Kendrion Aerzen – Ein Unternehmen der Kendrion Gruppe
  • Home
  • Sitemap
  • Kontakt
Kendrion Magneta
 

Privacy Policy

Data protection statement

Privacy policy


1. Introduction


1.1 Data privacy statement

We are pleased about your visit to our web pages as well as your related interest in our company and our products. The protection of your personal data is very important to us. Kendrion N.V. (hereafter, “Kendrion”, “we” or “us”) places great value on the security of its users’ data and the observance of provisions related to data privacy laws.


Kendrion’s web pages can incorporate links to the websites of other providers who are not included in this data privacy statement. Which data the operators of such sites might conceivably gather is beyond our knowledge and our ability to control. You will obtain such information from the data privacy statement of those respective websites.


We are going to inform you in detail below on how we handle your data.


1.2. Definitions


This data privacy statement rests upon the definitions of the General Data Protection Regulation


(DSGVO).


“Personal Data” are all items of information, that are related to an identified or identifiable natural


person (hereafter, “affected party” (Article 4 Nr. 1 of the DSGVO). Your personal data includes


such information as your historical data (first and last names, address and date of birth), your


contact data (telephone number, e-mail address), your billing data (bank account) and much more.


“Processing” is every process carried out with or without the help of automated procedures or


every such series of processes in connection with personal data such as the gathering, capture,


organising, arranging, storage, adaptation or change, querying, use, disclosure through


transmission, dissemination, or other form of provision, reconciliation or linking, restriction, deleting


or destruction.


“Affected party” is every identified or identifiable natural person whose personal data is being


manipulated by the person responsible for the processing.


“Responsible party” is the natural or juridical person, authority, facility or other entity that alone or


together with others decides on the purposes and means by which the personal data will be


processed. If the purposes and means of this processing are specified by EU law or the law of the


member states, so can the responsible party be stipulated or more specifically, the particular


criteria of his appointment can be stipulated in accordance with EU law or the law of the member


states.


“Order processor” is a natural or juridical person, authority, facility or other entity that processes


personal data on behalf of the responsible party.


“Receiving party” is a natural or juridical person, authority, facility or other entity to whom personal


data is disclosed, independent of whether it involves a third party or not. Authorities that may


possibly receive personal data in the course of an investigation mandate in accordance with EU


law or the law of member states, are not regarded as recipients.


“Third party” is a natural or juridical person, authority, facility or entity other than the affected party,


the responsible party, the receiving party and the persons who under the immediate supervision of


the responsible party are authorised to process the personal data.


“Consent“ is every declaration of intent by the affected party given voluntarily in an informed


fashion for the particular case and unambiguously in the form of a declaration or an otherwise


explicitly confirming action with which the affected party makes it understood that they are in


agreement with the processing of the personal data pertaining to them.


1.3. Collection and processing of personal data


Use of our internet pages is basically possible without the repeated input of personal data. However,


to the extent you would like to make use of our company’s special services via our internet site,


processing of your personal data could become necessary. If the processing of personal data is


necessary and if there is no legal basis for such processing, we generally seek consent from the


affected party.


 


2. Purposes of the collection - Categories of the


data - Legal basis for the processing


 


2.1. Anonymous data collection


You can visit our site without making proactive statements about your person. However, we will


automatically save with every call to the internet site for a duration of 2 months access data (server


log file), such as, for example, the web page from which you are visiting us, the access status, the


amount of data transferred, the date and duration of the visit, the name of the requested file, as well


as (for security reasons in order to recognise, for example, attacks on our web pages), the IP address


of the computer that was used. These data will be evaluated exclusively for improving our offering


and do not draw any conclusions about your person. No conflation of these data with other data


sources will be undertaken. The legal basis for processing the data is Article 6 Para 1 of the DSGVO.


We process and use the data for the following purposes: 1. deployment of the Kendrion web pages,


2. improvement of our web pages, 3. prevention and recognition of errors/malfunctions as well as


misuse of the webpages. This type of data processing takes place either for fulfilment of the contract


for using the Kendrion websites or because we are tracking a legitimate interest in insuring the


functionality and error-free operation of the Kendrion web pages as well as adapting these web pages


to the demands of our users.


 


2.2. Use of cookie tracking


In order to make a visit to our web pages as attractive as possible and make possible the use of


particular functions, we use so-called cookies on our webpages. Doing so involves standard internet


technology for storing and recalling login and other user information for all users of the Kendrion web


pages. Cookies are small text files that reside on your terminal device. They make it possible for us to


store user settings, among other things, so that our webpages can be shown on your device in a


customised format. Some of the cookies we use will be deleted again after the end of the browser


session — in other words, after you close your browser (so-called session cookies). Other cookies


remain on your terminal device and make it possible for us or our partner companies to recognise


your browser upon your next visit (so-called permanent cookies).


You can set your browser in such a way that you will be informed about the settings for cookies and


decide individually about their acceptance or to exclude the acceptance of cookies in certain cases or


generally. In addition, cookies can be deleted post facto in order to remove data that the websites


have filed on your computer. Instructions on this can be found quickly on the internet. The


deactivation of cookies can lead to some limitations in the functionality of the Kendrion webpages.


 


2.3. Use of Google Analytics


This website uses functions of the Google Analytics web analysis service. This is offered by Google


Inc.,1600 Amphitheatre Parkway Mountain View, CA 94043, USA. Google Analytics uses so-called


“cookies”, text files that are stored on your computer and that make it possible to analyse your use of


the web pages. The information obtained through the cookies about your use of these web pages


(including your IP address) will be transferred to a Google server in the USA and stored there. Google


will use this information in order to evaluate your use of the web pages, in order to assemble reports


about the web page activities for the web page operator and to deliver additional services related to


the use of the web pages and use of the internet. Google will also transfer this information, where


applicable, to third parties to the extent this is prescribed by law or to the extent third parties process


these data on behalf of Google.


Prevent storage of cookies


You can prevent the storage of cookies by appropriately setting your browser software; but we will


point out that in this case, you potentially will not be able to fully utilise all of the functions of the web


pages. By using this website, you declare your agreement with the processing of the data collected


from you by Google in the previously described manner and for the aforementioned purpose.


IP-Anonymisation


We have activated the IP anonymisation function on this website. As a result, your IP address will be


truncated within the member states of the European Union or within other signatories of the


agreement across the European Union before its transmittal to the USA.


Opposition to data capture


If you do not want Google to get data from your browser when pages are called up, here is the link for


the “opt out” solution for Google Analytics https://tools.google.com/dlpage/gaoptout?hl=en-GB.


This plug-in prevents the browser from requesting the analytics code so that Google does not receive


any data at all when the page is called up. The plug-in is only for Internet Explorer 7 and 8, Firefox 3.x


as well as Chrome. According to Google, the browser will block the Google Analytics script after


installation. More information on conditions of use and data protection can be found at


https://support.google.com/analytics/answer/6004245?hl=en or at


https://www.google.com/analytics/learn/privacy.html?hl=en-GB.


We point out that on these web pages, Google Analytics was expanded by the code,


“gat.anonymizelp” in order to assure an anonymised capture of IP addresses (so-called IP masking).


Demographic features at Google Analytics


This website uses the function, “demographic features” from Google Analytics. As a result, reports


can be created that include statements on the age, gender, and interests of the visitor to the page.


This data stems from interest-related advertising by Google as well as from visitor data from third


party providers. These data cannot be assigned to specific people. You can at any time deactivate


this function in the display settings of your Google account or by generally forbidding the capture of


your data by Google Analytics as displayed in the section, “Opposition to data capture” above.


 


2.4. Use of Google AdWords


On our web pages, we use Google Conversion Tracking, an analytical service of Google Inc. (1600


Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”). In so doing, Google AdWords will


place a cookie on your computer (“conversion cookie”) if you have arrived at our web pages from a


Google advertisement. These cookies lose effect after 30 days and do not serve for personal


identification. If you visit certain pages of ours and the cookie has not yet run out, we and Google can


tell that someone has clicked on the ads and were thereby led to our site. Every AdWords customer


gets a different cookie. Thus, cookies cannot be tracked across the websites of AdWords customers.


The information gathered with the help of conversion cookies serves to create conversion statistics for


AdWords customers who have decided on conversion tracking. The AdWords customers learn the


total number of users who have clicked on their ad and were guided to a page furnished with a


conversion tracking tag. However, they receive no information that allows them to identify users


personally.


If you do not wish to participate in tracking, you can object to this usage by preventing the installation


of the cookies through a corresponding setting of your browser software (deactivation possibility). You


will then not be included in the conversion tracking statistics. More information on user conditions and


data protection can be found at: https://policies.google.com/privacy.


 


2.5. Use of Google Maps


We use Google Maps to present maps and to create route maps. Google Maps are operated by


Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.


By using this website, you are consenting to the capture, processing and use of the automatically


captured data as well as any data you have entered by Google, one of its representatives or third


party providers.


The conditions for use of Google Maps can be found at:


https://developers.google.com/maps/terms .


Comprehensive details may be found at the data protection centre of google.de: transparency and


selection possibilities as well as data privacy provisions at https://policies.google.com/privacy.


 


2.6. Use of Google Doubleclick


We use Doubleclick by Google. This is a service from Google Inc., 1600 Amphitheatre Parkway,


Mountain View, CA 94043, USA (“Google”). Doubleclick by Google uses cookies in order to present


to you advertising that is relevant for you. In so doing, a pseudonymous identification number (ID) is


assigned to your browser in order to determine which advertisements were inserted into your browser


and which were activated. The cookies contain no personal information. The use of the Doubleclick


cookies makes it possible for Google and its partner web pages solely to switch ads on the basis of


prior visits to our and other websites on the internet. The information collected by the cookies is


transferred by Google for evaluation at a server in the USA and stored there. A transmission of the


data by Google to a third party only takes place on the basis of legal provisions or in the framework of


contracted data processing. In no case, will Google combine your data with other data collected by


Google.


You can prevent the storage of cookies by means of an appropriate setting of your browser software;


however, we point out that in this case, you may possibly not be able to fully utilise all of the functions


of our web pages.


Comprehensive details may be found at the data privacy centre of google.de: transparency and


selection possibilities as well as data privacy provisions at https://policies.google.com/privacy.


 


2.7. Registration on the internet page


You have the possibility of registering on our internet page. The registration serves the purpose of


offering the affected party contents or services that can because of their nature, only be offered to


registered users. At the same time, we collect the following data: salutation, first and last name, and


e-mail address. The entries that are marked as mandatory are necessary for registration; the entries


beyond these are offered voluntarily and can be revoked at any time.


By registering on our internet page, the IP address assigned by the affected party’s internet service


provider (ISP), the date as well as the time of registration will be stored. Storage of these data takes


place against the background that only in that way can misuse of our service be prevented. These


data make it possible, if necessary, to resolve crimes that have been committed. In that sense, the


storage of these data is necessary for our protection. Passing these data on to third parties does


basically not happen as long as no legal duty to pass them on exists and the passing on serves law


enforcement.


Registered persons can at any time change the personal data provided on registration or have it


deleted completely from the database as long as no legal retention times are standing in the way.


 


2.8. Contact form/Queries


On our web pages, you have the possibility of sending us queries on our contact form. In doing so,


your statements on the contact form (content of your query, subject and date of your query) including


the contact data provided by you (company name, first and last names, e-mail address and country)


will be stored by us for the purpose of addressing the query and in case of follow-up questions. We


will not pass these data on without your consent. The legal basis for collecting and processing the


data is Article 6 Para 1 of the DSGVO.


The data provided by you in the contact form remain with us until you request their deletion, withdraw


your consent for storage or the purpose of the data storage lapses (e.g. after processing your


question has ended). Mandatory legal provisions — especially retention periods — remain unaffected.


 


2.9. E-mail contact


If you send us questions or request information by e-mail, your specifications (e-mail address, content


of your e-mail, subject of your e-mail and date), including the contact data you provide there (first


name, last name, telephone number, address) will be stored by us for the purpose of answering your


question and in case of follow-up questions. We will not forward this information without your consent.


The legal basis for the collection and processing of the data is Article 6 Para 1 of the DSGVO.


We advise the user that e-mails on the transmission path can be read during their transmission and


changed without authorisation and without being noticed. Kendrion uses software to filter out


undesired e-mails (spam filter). The spam filter makes it possible to reject e-mails if these get


identified as spam falsely as a result of certain characteristics.


The data you submit remain with us until you ask us to delete them, revoke your consent to their


storage or the purpose for storing the data lapses (e.g. after completed processing of your question).


Ma0datory legal provisions — especially, retention period — remain unaffected.


 


2.10. Careers area/Online job applications


You have the possibility of using the career area on our web pages and/or submitting job applications


by e-mail. The personal data (historical data, contact data, enclosures like cover letters, résumés,


report cards, etc.) from applicants will be captured and processed for the purpose of processing the


application. The processing can also take place electronically. This is the case especially if an


applicant transmits the appropriate application documents by e-mail, for instance, or via a web-based


form on an internet site to the responsible party for processing. If the party responsible for the


processing concludes an employment contract with an applicant, the transmitted data will be stored


for the purpose of executing the employment relationship with due regard for legal regulations. If the


party responsible for the processing does not conclude an employment contract with the applicant,


then the application documents will be automatically deleted six months after the notice of the


rejection decision, to the extent that a deletion is not opposed to any other justifiable interests of the


party responsible for the processing. Other justified interest is in this sense, for example, a burden of


proof in a procedure according to the General Law of Equal Treatment (AGG). The legal basis for the


collection and processing of the data is Article 6 Para 1 of the DSGVO.


 


3. Transmission of the data


 


3.1. Internal transmission, inside Kendrion


We will transmit your data internally to the management, personnel department, works council and


wage office in order to comply with our contractual and legal obligations. A data transfer or disclosure


of your data will only take place to the extent necessary for this, considering the relevant data privacy


provisions.


 


3.2. Transmission company-wide/group-wide


Kendrion is a company based in the Netherlands but active worldwide. The data that you transmit to


us will be stored in our centralised customer database in Germany and passed on within the group for


management purposes. Should an exchange of data within the group/company take place, this will


take place in order to fulfil a contract or as a utilisation condition for the web pages. In addition, an


interest can exist for passing these data on for internal, administrative reasons. Should the processing


of your data take place outside of Europe, for example in China, Switzerland or the USA, this


transmission will take place under observance of all applicable data protection laws and especially


Article 44 f. of the DSGVO.


 


3.3. Transmission to third parties


We will transmit your data to certain third parties in order to be able to make available appropriate


applications and services (so-called “order processors”) who provide external services for us. Third


parties will process the data only in accordance with our instructions; in addition, they are forbidden to


use these data for their own commercial purposes that do not comply with the agreed upon purposes.


We have to disclose personal data if we are obligated in the course of an ongoing legal procedure,


because of an order, legally or on the basis of existing law (Article 6 Para 1 lit. f of the DSGVO).


We will only pass on your personal data to third parties if:


you have expressly given you consent to it in accordance with Article 6 Para 1 P.1 lit. a of the


DSGVO;


the transfer is necessary in accordance with Article 6 Para 1 P. 1 lit. f of the DSGVO in order to


assert, exercise or defend legal rights and there is no reason to assume that you have an


overriding interest worthy of protection in not transferring your data;


a legal obligation exists for the transfer in accordance with Article 6 Para 1 P. 1 lit. c of the


DSGVO; as well as


this is legally admissible and necessary according to Article 6 Para 1 P. 1 lit. b of the DSGVO for


the conclusion of contractual relationships with you.


Should the processing of your data take place outside of Europe or in China, Switzerland or the USA,


this transmission takes place under observance of all applicable data privacy laws and especially in


accordance with Article 44 f. of the DSGVO.


 


3.4. Transmission to a third country of international organisation


We will transmit your data into countries outside the EU or the EWR (so-called third countries)


because of the reasons mentioned above (Transmission company-wide (Nr. 3.2) and Transmission to


third parties (Nr. 3.3)). The transmission will only take place in order to carry out our contractual and


legal obligations or because of your consent. This transmission will take place under observance of all


applicable data privacy laws and especially in accordance with Article 44 f. of the DSGVO. In


particular, either because of enacted suitability decisions of the European Commission or on the basis


of certain guarantees (for example, standard data privacy clauses, etc.).


 


4. Further reporting obligations


 


4.1. Existence of automated decision-making including profiling


As a conscientious company, we forego automated decision-making and profiling.


 


5. Conclusion of the data privacy statement


 


5.1. Duration of storage (passage)


We will store your data basically as long as this is necessary to deliver our online offerings and the


services related to them or to the extent that this is provided by European legislators and regulators or


some other legislature in the form of laws or regulations which govern the party responsible for the


processing. In all other cases, we will delete your personal data after completion of its purpose, with


the exception of such data that we must continue to keep in order to comply with legal obligations


(e.g. if we are obligated on the basis of tax and commercial retention times keeping such items as


contracts and invoices for a certain period of time).


 


5.2. Technical security


Kendrion uses technical and organisational security measures in order to protect data of yours that is


managed by us against accidental or deliberate manipulations, loss, damage or access by


unauthorised persons. Our security measures will be improved continuously, pursuant to


technological developments.


This page uses for reasons of security and to protect the transmission of confidential content (for


example the queries that you send to us as page operator) SSL-encryption (Secure Socket Layer) in


connection with the highest encryption level at the time that is supported by your browser. As a rule,


this means 256-bit encryption. If your browser does not support 256-bit encryption, we will fall back on


128-bit v3 technology. You will recognise whether an individual internet web page is being transmitted


in encrypted form from the fact that the address line of the browser will switch from "http://" to “https://"


and from the lock symbol that will appear on your browser line.


If SSL encryption is activated, the data you send to us cannot be read by third parties. Please note


that the transmission of data in the internet (e.g. during communication by e-mail) can expose security


gaps. Seamless protection of data from access by third parties is impossible.


 


5.3. Legal basis of the processing


Article 6 I lit. a of the DSGVO serves our company as the legal basis for processing activities for


which we gather a consent for a particular processing purpose. If the processing of the personal data


is necessary to fulfil a contract whose contractual party is the affected party, as would be necessary,


for example, for a delivery of goods or the performance of miscellaneous services or consideration,


then the processing rests on Article 6 I lit. b of the DSGVO. The same applies for such processing


steps that are necessary for the implementation of pre-contractual measures, perhaps in cases of


questions about our products or services. If our company is subject to a legal obligation through which


a processing of personal data becomes necessary, as for example for the fulfilment of tax obligations,


then the processing is based on Article 6 I lit. c of the DSGVO. In rare cases, the processing could be


necessary to protect the vital interests of the affected party or some other natural person. This would,


for example be the case if a visitor to our facility became injured and we would have to pass on his


name, age, health insurance data or miscellaneous critical information to a doctor, hospital or other


third party. Then the processing would depend on Article 6 I lit. d DSGVO. Finally, processing could


depend on Article 6 I lit. f DSGVO. This legal basis supports processing steps that are not covered by


any of the preceding legal bases, if the processing is necessary to safeguard a justifiable interest of


our company or a third party, as long as the interests, basic rights and freedoms of the affected party


do not prevail. If the processing of personal data is based on Article 6 I lit. f DSGVO, our justified


interest is the execution of our business operations for the benefit of the welfare of all our employees


and our customers.


 


5.4. Legal or contractual requirements for the provision of personal data; Necessity for


contract conclusion; Obligation of the affected party to provide the personal data; Possible


consequences of the failure to provide it


We clarify the fact for you that the provision of personal data is partially prescribed by law (e.g.


taxation requirements) or it can ensue from contractual regulations (e.g. statements to the contractual


partner). Sometimes, it can be necessary for the conclusion of a contract that an affected party makes


personal data available to us that we have to process as a result. For example, the affected party is


obligated to provide personal data to us if our company concludes a contract with him/her. A failure to


provide personal data would have the consequence that the contract with the affected party could not


be concluded. Before providing personal data through an affected party, the affected party must turn


to one of our employees. Our employee will clarify to the affected party on a case-by-case basis


whether provision of the personal data is legally or contractually prescribed or necessary for


concluding the contract, whether an obligation exists to provide the personal data and what the


consequences would be if the personal data were not provided.


 


5.5. Underage notice


This online offering is not directed to children under 16 years of age. Persons who have not yet completed their 16th year of life may not transmit personal data to Kendrion unless agreed to by the parent or guardian of the child.


 


5.6. Rights of affected parties


You have the right to information about the data stored by us, duration of the data, purpose and legal right to store the data as well as the source and receiving party of transmissions of the data. Incorrect data are to be corrected; illegally stored or no longer needed data is to be deleted. In addition, the affected party has a right to object, a right to limit the processing and a right to data transportability.


This information will be issued upon your request. This information is free of charge.


In addition, you have the right to enter a complaint directly with a regulatory authority.


5.7. Revocation of your consent for data processing

Some data processing activities are only possible with your expressed consent. You have the possibility of revoking a previously granted consent at any time. To do so, an informal message to us at dataprotection(@)kendrion.com by e-mail is sufficient. The legitimacy of the data processing carried out up to revocation remains unaffected by the revocation.


6. Responsible entity and contact data of the external DSB


Responsible entity:


Kendrion (Aerzen) GmbH

Dr.-Ing. Gregor Langer

Dibbetweg 31

31855 Aerzen

Germany

Tel.: +49 5154 9531 31

Email: dataprotection(@)kendrion.com



External authorised data protection representative (Germany) in accordance with Article 37


Para 7 EU-DSGVO / § 38 BDSG-new:

Deutsche Datenschutzkanzlei (German data privacy chancery)

Tel.: +49 (0) 7544 904 96 91

Email: dataprotection.de(@)kendrion.com