Privacy policy
of the Rheinmetall Group for website www.dimensions-magazin.de
I. General Information
1. INTRODUCTION
With the following privacy policy we would like to inform you about which categories of your personal data (hereinafter also referred to as “data”) we process for what purposes and to what extent when you visit our website dimensions-magazin.de.
2. CONTROLLER
The Controller pursuant to Art. 4 para. 7 of the General Data Protection Regulation (hereinafter referred to as “GDPR”) for the data processing on this website is:
Rheinmetall AG
Rheinmetall Platz 1
40476 Düsseldorf, Germany
Phone: +49 211 473-01
e-mail address: info@rheinmetall.com
3. DATA PROTECTION OFFICER
The contact details of Rheinmetall AG’s Data Protection Officer are:
Rheinmetall AG
Data Protection Officer
Rheinmetall Platz 1
40476 Düsseldorf, Germany
e-mail address: DSB-RhAG@rheinmetall.com
II. DATA PROCESSING ACTIVITIES ON OUR WEBSITE
In general, you can visit our website without disclosing your identity. However, if you use certain functions/areas of our website, depending on the circumstances, it may be necessary to provide or collect personal data. In the following, we will go into the details of the respective data processing activities on our website.
1. HOSTING OF THE WEBSITE / LOGGING OF WEBSITE VISITS
In order to provide our website securely and efficiently, we use the services of the web hosting provider Domain Factory GmbH (Oskar-Messter-Str. 33, 85737 Ismaning; im Folgenden Domain Factory), from whose servers (or servers managed by them) the website is accessed. For these purposes, we may use infrastructure and platform services, computing capacity, storage space and database services as well as security and technical maintenance services from Domain Factory. Domain Factory carries out data processing on our behalf in accordance with Art. 28 GDPR.
When you visit our website, we or Domain Factory collect data on each access to the server (so-called server log files). The data collected includes:
- • IP address
- • Date and time of your visit
- • The browser you are using (including its version) .
- • The operating system you are using .
- • Which resources (e.g. subpage, contact form) you access on our website (this is logged in the form of a so-called URL)
We process these server log files on the basis of our legitimate interests in accordance with Art. 6 para. 1 lit. f GDPR for the following purposes:
- • Ensuring the security and stability of the website (e.g. avoiding server overloads due to abusive attacks, so-called DDoS attacks)
- • Ensuring a proper connection to the website,
- • Ensuring a comfortable use of our website,
- • Evaluation of system security and stability and
- • for further administrative purposes.
We may analyze these server log files if we become aware of concrete indications of illegal use. The server log files will be deleted immediately after they are no longer required to achieve the aforementioned processing purposes, but no later than 7 days after their collection.
2. USE OF COOKIES / WEB ANALYSIS
This website uses “cookies”. Cookies are text files which are stored on your computer and which enable, for example, individualization/adjustment of the website to your preferences, automatic recognition on your next visit, proper functioning of the website and analysis of the use of the website.
The concrete use of cookies on our website is determined by your voluntary selection of the privacy settings on our consent manager (“cookie banner”), which is displayed to you in particular when you visit our website for the first time, and/or by the corresponding settings of your browser.
For this purpose, we use the consent manager of consentmanager GmbH, which is also hosted and operated by this provider. In this context, consentmanager GmbH acts as a so-called data processor of Rheinmetall AG and the data processing takes place exclusively for the administration of your cookie preferences and your consent.
We distinguish between three categories of cookies:
(1) Necessary cookies (“Function”)
Necessary cookies ensure the correct functioning of the website. Without these cookies, malfunctions or error messages may occur.
(2) Statistics cookies and web analysis (“Measurement”)
Statistics cookies allow us to evaluate user behavior on our website and measure the reach of our website. This gives us the opportunity to measure the performance of the site and to improve it continuously.
(3) Social Media cookies
Cookies that are used in the context of social media platforms or functionalities (currently only YouTube-videos).
(4) Marketing cookies (“Marketing”)
Cookies that are used to market the magazine. In this specific case, this is the option of setting up a subscription service that alerts the user to the publication of new articles by means of notifications in the browser.
2.1. NECESSARY COOKIES (“FUNCTION”)
If you select necessary cookies (setting “NECESSARY” or “REJECT ALL” in the cookie banner) or make no selection at all, only necessary cookies are used. This includes cookies for the correct functioning of the consent manager and the website. The use of these necessary cookies is based on our legitimate interest (ensuring the functionality of our website) in accordance with Art. 6 1 lit. f GDPR.
2.2. STATISTICS COOKIES AND WEB ANALYSIS (“MEASUREMENT”)
If you select statistics cookies (setting “MEASUREMENT” or “ACCEPT ALL” in the cookie banner), further cookies will be placed in addition to the above-mentioned necessary cookies, particularly to measure the reach of our website and to evaluate the user behavior on our website. In detail, the following purposes are pursued:
- • Measuring the effectiveness of the website,
- • Analysis of user interactions with the website,
- • Optimization of the structure of the website,
- • Adaptation of the website to the requirements of the users.
This selection uses “Matomo” (formerly Piwik), an open source analysis tool. Here, Matomo uses various cookies that allow an analysis of your use of the website. However, since Matomo is hosted via our server, this data never leaves our area of responsibility. IP addresses are anonymized by six digits in our configuration and do not allow any conclusion to the actual connection.
The use of these statistics cookies is based on your voluntary consent in accordance with Art. 6 para. 1 lit. a GDPR.
You can revoke your consent at any time with effect for the future by changing your cookie setting accordingly or deleting the cookies on your computer.
If you do not consent to the use of the statistics cookies, these cookies will not be stored on your terminal device. We will then perform limited web analysis without cookies and with shortened IP addresses. In this case, the legal basis is our legitimate interest according to Art. 6 para. 1 lit. f GDPR.
2.3. SOCIAL MEDIA COOKIES
In connection with the embedment of YouTube videos, cookies from YouTube are also used, provided you have consented to this by your selection in the cookie banner (“ACCEPT ALL” or “SOCIAL MEDIA“) or by actively playing an embedded YouTube video. There cookies are based on your voluntary consent pursuant to Art. 6 para. 1 lit. a GDPR.
More information on this can be found in section “4.1 Embedded YouTube videos”.
2.4. MARKETING COOKIES
Cookies are set by the provider One Signal in connection with the subscription to newly published articles using the push notification function.
The use of cookies is based on your voluntary consent in accordance with Art. 6 para. 1 lit. a GDPR.
You can revoke your consent at any time with effect for the future by changing your cookie settings accordingly or deleting the cookies on your computer.
Translated with DeepL.com (free version)
2.5. BROWSER SETTINGS TO LIMIT THE USE OF COOKIES
You can prevent the use of cookies by configuring your browser settings accordingly. This may result in certain websites/resources not working properly or to their full extent.
If the “Do Not Track” function of your browser is activated, we will of course take this into account and not set any statistics cookies.
2.6. OVERVIEW OF COOKIES
A detailed overview of the cookies we use including their respective purpose and storage duration can be found at: click here
In addition to the aforementioned cookies, cookies are also set when actively playing YouTube videos embedded on our website. You will find more detailed information on this in section 4.1.of this privacy policy.
3. COMMUNICATION
If you contact us (e.g. via our contact forms, e-mail, telephone), the information or data provided will be processed to the extent necessary to answer your contact request and/or to perform requested actions.
The data processing necessary to adequately answer your inquiry/message is based on our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. This legitimate interest also includes any necessary forwarding of your inquiry/message to affiliated companies of the Rheinmetall Group. If you submit an inquiry/message within the scope of a contractual or pre-contractual relationship with us, the necessary data processing is based on Art. 6 para. 1 lit. b GDPR for the purpose of fulfilling our contractual obligations or to answer (pre-)contractual inquiries. Your inquiry/message (including the transmitted data) will be deleted no later than 7 days after completion/answering of your inquiry/message, provided that no statutory retention periods or other justified reasons for further storage (e.g. to assert, exercise or defend legal claims) apply. In the latter cases, your data will be deleted after expiry of the applicable statutory retention period (e.g. under commercial or tax law) or after expiry of the other justified reasons for processing (the legal basis for such further processing is generally Art. 6 para. 1 lit. f GDPR).
4. PLUGINS AND EMBEDDED FUNCTIONS / CONTENT
We link from this site to (see section 6) and maintain (publicly accessible) profiles in various social networks (so-called social media profiles). We also embed Youtube videos (see section 4.1).
Detailed data protection information on Rheinmetall’s social media channels can be found at: https://www.rheinmetall.com/datenschutz-socialmedia
4.1. EMBEDDED YOUTUBE VIDEOS
We integrate functional and content elements of the video platform Youtube on our website to enable the playback of selected, embedded Youtube videos directly on our website. This requires, among other things, the establishment of a connection to the servers of Youtube.
Youtube (https://www.youtube.com) is operated and provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland), whose parent company is in turn Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) with headquarters in the USA. The provider’s privacy policy can be accessed via the following link: https://policies.google.com/privacy .
The Youtube videos on our website are embedded in the so-called “extended data protection mode” of Youtube. This mode ensures that a connection to Youtube is only established when you actively play a video. Prior to this, there is no connection to and therefore no data transfer to Youtube.
By clicking on and playing an embedded Youtube video, a connection to Youtube is established during which your IP address is automatically transmitted. In addition, cookies are then set by Youtube on your end device, which can also be used to analyze your usage behavior for market research and marketing purposes by Youtube. If you are at the same time logged into your Youtube account, you potentially enable Youtube to connect your surfing behavior to your personal profile. You can prevent this e.g. by logging out of your Youtube account. Further details on the cookies used can be found in the cookie overview (see section II.2.5). By clicking on and playing an embedded Youtube video, you give your express and free consent in accordance with Art. 6 para. 1 lit. a GDPR to this data processing and cookie use by Youtube. We have no influence on this data processing by Youtube.
Note on data transfers to the USA: Since Youtube is provided by the US-company Google, a transfer of your data to the USA cannot be excluded. By clicking on and playing an embedded Youtube video, you therefore also expressly consent pursuant to Art. 49 para. 1 sentence 1 lit. a GDPR that your data collected by Youtube or Google can also be processed by Google in the USA. The USA has been classified by the European Court of Justice (ECJ) as a country with an inadequate level of data protection according to EU standards.
Selection in the cookie banner
Those cookies from and connections to YouTube/Google will potentially already be activated if you select “SOCIAL MEDIA” or “ACCEPT ALL” in the cookie banner. This is based on your voluntary consent in accordance with Art. 6 para. 1 lit. a GDPR.
5 Browser/push notifications
5.1 Type, scope and purpose of data processing
You can subscribe to Dimensions’ push notifications to receive targeted information about content that is of particular interest to you. In this case, we will send the selected notifications to your browser without you having to access the Dimensions website.
The service provider we use, OneSignal, registers you with the push platform of your browser manufacturer (e.g. Google, Apple, Microsoft or Mozilla) using a unique ID (token or key). This “key” is stored on the push platform with the settings you have selected in order to make the content available to you as requested as soon as you start the browser. We process your IP address and this unique token for data transmission.
5.2 Basis for the data processing
The basis for data processing in connection with the sending of push notifications is your consent in accordance with Article 6 (1) sentence 1 lit. a GDPR. You can withdraw your consent at any time with effect for the future. The best way to do this is to simply deactivate the browser or push notifications in your browser/on your end device.
You can deactivate or change the push notifications on your mobile device at any time under “Settings” in the “Push notifications” tab.
5.3 Recipients of the data
Dimensions uses the services of an IT service provider (OneSignal) to provide push notifications. This processor processes your data exclusively as instructed by Dimensions for the purpose of correct registration and delivery of the push notifications. This service provider, which has no access to your end devices, transmits the text content of the push notifications to the push platform providers (browser manufacturers) and initiates their delivery to your end devices.
5.4 Planned storage period / deletion of data
The data (tokens) technically required for the delivery of subscribed push notifications will be stored by us until you deactivate the push notifications. The entry on the servers of the push providers is then automatically deleted after 18 months (see https://documentation.onesignal.com/docs/delete-users)
5.5 Data transfer to a third country
As the providers of the push platforms are based exclusively outside the EU, data is always transferred to a third country in this context. The transfer is limited to the data that is technically necessary for playout. Dimensions is not responsible for the data processing of the push platform providers under data protection law. The legal basis for the transfer is your consent.
Dimensions also uses OneSignal as a processor for the delivery of messages via the push platforms. OneSignal is certified in accordance with EU-U.S. DATA PRIVACY FRAMEWORK FRAMEWORK. see https://www.privacyshield.gov/ps/participant?id=a2zt00000008wTNAAY&status=Active#participation
5.6 Obligation to provide personal data / consequences of non-provision
You are neither legally nor contractually obliged to provide personal data. If you wish to subscribe to our push notifications, it is necessary to collect technical data such as IP address or token. Otherwise, we will not be able to send you the desired push notifications.
5.7 Revocation of consent / deletion of push notifications
You can deactivate or “cancel” the push notifications at any time. Either click the “Stop push notifications” button on an article page or directly in the respective browser settings:
– Chrome browser – Computer
1. open Chrome on your computer
2. click on the “More” icon at the top right (three dots below each other) -> Settings
3. click on “Advanced” at the bottom.
4. under “Security and privacy” click on “Content settings”.
5. click on Notifications.
6. for the website for which you want to deactivate notifications, select the “Block” setting on the right.
You can find more information about notifications in the Chrome browser at
https://support.google.com/chrome/answer/3220216
– Mozilla Firefox browser – Computer
1. Open Mozilla Firefox on your computer.
2. click on the menu button (3 horizontal lines below each other, on the far right of the browser) and select Settings
3. select the Privacy & Security section and go to the “Permissions” area.
4. click on the Settings button in the Notifications line
5. in the list, select the website for which you want to deactivate the notifications.
6. click Remove website at the bottom.
Further information on notifications in the Firefox browser can be found at https://support.mozilla.org/de/kb/push-benachrichtigungen-firefox
– Safari browser – Computer
1. open Safari on your computer.
2. click on Safari -> Preferences in the menu at the top
3. select the Websites section and go to the “Messages/ Notifications” area
4. in the list, select the website for which you want to disable notifications
5. click on “remove” at the bottom.
You can find more information about notifications in the Safari browser at
https://support.apple.com/de-de/guide/safari/sfri40734/mac
– Edge browser – Computer
1. open Microsoft Edge on your computer.
2. open the settings in Edge by first clicking on the three dots in the top right-hand corner
3. click on Show advanced settings.
4. click on Website permissions.
5. remove the entry for the website for which you want to deactivate notifications by clicking on the small cross (X) on the right.
You can find more information about notifications in the Edge browser at
– Opera browser – Computer
1. start the Opera browser on your computer
2. click on Settings and then on Websites
3. scroll down to “Notifications”.
4. set a point at: No website may display desktop notifications
You can find more information about notifications in the Opera browser at
https://help.opera.com/de/latest/web-preferences
6. GENERAL INFORMATION ON THE DELETION OF YOUR DATA
In general, we will delete your data in accordance with the legal provisions as soon as it is no longer required for the respective processing purposes or if the processing purpose has been fulfilled or has expired or if you withdraw any consent you may have given. In addition, we will delete your data if you request such deletion pursuant to Art. 17 GDPR or – in the case of processing based on legitimate interests in accordance with Art. 6 para. 1 lit. f GDPR – if you object to such processing pursuant to Art. 21 GDPR (for further information on your rights, please refer to Chapter IV of this privacy policy).
However, the deletion of your data may be prevented or restricted by statutory retention periods or other justified reasons for retention on our part. Data that we are legally obliged to retain will be deleted after expiry of the respective statutory retention periods. Data that we continue to retain for opposing legitimate interests on our part (e.g. to assert, exercise or defend legal claims in accordance with Art. 17 para. 3 lit. e GDPR or Art. 21 para. 1 GDPR) will be deleted once these legitimate interests no longer apply.
In the event that your data is not deleted because of further legally permissible retention purposes, their processing will be limited to these purposes. This means that the data will be restricted and not processed for any purposes other than these legally permissible retention purposes (e.g. defence of legal claims).
More detailed information on the specific storage or deletion of your data can be found in the individual sections of Chapter II “Data processing on our website” of this privacy policy.
7. LINKS
Our website contains links to the following (external) online and social media presences of the Rheinmetall Group (see corresponding symbols in the footer/lower section of the website):
- • YouTube: https://www.youtube.com/c/RheinmetallGroup
- • Twitter: https://twitter.com/rheinmetallag
- • Xing: https://www.xing.com/companies/rheinmetallgroup
- • LinkedIn: https://www.linkedin.com/feed/update/urn:li:activity:6390601566075777024
- • Instagram: https://www.instagram.com/accounts/login/?next=/rheinmetallag/
By clicking on the respective icon or link, you can access the corresponding external online or social media platform, each of which have its own privacy policy. Für die jeweilige Präsenz gilt die dort hinterlegte Datenschutzinformation. No data will be transferred by us to the external service providers of those platforms when clicking on the respective symbol/link.
Additionally, you can still share individual articles on the following platforms:
By clicking on the respective provider icon, you will be taken to the corresponding external online or social media platform and the desired article will be linked there in a post. The data protection information stored there applies to the respective presence. We do not transmit any data to the external operators of the platforms beyond this. Für die jeweilige Präsenz gilt die dort hinterlegte Datenschutzinformation. Eine Datenübermittlung durch uns an die externen Betreiber der Plattformen findet darüber hinaus nicht statt.
III. Technical and organizational measures
We implement appropriate technical and organizational measures in accordance with the legal requirements, taking into account the state of the art, the implementation costs and the nature, scope, context and purposes of the processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons, in order to ensure a level of security appropriate to the risk. Such measures include, in particular, safeguarding the confidentiality, integrity and availability of data by controlling physical and electronic access to the data as well as the access, input, disclosure, availability and separation to and of the data. Furthermore, we have established procedures to ensure that data subjects’ rights can be exercised, data can be deleted, and responses are made to any threats to the data. Additionally, we already consider privacy matters during the development or selection process of hardware, software and procedures in accordance with the principle of Privacy-by-Design and Privacy-by-Default.
SSL encryption (https): To properly protect your transmitted data, this website uses a so-called SSL encryption. You can recognize such encrypted connections by the prefix “https://” in the page link (URL) in the address line of your browser. Unencrypted pages are prefixed by “http://”.
Thanks to this SSL encryption, no data which you transmit to this website – for example in case of inquiries – can be read by third parties without further significant efforts.
IV. Your rights
The GDPR grants various rights to data subjects, in particular:
Right to be informed and of access (Art. 15 GDPR): In accordance with the statutory provisions, you have the right to request information as to whether and to what extent we process your personal data.
Right to rectification (Art. 16 GDPR): In accordance with the statutory provisions, you have the right to request the rectification or completion of incorrect or incomplete data concerning yourself.
Right to erasure (Art. 17 GDPR): In accordance with the statutory provisions, you have the right to demand that your personal data be erased immediately. Note: An immediate deletion of your data may be opposed by statutory retention obligations or other justified reasons for further processing.
Right to restrict processing (Art. 18 GDPR): In accordance with the statutory provisions, you have the right to demand that the processing of your personal data be restricted.
Right to data portability (Art. 20 GDPR): In accordance with the statutory provisions, you have the right to receive your personal data in a structured, commonly used and machine-readable format and – as far as technically feasible – to demand that it be transferred to another controller.
Right to object (Art. 21 GDPR): In accordance with the statutory provisions, you have the right to object to the processing of your personal data at any time for reasons arising from your particular situation, provided that the data processing is carried out on the basis of legitimate interests (cf. Art. 6 para. 1 lit. e or lit. f GDPR).
If your personal data is processed for the purpose of direct marketing, you have the right to object at any time to such processing, including profiling, insofar as it is connected with such direct marketing.
Right to withdraw consent (Art. 7 para. 3 GDPR): You have the right to withdraw any consent you have given at any time with effect for the future without having to state reasons. Such withdrawal of consent does not affect the lawfulness of processing that has taken place on the basis of consent until the time of withdrawal.
To exercise your rights, please contact:
Right to lodge a complaint with a supervisory authority (Art. 77 para. 1 GDPR): In accordance with the statutory provisions, you have the right to lodge a complaint with a data protection supervisory authority of your choice, in particular in the Member State of your habitual residence, place of work or place of alleged infringement, if you believe that the processing of your personal data violates the GDPR.
V. Miscellaneous
We reserve the right to adapt this privacy policy if changes of the legal situation or of our data processing make it necessary.
When visiting our website, only the latest privacy policy applies.
Where necessary and possible, we will inform you if any changes require your involvement (e.g. renewed consent) or individual notification.
Please note that addresses and contact information of other companies that we have provided in this privacy policy may change over time.
Status of this privacy policy: December 14, 2022