Privacy
Data protection declaration
Welcome to FOERSTER Holding GmbH and its affiliated subsidiaries.
Thank you for visiting our company's website.
We value your privacy and the protection of your personal information. Please read the following information so that you are fully aware of the processing of your personal information on our websites.
The original German version is legally binding—the English version is provided for convenience only.
1 Responsible party
1.1 Provider of this website and the data controller for the processing of your personal data within the meaning of the European Data Protection Regulation (EU-GDPR) or the Federal Data Protection Act (FDPA) is the FOERSTER Holding GmbH, represented by the management. )
1.2 Please use the contact information given in the Imprint to get in touch with us.
1.3 The data protection officer can be contacted at:
Datenschutzberatung Walliser, Mr. Matthias Walliser (external data protection officer), E-Mail: datenschutz.de(at)foerstergroup.com
1.4 The term "User" includes all prospects/customers and site visitors of our online content. The terminology used, e.g. "Users" are to be understood as gender-neutral.
2 Basic information on data processing
2.1 We process personal data of users only in compliance with the relevant data protection regulations. The data of the users are processed only if a legal permission is present. i.e. user consent is given if data processing is required for carrying out our contractual services and online services, if the data processing is a statutory requirement, collection of access data is required for our legitimate interests (i.e. interest in the analysis, optimization and user-friendly operation of our online offer), particularly in measuring our reach and use of third-party services.
2.2 With regard to the processing of personal data on the basis of the Data Protection Regulation (GDPR) that came in force from 25 May 2018, the legal basis for the consents Art. 6 para. 1 lit. a and Art. 7 GDPR, the legal basis for processing in order to fulfill our legal obligations Art. 6 para. 1 lit. c GDPR and the legal basis for processing in order to safeguard our legitimate interests is Art. 6 para. 1 lit. f GDPR.
2.3 We undertake state-of-the-art organizational, contractual and technical security measures to ensure that the provisions of data protection laws are adhered to and to protect the data processed by us against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons.
3 Processing personal data
3.1 Personal data, such as address, communication information and the processing operations expressly mentioned in this privacy policy, are processed to fulfill our contractual obligations and implementation of pre-contractual measures and to fulfill legal obligations. These services include the provision, execution, maintenance, optimization and security of our services, features as well as user services.
3.2 When a user contacts us, the user details are stored exclusively for the purpose of processing the request. After processing the requests, the collected data will be deleted immediately, as long as no legal storage periods are specified.
4 Collecting access data
4.1 Based on our legitimate interests, we collect data of all accesses to the server of this service (so- called server log files). The access data includes the name of the retrieved web page, file, date and time of retrieval, amount of data transferred, notification of successful retrieval, browser type and version, the user's operating system, referrer URL (previously visited page), IP address and the requesting provider.
4.2 We use the log data only for statistical evaluations with mapping the individual-related data of the user or other profiling according to the statutory provisions for operation, security and optimization of our online content. However, we reserve the right to retrospectively check the log data if, based on concrete evidence, legitimate suspicion of unlawful use exists.
5 Use of Cookies and similar Technologies
5.1 Cookies are small files that are stored on your computer system. Firstly, our websites and our partners use so-called "cookies" and similar technologies (e.g. JavaScript, web beacons), which are used to analyse trends, administer the website, track users' movements on the website and gather aggregate demographic information about our users.
Secondly, we use cookies that are transferred from our server to your computer system, which are so- called "session cookies".
The session cookie remains on your computer system and allows us to recognize your computer system on your next visit (so-called permanent cookies).
These Session-Cookies will be deleted 24 hours after leaving the website.
5.2 What information is saved in cookies or similar technologies?
The cookies used by FOERSTER Holding GmbH does not save any personal data. The cookies used by us can therefore not be traced to any particular person or user. All active cookies have an identification number. Your personal data can never be traced back to this identification number.
6 Integration of Services and Third Party Content/Social Plug-ins
6.1 We install third-party content or service offerings in our online content to embed their content and services such as videos or fonts (collectively referred to as "content") based on our legitimate interests (i.e., interest in the analysis, optimization, and user-friendly operation of our online content). It is always assumed that the third party service provider of this content can detect the IP address of the user, because without the IP address the third party cannot send content to another browser. The IP address is therefore required for the presentation of this content.
We endeavour to use content from service providers who use the IP address exclusively for the delivery of the said content. Third parties may also use so-called Pixel-Tags (invisible graphics, also referred to as "Web Beacons") for statistical or marketing purposes. The "pixel tags" can be used to evaluate information such as visitor traffic on the pages of this website. The alias information may be stored in cookies on the user's device and may include, but is not limited to, technical information of the browser and operating system, referring web pages, visit time, and other information related to the use of our online content.
6.2 The following figure gives an overview of third-party providers, their contents and links to their privacy statements, which provides further information on the processing of data and to some extent also includes the redress procedures (so-called Opt-Out) mentioned:
- Videos from “YouTube” platform of the third party service providers Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Data Protection Declaration: ,https://www.google.com/policies/privacy/, Opt-Out: https://www.google.com/settings/ads/.
- Social Media Embedding Capabilities LinkedIn operated by LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, United States of America ("LinkedIn"). Link to the LinkedIn Privacy Policy can be found here: LinkedIn Privacy Notice https://www.linkedin.com/legal/privacy-policy
- Clicking on the website of XING establishes a connection to the servers of XING AG, Gänsemarkt 43, 20354 Hamburg, Germany. This is the link to the XING data protection declaration: https://www.xing.com/app/share?op=data_protection
- We use ZeroBounce to validate self-registered e-mail addresses before we use the addresses for any purposes. ZeroBounce may receive your e-mail address in a list, and store it as long as it is necessary to perform the validation. After validation, e-mail lists are deleted immediately.
ZeroBounce operates in the United States and claims GDPR compliance. Their privacy policy is available here: www.zerobounce.net/privacy-policy.html.
7 Use of Hubspot
7.1 We use Hubspot, a service by Hubspot, Inc., domiciled in the US, on our website for the purposes of analytics.
It uses so called ‚web beacons’ and cookies that are stored on your computer so that we may analyse your use of our website. Hubspot analyses the information collected (such as IP address, geographic location, browser type, length of session and pages accessed) on our behalf in order to generate reports on the visits and on our pages visited.
If you do not wish Hubspot to collect your information in general, you can prevent the storage of cookies at any time by adjusting your browser settings.
If collection by Hubspot is generally not desired, the storage of cookies in addition to the consent banner can be prevented at any time by appropriate browser settings.
For more details on how Hubspot works, please see the Privacy Policy of Hubspot Inc., at legal.hubspot.com/de/privacy-policy.
Processing these data constitutes our legitimate interest pursuant to Art. 6 (1) (f) GDPR.
8 Online Meetings, Conference Calls, and Webinars via Microsoft Teams
We would like to inform you below about the processing of personal data in connection with the use of Microsoft Teams. We use Microsoft Teams to conduct conference calls, online meetings, video conferences, webinars, and to collaborate via chats and channels (hereinafter collectively referred to as “online meetings”).
Microsoft Teams is a service provided by Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland. In the course of providing this service, personal data may also be processed by Microsoft Corporation or other companies within the Microsoft group.
The data controller responsible for data processing directly related to the conduct of online meetings is Institut Dr. FOERSTER GmbH & Co. KG.
Note: If you use Microsoft’s websites or applications independently of an online meeting hosted by Institut Dr. FOERSTER GmbH & Co. KG, Microsoft is responsible for the data processing that takes place there. To participate in an online meeting, you can use the Microsoft Teams desktop app, the mobile app, or the browser-based version.
When using Microsoft Teams, various types of personal data are processed. The scope of processing depends in particular on which features you use and what information you provide before or during your participation in an online meeting.
The following personal data may be subject to processing:
User data: First name, last name, email address, phone number (optional), profile picture (optional), department (optional), language settings, and login credentials when using a Microsoft account.
Meeting metadata: Topic, description (optional), date, time, and duration of the meeting, participant list, join and leave times, meeting ID, IP address, device, hardware, and operating system information, as well as technical diagnostic data.
For recordings (optional): Video and audio recordings, screen shares, presentations, chat messages, and—if enabled—the automatically generated transcript of the meeting.
When dialing in by phone: Information about the incoming and outgoing phone numbers, country name, start and end times of the call, and, if applicable, other technical connection data.
Text, audio, and video data: You may have the option to use chat functions, reactions, whiteboards, polls, or questions during an online meeting. The content you enter is processed to view it within the online meeting and—where necessary—to document it.
To transmit audio and video, data from your microphone and camera is processed for the duration of the meeting. You can disable your camera and microphone or mute them yourself at any time.
To participate in an online meeting, you must provide at least your name or a display name of your choice.
We use Microsoft Teams to conduct online meetings. If an online meeting is to be recorded, all participants will be informed of this before the recording begins. Microsoft Teams clearly indicates both the start of a recording and the start of a transcription to all participants.
Transcription and AI-powered Features
The Live Transcription feature can be used to better document meetings. This feature automatically converts spoken words into text. If Microsoft 365 Copilot or comparable AI-powered features are enabled in our Microsoft 365 environment, automated summaries, tasks, decisions, or meeting notes can also be generated based on the meeting content.
These features are used exclusively in accordance with internal company guidelines. Participants are informed of this in advance and asked for their consent. The transcription may not be used without the consent of all participants.
Automated transcriptions and AI-powered summaries are used exclusively for documentation, follow-up, and to support collaboration during meetings. They are not used to monitor employee performance or behavior.
If necessary for documenting meeting outcomes, chat messages or transcripts may also be stored. This is done only to the extent necessary.
In the case of webinars, participants’ questions, answers, and survey results may also be processed for the purposes of conducting, following up on, and documenting the webinar.
To the extent that Microsoft Teams technically allows for it, usage and meeting reports (e.g., meeting metadata or technical connection information) may be stored in accordance with the retention periods specified in our Microsoft 365 environment.
There is no automated decision-making within the meaning of Article 22 of the GDPR.
To the extent that personal data of employees of Institut Dr. Foerster GmbH & Co. KG is processed, this is done on the basis of § 26 BDSG and, supplementarily, Article 6(1)(b) of the GDPR, to the extent that the processing is necessary for the performance of the employment relationship.
To the extent that personal data is processed in connection with the use of Microsoft Teams and such processing is not directly necessary for the performance of the employment relationship, it is carried out on the basis of Article 6(1)(f) of the GDPR. Our legitimate interest lies in the efficient, secure, and modern conduct of online meetings and digital collaboration.
In all other cases, data processing in connection with the conduct of online meetings is based on Article 6(1)(b) of the GDPR, to the extent that the meetings are conducted within the framework of existing contractual relationships.
If no contractual relationship exists, processing is based on Article 6(1)(f) of the GDPR. Here, too, our legitimate interest lies in the efficient conduct of online meetings and digital collaboration.
Personal data processed in connection with participation in online meetings is generally not disclosed to third parties, unless its purpose is expressly to be disclosed. However, the content of online meetings regularly serves the purpose of communicating with customers, business partners, prospective customers, or other third parties and is, to that extent, intended for disclosure.
Additional Recipients: Microsoft gains access to the aforementioned data in connection with the provision of the service, to the extent that this is necessary for the provision of the service and is provided for in the data processing agreement concluded with Microsoft.
Microsoft Teams is part of Microsoft 365. The processing of personal data may also take place outside the European Union. To the extent that personal data is transferred to third countries, this is done in accordance with the legal requirements of the GDPR. This includes, in particular, the conclusion of the EU Standard Contractual Clauses as well as—where applicable—Microsoft’s participation in the EU-U.S. Data Privacy Framework or comparable appropriate safeguards pursuant to Art. 44 et seq. of the GDPR.
9 Use of Matomo as Web Analytics Software
9.1 This website uses the web analysis service Matomo (formerly Piwik; https://www.matomo.org), a service provided by InnoCraft Ltd, 150 Willis St, 6011 Wellington, New Zealand, to statistically evaluate visitor traffic to help us improve our site. The use of Matomo is legally based in DS-GVO - Article 6 § 1 sentence 1.
9.2 Cookies are stored on your computer for this evaluation. The information collected is stored solely on the local server of the person in charge in Germany and data is not sent to any other country. Evaluation will not start until you consent in the cookie banner.
9.3 Matomo uses AnonymizeIP, consequently IP addresses are processed only in an abbreviated form in order to exclude a direct personal reference. The IP address transmitted by your browser via Matomo will not be linked with any other collected data.
9.4 The program Matomo is an open source project. You may obtain additional information on data protection from the third party provider at https://matomo.org/gdpr/ or write an email to privacy(at)matomo.org.
10 Participation in surveys
To conduct surveys on our website, we use the services of SurveyMonkey Europe UC, 2 Shelbourne Buildings, Shelbourne Road, Dublin, Ireland. If you volunteer for this survey, SurveyMonkey collects information about the device and application you use to participate in it. This includes the IP address, your operating system version, device type, system and performance information, and browser type. If you take the survey from a mobile device, SurveyMonkey also collects its UUID. Likewise, SurveyMonkey uses third-party tracking services, which in turn use cookies and page tags (also known as web beacons) to collect usage data and user statistics. We have no influence on the extent of the data collected by SurveyMonkey. You can find more information about the cookies used by SurveyMonkey, privacy and retention periods, under the following link https://www.surveymonkey.de/mp/legal/privacy-policy/#pp-section-10.
You can prevent the installation of cookies by deleting the existing ones and disabling the cookies storage in your web browser settings. Please note that in this case you may not be able to use all functions of our website to their full extent.
We use SurveyMonkey to provide you with surveys. For this purpose, we have a legitimate interest in processing the aforementioned data, which is based on Art. 6 Par. 1 lit. f) GDPR (General Data Protection Regulation GDPR).
SurveyMonkey Europe UC is a subsidiary of SurveyMonkey Inc., based in the United States. It is not excluded that your data collected by SurveyMonkey may also be transferred to the USA. However, SurveyMonkey Inc. has signed the Privacy Shield Agreement between the European Union and the United States and is certified to comply. SurveyMonkey is committed itself to complying with the standards and regulations of European data protection law.
For more information on the EU Privacy Shield and its validity, please click here:
https://www.privacyshield.gov/participant?id=a2zt0000000Gn7zAAC&status=Active.
More information on the EU standard contractual clauses can be found here:
https://www.surveymonkey.de/mp/legal/survey-research-privacy-notice/
11 Use of data for advertising purposes
If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct mail.
If you object to processing for direct marketing purposes, your personal data will no longer be processed for these purposes.
A notification as a text message to the contact details given in point 1 (e.g. e-mail, fax, letter) is sufficient.
12 Secure data transfer
We transfer your personal data securely in encrypted form. This applies to your orders and customer login. We use the SSL (Secure Socket Layer) encoding system for this purpose.
13 Disclaimer for links and references
We assume no liability for contents, copyrights compliance and mandatory identification outside the scope of responsibility.
14 User rights and deletion of data
14.1 Users have the right to receive full information about their personal data stored by us.
Moreover, users have the right to correct, delete or restrict the processing of their personal data. They can exercise their rights to data portability and can file a complaint with the competent authority in the case of unlawful data processing:
The State Commissioner for Data Protection and Freedom of Information Baden-Württemberg Post box 10 29 32, 70025 Stuttgart
Lautenschlagerstraße 20, 70173 Stuttgart
Tel.: +49 711 615541–0
Fax: +49 711 615541–15
E-Mail: poststelle@lfdi.bwl.de
Internet: www.baden-wuerttemberg.datenschutz.de
Users can revoke their consent at any time without giving reasons and without disadvantages, in principle with future effect. You can send your objection by e-mail, fax or letter to the following contact details:
In Laisen 70
72766 Reutlingen
Fax: +49 7121-140-488
E-Mail: datenschutz.de@foerstergroup.com
14.2 The data stored by us are deleted as soon as they are no longer necessary for their purpose and the deletion does not conflict with any legal storage requirements.
15 Download and print
You can also download this text in PDF format. To view and print the PDF files, you need a PDF viewer, which can be downloaded for free from Adobe Systems GmbH. You can print the PDF file using Adobe Reader by choosing Print (or Print) from the File menu (or File).
16 Changes in the data protection declaration
16.1 We reserve the right to change the privacy policy in order to adapt it to changed legal situations or to changes in the service and data processing. However, this only applies to declarations of data processing.
If users' consent is required or elements of the privacy policy contain provisions of the contractual relationship with the users, the changes will only be made with the consent of the users.
16.2 Users are requested to be up-to-date about the content of this privacy policy, as changes will soon be expected in the course of the implementation of the EU-GDPR, the new GDPR, the area and country-specific regulations and the ECJ jurisprudence.
Status of this privacy policy is 21/11/2025
Data protection information for customers and suppliers
The protection of your personal data is of utmost importance to us!