Encryption and Signatures
Tani GmbH offers a GnuPG
key for secure e-mail.This key can be used in mail to
info@tanindustrie.de. This key is available on well
known key servers, too.
If You want receive encrypted mails from us we will need Your public GunPG
key. Using Your keys is simple if You did dispatch it on well known key
servers. You can add Your GunPG key to us, too. When Your public key is
usable we will use it on further mail communication to You.
Since 2023-09-01, all invoices from Tani are digitally signed by the following
certificate:
C = DE, ST = Bayern, L = Nürnberg, O = Tani GmbH, CN = Tani GmbH, emailAddress = sales@tanindustrie.de.
SHA1 Fingerprint=8E:6F:41:19:D4:26:4C:CB:B1:37:EB:40:10:AF:A8:8F:7B:FF:AC:EC\nSHA256 Fingerprint=6F:16:97:CA:C6:52:65:15:9C:3D:1D:35:5D:B8:A0:8A:BC:05:09:7E:F7:04:0E:A7:11:AF:E8:61:20:E1:83:D2
Additionally add invoices and quotations are containing the XML corresponding to the X-Rechnung standard.
Data protection and NIS2
Tani GmbH regularly trains all employees on the ever-changing threats on the Internet.
Recognizing phishing on the phone, by email and visitors is a major issue. Social networks are not permitted at Tani GmbH.
It is also common knowledge that no found USB stick is used.
Internally, there is a three-stage ring backup system. The data is stored in encrypted form at several locations.
All data backups work in write-only mode, the data backup systems are not constantly online.
This allows continued operation even if the offices are destroyed, for example in the event of a fire.
Internal logins are secured with certificates, they will be replaced every year. Home office workstations have only minimal access rights,
including no file access. Tani GmbH develops software, many of which use encryption. So the knowledge of security is in-house.
Security is increased by not running Windows on the Internet, which is practically impossible to make stable and secure.
All systems are always up to date and disconnected from the Internet as far as technically possible.
Two DMZs connected in series secure Internet access.
There are no external maintenance access points.
Privacy Statement
Thank you for your interest in our online presence. The protection of your personal data is very important to us. At this point, we would like to inform of the privacy policy in our company. We naturally observe the legal provisions of the Data Protection Act (BDSG), the Telemedia Act (TMG) and other applicable data protection regulations. You can trust us with your personal information! This will be encrypted by digital security systems and transmitted to us. Our websites are protected by technological measures against damages, destruction, or unauthorized access.
Subject of data protection
Subject of data protection are personal data. These are detailed information of personal or material circumstances of an identified or identifiable natural person according to § 3 para 1 BDSG. These include, for example, information such as name, postal address, e-mail address or phone number, but may also include information such as your IP address.
The scope of data collection and storage
Generally, it is not required that you provide personally identifiable information for the use of our website. But in order for us to actually provide our services, we may need your personal data. This applies to sending informative material or ordered goods as well as answering individual queries. If you entrust us with the provision of a service or sending of goods, we collect and store your personal data in principle only to the extent necessary for providing the services or carrying out the contract. This may entail passing your personal information to companies, which we use to provide the service or the contract execution. These are, for example, transport companies and other service providers. After a completed contract process, your data will be locked and deleted according to tax and commercial regulations unless you have expressly consented to the use of data beyond that. If you are registered for our newsletter with your e-mail address, we will also use your e-mail address beyond the performance of the contract for advertising purposes until you unsubscribe from receiving the newsletter.
When making use of our online application services, we will use your personal data to also contact you in person to initiate a possible employment relationship in based on your application. This only occurs if you accept the validity of our privacy statement and an appropriate use of your data. In the event that your application cannot be considered at the moment, we will store the information you provided in these documents within the scope of this application and the statements thereto made on these websites in our candidate database for at least 12 months to possibly contact you in the future. You must agree again to the appropriate use of your employment application form at the appropriate point when storing an application. You can recall your consent to the relevant storage of your application data at any time with effect for the future.
Collection and storage of user data
To optimize our website, we collect and store information such as the date and time of the page request, the page from which you have accessed our site and the like, if you do not object to the data collection and storage. This is done anonymously, without personally identifying the user of the page. If necessary, user profiles are created using an alias. Here too there is no connection between the individual behind the pseudonym. We also use cookies with the usage data collection and storage of usage data. These are small text files that are stored on your computer to store statistical information such as the operating system, your internet usage program (browser), IP address, the previously viewed website (referrer URL) and the time. We collect this data exclusively for statistical purposes to further improve our website and to make our Internet offers even more attractive. The collection and storage are exclusively in anonymous or pseudonymous form and does not provide a conclusion to you as a natural person.
Cookies
Of course, you can also view our website without cookies. If you do not want us to recognize your computer, you can prevent cookies from being stored on your hard disk, by pointing your browser settings to "Block All Cookies." If you do not accept cookies, it may result in function restrictions of our offers. You may refuse the use of cookies by changing the settings of your internet usage program (browser). For this, you must decline cookies in your web browser. For more information, please apply the user instructions of your internet browser. Cookies we set if not disabled are: Language setting, Account setting, Last inputs in the download mail. We always store the selection that you drop coocies in a cookie. This only switches off the message for the cookie setting.
Assigned data use
We adhere to the principle of dedicated data-use and collect, process and store your personal data only for the purposes that you have reported to us. A transfer of your personal data to third parties without your express consent does not occur, provided this is necessary to provide the service or to contract execution. Also the transmission to authorized state institutions and authorities only occurs within the statutory disclosure requirements, or if we are required by court order to provide information. We also take the company's internal policy very seriously. Our employees and appointed service providers are sworn to secrecy and to comply with data protection regulations.
Information and right of withdrawal
You will receive free of charge at any time without notice of any reason information about your stored data. You can always correct, block or delete the data we collected, and withdraw the anonymous or pseudonymous data collection and storage for the purpose of optimization of our website. In addition, you can always revoke your consent of collecting and using data without explanation. To do so, please contact the address provided in the imprint. We are always happy to answer any additional questions concerning our privacy statement and processing of your personal data. Please note that data protection regulations and manipulations on data protection can change constantly. It is therefore advisable and necessary to read changes in the legal provisions and practices of companies, such as Google, of any developments.
Responsible for data protection at Tani GmbH
Werner Krings