Introduction and general information
Thank you for your interest in our website. Protecting your personal data is very important to us. Below you will find information on how we handle the data that is collected when you access our website. Your data will be processed in accordance with the legal regulations on data protection.
Controller within the meaning of the GDPR:
NIHON KOHDEN EUROPE GmbH
61191 Rosbach v.d.H., Germany
+49 6003 8270
Contact details of the data protection officer:
Proliance GmbH / www.datenschutzexperte.de
Data Protection Office
80802 Munich, Germany
When contacting the data protection officer, please name the company to which your inquiry relates. Please refrain from attaching sensitive information, such as a copy of an ID, to your request.
Access to and storage of information in the terminal equipment
By using our website, information may be accessed (e.g., IP address) or stored (e.g., cookies) in your terminal equipment. This access or storage may involve further processing of personal data within the meaning of the GDPR.
In cases where such access to information or such storage of information is absolutely necessary to provide our services free from technical errors, this is done on the basis of Section 25(1)(1) and Section 25(2)(2) of the German Federal Act on the Regulation of Data Protection and Privacy in Telecommunications and Telemedia (TTDSG).
In cases where such a process serves other purposes (e.g., the needs-based design of our website), it will only be carried out on the basis of Section 25(1) TTDSG with your consent in accordance with Article 6(1)(a) GDPR. The consent can be withdrawn at any time in the future. The requirements of the GDPR and the German Federal Data Protection Act (BDSG) apply to the processing of your personal data.
For further information on the processing of your personal data and the relevant legal bases in this context, please refer to the following sections on the specific processing activities on our website.
This website is hosted by an external service provider (Amazon Web Services AWS) in Ireland. Personal data collected on this website is stored on the hosting provider's servers. This may include, but is not limited to, IP addresses, contact requests, meta and communication data, website hits, and other data generated via a website.
We collect the listed data in order to be able to guarantee that you can smoothly connect to the website and that our services are provided free from technical errors. The processing of this data is strictly necessary to provide you with the website. The legal basis for the processing of the data is our legitimate interest in the correct presentation and functionality of our website in accordance with Article 6(1)(f) GDPR.
We have entered into a commissioned data processing contract with the provider in accordance with the requirements of Article 28 GDPR, in which we oblige the provider to protect our customers' data and not to pass it on to third parties.
Contact form and contact by email
If you send us inquiries via contact form or email, your data from the inquiry form or your email, including the personal data you provided there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. Providing an email address, name, and position, as well as your institution, city, country, and confirmation of age, is required for contact purposes; providing your first and last name and phone number is optional. Under no circumstances do we pass on this data without your consent. The legal basis for the processing of the data is our legitimate interest in responding to your request pursuant to Article 6(1)(f) GDPR and, if applicable, Article 6(1)(b) GDPR if your request is aimed at entering into a contract. Your data will be deleted after the final processing of your request, provided that there are no legal obligations to retain data. You can object to the processing of your personal data at any time in situations where Article 6(1)(f) GDPR applies.
Server log files
When you access our website, it is technically necessary for data to be transmitted to our web server via your web browser. The following data is recorded during an active connection for communication between your web browser and our web server:
- Date and time of the request
- Name of the requested file
- Page from which the file was requested
- Access status
- Web browser and operating system used
- (Full) The IP address of the requesting computer
- Amount of data transferred
We collect the listed data in order to be able to guarantee that you can smoothly connect to the website and that our services are provided free from technical errors. The processing of this data is strictly necessary to provide you with the website. The log files are used to evaluate system security and stability as well as for administrative purposes. The legal basis for the processing of the data is our legitimate interest in the protection and functionality of our website in accordance with Article 6(1)(f) GDPR.
For reasons of technical security, in particular, to ward off attempted attacks on our web server, we store this data for a short period of time. After 3 months at the latest, the data is anonymized by shortening the IP address at the domain level so that it is no longer possible to establish a reference to the individual user.
If you apply for a job at our company via the contact form or by email, we collect personal data. This includes, in particular, your contact details (such as first and last name, telephone number and email address of the user) as well as other data provided by you regarding your background (e.g. CV, qualifications, degrees and work experience) and your person (e.g. cover letter, personal interests). This may also include special categories of personal data (e.g. information on a severe disability).
Your personal data generally is collected directly from you during the application process and is encrypted during electronic transmission. The primary legal basis for this is § 26 para. 1 BDSG. In addition, consent in accordance with Art. 6 para. 1 lit. a GDPR in conjunction with § 26 para. 2 BDSG can be a legal basis. If the processing of your data is based on consent, you have the right to revoke your consent at any time with effect for the future.
Within our company, only those persons and positions (e.g. human resources) have access to your personal data which absolutely need to carry out the application procedure or to fulfil our legal obligations. Your applications will be forwarded to the responsible person for examination. Under no circumstances will your personal data be passed on to third parties without authorisation.
Your data for an application for a specific job advertisement will be stored and processed by us during the ongoing application process. Once the application process has been completed (e.g. in the form of an acceptance or rejection), the application process including all personal data will be deleted from the system no later than six months after the application process has been completed. The data of selected applicants will be stored securely for up to 2 years, provided that the applicants have given their consent in accordance with Art. 6 para. 1 lit. a GDPR in conjunction with § 26 para. 2 BDSG. You can revoke your consent at any time with effect for the future. For this purpose, an informal e-mail to the contact details of the person responsible listed above is sufficient. If you are accepted, your application documents will be transferred to the personnel file.
Cookies have various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g., the shopping cart function or language settings). Other cookies are used to evaluate user behaviour or display advertising.
The processing of data through the use of strictly necessary cookies is based on a legitimate interest in providing our services free from technical errors pursuant to Article 6(1)(f) GDPR. For details on the processing purposes and legitimate interests, please refer to the explanations on the specific data processing operations.
You can set your browser
- to inform you when cookies are set,
- to allow cookies only in individual cases,
- to exclude the acceptance of cookies in specific cases or generally,
- to enable the automatic deletion of cookies when you close the browser.
Cookie settings can be managed via the following links for the respective browsers:
You can also manage the cookies of many companies and functions used for advertising individually. To do so, use the relevant user tools, which are available at https://www.aboutads.info/choices/ or http://www.youronlinechoices.com/uk/your-ad-choices.
Most browsers also offer a "Do-Not-Track feature." When this feature is enabled, the respective browser tells ad networks, websites, and applications that you do not want to be "tracked" for behavioural advertising and the like.
For information and instructions on how to edit this feature, depending on your browser provider, see the links below:
Please note that if you disable cookies, the functionality of our website may be limited.
We use "Google reCAPTCHA" (hereinafter "reCAPTCHA") on our website. This is provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google").
The purpose of reCAPTCHA is to verify whether the data entered on our website (e.g., in a contact form) is made by a human or by an automated program. For this purpose, reCAPTCHA analyzes the behaviour of the website visitor based on various characteristics. This analysis starts automatically as soon as the website visitor accesses the website. reCAPTCHA evaluates various pieces of information for analysis, such as:
- IP address
- Length of time a website visitor spends on the website
- Mouse movements made by the user
The data collected during the analysis is forwarded to Google.
The reCAPTCHA analyses run completely in the background. Website visitors are not made aware that an analysis is taking place. Data is processed pursuant to Article 6(1)(f) GDPR. We have a legitimate interest in protecting our web offering from abusive automated surveillance and from unwanted automated mailings (spam).
Since personal data is transferred to the United States, further protection mechanisms are required to ensure the level of privacy required by the GDPR. To ensure this, we have agreed on standard privacy clauses with the provider in accordance with Article 46(2)(c) GDPR. These oblige the recipient of the data in the United State to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even by this contractual extension, we will endeavour to obtain additional regulations and commitments from the recipient in the United States.
We do not store any personal data from the use of reCAPTCHA. As a general rule, the personal data of the data subjects are deleted or blocked as soon as the purpose of the storage ceases to apply.
Social networks (LinkedIn Inc.) are only integrated on our website as a link to the relevant services. After clicking on the embedded text/image link, you will be redirected to the page of the respective provider. Only after you have been redirected is user information transmitted to the respective provider. For information on the handling of your personal data when using these websites, please refer to the respective privacy policies of the providers you use.
Data sharing and recipients
Your personal data is not transferred to third parties unless
- we have explicitly referred to this in the description of the respective data processing,
- you have given your express consent in accordance with Article 6(1)(1)(a) GDPR,
- the transfer is necessary in accordance with Article 6(1)(1)(f) GDPR for the assertion, exercise, or defence of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data,
- a legal obligation exists for the transfer pursuant to Article 6(1)(1)(b) GDPR, and
- as far as this is necessary for the processing of contractual relationships with you pursuant to Article 6(1)(1)(b) GDPR.
In addition, we use external service providers for the processing of our services, which we have carefully selected and commissioned in writing and with whom we have entered into commissioned data processing contracts in accordance with Article 28 GDPR, if necessary. They are bound by our instructions and are regularly inspected by us. Among other things, these are service providers for hosting, sending emails, and maintenance and care of our IT systems, etc. The service providers will not share this data with third parties.
We take appropriate technical and organizational measures to ensure a level of protection appropriate to the risk in accordance with Article 32 GDPR, taking into account the state of the art, the costs of implementation and the nature, scope, circumstances, and purposes of the processing, as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons. This website uses SSL encryption for security reasons and to protect the transmission of confidential content.
Duration of the storage of personal data
The duration of the storage of personal data is measured by the relevant statutory retention periods (e.g., from commercial law and tax law). After the expiry of the respective period, the corresponding data is routinely deleted. If data is required for the fulfilment or initiation of a contract or if we have a legitimate interest in continuing to store it, the data will be deleted when it is no longer required for these purposes or you have exercised your right of withdrawal or objection.
Below you will find information on which data subject rights the applicable data protection law grants you vis-à-vis the controller with regard to the processing of your personal data:
The right to request information about your personal data processed by us in accordance with Article 15 GDPR. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, or restriction of processing or objection, the existence of a right to complain, the origin of your data if it has not been collected by us, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information about its details.
The right to request the correction of inaccurate or incomplete personal data stored by us without undue delay in accordance with Article 16 GDPR.
The right to request the erasure of your personal data stored by us in accordance with Article 17 GDPR, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise, or defence of legal claims.
The right to request the restriction of the processing of your personal data in accordance with Article 18 GDPR, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure, and we no longer need the data, but you need it for the assertion, exercise, or defence of legal claims or you have objected to the processing in accordance with Article 21 GDPR.
The right, in accordance with Article 20 GDPR, to receive your personal data that you have provided to us in a structured, commonly used, and machine-readable format or to request that it be transferred to another controller.
The right to complain to a supervisory authority in accordance with Article 77 GDPR. As a rule, you can contact the supervisory authority of the German federal state of our registered office stated above or, if applicable, that of your usual place of residence or workplace.
The right to withdraw the consent given in accordance with Article 7(3) GDPR: you have the right to withdraw your consent to the processing of data at any time with effect for the future. In the event of withdrawal, we will delete the data concerned without delay, unless further processing has a legal basis for processing without consent. The withdrawal of consent shall not affect the lawfulness of the processing carried out on the basis of the consent until the withdrawal.
Right to object
If your personal data is processed by us on the basis of legitimate interests pursuant to Article 6(1)(1)(f) GDPR, you have the right to object to the processing of your personal data pursuant to Article 21 GDPR, provided you do this for reasons arising from your particular situation. Insofar as the objection is directed against the processing of personal data for the purpose of direct marketing, you have a general right to object without having to specify a particular situation.
If you wish to exercise your right to withdraw consent or object, simply send an email to email@example.com.
The provision of personal data for a decision on the signing or fulfilment of a contract or the implementation of pre-contractual measures is voluntary. However, we can only make a decision in the context of contractual measures if you provide such personal data that is required for signing or fulfilling the contract or for taking pre-contractual measures.
Automated decision making
Automated decision-making or profiling in accordance with Article 22 of GDPR does not take place.
Reservation of right to make changes