Privacy Policy

To provide the functions and services of our websites, it is necessary that we collect some personal data about you. If you are wondering who we are, what personal data we collect about you, why we collect it, and what we do with it, this privacy policy explains it all. Please take a moment to familiarise yourself with this Privacy policy.

In case you interact with us, in your capacity as a consumer, supplier, business partner, candidate, visitor or another person with a business relationship with us or is interested in it, you can find our special Business Partner Privacy Policy by clicking LINK below.

  • Business Partner Privacy Policy

Introduction and general information

Thank you for your interest in our website. Protecting your personal data is very important to us. Below you will find information on how we handle the data that is collected when you access our website. Your data will be processed in accordance with the legal regulations on data protection.

Controller within the meaning of the GDPR:
NIHON KOHDEN EUROPE GmbH
Raiffeisenstrasse 10
61191 Rosbach v.d.H., Germany
+49 6003 8270
info@nke.de

Contact details of the data protection officer:
Proliance GmbH / www.datenschutzexperte.de
Data Protection Office
Leopoldstrasse 21
80802 Munich, Germany
datenschutzbeauftragter@datenschutzexperte.de

When contacting the data protection officer, please name the company to which your inquiry relates. Please refrain from attaching sensitive information, such as a copy of an ID, to your request.

Definitions
Our Privacy Policy should be easy to understand for everyone. This Privacy Policy generally uses the official terms of the General Data Protection Regulation (GDPR). The official definitions are explained in Article 4 GDPR.

Access to and storage of information in the terminal equipment
By using our website, information may be accessed (e.g., IP address) or stored (e.g., cookies) in your terminal equipment. This access or storage may involve further processing of personal data within the meaning of the GDPR.

In cases where such access to information or such storage of information is absolutely necessary to provide our services free from technical errors, this is done on the basis of Section 25(1)(1) and Section 25(2)(2) of the German Federal Act on the Regulation of Data Protection and Privacy in Telecommunications and Telemedia (TTDSG).

In cases where such a process serves other purposes (e.g., the needs-based design of our website), it will only be carried out on the basis of Section 25(1) TTDSG with your consent in accordance with Article 6(1)(a) GDPR. The consent can be withdrawn at any time in the future. The requirements of the GDPR and the German Federal Data Protection Act (BDSG) apply to the processing of your personal data.

For further information on the processing of your personal data and the relevant legal bases in this context, please refer to the following sections on the specific processing activities on our website.

Web hosting
This website is hosted externally. The personal data collected on this website is stored on the servers of the hoster. This may include, but is not limited to, IP addresses, contact requests, meta and communication data, contract data, contact details, names, website accesses and other data generated by a website 
External hosting is carried out for the purpose of fulfilling the contract with our potential and existing customers (Art. 6 (1) (b) GDPR) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 (1) (f )GDPR). If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 (1) (a) GDPR and § 25 (1) TDDDG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time. Our hoster will only process your data to the extent necessary to fulfill its performance obligations and will follow our instructions with regard to this data. 
We use the following host: Marc Pfeiffer Georg-Voigt-Straße 15 60325 Frankfurt am Main.

Contact form and contact by email
If you send us inquiries via contact form or email, your data from the inquiry form or your email, including the personal data you provided there, will be stored by us for the purpose of processing the inquiry and in case of follow-up questions. Providing an email address, name, and position, as well as your institution, city, country, and confirmation of age, is required for contact purposes; providing your first and last name and phone number is optional. Under no circumstances do we pass on this data without your consent. The legal basis for the processing of the data is our legitimate interest in responding to your request pursuant to Article 6(1)(f) GDPR and, if applicable, Article 6(1)(b) GDPR if your request is aimed at entering into a contract. Your data will be deleted after the final processing of your request, provided that there are no legal obligations to retain data. You can object to the processing of your personal data at any time in situations where Article 6(1)(f) GDPR applies.

Server log files
When you access our website, it is technically necessary for data to be transmitted to our web server via your web browser. The following data is recorded during an active connection for communication between your web browser and our web server:

  • Date and time of the request
  • Name of the requested file
  • Page from which the file was requested
  • Access status
  • Web browser and operating system used
  • (Full) The IP address of the requesting computer
  • Amount of data transferred

We collect the listed data in order to be able to guarantee that you can smoothly connect to the website and that our services are provided free from technical errors. The processing of this data is strictly necessary to provide you with the website. The log files are used to evaluate system security and stability as well as for administrative purposes. The legal basis for the processing of the data is our legitimate interest in the protection and functionality of our website in accordance with Article 6(1)(f) GDPR.

For reasons of technical security, in particular, to ward off attempted attacks on our web server, we store this data for a short period of time. After 3 months at the latest, the data is anonymized by shortening the IP address at the domain level so that it is no longer possible to establish a reference to the individual user.

Job applications
If you apply for a job at our company via the contact form or by email, we collect personal data. This includes, in particular, your contact details (such as first and last name, telephone number and email address of the user) as well as other data provided by you regarding your background (e.g. CV, qualifications, degrees and work experience) and your person (e.g. cover letter, personal interests). This may also include special categories of personal data (e.g. information on a severe disability).

Your personal data generally is collected directly from you during the application process and is encrypted during electronic transmission. The primary legal basis for this is § 26 para. 1 BDSG. In addition, consent in accordance with Art. 6 para. 1 lit. a GDPR in conjunction with § 26 para. 2 BDSG can be a legal basis. If the processing of your data is based on consent, you have the right to revoke your consent at any time with effect for the future.

Within our company, only those persons and positions (e.g. human resources) have access to your personal data which absolutely need to carry out the application procedure or to fulfil our legal obligations. Your applications will be forwarded to the responsible person for examination. Under no circumstances will your personal data be passed on to third parties without authorisation.

Your data for an application for a specific job advertisement will be stored and processed by us during the ongoing application process. Once the application process has been completed (e.g. in the form of an acceptance or rejection), the application process including all personal data will be deleted from the system no later than six months after the application process has been completed. The data of selected applicants will be stored securely for up to 2 years, provided that the applicants have given their consent in accordance with Art. 6 para. 1 lit. a GDPR in conjunction with § 26 para. 2 BDSG. You can revoke your consent at any time with effect for the future. For this purpose, an informal e-mail to the contact details of the person responsible listed above is sufficient. If you are accepted, your application documents will be transferred to the personnel file.

Cookies
Our website uses cookies. Cookies are small text files that are stored either temporarily for the duration of a session (session cookies) or permanently (permanent cookies) on your device. Session cookies are automatically deleted after the end of your visit. Permanent cookies remain stored on your device until you delete them yourself or your web browser deletes them automatically.

Cookies have various functions. Many cookies are technically necessary, as certain website functions would not work without them (e.g., the shopping cart function or language settings). Other cookies are used to evaluate user behaviour or display advertising.

The processing of data through the use of strictly necessary cookies is based on a legitimate interest in providing our services free from technical errors pursuant to Article 6(1)(f) GDPR. For details on the processing purposes and legitimate interests, please refer to the explanations on the specific data processing operations.

The processing of personal data through the use of other cookies is based on consent pursuant to Article 6(1)(a) GDPR. The consent can be withdrawn at any time in the future. Insofar as such cookies are used for analysis and optimization purposes, we will inform you separately about this within the framework of this Privacy Policy and obtain your consent in accordance with Article 6(1)(a) GDPR.

You can set your browser

  • to inform you when cookies are set,  
  • to allow cookies only in individual cases,  
  • to exclude the acceptance of cookies in specific cases or generally,  
  • to enable the automatic deletion of cookies when you close the browser.  

Cookie settings can be managed via the following links for the respective browsers:

You can also manage the cookies of many companies and functions used for advertising individually. To do so, use the relevant user tools, which are available at https://www.aboutads.info/choices/ or http://www.youronlinechoices.com/uk/your-ad-choices.  

Most browsers also offer a "Do-Not-Track feature." When this feature is enabled, the respective browser tells ad networks, websites, and applications that you do not want to be "tracked" for behavioural advertising and the like.

For information and instructions on how to edit this feature, depending on your browser provider, see the links below:  

Additionally, you can prevent the loading of scripts by default. "NoScript" allows JavaScripts, Java, and other plug-ins to run only on trusted domains of your choice. Information and instructions on how to edit this feature is made available by your browser provider (e.g., for Mozilla Firefox, go to: https://addons.mozilla.org/de/firefox/addon/noscript/).

Please note that if you disable cookies, the functionality of our website may be limited.

Matomo
This website uses the open-source web analysis service Matomo. The provider is: InnoCraft Ltd, 7 Waterloo Quay PO625, 6140 Wellington, New Zealand (“Matomo”). With the help of Matomo, we are able to collect and analyze data about how visitors use our website. This enables us, among other things, to find out when which pages were viewed and from which region they come. We also collect various log files (e.g. IP address, referrer, browser and operating system used) and can measure whether our website visitors perform certain actions (e.g. clicks, purchases, etc.). This analysis tool is used on the basis of Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in analyzing user behavior to optimize both its website and its advertising. If the appropriate consent has been requested, the processing is carried out exclusively on the basis of Art. 6 (1) (a) GDPR and § 25 (1) TDDDG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. The consent can be revoked at any time.
We use IP anonymization when analyzing with Matomo. This means that your IP address is shortened before the analysis so that it can no longer be clearly assigned to you. Details and further information on security and data protection at Matomo can be found here: https://www.matomo.org/matomo-cloud-dpa/.

Cloudflare
The Website uses the service “Cloudflare”. The provider is: Cloudflare Germany GmbH, Rosental 7, c/o Mindspace, 80331 Munich (“Cloudflare”). Cloudflare offers a globally distributed content delivery network with DNS. Technically, the information transfer between your browser and our website is routed through the Cloudflare network. This enables Cloudflare to analyze the data traffic between your browser and our website and to serve as a filter between our servers and potentially malicious data traffic from the internet. In doing so, Cloudflare may also use cookies or other technologies to recognize internet users, but these are used solely for the purpose described here. Our use of Cloudflare is based on our legitimate interest in providing our web services in the most error-free and secure manner possible (Art. 6 (1) (f) GDPR). You can find details and further information about security and data protection at Cloudflare here: https://www.cloudflare.com/de-de/privacypolicy/.
 

Google reCAPTCHA
We use "Google reCAPTCHA" (hereinafter "reCAPTCHA") on our website. This is provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google").

The purpose of reCAPTCHA is to verify whether the data entered on our website (e.g., in a contact form) is made by a human or by an automated program. For this purpose, reCAPTCHA analyzes the behaviour of the website visitor based on various characteristics. This analysis starts automatically as soon as the website visitor accesses the website. reCAPTCHA evaluates various pieces of information for analysis, such as:

  • IP address
  • Length of time a website visitor spends on the website
  • Mouse movements made by the user

The data collected during the analysis is forwarded to Google.

The reCAPTCHA analyses run completely in the background. Website visitors are not made aware that an analysis is taking place. Data is processed pursuant to Article 6(1)(f) GDPR. We have a legitimate interest in protecting our web offering from abusive automated surveillance and from unwanted automated mailings (spam).

Since personal data is transferred to the United States, further protection mechanisms are required to ensure the level of privacy required by the GDPR. To ensure this, we have agreed on standard privacy clauses with the provider in accordance with Article 46(2)(c) GDPR. These oblige the recipient of the data in the United State to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even by this contractual extension, we will endeavour to obtain additional regulations and commitments from the recipient in the United States.

We do not store any personal data from the use of reCAPTCHA. As a general rule, the personal data of the data subjects are deleted or blocked as soon as the purpose of the storage ceases to apply.

Further information about Google reCAPTCHA as well as Google's privacy policy is available via the following links: https://www.google.com/intl/de/policies/privacy/ and https://www.google.com/recaptcha/intro/v3beta.html

External links
Social networks (LinkedIn Inc.) are only integrated on our website as a link to the relevant services. After clicking on the embedded text/image link, you will be redirected to the page of the respective provider. Only after you have been redirected is user information transmitted to the respective provider. For information on the handling of your personal data when using these websites, please refer to the respective privacy policies of the providers you use.

Data sharing and recipients
Your personal data is not transferred to third parties unless

  • we have explicitly referred to this in the description of the respective data processing,
  • you have given your express consent in accordance with Article 6(1)(1)(a) GDPR,
  • the transfer is necessary in accordance with Article 6(1)(1)(f) GDPR for the assertion, exercise, or defence of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data,
  • a legal obligation exists for the transfer pursuant to Article 6(1)(1)(b) GDPR, and
  • as far as this is necessary for the processing of contractual relationships with you pursuant to Article 6(1)(1)(b) GDPR.

In addition, we use external service providers for the processing of our services, which we have carefully selected and commissioned in writing and with whom we have entered into commissioned data processing contracts in accordance with Article 28 GDPR, if necessary. They are bound by our instructions and are regularly inspected by us. Among other things, these are service providers for hosting, sending emails, and maintenance and care of our IT systems, etc. The service providers will not share this data with third parties.

Data security
We take appropriate technical and organizational measures to ensure a level of protection appropriate to the risk in accordance with Article 32 GDPR, taking into account the state of the art, the costs of implementation and the nature, scope, circumstances, and purposes of the processing, as well as the varying likelihood and severity of the risk to the rights and freedoms of natural persons. This website uses SSL encryption for security reasons and to protect the transmission of confidential content.

Duration of the storage of personal data
The duration of the storage of personal data is measured by the relevant statutory retention periods (e.g., from commercial law and tax law). After the expiry of the respective period, the corresponding data is routinely deleted. If data is required for the fulfilment or initiation of a contract or if we have a legitimate interest in continuing to store it, the data will be deleted when it is no longer required for these purposes or you have exercised your right of withdrawal or objection.

Your rights
Below you will find information on which data subject rights the applicable data protection law grants you vis-à-vis the controller with regard to the processing of your personal data:

The right to request information about your personal data processed by us in accordance with Article 15 GDPR. In particular, you can request information about the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, or restriction of processing or objection, the existence of a right to complain, the origin of your data if it has not been collected by us, as well as the existence of automated decision-making including profiling and, if applicable, meaningful information about its details.

The right to request the correction of inaccurate or incomplete personal data stored by us without undue delay in accordance with Article 16 GDPR.

The right to request the erasure of your personal data stored by us in accordance with Article 17 GDPR, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the establishment, exercise, or defence of legal claims.

The right to request the restriction of the processing of your personal data in accordance with Article 18 GDPR, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure, and we no longer need the data, but you need it for the assertion, exercise, or defence of legal claims or you have objected to the processing in accordance with Article 21 GDPR.

The right, in accordance with Article 20 GDPR, to receive your personal data that you have provided to us in a structured, commonly used, and machine-readable format or to request that it be transferred to another controller.

The right to complain to a supervisory authority in accordance with Article 77 GDPR. As a rule, you can contact the supervisory authority of the German federal state of our registered office stated above or, if applicable, that of your usual place of residence or workplace.

The right to withdraw the consent given in accordance with Article 7(3) GDPR: you have the right to withdraw your consent to the processing of data at any time with effect for the future. In the event of withdrawal, we will delete the data concerned without delay, unless further processing has a legal basis for processing without consent. The withdrawal of consent shall not affect the lawfulness of the processing carried out on the basis of the consent until the withdrawal.

Right to object
If your personal data is processed by us on the basis of legitimate interests pursuant to Article 6(1)(1)(f) GDPR, you have the right to object to the processing of your personal data pursuant to Article 21 GDPR, provided you do this for reasons arising from your particular situation. Insofar as the objection is directed against the processing of personal data for the purpose of direct marketing, you have a general right to object without having to specify a particular situation.

If you wish to exercise your right to withdraw consent or object, simply send an email to info@nke.de.

Legal obligations
The provision of personal data for a decision on the signing or fulfilment of a contract or the implementation of pre-contractual measures is voluntary. However, we can only make a decision in the context of contractual measures if you provide such personal data that is required for signing or fulfilling the contract or for taking pre-contractual measures.

Automated decision making
Automated decision-making or profiling in accordance with Article 22 of GDPR does not take place.

Reservation of right to make changes
We reserve the right to adapt or update this Privacy Policy, if necessary, in compliance with the applicable data privacy regulations. In this way, we can adapt them to current legal requirements and take into account changes in our services, for example, when new services are introduced. The respective prevailing version applies to your visit.

 

The version of this Privacy Policy: 10.10.2024