Data protection and terms of use

Terms of use

1 Scope

1.1
The use of the web pages (Sensitec website) offered by Sensitec GmbH (Sensitec) is only permitted on the basis of the conditions listed here. By using the web pages, you accept the validity of these terms of use in their respective version. Sensitec reserves the right to amend, alter or replace these general terms of use with additional conditions, e. g. for acquisition of products and/or services.

1.2
If the user is using the Sensitec website while acting as or for a company, i. e. in exercising a commercial or independent occupational activity, or while acting for a public corporation, then §312e (1) cl. 1 Nos. 1 - 3 of the German Civil Code (BGB) shall not apply.

1.3
For web offers aimed at companies or public corporations, the relevant company or corporation is represented by the user and is accountable for their actions and knowledge.

 

2 Services

2.1
Sensitec makes certain information and software available on the Sensitec website, where necessary, in addition to documentation, for access or to download.

2.2
Sensitec does not accept any liability for the uninterrupted availability of the Sensitec website due to the nature of the Internet and of computer systems.

2.3
Sensitec has the right to cease operation of the Sensitec website partially or completely at any time.

 

3 Registration, password

3.1
Some pages of Sensitec may be password protected. Access to and use of these pages is restricted solely to registered users. There is no entitlement to registration with Sensitec. Sensitec is entitled to extend compulsory registration to websites that have previously been freely accessible at any time. Sensitec can, at any time, revoke the right to access by blocking access data. This particularly applies to cases where the user (i) provided false information on registering, (ii) has violated the conditions and/or due diligence obligations when dealing with registration data, (iii) violates the applicable law when accessing for and/or using the Sensitec website or (iv) the user does not use the Sensitec website for a long period of time. The right of access may be revoked without providing any reasons.

3.2
If registration is necessary to use the website, the user must give the necessary information truthfully when registering and must notify Sensitec immediately of any changes should the case arise. The user must ensure that they receive e-mails sent to the e-mail address provided.

3.3
As part of the registration, the user receives a user name and a password. This must be changed to a password known only to the user after logging on for the first time. The user can use the user name and password to view or change their details as well as revoke or extend their consent for use and data processing.

3.4
The user can request the cancellation of their registration at any time in writing, if cancellation does not prevent the execution of ongoing contractual relationships. In this case, Sensitec will delete all user details and all other saved personal data from the user related to the registration with the Sensitec website as soon as they are no longer needed.

3.5
The user is responsible for ensuring that third parties cannot access his/her user data (Log-in and password) and is liable for all activities performed using these user data. The user must duly log out after use and before leaving the password-protected domain. They are obliged to inform Sensitec immediately in writing if they become aware that third parties are using the user data improperly.

 

4 Rights of use of information, software and documentation

4.1
The use of information, software and documentation provided on the Sensitec website is governed by these conditions or, if the information, software or documentation is updated, by the relevant license conditions previously agreed with Sensitec. Separately agreed license terms take precedence over these conditions.

4.2
The software offered on the Sensitec website is provided in machine-readable form free of charge. There is no entitlement to the disclosure of the source code.

4.3
Sensitec grants the user a non-exclusive and non-transferable right to use the information, software and documentation provided on the Sensitec website to the extent agreed or, if nothing is agreed, to the extent corresponding to the purpose intended by Sensitec in providing and disclosing this information.

4.4
It is expressly forbidden for the user to distribute, sell, lease or provide the information, software and documentation in any other manner to third parties. The user is likewise not permitted – unless otherwise provided by mandatory legal provisions – to change, reverse engineer or translate the software and/or documentation, or remove parts thereof.

The user may create a backup copy of the software if this copy is required to ensure future use on the basis of these terms of use.

4.5
The information, software and documentation are protected by copyright laws as well as by international copyright treaties and other laws and agreements on intellectual property.

The user shall observe these rights and, in particular, not remove alphanumerical identifiers, brands and copyright notices from either the information or the software, nor from the documentation or copies thereof.

4.6
§§ 69a et seq. of the German Copyright Act remain unaffected.

 

5 Intellectual property

5.1
Information, brand names and other contents of the Sensitec website may not be altered, copied, duplicated, sold, rented, used, extended or otherwise exploited without the prior written consent of Sensitec.

5.2
Use does not grant the user any further rights whatsoever, other than those rights specified in these terms of use, particularly rights to the company name and to industrial property rights such as patents, utility models or brands. A corresponding obligation on the part of Sensitec to grant such rights does not exist.

5.3
Sensitec may use ideas and suggestions from users who have deposited them on the Sensitec website for the development, improvement and distribution of the products from its portfolio free of charge.

 

6 User obligations

6.1
When using the Sensitec website, the user may not:

  • Cause harm to people or infringe on their personal rights

  • Breach standard of public decency by their behavior

  • Breach industrial property or copyright laws or other property laws

  • Transmit contents containing viruses, Trojan horses or other programs that could damage
    the software

  • Enter, save or send hyperlinks or contents for which it is not authorized, 
    especially if these hyperlinks or contents breach confidentiality agreements 
    or are illegal

  • Distribute advertising or unsolicited e-mails (spam) or unfounded warnings 
    about viruses, malfunctions and the like, or encourage participation in prize draws, 
    snowball systems, chain letters, Ponzi schemes and similar actions

6.2
Any breach of the obligations under these terms of use entitles Sensitec to block the user from further access to the webpages.

 

7 Hyperlinks

The Sensitec website may contain hyperlinks to websites of third parties. Sensitec does not accept any responsibility for the contents of these webpages, nor does it claim ownership of these webpages and their contents, as LTI Motion does not control the linked information and is also not responsible for the of contents and information provided there. The use of these takes place at the user's own risk.

8 Liability for material defects and defects of title

8.1
The information on the Sensitec website may contain specifications or general descriptions of technical possibilities of products which do not always apply in individual cases (e. g. because of product changes). The desired performance features of the products must therefore be agreed upon purchase in the specific case.

8.2
Insofar as information, software or documentation are provided free of charge, liability for material defects and defects of title regarding the information, software and documentation is excluded, particularly regarding their correctness and faultlessness, as well as freedom from third-party copyrights, completeness and/or usability – except in the event of willful or malicious intent.

 

9 Other liability, viruses

9.1
Sensitec’s liability for material defects and defects of title conforms to the provisions of section 8 of these terms of use. Otherwise, any liability on the part of Sensitec is excluded unless liability is mandatory pursuant to the German Product Liability Act, due to willful intent, gross negligence, injury to life, body or health, due to the assumption of a quality guarantee, due to fraudulent concealment of a defect or due to the breach of material contractual obligations. However, compensation due to breach of material contractual obligations is limited to the contractually typical, foreseeable damage, unless intent or gross negligence exist.

9.2
Although Sensitec constantly endeavors to keep the Sensitec website free of viruses, Sensitec does not guarantee that the website is free of viruses. Before downloading information, software and documentation, the user must ensure appropriate safety equipment and virus scanners for their own protection as well as to prevent viruses on the Sensitec website.

9.3
A change in the burden of proof to the detriment of the user is not connected with the regulations laid out in section 9.1 and 9.2.

 

10 Compliance with export control specifications

10.1
When disclosing the information, software and documentation provided by Sensitec to third parties, the user must comply with the provisions of national and international (re-)export control law applicable in each case. In any event of such disclosure, the user must observe the (re-)export control regulations of the Federal Republic of Germany, the European Union and the United States of America.

10.2
Prior to any such disclosure, the user must check and take appropriate measures to ensure that

  • in the process of such disclosures to third parties or the provision of other economic resources in connection with information, software and documentation provided by Sensitec, they do not violate
    an embargo by the European Union, the United States of America and/or the United Nations – even in consideration of possible restrictions for domestic transactions and possible circumvention prohibitions

  • such information, software and documentation provided by Sensitec is not intended for a prohibited arms-related, nuclear or military use that is subject to approval, unless any necessary authorizations have been obtained

  • the regulations of all relevant sanction lists of the European Union and the United States of America concerning business transactions with companies, persons or organizations named therein are adhered to

10.3
If required for the implementation of export control checks by authorities or by Sensitec, the user will make available to Sensitec immediately upon request all information about the final recipient, the end uses and the intended use of the information, software and documentation provided by Sensitec, as well as any applicable export control restrictions.

10.4
The user shall fully indemnify Sensitec for all claims asserted against Sensitec by authorities or other third parties due to the user’s non-observance of the aforementioned obligations under export control legislation and undertakes to compensate and reimburse all damages and expenditures that arise for Sensitec in this context, unless the user is not responsible for the breach of duty. This is not associated with a reversal of the burden of proof.

10.5
Fulfillment of the contract by Sensitec is subject to the provision that fulfillment is not prevented by obstacles due to national or international foreign trade law and that no associated embargoes and/or other sanctions exist.

Sensitec GmbH Privacy Policy

I.             Name and address of the controller

The controller in the sense of the General Data Protection Regulation and other national data protection laws of the member states, as well as other data protection regulations, is:

Sensitec GmbH
Schanzenfeldstr. 2

35578 Wetzlar
Germany

Phone: +49 (0)64 41 5291-0
E-Mail: info@sensitec.com
Website: www.sensitec.com

II.            Name and address of the data protection officer

The controller's data protection officer is:

Matthias Neeb
Sensitec GmbH
Schanzenfeldstr. 2
345578 Wetzlar
Germany

Phone: +49 (0)64 41 5291-0
Email: matthias.neeb@sensitec.com
Website: www.sensitec.com

III.           General information about data processing

1. Scope of processing of personal data

In principle, we collect and use our users' personal data only to the extent necessary to provide both a functional website and our content and services. The collection and use of our users' personal data takes place regularly only with the user's consent. An exception applies to cases in which prior consent cannot be obtained due to practical considerations, and in which the processing of the data is permitted by law.

2. Legal basis for the processing of personal data

Insofar as we obtain the consent of the data subject for processing personal data, Art. 6 (1) (a) of the EU General Data Protection Regulation (GDPR) is the legal basis for the processing of personal data.

Art. 6 (1) (b) GDPR is the legal basis for the processing of personal data necessary for the performance of a contract to which the data subject is a party. This also applies to processing operations required to carry out pre-contractual actions.

Art. 6 (1) (c) GDPR is the legal basis for the processing of personal data that is required to fulfil a legal obligation to which our company is subject.

In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 (1) (d) GDPR is the legal basis.

If processing is necessary to safeguard the legitimate interests of our company or a third party, and if the interests, fundamental rights and freedoms of the data subject do not prevail over the above-mentioned interest, Art. 6 (1) (f) GDPR is the legal basis for the processing.

3. Data deletion and storage duration

The personal data of the data subject will be deleted or blocked as soon as there is no longer a need for the storage. In addition, such storage may take place if provided for by the European or national legislative authorities in EU regulations, laws or other regulations to which the controller is subject. Blocking or deletion of the data also takes place when a storage period prescribed by the standards mentioned expires, unless there is a need for further storage of the data for the conclusion of a contract agreement or fulfilment of the contract.

IV.          Provision of the website and creation of log files

1. Description and scope of data processing

Each time our website is accessed, our system automatically collects data and information from the computer system of the calling computer.

The following data is collected here:

1.     Information about the browser type and version used

2.     The user's operating system

3.     The user's Internet Service Provider

4.     An IP address of your requesting Internet-enabled device

5.     Date and time of the visit

6.     Websites from which the user's system reached our website

7.     Websites that are accessed by the user's system through our website

8.     The files downloaded from our website (e.g. PDF or Word documents)

The data is also stored in the log files of our system. The user's IP addresses or other data that allow the correlation of the data to a user are not affected by this. Storage of this data together with other personal data of the user does not take place.

2. Legal basis for data processing

The legal basis for processing the IP address is Art. 6 (1) (f) GDPR. Our legitimate interest follows from the data collection purposes listed above. Sensitec GmbH's use of the general access data and information thus does not directly identify your person.

3. Purpose of data processing

The temporary storage of the IP address by the system is necessary to allow delivery of the website to the user's computer. To do this, the user's IP address must be kept for the duration of the session.

Storage in log files occurs to ensure the functionality of the website. In addition, the data is used to optimise the website and to ensure the security of our information technology systems. Evaluation of the data for marketing purposes does not take place in this context.

For these purposes, our legitimate interest in the processing of data is based on Art. 6 (1) (f) GDPR.

4. Duration of storage

The data will be deleted as soon as it is no longer necessary for the purpose for which it was collected. In the case of collecting the data for providing the website, this is the case when the respective session is completed.

In the case of storing the data in log files, this is the case after no more than seven days. Storage beyond this period is possible. In this case, the users' IP addresses are deleted or masked so that it is no longer possible to identify the calling client.

5. Objection and deletion options

The collection of data for the provision of the website and the storage of the data in log files is essential for the operation of the website. In consequence, the user does not have the option to object.

V.            Use of cookies

1. Description and scope of data processing

Our website uses cookies. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user's computer system. When a user visits a website, a cookie may be stored on the user's operating system. This cookie contains a characteristic string that allows the browser to be uniquely identified when the website is reopened.

We use cookies to make our website more user-friendly. Some elements of our website require that the calling browser be identified even after a page change.

The following data is stored and transmitted in the cookies:

1.     Language preference

2.     Log-in information

We also use cookies on our website that allow an analysis of our users' browsing behaviour.

The following data can be transmitted in this way:

1.     Entered search terms

2.     Frequency of page views

3.     Use of website features

The user data collected in this way is pseudonymised by technical precautionary measures. As a result, correlation of the data to the calling user is no longer possible. The data will not be stored together with the users' other personal data.

When accessing our website, the user is informed about the use of cookies for analysis purposes and his consent to the processing of the personal data used in this collaboration is obtained. There is also a reference to this Privacy Policy in this context.

2. Legal basis for data processing

The legal basis for the processing of personal data using technically necessary cookies is Art. 6 (1) (f) GDPR.

The legal basis for the processing of personal data using cookies for analysis purposes with the consent of the user is Art. 6 (1) (a) GDPR.

3. Purpose of data processing

The purpose of using technically necessary cookies is to facilitate the use of websites for users. Some of our website's features cannot be offered without the use of cookies. For these features, it is necessary that the browser is recognised even after a page change.

We require cookies for the following applications:

1.     Transfer of language settings

2.     Remembering search terms

The user data collected through technically necessary cookies will not be used to create user profiles.

Analysis cookies are used for the purpose of improving the quality of our website and its contents. Analysis cookies allow us to learn how the website is used so we can constantly optimise our offerings.

For these purposes, our legitimate interest in the processing of data is based on Art. 6 (1) (f) GDPR.

4. Duration of storage, objection and deletion options

Cookies are stored on the user's computer and transmitted by it to our site. Therefore, as a user, you have full control over the use of cookies. You can disable or restrict the transmission of cookies by changing the settings in your internet browser. Already saved cookies can be deleted at any time. This can also be done automatically. If cookies are disabled for our website, it may not be possible to use all the functions of the website to the full extent.

VI.          Newsletter

1. Description and scope of data processing

You can subscribe to a free newsletter on our website. When you sign up for the newsletter, the data from the input mask will be sent to us:

1.     Title

2.     First name

3.     Surname

4.     Email address

5.     Company

6.     Company branch

In addition, the following data is collected upon registration:

1.     IP address of the calling computer

2.     Date and time of registration

Your consent is obtained during the registration process for the processing of the data, and reference is made to this Privacy Policy.

We use the internet-based services of the newsletter provider Teradata (Mapp) to automatically send personalised emails containing our newsletter. For this purpose, we have entered into a contract with the provider pursuant to Art. 28 GDPR, in which it undertakes to process the user data only in accordance with our instructions and to comply with the EU data protection level.

Additional information can be found in the privacy policy of the provider Teradata (Mapp):
https://www.teradata.com/Legal/Teradata-Privacy-Policy.pdf

as in the terms and conditions:
https://www.teradata.de/Legal/website-terms-of-use.pdf

If you no longer wish to receive our newsletter, you have the right to be unsubscribed from the newsletter mailing list at any time. Just send an email to sensitec@sensitec.com. Furthermore, we offer you the ability to unsubscribe yourself from the newsletter at unsubscribe link. The data will be used exclusively for sending the newsletter.

2. Legal basis for data processing

The legal basis for the processing of the data after the user has registered for the newsletter is the consent of the user pursuant to Art. 6 (1) (a) GDPR.

3. Purpose of data processing

The collection of the user's email address is for the purpose of delivering the newsletter.

The collection of other personal data in the context of the registration process serves to prevent misuse of the services or the email address used.

4. Duration of storage

The data will be deleted as soon as it is no longer necessary for the purpose for which it was collected. The user's email address is therefore stored as long as the subscription to the newsletter is active.

The other personal data collected during the registration process will normally be deleted after a period of seven days.

5. Objection and deletion options

Subscription to the newsletter may be terminated at any time by the user in question. There is a corresponding link in each newsletter for this purpose.

This also allows a revocation of consent to the storage of the personal data collected during the registration process.

VII.         Registration

1. Description and scope of data processing

We offer users the opportunity to register on our website by providing personal information. The data is entered into an input mask, transmitted to us and stored. A transfer of data to third parties does not take place. The following data is collected during the registration process:

1.     First name

2.     Surname

3.     Company

4.     Email address

5.     Interest in products

At the time of registration, the following data is also stored:

1.     The user's IP address

2.     Date and time of registration

As part of the registration process, the user's consent to processing this data is obtained.

2. Legal basis for data processing

The legal basis for the processing of the data is in the user's consent pursuant to Art. 6 (1) (a) GDPR.

If the registration serves the fulfilment of a contract to which the user is a party or the implementation of pre-contractual measures, an additional legal basis for the processing of the data is Art. 6 (1) (b) GDPR.

3. Purpose of data processing

User registration is required for the provision of certain contents and services on our website.

4. Duration of storage

The data will be deleted as soon as it is no longer necessary for the purpose for which it was collected.

This is the case for the data collected during the registration process when the registration to our website is cancelled or modified.

5. Objection and deletion options

As a user, you have the option of cancelling your registration at any time. You can change the data stored about you at any time.

The user has the option to revoke his consent to the processing of the personal data at any time. He may object to the storage of his personal data at any time by contacting us by email. In such a case, the conversation cannot continue.

Consent and storage may continue to be revoked at any time in writing by fax or letter. The contact details of the company and of the data protection officer are set out in this privacy policy.

All personal data stored as a result of making contact will be deleted in this case.

If the data is necessary for the fulfilment of a contract or for the execution of pre-contractual measures, premature deletion of the data is only possible insofar as contractual or legal obligations do not preclude a deletion.

VIII.        Contact form and email contact

1. Description and scope of data processing

A contact form is available on our website that can be used for electronic contact. If a user uses this option, the data entered in the input mask will be transmitted to us and saved. This data is:

1.     First name

2.     Surname

3.     Company

4.     Email address

5.     Message

At the time the message is sent, the following data is also stored:

1.     The user's IP address

2.     Date and time of registration

Your consent is obtained during the sending process for the processing of the data, and reference is made to this privacy policy.

Alternatively, contact can be made via the provided email address. In this case, the user's personal data transmitted by email will be stored.

There is no disclosure of the data to third parties in connection with this. The data will be used exclusively for processing the conversation.

2. Legal basis for data processing

The legal basis for the processing of the data is in the user's consent pursuant to Art. 6 (1) (a) GDPR.

The legal basis for the processing of the data transmitted in the course of sending an email is Article 6 (1) (f) GDPR. If the aim of the email contact is to conclude a contract, the additional legal basis for processing the data is Art. 6 (1) (b) GDPR.

3. Purpose of data processing

The processing of the personal data from the input mask serves us only for establishing contact. In the case of contact via email, this also includes the required legitimate interest in processing the data.

The other personal data processed during the sending process serves to prevent misuse of the contact form and to ensure the security of our information technology systems.

4. Duration of storage

The data will be deleted as soon as it is no longer necessary for the purpose for which it was collected. This is the case for the personal data from the input mask of the contact form and for data sent by email when the respective conversation with the user has ended. The conversation is ended when it can be inferred from the circumstances that the relevant facts have been finally clarified.

Additional personal data collected during the registration process will be deleted at the latest after a period of seven days.

5. Objection and deletion options

The user has the option to revoke his consent to the processing of the personal data at any time. He may object to the storage of his personal data at any time by contacting us by email. In such a case, the conversation cannot continue.

Consent and storage may continue to be revoked at any time in writing by fax or letter. The contact details of the company and of the data protection officer are set out in this privacy policy.

All personal data stored as a result of making contact will be deleted in this case.

IX.          Google Analytics

1. Description and scope of data processing and legal basis for the processing of personal data

We use Google Analytics, a web analytics service provided by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA, hereinafter referred to as Google, in order to ensure appropriate design and continuous optimisation of our websites on the basis of Art. 6 (1) (f) GDPR (legitimate interest). This results in the creation of pseudonymised usage profiles and requires the use of a specific form of cookies. The information generated by the cookies about your use of this website is generally transferred to a Google server in the USA and stored there. Google is certified under the Privacy Shield Agreement, which provides a guarantee of compliance with EU data protection standards.

We point out that on our websites Google Analytics is only used with activated IP anonymisation “_anonymizeIp()”. This means that the users' IP addresses are shortened by Google within the territory of the European Union or in other contracting states of the agreement in the European economic area, in order to eliminate direct reference to persons.

Only in exceptional cases will the full IP address be transferred to a Google server in the USA,where it is truncated.

2. Purpose of data processing

Google will use this information on our behalf to evaluate the use of our online offering by users, to compile reports on the activities within this online offering and to provide us with further services related to the use of this online offering and to internet usage. In this case, pseudonymous user profiles can be created from the processed data.

3. Objection and deletion options

The IP address transmitted by your browser within the scope of Google Analytics is not added to any other Google data. If you wish to prevent Google from collecting and processing the data (including your IP address) related to your use of the website (including your IP address), as well as the processing of this data by Google, you can do this by downloading and installing the Google Analytics opt-out browser add-on. The browser add-on is available for Internet Explorer, Google Chrome, Mozilla Firefox, Apple Safari and Opera at:
https://tools.google.com/dlpage/gaoptout?hl

As an alternative to the browser plug-in or when using browsers on mobile devices, it is possible to use this link to set an opt-out cookie that will prevent Google Analytics within this website in the future. Your browser must allow cookies to be stored. If you delete your cookies regularly, you will need to click on the link each time you visit this website.

You can find more information on the Terms of Use and Privacy Policy at:
http://www.google.com/analytics/terms/de.html 

or at:
http://www.google.com/intl/de/analytics/privacyoverview.html


X.            Google Data Studio

Based on Art. 6 (1) (f) GDPR (legitimate interest), we use an additional Google Analytics data management tool – Google Data Studio (beta version) – to visually create custom reports and interactive dynamic dashboards for our users. Here we use the data from Google Analytics and no other interfaces to data sources (such as Google AdWords, Attribution 360, BigQuery, Cloud SQL, MySQL, Google Sheets, YouTube Analytics, etc.). The web tool does not require a local application and can be accessed via the Web. Access is via a browser and the data sources are directly connected via Google Data Studio. For more information about using Google Data Studio, see:
https://support.google.com/datastudio/answer/6283323?hl=de 

The user has the option to revoke his consent to the processing of the personal data at any time. He may object to the storage of his personal data at any time by contacting us by email. In such a case, the conversation cannot continue.

Consent and storage may continue to be revoked at any time in writing by fax or letter. The contact details of the company and of the data protection officer are set out in this privacy policy.

All personal data stored as a result of making contact will be deleted in this case.

XI.          WiredMinds

We use the services of WiredMinds AG on our website for the purposes of marketing and optimisation (our legitimate interest) based on Art. 6 (1) (f) GDPR. In doing so, we use tracking pixel components as a service of WiredMinds AG, Immenhofer Str. 21, 70180 Stuttgart.

WiredMinds uses cookies – text files that are saved on your device and allow an analysis of the use of our website – in this context. The collected data, which may also contain personal data, is transmitted to a sever belonging to WiredMinds in Germany or collected directly by WiredMinds. WiredMinds may use information left by visits to the websites to create anonymised usage profiles.

The data obtained without the separately granted consent of the data subject will not be used to personally identify the visitor to this website and will not be merged with personal data about the bearer of the pseudonym. Whenever IP addresses are collected, they will be anonymised immediately after collection by deleting the last number block.

For more information on the purpose and scope of the data collection and its processing by WiredMinds, see:
https://www.wiredminds.de/datenschutz/

 

XII.         Integration of services and third-party contents

General notes

As an agile company, it is extremely important to us to be present and reachable wherever our customers are. For this reason, social plug-ins and links from social networks (Facebook, LinkedIn, XING, Google+, YouTube) are integrated on our websites on the basis of Art. 6 (1) (f) GDPR (legitimate interest). The underlying commercial purpose is to be regarded as legitimate interest within the meaning of the GDPR. The responsibility for data-protection-compliant operations is to be ensured by the respective providers of the social network.

In addition, on the basis of our legitimate interests (i. e. interest in the analysis, optimisation and economic operation of our online offering in terms of Art. 6 (1) (f) GDPR) or on the basis of your consent within the meaning of Art. 6 (1) (a) GDPR), we use content or services provided by third party providers for our our online offerings in order to integrate their content and services. Before connecting to the provider, you must explicitly agree to the process and the data transfer described below:

Links to the websites of social media services are indicated by the respective company logo. If you follow a social media link, you can find the corporate identity of Sensitec GmbH at the respective social media service. Please note that activating a link results in a connection to the servers of the social media service, and as a result certain data can be transmitted to the provider of the social media service. This data is, for example:

• Your name and email address when authenticating as part of the registration or login process;

• Address of the website where the activated link is located;

• Date and time of the website's activation or activation of the link;

• Information about the browser used and the operating system used;

• IP address of the requesting Internet-enabled end device.

If you are logged in as a member of the respective social media service, the social media service can assign this information to your personal user account at the social media service. You can exclude this possibility of assignment to your personal user account if you log out of your user account beforehand. The social media servers are located in the US and other countries outside the European Union. Please note that companies in these countries are subject to data protection law that generally does not protect personal data to the same extent as is the case in the Member States of the European Union.

Sensitec GmbH has no influence on the scope, nature and purpose of the data processing by the provider of the social media service. Next we will inform you about the social media channels we use in detail:

1. Facebook

We – Sensitec GmbH – use the social plug-ins of the social network Facebook on the basis of our legitimate interests for the purpose of analysis, optimisation and economic operation of our online offerings within the meaning of Art. 6 (1) (f) GDPR. The provider is Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, hereafter referred to as "Facebook".

The plug-ins may contain interaction elements or content such as: videos, graphics or text contributions and are recognisable by one of the Facebook logos (white “f” on blue tile, the term “Like”, or a “thumbs up” sign) or are marked with the addition “Facebook Social Plug-In”. The list and appearance of the Facebook social plugins can be viewed here:
https://developers.facebook.com/docs/plugins/

The Facebook social platform is certified under the Privacy Shield Agreement, which provides a guarantee of compliance with European data protection law.

When a user requests a feature of this online offering that includes such a plugin, his end device establishes a direct connection to the Facebook servers. The contents of the plugins are transmitted directly from Facebook to the user's end device and integrated into it by the online offering. In this case, user profiles can be created from the processed data. Please be aware that we have no control over the amount of data Facebook collects using this plugin.

Furthermore, because of integrating the plugins, Facebook receives the information that a user has accessed the corresponding page of the online offering. If the user is logged into Facebook, Facebook can assign the visit to his Facebook account. If users interact with the plugins (such as by clicking the Like button or posting a comment), the corresponding information will be sent directly to Facebook by your end device and stored there.

If a user is not a member of Facebook, there is the possibility that Facebook will recognise and save his IP address. Facebook indicates that only an anonymous IP address is stored in Germany. If a user is already a Facebook member and does not want Facebook

to collect data about him through this online offering and associate it with his member data stored on Facebook, he must log out of Facebook and delete his cookies before using our online offering.

Additional settings for using data for promotional purposes can be viewed in the Facebook profile settings at: https://www.facebook.com/settings?tab=ads

Detailed information on the purpose and scope of the data collection, the further processing and use of data by Facebook, as well as your rights and setting options to protect your privacy, can be found in the Facebook Privacy Policy at:
https://www.facebook.com/about/privacy/

2. LinkedIn

We – Sensitec GmbH – use the functions of the social network LinkedIn on the basis of our legitimate interests for the purpose of analysis, optimisation and economic operation of our online offerings within the meaning of Art. 6 (1) (f) GDPR. The provider is LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, United States.

Each time you visit one of our sites that contains LinkedIn features, a connection is established to LinkedIn servers. LinkedIn is informed that you have visited our website with your IP address. If you click LinkedIn's “recommend button” and are logged in to your LinkedIn account, LinkedIn will be able to associate your visit to our website with you and your user account. We would like to point out that as the provider of the websites, we are not aware of the content of the transmitted data, nor of its use by LinkedIn. To see your rights and options to protect your privacy, please refer to the respective privacy policy of the provider:
https://www.linkedin.com/legal/privacy-policy

Further information on the opt-out procedure can be found here:
https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

3. XING

We – Sensitec GmbH – use the functions of the social network XING on the basis of our legitimate interests for the purpose of analysis, optimisation and economic operation of our online offerings within the meaning of Art. 6 (1) (f) GDPR. The provider is XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany. Each time you visit one of our sites that contains XING features, a connection is established to XING servers. To our knowledge, this does not result in the storage of personal data. In particular, no IP addresses are stored and the usage behaviour is not evaluated. To see your rights and options to protect your privacy, please refer to the respective privacy policy of the provider:
https://www.xing.com/app/share?op=data_protection

4. Google+

We – Sensitec GmbH – use the so-called plugins of the social network Google+, which is offered by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, on the basis of our legitimate interests for the purpose of analysis, optimisation and economic operation of our online offerings within the meaning of Art. 6 (1) (f) GDPR. The plugins are recognisable on e.g. buttons with the sign "+1" on white or coloured background.

When you activate the plug-in with the first click, your browser connects directly to Google's servers. The contents of the plugins are transmitted directly from Google to your browser and integrated into it by the site. The integration gives Google the information that your browser has accessed the corresponding page of our website, even if you do not have a profile on Google+ or are currently not logged in to Google+. This information, including your IP address, will be sent from your browser directly to a Google server in the US and stored there.

If you are logged in to Google Plus, Google can instantly associate your visit to our website with your Google+ profile. If you interact with the plugins, for example by pressing the "+1" button, the corresponding information is also transmitted directly to a Google server and stored there. In addition, this information will be published on Google+ and displayed there in your contacts. The purpose and scope of the data collection and the further processing and use of the data by Google, as well as your related rights and configuration options to protect your privacy, can be found here:
https://www.google.com/intl/de_de/policies/privacy/

5. YouTube

We – Sensitec GmbH – integrate functions of the web service YouTube to display and play back videos on the basis of our legitimate interests for the purpose of the analysis, optimisation and economic operation of our online offer within the meaning of Art. 6 (1) (f) GDPR. The provider of these features is YouTube, LLC 901 Cherry Ave. San Bruno, CA 94066 USA. YouTube, LLC is a subsidiary of Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043-1351, USA. In this case, the extended data protection mode is used, which according to provider sets storage of user information only when the video/videos is/are started. As soon as playback of embedded YouTube videos starts, YouTube uses cookies to collect information about user behaviour. These are used for the statistical collection of videos and are intended to improve user-friendliness and prevent abusive practices.

Each time you visit the Sensitec GmbH website, regardless of any playback of the embedded videos, you will be connected to the Google Network “DoubleClick”, which may trigger further data processing without the influence of our company. For more information about the use of cookies, see the YouTube Privacy Policy at:
https://www.google.de/intl/de/policies/privacy/

6. Google Tag Manager

The Sensitec GmbH website uses the Google Tag Manager on the basis of our legitimate interests (i.e. interests in the analysis, optimisation and economic operation of our online offerings within the meaning of Art. 6 (1) (f) GDPR). This service allows website tags to be managed through a single interface. Google Tag Manager only implements tags. No cookies are set and no personal information is collected. Google Tag Manager triggers other tags that may collect data. Google Tag Manager does not access this data.

If deactivated at the domain or cookie level, it will remain in effect for all tracking tags as far as they are implemented with the Google Tag Manager. You can find detailed information about the Google Tag Manager at the following link: http://www.google.de/tagmanager/use-policy.html

7. Google Maps

The Sensitec GmbH website uses the “Google Maps” component to display maps and create driving directions. Google Maps is operated by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043 USA, hereinafter “Google”.

By using this website, the user agrees to the collection, processing and use of automatically collected data, as well as data entered by the user (including the IP address), by Google, one of its representatives or third parties. The data processing takes place on the basis of your consent within the meaning of Art. 6 (1) (a) GDPR. In addition, each time Google's Google Maps component is called, Google sets a cookie to process user settings and data when viewing the page that has the Google Maps component integrated. This cookie is usually not deleted by closing the browser, but it will expire after a certain amount of time unless you manually delete it.

If you disagree with the processing of your data, you may disable the “Google Maps” service and prevent the transmission of data to Google in this way. To do this, you must disable the Java Script feature in your browser. However, please note that in this case you will not be able to use “Google Maps”, or will only be able to use it to a limited extent. The Google Maps terms of service can be found at the following link:
https://www.google.de/intl/de/policies/terms/regional.html

Details on transparency and options as well as the privacy policy can be found in the google.de's Privacy Center:
https://www.google.de/intl/de/policies/privacy/?fg=1

8. LeadingReports

We use the services of LeadingReports GmbH, Unter den Linden 26, 35410 Hungen-Obbornhofen, on our website for purposes of marketing and optimisation (our legitimate interest) based on Art. 6 (1) (f) GDPR.

LeadingReports GmbH uses cookies – text files that are saved on your device and allow an analysis of the use of our website – in this context. LeadingReports GmbH can represent the usage behaviour of visitors to our websites by analysing the collected and transmitted data. The presentation particularly refers to the analysis of the various areas of interest based on the use of our respective websites as well as the geographical origin of the visitors.

The data collected will be made available to LeadingReports GmbH in a prepared form and will not be passed on to third parties other than LeadingReports GmbH. Likewise, this data will in no case be used for other purposes or resold. Whenever IP addresses are recorded in the process, they will be anonymised immediately after collection by deleting the last number block.

The servers used for the web analysis are operated exclusively in the territory of the Federal Republic of Germany.

If you still do not agree with the evaluation of your anonymised usage data, please click on the link below to object to the use of your data. Please note that this is done by setting a cookie or local storage record and storing in it information that prevents the collection of your anonymous usage data. If you delete your browser cookies or use another browser the next time you visit, you will need to click the link again to stop the evaluation of your anonymised usage data.

Whenever IP addresses are collected, they will be anonymised immediately after collection by deleting the last number blocks. You can object to the data collection and storage by LeadingReports GmbH for this website at any time with effect for the future at:
https://io.leadingreports.de/exclude-ip

For more information on the purpose and scope of the data collection and its processing by LeadingReports, see:
https://www.leadingreports.de/datenschutzbestimmungen.html

XIII.        Use of other active content

There is active content on our websites, including JavaScript and ActiveX, as well as other controls and scripting languages that contain executables. For security reasons, you can deactivate these at any time via your browser configuration. Our websites can still be navigated without JavaScript.

XIV.       Recipients outside the EU

With the exception of the processing described in this Privacy Policy, we will not share your information with recipients located outside the European Union or the European Economic Area.

XV.         Rights of the data subject

If your personal data is processed, you are the data subject in the sense of GDPR and you have the following rights with regards to the controller:

1. Right to information

You may ask the controller to confirm if personal data concerning you is processed by us.

If such processing occurs, you can request information from the controller about the following information:

(1)        the purposes for which the personal data is processed;

(2)        the categories of personal data that is processed;

(3)        the recipients or the categories of recipients to whom the personal data relating to you has been disclosed or is still being disclosed;

(4)        the planned duration of the storage of your personal data or, if specific information is not available, criteria for determining the duration of storage;

(5)        the existence of a right to correction or erasure of personal data concerning you, a right to restriction of processing by the controller or a right to object to such processing;

(6)        the existence of a right of appeal to a supervisory authority;

(7)        all available information on the source of the data if the personal data is not collected from the data subject;

(8)        the existence of automated decision-making, including profiling according to Art. 22 (1) and (4) GDPR and – at least in these cases – significant information about the logic involved, as well as the implications and intended effects of such processing on the data subject.

You have the right to request information about whether your personal information has been be transferred to a third country or an international organisation. In this connection, you can request the appropriate guarantees pursuant to Art. 46 GDPR in connection with the transfer.

2. Right to correction

You have a right to require that the controller correct and/or complete personal data if processed personal data concerning you is incorrect or incomplete. The controller must make the correction without delay.

3. Right to restriction of processing

You may request the restriction of the processing of your personal data under the following conditions:

(1)        you contest the accuracy of your personal data and provide a sufficient time period for the controller to verify the accuracy of your personal data;

(2)        the processing is unlawful and you decline to delete the personal data and instead request the restriction of the use of the personal data;

(3)        the controller no longer needs the personal data for the purposes of the processing, but you need it for the assertion, exercise or defence of legal claims, or

(4)        you have filed an objection against the processing pursuant to Art. 21 (1) GDPR and it is not yet certain whether the legitimate reasons of the controller outweigh your reasons.

If the processing of your personal data has been restricted, apart from its storage, this data may only be used with your consent or for the purpose of asserting, exercising or defending legal claims or protecting the rights of another natural or legal person or for reasons of important public interest of the Union or a Member State.

If the restriction of processing is limited in accordance with the above-mentioned requirements, you will be informed by the controller before the restriction is lifted.

4. Right to deletion

a) Deletion obligations

You may require the controller to delete your personal information without delay, and the controller is required to delete that information immediately if one of the following is true:

(1)        Your personal data is no longer necessary for the purposes for which it was collected or otherwise processed.

(2)        You revoke your consent to the processing pursuant to Art. 6 (1) (a) or Art. 9 (2) (a) GDPR and there is no other legal basis for processing.

(3)        You object to the processing pursuant to Article 21 (1) GDPR and there are no legitimate reasons for the processing, or you object to the processing pursuant to Article 21 (2) GDPR.

(4)        Your personal data has been processed unlawfully.

(5)        The deletion of your personal data is required in order to fulfil a legal obligation under Union law or the law of the Member States to which the controller is subject.

(6)        Your personal data was collected in relation to information society services offered pursuant to Art. 8 (1) GDPR.

b) Information to third parties

If the controller has made your personal data public and if he is is obligated to delete it pursuant to Article 17 (1) GDPR, he must take appropriate measures, including technical measures, with due account of the technology available and the costs of implementation, to inform controllers who process the personal data for the purpose of processing that you as the data subject have requested deletion of all links to such personal data or of copies or replications of such personal data.

c) Exceptions

The right to deletion does not exist if the processing is necessary

(1)        to exercise the right to freedom of expression and information;

(2)        to fulfil a legal obligation required by the law of the Union or of the Member States to which the controller is subject, or necessary for the performance of a task carried out in the public interest or in the exercise of public authority conferred on the controller;

(3)        for reasons of public interest in the field of public health pursuant to Art. 9 (2) (h) and (i) and Art. 9 (3) GDPR;

(4)        for archival purposes in the public interest, scientific or historical research purposes or for statistical purposes pursuant to Article 89 (1) GDPR, to the extent that the right referred to in subparagraph (a) is likely to render impossible or seriously affect the achievement of the objectives of that processing, or

(5)        to assert, exercise or defend legal claims.

5. Right to information

If you have the right to correction, deletion or restriction of processing against the controller, he is obliged to notify all recipients to whom your personal data has been disclosed of this correction or deletion of the data or restriction of processing, unless this proves to be impossible or involves a disproportionate effort.

You have a right against the controller to be informed about these recipients.

6. Right to data portability

You have the right to receive your personal data that you provide to the controller in a structured, common and machine-readable format. In addition, you have the right to transfer this data to another controller without hindrance by the controller who provided the personal data, provided that

(1)        the processing is based on consent pursuant to Art. 6 (1) (a) GDPR or Art. 9 (2) (a) GDPR or on a contract pursuant to Art. 6 (1) (b) GDPR and

(2)        the processing is done using automated procedures.

In exercising this right, you also have the right to have your personal data transmitted directly from one controller to another controller, as far as technically feasible. Freedoms and rights of other persons may not be hereby affected.

The right to data portability does not apply to the processing of personal data necessary for the performance of a task in the public interest or in the exercise of public authority conferred on the controller.

7. Right of objection

You have the right at any time, for reasons that arise from your particular situation, to object to the processing of your personal data that is taking place pursuant to Art. 6 (1) (e) or (f) GDPR; this also applies to profiling based on these provisions.

The controller will no longer process your personal data unless he can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is for the purpose of enforcing, exercising or defending legal claims.

If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct mail.

If you object to processing for direct marketing purposes, your personal data will no longer be processed for these purposes.

Regardless of Directive 2002/58/EC, you have the option, in the context of the use of information society services, of exercising your right of objection through automated procedures that use technical specifications.

8. Right to revoke the data protection consent declaration

You have the right to revoke your data protection declaration at any time. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation occurred.

9. Automated decision on an individual basis including profiling

You have the right not to be subjected to a decision based solely on automated processing – including profiling – that will have legal effect or affect you in a similar manner. This does not apply if the decision

(1)        is required for the conclusion or performance of a contract between you and the controller,

(2)        is permissible on the basis of Union or Member State legislation to which the controller is subject, assuming this legislation contains adequate measures to safeguard your rights and freedoms and your legitimate interests, or

(3)        with your express consent.

However, these decisions must not be based on special categories of personal data pursuant to Art. 9 (1) GDPR, unless Art. 9 (2) (a) or (g) applies and reasonable measures have been taken to protect your rights and freedoms and your legitimate interests.

With regard to the cases referred to in (1) and (3), the controller shall take appropriate measures to protect your rights and freedoms and your legitimate interests, including at minimum the right to obtain intervention on the part of the controller, to the presentation of your own position, and to hear an appeal of the decision.

10. Right of complaint to a supervisory authority

Without prejudice to any other administrative or judicial remedy, you shall have the right to complain to a supervisory authority, in particular in the Member State of your residence or place of work, or the place of the alleged infringement, if you believe that the processing of your personal data violates the GDPR.

The supervisory authority to which the complaint has been submitted shall inform the complainant of the status and results of the complaint, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.

XVI.       Data security

Sensitec GmbH continuously takes appropriate technical and organisational security measures to protect your personal data against manipulation, partial or complete loss and unauthorised access by third parties as comprehensively as possible. Our security measures are continuously improved in line with technological developments.

In addition to securing the operating environment, we use an encryption process in the entire website. All personally transmitted data, including your payment information, will be transmitted using the common and secure standard SSL (Secure Socket Layer) protocol to prevent misuse of the information by third parties. SSL is a secure and proven standard that is also used, for example, in online banking. You can recognise a secure SSL connection by the fact that, among other things, the lock symbol in the status bar of your browser is closed and the address bar begins with "https".

Nevertheless, we point out that Internet-based data transmissions can in principle have security gaps (for example in the case of communication by email), so that an absolute protection of the data against access by third parties can not be guaranteed.

XVII.      Reservation

Sensitec GmbH reserves the right to change or supplement these privacy guidelines at any time in compliance with the data protection regulations. All updates will be published on our website. New data protection regulations become effective with their publication. We encourage you to visit this website periodically to see the latest version.

 

 

Date of last update: June 2018