
  • contractual data
  • insurance and damage data
  • data required to be collected or processed for the purposes of public interest

Siteco GmbH processes your personal data based on the following specified regulations:

  • for the purposes of the implementation of business processes (Article 6 (1) (b) DSGVO),
  • for compliance with legal obligations (Article 6 (1) (c) DSGVO), or
  • to safeguard the legitimate interests of Siteco GmbH under evaluation of the legitimate interests of the affected parties (Article 6 (1) (f) DSGVO).
  • if in individual cases you expressly provided your consent to the processing of your personal data, this consent is then the legal basis for the processing (Article 6 (1) (a) DSGVO).

2. Communication and forwarding of the personal data

Siteco GmbH forwards your personal data as part of the operation of its business in accordance with Article 6 Paragraph 1 lit a) - c) and f) DSGVO to third parties as well as other companies of the OSRAM Group and as part of internal processes to service providers only permitted to process your data as commissioned by us and in compliance with our instructions (Article 28 DSGVO). These partners were assessed by us with regard to compliance to data protection and were obligated by contract.

A list of partner companies can be found at the end of the document.

3. Storage periods

If no specific storage duration is specified during data collection, your personal data will be deleted if these are no longer required for fulfilling the purpose of their storage and if no legal storage obligations (e.g. storage obligations relating to commercial, tax or pension law) require longer storage.

4. Revocability of granted consent declarations

In cases where you have provided Siteco GmbH with consent for the processing of your personal data, you have the right to revoke this granted consent at any time and with future effect. This means that processing implemented before revocation and based on the consent was lawful.

5. Your rights

If you establish business contacts with Siteco GmbH, apply to them or are employed by them, you also have the right from Siteco GmbH to:

  • to receive information about personal data processed by you,
  • to demand the correction of incorrect personal data,
  • to demand the deletion of processed personal data,
  • to demand limitation of the processing of personal data,
  • to demand the transfer of data or
  • to object to the data processing of personal data.

The Siteco GmbH data protection officer would be pleased to inform you in detail about your appropriate rights. Simply make contact via or get in touch with your appropriate contact person.

6. Siteco GmbH data officer

The Siteco GmbH data protection officer provides support with all issues concerning data protection.

In addition to the Siteco GmbH contact options specified above, you can also contact the responsible data protection authority at any time.

You can contact the regulatory authority responsible for Bavaria at:

Bayerisches Landesamt für Datenschutzaufsicht [Bavarian Authority for Data Protection]

Promenade 27
91522 Ansbach

Phone: +49 (0) 981 53 1300
Fax: +49 (0) 981 53 98 1300

7. External partners of Siteco GmbH

Siteco involves various service providers in the processing of personal data.

For example, we take via the parent company,

Marcel-Breuer-Straße 6
80807 Munich,

Various services which may also include the processing of personal data. Insofar as personal data is transferred to OSRAM GmbH or other Group companies in this context, this is secured by internal Group contracts and is implemented in compliance with all data protection requirements. A list of possible group companies can be found at

For the maintenance of our SAP system we use services provided by

SPV Solution Products, Visions AG
Baierbrunner Str. 23
81379 Munich


Where necessary, we transmit data to recipients for business purposes such as shipping companies or payment service providers.

8. Website tracking

This website uses etracker technology ( to collect data on visitor behavior. The data is collected anonymously for use in marketing and optimization. All visitor data is saved using an anonymous user ID and can be used to aggregate a usage profile. Cookies may be used for this purpose. Cookies are small text files that are stored in the visitor’s local browser cache. It is possible to use these cookies to recognize a visitor’s browser. The data collected by the etracker technology will not be used to determine the personal identity of a website visitor, and will not be compiled with personal data relating to the person referred to by the pseudonym, unless agreed to separately by the person concerned. The collection and storage of data may be revoked at any time with respect to future services.

Refuse website tracking (etracker)