Data protection declaration
Data protection declaration
Thank you for requesting information about our website. We care about all of our visitors’ trust in us, about the security of your data and about the protection of your privacy.
This means that we will treat your personal data in accordance with the applicable statutory data protection regulations and this data protection declaration. Personal data means information that can be used to determine your identity. Typically, personal data include your surname, first name, address, telephone number, IP address, cookies and email address.
When you view and use our website or otherwise expressly transmit information to us, we process the data that is automatically transmitted to us with each request from your browser (see the “Log data” section).
If you voluntarily provide us with personal data, the data will be processed exclusively for the purpose of the enquiry or the respective order. We would like to point out that data transmission on the Internet is never completely protected against access by third parties.
In the following sections, we would like to explain to you in more detail which data we process, when and for what purpose. We will explain how our services work and how the protection of your personal data is guaranteed.
1. Name and address of the controller
The controller within the meaning of the EU General Data Protection Regulation (GDPR) is:
ACCRETECH (Europe) GmbH
Landsbergerstr. 396
81241 Munich, Germany
Email: info@accretech.eu
The contact details of our external data protection officer are:
ACCRETECH (Europe) GmbH C/O ER Secure GmbH
In der Knackenau 4
82031 Grünwald
Email: dataprotection@accretech.eu
2. Legal basis for the processing of personal data
As a provider, we may only process the personal data of website visitors if one of the following conditions applies as a legal basis:
Insofar as we obtain the consent of the data subject for the processing of personal data, Art. 6 (1) 1 a) GDPR serves as the legal basis.
Where personal data are processed which are required for the fulfilment of a contract to which the data subject is a party, Art. 6 (1) 1 b) GDPR serves as the legal basis for the processing. This also applies to processing operations that are necessary for the implementation of pre-contractual measures.
Insofar as the processing of personal data is necessary to fulfil a legal obligation to which our company is subject, Art. 6 (1) 1 c) GDPR serves as the legal basis.
If processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the former interest, Art. 6 (1) 1 f) GDPR serves as the legal basis for data processing.
3. Data erasure and storage duration
The personal data of the data subject will be deleted as soon as the purpose of storage no longer applies.
Data may also be stored if this is provided for by European or national laws or other regulations to which the controller is subject.
The data will also be blocked or deleted if a storage period prescribed by the aforementioned regulations expires, unless there is a need for further storage of the data for the conclusion or fulfilment of a contract.
4. Purposes and legal bases of the data processing
Which personal data we process for which processing purpose depends on whether and which function of our website you use. We would like to explain to you below the processing purposes we pursue, and the data processed in the process.
4.1. Accessing the website and logging
We process and store the following data in server log files to enable the website to be accessed and to ensure that the website is provided reliably and without disruption:
- Date and time of the respective enquiry
- Requested website address (URL)
- URL that the visitor visited immediately before (referrer)
- Browser and language used
- Operating system used
- IP address and host name of the visitor
- Access status / http status code
- Amount of data transferred in each case
The data is transmitted to us automatically by your internet browser.
The data will not be passed on to third parties, except to law enforcement authorities by court order.
We only save your IP address for the duration of your visit, there is no personal assessment, only statistical assessment of the website use as described below in this data protection declaration. We save other data that accrues during informational use for 14 months.
Legal basis
Processing is done with the legal basis of Art. 6 (1) 1 f) GDPR and in our interest of being able to display this website to you reliably and as error-free as possible.
4.2. Use of the contact form
If you would like to get in touch with us using the contact form made available on our website, we collect the following data from you:
- Title
- Name
- First name
- Email address
- Country
- Company
- Your message to us (optional)
- Your selection of which business sectors you are interested in (semi-conductor, precision measuring instruments/ other).
- The best way for us to contact you: by email and/or phone (optional)
- Phone
We use your email address and your telephone number, if applicable, and your information on the best way to contact you to enable use to respond to your enquiry. We will answer by email if no selection was made for the preferred form of contact.
The selection of which business sectors you are interested in is used to automatically forward your enquiry to the specific people who are responsible for this.
We use your message to us, and the indicated country if applicable, to process your inquiry and to be able to respond with specific information for your country.
We use your title and name to address you personally in our response.
We generally store the data collected through the contact form and the communication to respond to your enquiry for 90 days.
Legal basis
If your enquiry relates to an existing contractual arrangement with you or you are interested in concluding a contract, such as to purchase one of our products, data will be processed on the legal basis of Art. 6 (1) 1 b) GDPR.
Otherwise, the data will be processed on the legal basis of Art. 6 (1) 1 f) GDPR and in our interest of being able to respond to your enquiry with relevant information through our internal responsible department.
If you wish, you can also consent to receive our newsletter and to be contacted by our sales partners as part of your contact request. In this case, we also process the data collected via the contact form for these purposes in accordance with your consent. Further information on this data processing can be found below in the section Consent to receive our newsletter and to be contacted by our sales partners.
We use the marketing tool Salesforce Pardot to provide our contact form. This service is provided to us by salesforce.com Germany GmbH, Erika-Mann-Str. 31, 80636 Munich, Germany, which processes the data collected as part of the newsletter strictly in accordance with our instructions.
Salesforce.com Germany GmbH is part of an international group of companies whose parent company, Salesforce, Inc. (Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, California, 94105, USA), has its registered office in the USA.
When using our contact form, your data may be transferred to so-called third countries outside the EU or European Economic Area where an adequate level of data protection is not ensured and your rights under European data protection law may not be enforceable.
In order to ensure an adequate level of data protection when transferring your data to a third country, we have agreed standard data protection clauses with Salesforce, Inc., which have been issued by the European Commission for this purpose.
As a further guarantee to ensure an adequate level of data protection, Salesforce, Inc. has binding internal data protection rules within the meaning of Art. 47 GDPR.
You are welcome to obtain a copy of these standard data protection clauses or binding internal data protection regulations from us upon request. To do so, please use the contact details above.
Salesforce, Inc. also has a so-called EU-U.S. Data Privacy Framework certification. The EU-U.S. Data Privacy Framework is a data protection agreement meant to ensure an adequate level of data protection for data transmitted to certified US companies. The European Commission determined the adequacy of the level of data protection ensured based on the EU-U.S. Data Privacy Framework with the decision of 10/07/2023 (reference no. C(2023) 4745).
You can view the European Commission’s decision here.
The current status of the certification of Salesforce, Inc. according to the EU-U.S. Data Privacy Framework can be found at https://www.dataprivacyframework.gov/list.
Legal basis
The data processing for sending our newsletter and promotional use by our sales partners is carried out on the legal basis of Art. 6 (1) 1 a) GDPR in conjunction with the consent you have given.
4.3. Request for technical documents (e.g. guidebooks, white papers, product catalogues or measurement posters)
If you are interested in one of our technical documents, you can request it via our website. We collect the following data from you:
- Title
- First name
- Last name
- Company name, if applicable
- Address, if applicable (for postal delivery)
- Telephone number, if applicable
- Position in the company, if applicable
- Requested technical document
We use this data to send you the requested technical document or measurement poster by e-mail or post. Your data will also be used with your consent to subscribe to our newsletter and for promotional use by our sales partners, see the separate explanations in the section Consent to receive our newsletter and to be contacted by our sales partners. You can revoke this consent at any time with effect for the future.
Legal basis
The data processing required for sending the requested technical document will be done on the legal basis of Art. 6 (1) 1 b) GDPR (fulfilment of contract).
The data processing for sending our newsletter and promotional use by our sales partners is carried out on the legal basis of Art. 6 (1) 1 a) GDPR in conjunction with the consent you have given.
4.4. Consent to receive our newsletter and to be contacted by our sales partners
If you give us your consent to send you our newsletter and to be contacted by our sales partners, we will use the data we hold about you as described below. You can revoke your consent at any time with effect for the future.
Subscribing to the newsletter
If you subscribe to our newsletter, we will send you regular e-mails with information tailored to your interests in the fields of semiconductor production and industrial metrology, as well as current offers for our products in these areas.
We collect and process the following data for your subscription to our newsletter:
- Title
- First name (optional)
- Last name
- Company name
Your interests based on your use of our website, request for specialist documents such as a guide or white paper, etc.
We use the marketing tool Salesforce Pardot for the purpose of providing our newsletter service and analysing newsletter usage. This service is provided to us by salesforce.com Germany GmbH, Erika-Mann-Str. 31, 80636 Munich, Germany, which processes the data collected as part of the newsletter strictly in accordance with our instructions.
Salesforce.com Germany GmbH is part of an international group of companies whose parent company, Salesforce, Inc. (Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, California, 94105, USA), has its registered office in the USA.
When using our newsletter offer, your data may be transferred to so-called third countries outside the EU or European Economic Area where an adequate level of data protection is not ensured and your rights under European data protection law may not be enforceable.
In order to ensure an adequate level of data protection when transferring your data to a third country, we have agreed standard data protection clauses with Salesforce, Inc., which have been issued by the European Commission for this purpose.
As a further guarantee to ensure an adequate level of data protection, Salesforce, Inc. has binding internal data protection rules within the meaning of Art. 47 GDPR.
You are welcome to obtain a copy of these standard data protection clauses or binding internal data protection regulations from us upon request. To do so, please use the contact details above.
Salesforce, Inc. also has a so-called EU-U.S. Data Privacy Framework certification. The EU-U.S. Data Privacy Framework is a data protection agreement meant to ensure an adequate level of data protection for data transmitted to certified US companies. The European Commission determined the adequacy of the level of data protection ensured based on the EU-U.S. Data Privacy Framework with the decision of 10/07/2023 (reference no. C(2023) 4745).
You can view the European Commission’s decision here.
The current status of the certification of Salesforce, Inc. according to the EU-U.S. Data Privacy Framework can be found at https://www.dataprivacyframework.gov/list.
We store and use the data collected when you subscribe to the newsletter until you unsubscribe. If the e-mail address you have provided is not available for a longer period of time, we will delete your data even without your explicit request to unsubscribe.
Legal basis
The processing is carried out on the legal basis of Art. 6 (1) a) GDPR in connection with your consent to receive the newsletter. You can revoke this consent at any time with effect for the future.
Subscription confirmation and verification of your email address
Before sending the newsletter, you must expressly confirm to us as part of the so-called double opt-in procedure that we should activate the email newsletter service for you. We do this to prevent third-party email addresses from being used for registrations. You will receive a confirmation and authorisation email from us asking you to click on the link contained in this email to confirm that you wish to receive our newsletter. If you do not confirm, your personal data will be deleted.
In connection with the registration, in addition to the email address, the time of registration, the time of confirmation, the IP address and the consent text are stored and we use the email address exclusively for the delivery of the newsletter, unless you have expressly consented to other use.
Analysis of newsletter usage
When you open our newsletter, we automatically collect data about your use of the newsletter, e.g. opening and reading the emails or clicking on a link in the email. We use this data for the statistical evaluation of our newsletter offer and to adapt the newsletter content to suit your needs.
Legal basis
This processing is done with the legal basis of Art. 6 (1) 1 f) GDPR (weighing of interests) and in our interest of being able to analyse the use of our newsletter and to improve our products and services.
Unsubscribing from the newsletter
If you no longer wish to receive email newsletters from us, you can unsubscribe from our newsletter at any time by either clicking on the unsubscribe link included at the bottom of each newsletter email or by sending an email to info@accretech.de.
Contact through our sales partners
With your consent, you allow us to transfer your data to the sales partner responsible for your country so that they can contact you by post, e-mail or telephone to promote our products.
Our sales partners use the data collected in connection with requests for specialist documents or subscriptions to our newsletter in order to provide you with advice that is as tailored as possible to your needs and to inform you about the products from our range that are relevant to you. Our sales partners use your data exclusively to promote our products and do not pass the data on to other companies.
Legal basis
The processing is carried out on the legal basis of Art. 6 (1) a) GDPR in connection with your consent to be contacted by our sales partners.
4.5. Ordering fair ticket vouchers
If you would like to order a voucher for a fair ticket through our website, we will collect and process the following data from you:
- Title
- Name
- Fair
- Companies
- Email address
- Topics you are interested in (optional)
- planned booking date
We will use your contact information to issue you a voucher for visiting the fair you’d like on your preferred date.
If you provide topics that interest you, we will use this information to arrange a date at the fair for you based on your interests. Data processing is done with the legal basis of Art. 6 (1) 1 f) GDPR and in our interest of being able to arrange a custom date for you at the fair.
We will store the data collected through the fair ticket order form and communication for sending the tickets for 90 days.
Legal basis
The data processing required for this will be done on the legal basis of Art. 6 (1) 1 b) GDPR. We unfortunately are not able to issue vouchers to you without your information.
4.6. Participation in webinars
We offer webinars on specialist topics via our website, for which you can register by providing the following data.
For this purpose, we collect and process the following data from you:
- Title
- First name and surname
- Company
- Phone
- Email address
- Country
- booked webinar
We use your contact details for the organisation and implementation of the webinar, in particular to process your registration and to send you the access data to the desired webinar. Your data will also be used with your consent to subscribe to our newsletter and for promotional use by our sales partners, see the separate explanations in the section Consent to receive our newsletter and to be contacted by our sales partners. You can revoke this consent at any time with effect for the future.
Our technical service provider for conducting the webinars is GoTo Technologies Ireland Unlimited Company, 77 Sir John Rogerson’s Quay, Block C, Suite 207, Grand Canal Docklands, Dublin 2, D0 VK60, Ireland.
GoTo Technologies Ireland Unlimited Company uses other service providers to provide its services, some of which are based outside the European Economic Area, where an adequate level of data protection is not guaranteed and your rights under European data protection law may not be enforceable.
In order to ensure an adequate level of data protection when transferring your data to a third country, we have agreed standard data protection clauses with GoTo Group companies in the USA and the United Kingdom, which have been issued by the European Commission for this purpose. You can obtain a copy of this agreement from us on request. To do so, please use the contact details above.
The GoTo Group companies based in the USA also have EU-U.S. Data Privacy Framework certification. The EU-U.S. Data Privacy Framework is a data protection agreement meant to ensure an adequate level of data protection for data transmitted to certified US companies. The European Commission determined the adequacy of the level of data protection ensured based on the EU-U.S. Data Privacy Framework with the decision of 10/07/2023 (reference no. C(2023) 4745).
You can view the European Commission’s decision here.
The current status of the certification of companies belonging to the GoTo Group according to the EU-U.S. Data Privacy Framework can be found at https://www.dataprivacyframework.gov/list.
Legal basis
The data processing required for participation in a webinar will be done on the legal basis of Art. 6 (1) 1 b) GDPR (fulfilment of contract).
The data processing for sending our newsletter and promotional use by our sales partners is carried out on the legal basis of Art. 6 (1) 1 a) GDPR in conjunction with the consent you have given.
4.7. Applications
As part of our online offer, we also offer jobs in our company.
For this purpose, we process the following categories of personal data during the application process. We collect the data as part of the application process either by you providing it to us (e.g. by sending us your CV by email) or by us collecting it ourselves.
- First name
- Last name
- Email address
- Phone
- Year of birth
- Vocational training
- Desired employment
- other information and documents required for the application process (e.g. CV, certificates, cover letter)
We use the data to process your application for the position you have selected and to be able to contact you for this purpose.
We require the mandatory data from you as part of the application process in order to be able to carry out the application procedure. Unfortunately, we cannot consider your application without these data.
We transmit your application data to those persons who are involved in processing your application. Internally, these are the HR department and the specialist department for which a position has been advertised, as well as any external service providers who support us in the selection of suitable employees (e.g. personnel consultants/recruiters) as well as attorneys, if necessary. In addition, your applicant data will be transmitted to technical service providers who support us (e.g. website hosting and support).
Any further processing will only take place if you have expressly consented to this or if legal authorisation exists.
We will delete your application data in accordance with the statutory provisions if we no longer need it to process your application. If the position has been filled elsewhere, this generally means that we will delete your application data no later than 6 months after completion of the application process.
If your application is successful, we will retain your data collected in connection with the application process for as long as statutory retention obligations exist or as long as any legal claims are not yet time-barred.
Legal basis
The data processing is carried out for the purpose of deciding on the establishment of an employment relationship and on the legal basis of Art. 6 (1) 1 b) GDPR.
The data storage duration is based on Section 61b (1) ArbGG in conjunction with Section 15 (4) AGG.
4.8. Google reCAPTCHA
We use the Google reCAPTCHA service to protect against unwanted bots. The Google reCAPTCHA service is provided to us by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland).
reCAPTCHA is a service that runs in the background, which helps us to exclude machines from using our contact form when you confirm it. The service is only used if you have given your prior consent.
You cannot use our contact form without consenting to the activation of Google reCAPTCHA.
If you do not wish to do this, you have the option of sending us an email.
Google Ireland Limited is part of an international group of companies whose parent company, Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA), is based in the USA.
When Google ReCAPTCHA is used, it is therefore possible that your data may be transferred to so-called third countries outside the EU or European Economic Area where an adequate level of data protection is not ensured and your rights under European data protection law may not be enforceable.
In order to ensure an adequate level of data protection when transferring your data to a third country, Google Ireland Limited has made a commitment to us to conclude standard data protection clauses with recipients in third EU countries, which have been issued by the European Commission for this purpose.
You can obtain a copy of these standard data protection clauses from us on request. To do so, please use the contact details above.
Google LLC also has a so-called EU-U.S. Data Privacy Framework certification. The EU-U.S. Data Privacy Framework is a data protection agreement meant to ensure an adequate level of data protection for data transmitted to certified US companies. The European Commission determined the adequacy of the level of data protection ensured based on the EU-U.S. Data Privacy Framework with the decision of 10/07/2023 (reference no. C(2023) 4745).
You can view the European Commission’s decision here.
The current status of the certification of Google LLC according to the EU-U.S. Data Privacy Framework can be found at https://www.dataprivacyframework.gov/list.
Legal basis
The legal basis for this data processing is your consent pursuant to Art. 6 (1) 1 a) GDPR.
4.9. Google Analytics
This website uses Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google Analytics also uses cookies, or small text files that are stored on your computer and allow your use of the website to be analysed.
IP anonymisation has been activated on our website so that your IP address is technically truncated in such a way that it cannot be attributed. This takes place as soon as the data is received by Google Analytics and before it is stored or processed.
Google uses this information on our behalf to evaluate your use of the website, compile reports about website activity, and provide other services related to website and internet use for us as the operators of the site. The IP address transmitted from your browser through Google Analytics will not be conflated with other data collected by Google.
Your usage behaviour will only be recorded and transmitted to Google if you have previously consented to the data processing and use of cookies for the purpose of analysing website usage.
You can revoke your consent at any time and prevent Google Analytics from collecting data in the future by clicking on the link after this paragraph and disabling data processing and the use of cookies for the purpose of analysing website usage.
Alternatively, you may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website.
You can also prevent the data generated by the cookie from being collected and the data related to your use of the website (including your IP address) from being transmitted to and processed by Google by downloading and installing the browser plug-in under the following link: https://tools.google.com/dlpage/gaoptout?hl=en.
Google Ireland Limited in turn uses the parent company Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA), which is based in the USA, to provide the Google Analytics service.
When using Google Analytics, your personal data may therefore be transferred to Google companies in countries outside the European Economic Area where an adequate level of data protection is not guaranteed and your rights under European data protection law may not be enforceable.
In order to ensure an adequate level of data protection when transferring data to a third country, Google Ireland Limited has made a commitment to us to conclude standard data protection clauses with recipients in third countries, which have been issued by the European Commission for this purpose. You can obtain a copy of these standard data protection clauses from us on request.
Google LLC also has a so-called EU-U.S. Data Privacy Framework certification. The EU-U.S. Data Privacy Framework is a data protection agreement meant to ensure an adequate level of data protection for data transmitted to certified US companies. The European Commission determined the adequacy of the level of data protection ensured based on the EU-U.S. Data Privacy Framework with the decision of 10/07/2023 (reference no. C(2023) 4745).
You can view the European Commission’s decision here.
The current status of the certification of Google LLC according to the EU-U.S. Data Privacy Framework can be found at https://www.dataprivacyframework.gov/list.
The processing of your data is carried out on the legal basis of Art. 6 (1 a) GDPR in connection with your consent to the processing of your data for the purpose of analysing the use of our website.
In connection with the use of Google Analytics, we use the Google Tag Manager service on our website.
We use the Google Tag Manager service to manage “tags” that we have integrated on our website. Tags are small pieces of code that can be used to measure traffic and visitor behaviour, track the impact of online advertising and social channels, use remarketing and targeting, and test and optimise websites. When using tags, no data is stored on your end device.
We use these tags in the context of website analysis with Google Analytics, to be able to analyse and optimise your use of our website even more precisely.
You can find Google’s privacy policy at: https://www.google.com/policies/privacy/partners/?hl=en
The data that accrues through Google Analytics will be deleted after 14 months.
Legal basis
The legal basis for this data processing is your consent pursuant to Art. 6 (1) 1 a) GDPR.
4.10. Google Ads Remarketing
We use the Google Ads service to show visitors to our websites targeted ads relevant to their interests (“remarketing”) via the Google advertising network (e.g. in Google Search, on YouTube or other websites) and to optimise our marketing measures with the help of statistical evaluations.
The Google Ads service is provided to us by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).
If you have given your consent to the use of Google Ads, Google will receive information about how you use our website and which pages you view for this purpose.
Google Ads also uses cookies, small text files that are stored on your computer and allow your use of the website to be analysed and personalised advertising to be displayed within the Google advertising network.
Your usage behaviour will only be recorded and transmitted to Google if you have previously consented to the data processing and use of cookies for marketing purpose.
You can revoke your consent at any time and prevent any further transmission of your data to Google for marketing purposes in the future by disabling the use of cookies for marketing purposes in your data protection preferences.
If you have a Google account, you can configure the settings for personalised advertising under the following link: https://www.google.com/settings/ads/.
Information on data processing by Google and the cookies used by Google through the use of Google Ads on our website can be found here:
https://policies.google.com/technologies/partner-sites
You can view Google’s privacy policy here:
https://policies.google.com/privacy
Google Ireland Limited in turn uses the parent company Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA), which is based in the USA, to provide the Google Ads service.
When using Google Ads, your personal data may therefore be transferred to Google companies in countries outside the European Economic Area where an adequate level of data protection is not guaranteed and your rights under European data protection law may not be enforceable.
In order to ensure an adequate level of data protection when transferring data to a third country, Google Ireland Limited has made a commitment to us to conclude standard data protection clauses with recipients in third countries, which have been issued by the European Commission for this purpose. You can obtain a copy of these standard data protection clauses from us on request.
Google LLC also has a so-called EU-U.S. Data Privacy Framework certification. The EU-U.S. Data Privacy Framework is a data protection agreement meant to ensure an adequate level of data protection for data transmitted to certified US companies. The European Commission determined the adequacy of the level of data protection ensured based on the EU-U.S. Data Privacy Framework with the decision of 10/07/2023 (reference no. C(2023) 4745).
You can view the European Commission’s decision here.
The current status of the certification of Google LLC according to the EU-U.S. Data Privacy Framework can be found at https://www.dataprivacyframework.gov/list.
In connection with the use of Google Ads, we use the Google Tag Manager service on our website.
We use the Google Tag Manager service to manage “tags” that we have integrated on our website. Tags are small pieces of code that can be used to measure traffic and visitor behaviour, track the impact of online advertising and social channels, use remarketing and targeting, and test and optimise websites. When using tags, no data is stored on your end device.
We use these tags in the context of remarketing with Google Ads in order to be able to use and optimise our marketing measures in a more targeted manner.
Legal basis
The legal basis for this data processing is your consent pursuant to Art. 6 (1) 1 a) GDPR.
4.11. YouTube
We use videos and plug-ins from YouTube on our website. According to the YouTube Terms of Use (as of (EU): 05/01/2022; (US): 15/12/2023), the YouTube service is provided in the area of the European Economic Area and Switzerland by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland). In other countries, the YouTube service is provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). For its part, Google Ireland Limited uses the US-based parent company Google LLC to provide YouTube services.
When using YouTube Videos, your personal data may therefore be transferred to Google companies in countries outside the European Economic Area where an adequate level of data protection is not guaranteed and your rights under European data protection law may not be enforceable.
In order to ensure an adequate level of data protection when transferring data to a third country, Google Ireland Limited has made a commitment to us to conclude standard data protection clauses with recipients in third countries, which have been issued by the European Commission for this purpose. You can obtain a copy of these standard data protection clauses from us on request.
Google LLC also has a so-called EU-U.S. Data Privacy Framework certification. The EU-U.S. Data Privacy Framework is a data protection agreement meant to ensure an adequate level of data protection for data transmitted to certified US companies. The European Commission determined the adequacy of the level of data protection ensured based on the EU-U.S. Data Privacy Framework with the decision of 10/07/2023 (reference no. C(2023) 4745).
You can view the European Commission’s decision here.
The current status of the certification of Google LLC according to the EU-U.S. Data Privacy Framework can be found at https://www.dataprivacyframework.gov/list.
We use the so-called “extended data protection mode” of YouTube for the integration of YouTube videos on our website. This means that when you visit our website, only the technically required data are transmitted to the service provider responsible for your area (YouTube LLC or Google Ireland Limited), which your browser must send in order to retrieve the video from YouTube (video retrieved, date and time, IP address, browser type and settings, operating system).
However, this data transfer to YouTube only takes place if you have previously given your consent to this. You can revoke your consent at any time and prevent data transmission to YouTube by changing your data protection preferences for the integration of external media on our site.
Other data will only be transmitted to the service provider responsible for your area if you click on the video. At the same time, YouTube also regularly stores data on your end device using cookies and similar technologies. If you have a YouTube or Google account, additional data about your video access may be linked directly to your account depending on your account settings.
You can get more information on the purpose and scope of Google data collection and processing in the data protection declaration of Google: https://www.google.com/intl/de_de/policies/privacy/. You can also get additional information on your rights and settings options for this matter to protect your privacy here.
Legal basis
The legal basis for this data processing is your consent pursuant to Art. 6 (1) 1 a) GDPR.
4.12. LinkedIn Insight Tag
We use the Insight Tag of the LinkedIn network to provide our customers with a generally better, more customised offer. This service is provided to us by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland (“LinkedIn”).
The LinkedIn Insight tag enables the collection of data about visits to our website, including URL, referrer URL, IP address, device and browser characteristics (user agent) and timestamp. The IP addresses are shortened or (if they are used to reach members across devices) hashed. The members’ direct identifiers are removed within seven days in order to pseudonymise the data. This remaining pseudonymised data are then deleted within 180 days.
LinkedIn does not share any personal data with us, but only provides reports (in which you are not identified) about the website audience and ad performance. LinkedIn also offers retargeting for website visitors so that we can use these data to display targeted advertising outside our website without identifying a member. LinkedIn also uses data that does not identify you to improve the relevance of adverts and reach members across devices. LinkedIn members can control the use of their personal data for advertising purposes in their account settings.
However, this data transfer to LinkedIn only takes place if you have previously given your consent to this. You can revoke your consent at any time and prevent data transmission to LinkedIn by changing your data protection preferences for the use of LinkedIn Insight Tags for marketing purposes on our site.
LinkedIn Ireland Unlimited Company is part of an international group of companies whose parent company, LinkedIn Corporation (1000 West Maude Avenue, Sunnyvale, CA 94085, USA), is headquartered in the USA.
When LinkedIn Insight Tags is used, it is therefore possible that your data may be transferred to so-called third countries outside the EU or European Economic Area where an adequate level of data protection is not ensured and your rights under European data protection law may not be enforceable.
In order to ensure an adequate level of data protection when transferring your data to a third country, LinkedIn Ireland Unlimited Company has made a commitment to us to conclude standard data protection clauses with recipients in third EU countries, which have been issued by the European Commission for this purpose.
You can obtain a copy of these standard data protection clauses from us on request. To do so, please use the contact details above.
The LinkedIn Corporation also has a so-called EU-U.S. Data Privacy Framework certification. The EU-U.S. Data Privacy Framework is a data protection agreement meant to ensure an adequate level of data protection for data transmitted to certified US companies. The European Commission determined the adequacy of the level of data protection ensured based on the EU-U.S. Data Privacy Framework with the decision of 10/07/2023 (reference no. C(2023) 4745).
You can view the European Commission’s decision here.
The current status of the certification of the LinkedIn Corporation according to the EU-U.S. Data Privacy Framework can be found at https://www.dataprivacyframework.gov/list.
Legal basis
The legal basis for this data processing is your consent pursuant to Art. 6 (1) 1 a) GDPR.
4.13. Use of the Pardot marketing service
We use the marketing service Pardot on our website. This service is provided to us by salesforce.com Germany GmbH, Erika-Mann-Str. 31, 80636 Munich, Germany (“Salesforce”).
Pardot is used by us to manage our business contacts and to determine which of our company’s services are of interest to you. We use this service to record and analyse the use of our website by our customers and interested parties in order to optimise and target our offers and marketing measures.
In the case of an existing or future customer relationship, we also link the usage data of our website, and our newsletter collected with Pardot to your customer profile and use the data thus combined for the purposes listed above.
Pardot uses cookies, i.e. text files that are stored on your terminal device. The information generated by the cookies is transmitted to a salesforce.com server in the USA and stored there. On our behalf, salesforce.com will use this information to evaluate your use of the website and to optimise our services and offers for you.
Tracking by Salesforce and the setting of Pardot cookies only takes place if you have consented to the use of Pardot. You can revoke your consent at any time and prevent data transmission via Pardot by changing your data protection preferences for the use of Pardot for marketing purposes on our site.
You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website.
You can find the salesforce.com privacy policy here: https://www.salesforce.com/de/company/privacy/.
Salesforce.com Germany GmbH is part of an international group of companies whose parent company, Salesforce, Inc. (Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, California, 94105, USA), has its registered office in the USA.
When using our newsletter offer, your data may be transferred to so-called third countries outside the EU or European Economic Area where an adequate level of data protection is not ensured and your rights under European data protection law may not be enforceable.
In order to ensure an adequate level of data protection when transferring your data to a third country, salesforce.com Germany GmbH has made a commitment to us to conclude standard data protection clauses with recipients in third EU countries, which have been issued by the European Commission for this purpose.
As a further guarantee to ensure an adequate level of data protection, Salesforce, Inc. has binding internal data protection rules within the meaning of Art. 47 GDPR.
You are welcome to obtain a copy of these standard data protection clauses or binding internal data protection regulations from us upon request. To do so, please use the contact details above.
Salesforce, Inc. also has a so-called EU-U.S. Data Privacy Framework certification. The EU-U.S. Data Privacy Framework is a data protection agreement meant to ensure an adequate level of data protection for data transmitted to certified US companies. The European Commission determined the adequacy of the level of data protection ensured based on the EU-U.S. Data Privacy Framework with the decision of 10/07/2023 (reference no. C(2023) 4745).
You can view the European Commission’s decision here.
The current status of the certification of Salesforce, Inc. according to the EU-U.S. Data Privacy Framework can be found at https://www.dataprivacyframework.gov/list.
We store the data you provide as part of Pardot for 2 years.
Legal basis
The legal basis for this data processing is your consent pursuant to Art. 6 (1) 1 a) GDPR.
5. Cookies
We use so-called cookies to make visiting our website attractive and to enable the use of certain functions. These are small text files that are stored on your end device and store certain information for exchange with our system.
Cookie settings (borlabs)
Consent history (borlabs)
Your consent history:
In the event of any queries, please contact us quoting the following UID.
UID:
Cookie list (borlabs)
We use the following cookies:
Disabling cookies
Please note that certain cookies are already set as soon as you enter our website.
You can set your browser so that you are informed about the setting of cookies and can decide individually whether to accept them or to exclude the acceptance of cookies for certain cases, in particular cookies from third-party providers (third-party cookies) or in general.
If you do not accept cookies, the functionality of our website may be restricted for you.
6. Activation by service providers and data transfer to third parties
Your data will be transferred to our technical support service providers and sales partners for provision of this website and for the purposes named above (for example website hosting services and website support). We have carefully chosen these providers ourselves and have instructed them in writing.
They are bound by our instructions, and we check them regularly.
Your data is only transferred to other third parties if this is specifically indicated in the data protection declaration or if we are legally required to do this.
7. Encryption through SSL / TLS
For security reasons, our website uses SSL or TLS encryption. This protects transmitted data and prevents them from being read by third parties. You can recognise successful encryption by the fact that the protocol name in the browser status bar changes from “http://” to “https://” and that a closed lock symbol is displayed there.
8. Additional information about our LinkedIn company profile
Joint controllers for the processing
We operate the LinkedIn company profile of ACCRETECH (Europe) GmbH on the social media platform linkedin.com, which is provided to us by the service provider LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (hereinafter referred to as “LinkedIn”).
When you visit or interact with our LinkedIn company profile, LinkedIn processes personal data from your profile, such as function, country, industry, length of service, company size and employment status data. In addition, LinkedIn processes information about how you have interacted with our company profile, e.g. whether you follow it.
LinkedIn provides us with statistics on the use of our company profile on the basis of these data (so-called page insights). These statistics do not contain any personal data of visitors to our LinkedIn company profile, but only aggregated data. It is therefore not possible for us to assign information from the statistics to individual persons.
Together with LinkedIn, we are jointly responsible for the data processing for the creation of these statistics within the meaning of the data protection laws. We have therefore concluded an agreement with LinkedIn in accordance with Art. 26 (1) GDPR, in which we set out who fulfils which data protection obligations. You can view this agreement under the following link: https://legal.linkedin.com/pages-joint-controller-addendum
We have generally set out the following obligations in this agreement:
- LinkedIn has undertaken to assume responsibility for the provision of page insights under the General Data Protection Regulation (GDPR) and to comply with all applicable obligations under the GDPR with regard to the data processing of page insights. This includes, among other things, that LinkedIn will inform you as the data subject about the processing of your data and provide you with options for exercising your rights. In addition, LinkedIn guarantees the security of your personal data.
- We are committed to complying with applicable legal obligations, including any obligations arising from our use of page insights under the GDPR.
LinkedIn’s information on the processing of your data and your rights in this regard can be found in LinkedIn’s privacy policy:
https://www.linkedin.com/legal/privacy-policy
The information contained in this section of our data protection declaration therefore only applies in addition to the information provided by LinkedIn.
Contact details of the controller and the data protection officer
The contact details of ACCRETECH (Europe) GmbH and our data protection officer can be found in section 1 of this data protection declaration.
Processed data categories
You can react to our posts, write comments or send us messages via our company profile on LinkedIn.
We process the following categories of data from visitors to our LinkedIn company profile, depending on whether you are a registered user of the LinkedIn platform or a non-registered visitor.
Data that we process from registered visitors to our LinkedIn company profile:
- User ID (user name) under which you have registered
- Approved profile data (e.g. name details, photo, profession, address, contact details, activities, professional experience, interests and any other profile information)
- Data generated when sharing content, exchanging messages and communicating
- Data required in the context of initiating a contract in response to your enquiry or for contract processing
In addition, we process pseudonymised data from registered visitors such as
statistics and insights into how our LinkedIn company profile, the posts, pages, videos and other content provided through it are interacted with (page activity, page views, “likes”, reach, general demographic, location, interest and activity-related information). These pseudonymised data are made available to us by LinkedIn in the form of statistics and cannot generally be merged by us with the corresponding personal data (assignment features such as name details).
Data that we process from non-registered visitors to our LinkedIn company profile:
pseudonymised data such as statistics and insights into how our LinkedIn company profile, the posts, pages, videos and other content provided through it are interacted with (page activity, page views, “likes”, reach, general demographic, location, interest and activity-related information). These pseudonymised data cannot be merged by us with the corresponding personal data (assignment features such as name details). This means that it is not possible for us to identify individual visitors. These remain anonymous to us.
Origin of the data
We collect the data directly from you as the data subject or receive them from LinkedIn as the platform provider.
Purposes of the data processing
We process the data for external presentation and to keep the information on our LinkedIn company profile attractive and relevant for our customers and interested parties. In addition, we process the data for communication with you and, if necessary, for contract initiation or contract processing.
Legal bases
Data processing for the purpose of external presentation as well as for attractive and relevant design for our customers and interested parties is carried out on the legal basis of Art. 6 (1) 1 f) GDPR (legitimate interests) and in our interest in providing a platform with up-to-date information, improving our offer and our website and the presentation of our company.
Data processing for communication with you via our LinkedIn company profile is carried out on the legal basis of Art. 6 (1) 1 b) GDPR (contract initiation and execution), insofar as the content relates to an existing contractual relationship or you are interested in concluding a contract. Otherwise, data processing is carried out on the legal basis of Art. 6 (1) 1 f) GDPR (legitimate interests) and in our interest in effective communication with users in the event of questions and other concerns.
Storage duration
The above-mentioned data are stored exclusively by the platform provider LinkedIn; we do not store them additionally. Data storage and deletion are therefore based on LinkedIn’s specifications. You can find more information on this in LinkedIn’s privacy policy:
https://www.linkedin.com/legal/privacy-policy
Recipient categories
The data processed by us can only be accessed by our employees in the responsible departments and, if applicable, by service providers commissioned by us for the above-mentioned purposes. If you post your data publicly on our LinkedIn company profile, these can be viewed by other registered and possibly also non-registered visitors worldwide at any time.
9. Your rights
You have the right to request confirmation from us about whether your personal data is being processed; if this is the case, you have the right to information about this personal data and the information listed in Art. 15 GDPR.
You have the right to request immediate correction of your inaccurate personal data and the completion of incomplete personal data if necessary (Art. 16 GDPR).
You have the right to request that your personal data be deleted immediately, insofar as any of the reasons listed in Art. 17 GDPR applies, e.g. if data is no longer needed for the purposes for which it was provided (right to erasure).
You have the right to request restriction of processing if one of the requirements listed in Art. 18 GDPR applies, e.g. if you have filed an objection against processing pending our verification.
You have the right to object to the processing of your personal data pursuant to Art. 6 (1) 1 e) or f) GDPR or for the purposes of direct advertising, at any time for reasons related to your particular situation (Art. 21 GDPR); see below for more details.
You have the right to revoke your previously granted consent at any time with effect for the future (right to revoke).
You have the right to obtain from us the data you have shared with us in an organised, established and machine-readable format. You can also transmit this data to other places or have us transmit it (right to data portability).
Please contact us via e-mail to exercise your rights: dataprotection@accretech.eu
You have the right to complain to a supervisory authority, regardless of other administrative or judicial remedy, if you feel that the processing of your personal data violates the GDPR (Art. 77 GDPR). The supervisory authority responsible in Bavaria is: Bayerisches Landesamt für Datenschutzaufsicht, P.O. Box 606, 91511 Ansbach, www.lda.bayern.de.
Note on the right to revoke:
You have the right to object to the processing of your personal data pursuant to Art. 6 (1) 1 e) or f) GDPR or for the purposes of direct advertising, at any time for reasons related to your particular situation (Art. 21 GDPR).
We will then cease processing of personal data unless we can demonstrate compelling legitimate grounds for doing so that outweigh your interests, rights and freedoms, or processing serves to enforce, assert or defend legal claims. Data will not be processed for the purposes of direct advertising under any circumstances.
June 2024
ACCRETECH (Europe) GmbH