Privacy Statement

Introduction

Thank you for visiting our website and for your interest in our broad range of products. To help us provide you with the best possible service, personal data are collected, processed and transmitted on our web pages.

Personal data (e.g. the name, postal address, email address and telephone number of a data subject) are always processed in accordance with the EU’s General Data Protection Regulation (GDPR) as well as with the specific national data protection rules applicable to us.

As the controller responsible for data processing, we have implemented numerous technical and organisational measures to ensure the fullest possible protection for all personal data which is processed on our website. However, no data transmission over the Internet can be guaranteed to be one hundred percent secure and vulnerabilities can never be completely ruled out.

1. Key concepts and definitions

This Privacy Statement is based on the key concepts and definitions as used by the Community legislature and regulatory authority at the time the GDPR was adopted (Art. 4 GDPR). This Privacy Statement is written in plain language, so that it can be easily understood by anyone. To make doubly sure of this, we shall begin by explaining and defining a few key concepts. The following key concepts and definitions are used in this Privacy Statement:

  1. "Personal data":
    Any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is a person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, geographical location data, an online identifier or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
  2. "Data subject":
    Any identified or identifiable natural person whose personal data are processed by the controller responsible for processing;
  3. "Processing":
    Any operation or set of operations which is performed on personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
  4. "Restriction of processing":
    The marking of stored personal data with the aim of limiting its processing in the future;
  5. "Profiling":
    Any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, geographical location or movements;
  6. "Controller":
    The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;
  7. "Recipient":
    A natural or legal person, public authority, agency or other body, to which personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of such data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing;
  8. "Third party":
    A natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data;
  9. "Consent"
    Consent of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.

2. Collection and storage of personal data and nature and purpose of its processing

When you visit the website:

We may, to a limited extent, collect information automatically when you visit the website. This data helps us to focus on improving your experience of our website, and we will always use it in a responsible way.

We use information held about you in the following ways:

  • To send you our electronic newsletter (subject to your consent)
  • For internal analyses (statistics, etc.)

We will process this information for the following purposes:

  • To improve our website

The legal basis for processing on our website is Art. 6(1) sentence 1(f) GDPR. Our legitimate interests are derived from the aforementioned data collection purposes.
We also use cookies and analytics services when you visit the website. Further details can be found below in this Privacy Statement.

Before initiating a business relationship:

We store your contact details (title, first and last name, postal address, email address, landline and / or mobile telephone number and fax number) to enable us to contact you in the course of present or future dealings. These data which we have collected about you are stored until such time as the establishment or continuation of a business relationship is no longer realistic.

We use information held about you in the following ways:

  • For the performance of a contract
  • For the purpose of sending you an offer

We will process this information for the following purposes:

  • To facilitate the maintenance of business relationships
  • To facilitate the proper execution of a contract
  • To facilitate the proper and efficient processing of your enquiry

The legal basis for processing is Art. 6(1) sentence 1(b) and (f) GDPR and is derived from the aforementioned purpose.

3. When do we store personal information?

We collect personal information about you whenever you:

  • Use our website
  • Open a personal customer account
  • Subscribe to our newsletter
  • Fill in a request or quotation form
  • Contact us by email
  • Share such information with us in conversation provided you have given us your consent

4. Who do we share your personal information with?

We share your personal information with the following business partners:

  • Episerver GmbH, Wallstraße 16, 10179 Berlin, Germany
  • Google Inc., (1600 Amphitheatre Parkway Mountain View, CA 94043, USA) (Google Analytics, Google Tag Manager)
  • Hotjar Ltd (Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta)

To our knowledge, our business partners apply all the required data protection standards and demonstrate compliance with data protection principles.

5. Cookies

We use the following cookies on our website:

Google Analytics/ Google Tag Manager

Name Expires Purpose
_ga 2 years after your last visit to the website Used to track if you have visited before.
_gat 10 minutes after your last visit to the website Used to manage the rate at which page view requests are made.
_gid 24 hours after your last visit to the website Used to store the session ID and to group the entire session’s activity together for each user.
https://policies.google.com/technologies/ads?hl=en

HotJar

Name Expires Purpose
_hjIncludedInSample 1 year determines whether a visitor should be included in the sample which is used to generate Hotjar funnels.
https://www.hotjar.com/legal/policies/cookie-information

Shopware

Name Expires Purpose
session-1 2 hours used to store the session ID
PHPSESSID 2 hours used to store the session ID

Cookie consent banner

Name Expires Purpose
cookieconsent_dismissed 1 year remembers that the user has given his or her explicit consent via the cookie banner.

DoubleClick by Google

Name Expires Purpose
IDE 1 year used by Google DoubleClick to register and report the website user’s actions after viewing or clicking one of the advertiser’s ads with the purpose of measuring the efficacy of an ad and of presenting targeted ads to the user.

YouTube

Name Expires Purpose
VISITOR_INFO1_LIVE 179 days after your last visit to the website Tries to estimate the user bandwidth on pages with embedded YouTube videos.
PREF 8 months after your last visit to the website Registers a unique ID that is used by Google to keep statistics on how a visitor uses YouTube videos across different websites.
YSC At the end of your session Registers a unique ID to keep statistics on embedded YouTube videos the user has seen.
GPS At the end of your session Registers a unique ID on mobile devices to enable tracking based on the geographical GPS location.
https://policies.google.com/privacy?hl=en

How to block cookies

Firefox

  1. Open the Firefox browser.
  2. Press the “Alt” key on your keyboard.
  3. Click the menu button and choose “Options”.
  4. Select the “Privacy & Security” panel.
  5. Under “Firefox will remember history:”, choose “Use custom settings for history”.
  6. Uncheck “Accept cookies” and save your own settings.

You can also find current information here: https://support.mozilla.org/en-US/kb/delete-cookies-remove-info-websites-stored

Internet Explorer

  1. Open Internet Explorer.
  2. Click the “Tools” button, then select “Internet options”.
  3. Select the “Privacy” tab.
  4. Under “Cookies”, uncheck the settings and save your own settings.

You can also find current information here: https://support.microsoft.com/en-gb/help/17442/windows-internet-explorer-delete-manage-cookies

Google Chrome

  1. Open Google Chrome.
  2. Choose “Settings”.
  3. Click “Advanced”.
  4. Under “Privacy and security”, click “Content settings”.
  5. In the “Cookies” section you can disable cookies and save your own settings.

You can also find current information here: https://support.google.com/chrome/answer/95647?co=GENIE.Platform&hl=en

Safari

  1. Open Safari.
  2. Choose “Preferences” from the toolbar (grey cog in the top right-hand corner) and click “Privacy”.
  3. In the “Accept cookies” section, you can specify whether, and if so, when Safari should accept cookies from websites. To see an explanation of the options, click the Help button (“?”).
  4. If you want to see which websites store cookies on your computer, click “Display cookies”.

You can also find current information here: https://support.apple.com/en-gb/guide/safari/sfri11471/mac

Edge

  1. Open the Edge browser.
  2. Click the three dots in the top right-hand corner.
  3. Go to “Settings” -> “View advanced settings”.
  4. Scroll down to “Cookies”.
  5. Click the radio button underneath and set it to “Block all cookies”.

Opera

  1. Open the Opera-browser.
  2. Click the Opera icon in the top left-hand corner.
  3. Go to “Settings”.
  4. Choose “Privacy and security”.
  5. In the “Cookies” section, you can set “Block sites from setting any data”.

6. Tracking data

Tracking data are used to

  • Offer a better user experience (Hotjar)
  • Monitor page views and landing page relevance (Google Analytics)

Refer to sections 8 and 9 for more information.

7. Data protection

We use TLS 256 bit encryption for security reasons and to protect data transmission, for example when entering customer data, etc. The locked padlock in the address line of your browser indicates that the information being transmitted is encrypted.

8. Google Analytics

This website uses “Google Analytics”, a web analytics service provided by Google Inc. (“Google”); the legal basis for using this service is Art. 6(1) sentence 1(f) GDPR. Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of the website, for example the

  • Browser type / version,
  • Operating system,
  • Referrer URL (the site you visited previously),
  • Host name of the accessing computer (IP address),
  • Time of the server request,

will generally be transmitted to and stored by Google on servers in the United States. Google will never associate your IP address as transmitted by Google Analytics from your browser with any other data held by Google. Furthermore, on this website Google Analytics is supplemented by “anonymizeIP” to ensure anonymised collection of all data (IP masking). Only in exceptional cases will the full IP address be transmitted to a Google server in the United States and shortened there.

Google will use this information to evaluate how you use the website, compile reports on website activity on behalf of the operator of this website and offer other services relating to website activity and Internet usage to the operator of this website. You may refuse the use of cookies by selecting the appropriate settings on your browser; however, please note that if you do this you may not be able to use the full functionality of this website.

Furthermore, you can prohibit Google from collecting and analysing the data generated by the cookie about your use of the website (including your IP address) by downloading and installing the browser plugin available here: https://tools.google.com/dlpage/gaoptout?hl=en. As an alternative to the browser add-on or within browsers on mobile devices, you can click the following link in order to prohibit Google Analytics from collecting data: Please click here for opting out of Google Analytics measuring.. As a result, an opt-out cookie is placed on your computer to prevent any future collection of your data when you visit this website. The opt-out cookie only works in this browser and only for this domain; it is placed only on a single device. If you delete cookies in this browser, you will have to use the aforementioned link again.

We also use Google Analytics to evaluate data from the DoubleClick cookie and AdWords for statistical purposes. You may opt out of this by visiting the Ads Preferences Manager (http://www.google.com/settings/ads/onweb/?hl=en).

9. HotJar

We use Hotjar (www.hotjar.com) in order to get actionable insights into our users’ needs and to improve the services and experience on our website.  Hotjar is a technology service that helps us better understand our visitors’ experience (e.g. how much time users spend on which pages, which links users choose to click, what users do and don’t like, etc.), so that we can build and maintain our services based on user feedback. Hotjar uses cookies and other technologies to collect data on our users’ behaviour and devices (in particular a device’s IP address (which is captured and stored only in anonymised form), the screen size, the device type (unique device identifiers), browser information, the geographical location (country only) and the preferred language used to display our website). Hotjar stores this information in a pseudonymised user profile.  Neither Hotjar nor we will ever use this information to identify individual users or to match it with further data on individual users. For further details, please follow this link to see Hotjar’s privacy policy: https://www.hotjar.com/privacy.

You can opt-out to the creation of a user profile, Hotjar’s storing of data about your usage of our site and Hotjar’s use of tracking cookies on other websites by following this link: (https://www.hotjar.com/legal/compliance/opt-out)

10. Rights of the data subject

  1. Right of access under Art. 15 GDPR:
    You have the right to request information about your personal data processed by us, in particular about the purposes of the processing, the categories of personal data concerned, the recipients or categories of recipient to whom the personal data have been or will be disclosed, the envisaged period for which the personal data will be stored or, if not possible, the criteria used to determine that period, the existence of the right to request rectification or erasure of personal data or restriction of processing of personal data as well as to object to such processing, the right to lodge a complaint with a supervisory authority, the origin of your data if they were not collected by us, the existence of automated decision-making including profiling and, where applicable, meaningful information about the logic involved as well as the significance and the envisaged consequences of such processing for you, and finally, where personal data are transferred to a third country, the right to be informed of the appropriate safeguards pursuant to Article 46 GDPR relating to the transfer.
  2. Right to rectification under Art. 16 GDPR:
    You have the right to demand the rectification of inaccurate personal data concerning you and / or the right to have incomplete personal data completed without undue delay.
  3. Right to erasure under Art. 17 GDPR:
    You have the right pursuant to Art. 17(1) GDPR to demand the erasure of personal data concerning you. This right shall not apply to the extent that processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defence of legal claims.
  4. Right to restriction under Art. 18 GDPR:
    You have the right to demand the restriction of processing of your personal data as long as the accuracy of the personal data is contested by you, the processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead, we no longer need the personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defence of legal claims or if you have objected to processing for reasons arising from your particular situation, pending the verification whether our legitimate grounds override your own as the data subject.
  5. Notification obligation under Art. 19 GDPR:
    If you have asserted the right of rectification, erasure or restriction of processing vis-à-vis the controller, the controller is obliged to communicate any rectification or erasure of personal data or restriction of processing to each recipient to whom your personal data have been disclosed, unless this proves impossible or involves disproportionate effort. You have the right to be informed about these recipients.
  6. Right to data portability under Art. 20 GDPR:
    You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and to have that personal data transmitted directly to another controller, where technically feasible.
  7. Right to withdraw consent under Art. 7(3) GDPR:
    If our processing of personal data is based on your consent, you have the right to withdraw your consent to future processing at any time. If you withdraw your consent, we will cease processing of the data for which you have withdrawn consent, unless we have a legal obligation to keep some or parts of your data. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
  8. Right to lodge a complaint under Art. 77 GDPR:
    Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement, if you consider that the processing of personal data relating to you infringes the GDPR.

11. Right to object

You may object to the future use of your data at any time by email or in writing.
If you exercise your right to object, we will cease processing of the data concerned.

12. Storage period for personal data

The storage period for personal data is determined by the respective legal retention period. After expiry of this period, the data concerned will be routinely deleted, provided they are no longer necessary for the performance or initiation of the contract and / or there is no longer any legitimate interest on our part in further storage.

13. Contact

Responsible controller

NORRES Schlauchtechnik GmbH
Am Stadthafen 12-16
45881 Gelsenkirchen
GERMANY
Phone +49 209 8 00 00 0
E-Mail info(at)norres.com

Data Protection Officer

Sebastian Katzorke
SkySystems Datenschutz UG
Neumarkt 1
58642 Iserlohn
GERMANY
s.katzorke(at)skysystems.biz

14. Updates and changes to this Privacy Statement

This Privacy Statement is regularly reviewed and was last updated in June 2018.
We reserve the right to change this Privacy Statement without prior notice to reflect improvements to our website, or to the services offered on our website, as well as legal and regulatory changes. The most current version of the Privacy Statement can be reviewed on our website and printed out at any time by following this link:

https://www.norres.com/en/privacy-statement/

nach oben