General Data Protection Regulation (GDPR) Data Protection Notice

Similar documents
Data Protection Notice pursuant to the General Data Protection Regulation (GDPR)

Data Privacy Statement

Data protection information under the EU General Data Protection Regulation in Italy

Data Privacy is important please read the statement below.

Information on the Collection and Processing of your personal data

Privacy policy - contractors

Data protection information under the EU General Data Protection Regulation in Germany

2. FROM WHICH SOURCES THE BANK COLLECTS YOUR PERSONAL DATA?

The EU s General Data Protection Regulation enters into force on 25 May 2018

Data protection information for customers and interested parties

privacy notice who is responsible for processing your personal data and who you can contact in this regard reasons for processing your data

Data Privacy Notice of Sumitomo Mitsui Banking Corporation, Brussels Branch ( SMBC )

PERSONAL DATA PROCESSING BY GOLDMAN SACHS FAIR PROCESSING NOTICE FOR REPRESENTATIVES OF CLIENTS AND PROSPECTIVE CLIENTS EFFECTIVE DATE: 25 MAY 2018

FUNDS MANAGED BY GOLDMAN SACHS ASSET MANAGEMENT - FAIR PROCESSING NOTICE EFFECTIVE DATE: 25 MAY 2018

Duty to inform for data collection

Data protection. VTB Bank (Europe) SE Rüsterstraße 7-9 D Frankfurt am Main Tel: Fax:

Vanguard Group (Ireland) Limited Vanguard Funds plc Vanguard Investment Series plc Privacy policy. May 2018

PRIVACY NOTICE LAST UPDATED: SEPT. 2018

LAMP Services Limited Privacy Notice v1.2 4 th March Controller

PRIVACY NOTICE issued by DALE Accounting and Tax Services Ltd

CP is licenced and supervised by the Commission de Surveillance du Secteur Financier (hereinafter CSSF ).

Data Protection Privacy Notice for people not directly involved in the accident

EU General Data Protection Regulation vs. Swiss Data Protection Act (in the Private Sector 1 )

Julius Baer Trust Company (Channel Islands) Limited Lefebvre Court, Lefebvre Street, P.O. Box 87, St. Peter Port, Guernsey GY1 4BS, Channel Islands

henriksen limited This document sets out how Henriksen processes data and your rights as the data subject.

DATA PROTECTION POLICY. AtonLine Limited

Data Privacy Notice. Who are we and why do we register and use personal data?

European Union General Data Protection Regulation

SECTION 1 IDENTITY AND CONTACT DETAILS OF THE DATA CONTROLLER

EU Data Processing Addendum

Data Processing Addendum

Privacy Policy Statement

We are the Sanne Group, a listed multinational provider of alternative asset and administration services.

Privacy Statement v 1.1

WHO IS RESPONSIBLE FOR LOOKING AFTER YOUR PERSONAL DATA?

SILCHESTER INTERNATIONAL INVESTORS DATA PROTECTION POLICY

Quotation/Inception. Renewal. Policy administration. Claims processing PRIVACY POLICY

Privacy Policy. For the purposes of Data Protection Legislation the data controller is the Company.

Data Processing Appendix

Information about Danica Pension s processing of personal data

Lazard Investment Funds (the Company )

We protect your data and privacy by taking all relevant measures in accordance with applicable legislation.

Deutsche Bank Aktiengesellschaft. 1. Who is responsible for the data processing and who can I contact in this regard

LGIM Liquidity Funds plc Privacy Policy

PRIVACY POLICY FOR CUSTOMER, PROSPECT AND PARTNER REGISTER

INFORMATION ON THE PROCESSING OF PERSONAL DATA

INFORMATION ON PERSONAL DATA PROCESSING in Connection with the General Meeting of ČEZ, a. s.

Institutional Investment Advisors Limited

DATA PROCESSING AGREEMENT

Moxtra, Inc. DATA PROCESSING ADDENDUM

Data Processing Addendum

Your Data Your Rights

Man and Machine - Data Protection Policy

LEGAL PRIVACY NOTICE (EFFECTIVE MAY/2018) 12 Demostheni Severi Avenue 5th Floor 1080 Nicosia Cyprus

Sun Life Assurance Company of Canada (U.K.) Limited. Customer Data Protection Notice

PRIVACY NOTICE. I. Indication of the data controller

Privacy notice. What personal data do we register and use?

INFORMATION REPORT AND CONSENT TO THE PROCESSING OF PERSONAL DATA PURSUANT TO THE EU REGULATION 679/2016 ON PERSONAL DATA PROTECTION

All Sorts UK Limited Data Protection Policy 17 th May 2018

Citi Canada. Privacy of Personal Information Statement

DATA PROTECTION STATEMENT

If you are a business partner, we will collect your business contact details. Gender. Marital Status. Criminal History

Privacy Statement for Intermediaries

Applicable for clients of the entities named under point 1 hereunder.

The Controller and Processor Data Protection Binding Corporate Rules of BMC Software

Entry form 2019 ENTRANT: VEHICLE: DRIVER: Please return the original to: A.S.N.: LICENCE NUMBER: PHONE: FAX:

Data Protection Information The following data protection information gives an overview of our collection and processing of your data.

1. Personal data processed by NOVO BANCO as the data controller

TRAVELTOKENS SALE PRIVACY POLICY Last updated:

address

EMPLOYEE NOTICE OF DATA PRIVACY POLICIES AND PROCEDURES

JOSTENS EUROPEAN PRIVACY POLICY

Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.

YOUR PERSONAL INFORMATION AND WHAT WE DO WITH IT

DATA PROCESSING AGREEMENT

Michael R. Cohen CIPP/US, CIPP/E Gray Plant Mooty. Overview of the EU General Data Protection Regulation (GDPR)

FP WHEB Asset Management Funds ISA Transfer Application Form Class A Shares

FINANCIAL SERVICES OPPORTUNITIES INVESTMENT FUND LIMITED Company Registration Number: PRIVACY NOTICE

DATA PROCESSING ADDENDUM

INFORMATION in accordance with Personal Data Protection Act no. 18/2018 of Law, 19

Bank Handlowy w Warszawie S.A. PRIVACY NOTICE

Privacy Policy and Personal Data

M&G Adviser reference number

PRIVACY NOTICE 1. WHAT IS A PRIVACY NOTICE & WHY IS IT IMPORTANT?

Privacy Policy for IFU Investment Fund for Developing Countries

DEAL BY SEA LTD PRIVACY NOTICE

CUSTOMER DATA PROCESSING ADDENDUM

Capital Dynamics Privacy Policy

Privacy Policy. In this Policy, "we", "us" and "our" refers to the Bank. 1. What personal informa6on do we collect and process?

For commission eligibility and FCA product sales data purposes: if you did not provide advice on this sale please tick

INFORMATION ON THE PROCESSING OF PERSONAL DATA

URBAN AIRSHIP DATA PROCESSING ADDENDUM with EU Standard Contractual Clauses. (Revised September 2017)

We take privacy and security of your information seriously and will only use such personal information as set out in this Privacy Notice.

CLOUDINARY DATA PROCESSING ADDENDUM

FP Foresight OEIC ISA Transfer Application Form

DATA PROCESSING AGREEMENT/ADDENDUM

GDPR Data Processing Addendum

For commission eligibility and FCA product sales data purposes: if you did not provide advice on this sale please tick. FCA number

ERGO Versicherung AG UK Branch Data Privacy Notice

Frontál Rödl & Partner Könyvvizsgáló és Adótanácsadó Kft.

Transcription:

General Data Protection Regulation (GDPR) Data Protection Notice Innovative Sensor Technology IST AG attaches great importance to the protection of your personal data. We therefore conduct our business in compliance with applicable laws on personal data protection and data security. As part of the Endress+Hauser Group ( Endress+Hauser, we or us ), IST AG also adheres to the following Data Protection Notice. As part of a global business organization, Endress+Hauser s United States business entities process and/or control personal data of data subjects subject to the European Union s General Data Protection Regulation ( GDPR ) from time to time. This General Data Protection Regulation (GDPR) Data Protection Notice ( Notice ) applies only to those data subjects who are protected by such regulations and similar data protection regulations. This Notice applies in addition to the Endress + Hauser Privacy Notice found at www.ist-ag.com/enus/privacy-policy. Depending upon the applicable jurisdiction, not all data subjects receive the additional rights provided in this Notice. This Notice applies to the following United States based entities of the Endress+Hauser Group and its affiliated companies (collectively Endress+Hauser, we or us ): Endress+Hauser, Inc. Endress+Hauser Flowtec AG (Division USA) Endress+Hauser (USA) Automation Instrumentation, Inc. Endress+Hauser Wetzer (USA), Inc. Endress+Hauser Conducta, Inc. Endress+Hauser Infoserve, Inc. Endress+Hauser (USA) Holding, Inc. SpectraSensors, Inc. Kaiser Optical Systems, Inc. Innovative Sensor Technology IST USA Division 1. Responsibility Corporate Counsel Krista S. Taggart serves as the common contact for questions, concerns and inquiries regarding data protection and privacy for the above United States based Endress+Hauser entities. She can be reached at law@endress.us.com or by mail at Legal Department, 2350 Endress Place, Greenwood, Indiana 46143. 1/6

2. Purpose of processing, legal basis Endress+Hauser processes personal data in accordance with the provisions of the European Union s General Data Protection Regulation (GDPR) and national and state data protection regulations including the following, and otherwise as permitted by applicable law: a. For fulfilment of contractual obligations (Art. 6 para. 1 b GDPR) We utilize the personal data to fulfill contractual obligations, including, but not limited to, customer orders, service obligations, supplier and service partner contracts, and employment relationships. b. To safeguard legitimate interests within the context of a balance of interests (Art. 6 para. 1 f GDPR) When necessary, we process your data beyond the actual fulfilment of a contract in order to safeguard our legitimate business interests or those of third parties. A legitimate interest assessment is conducted for each interest. These interests include but are not necessarily limited to: Transferring data within the Endress+Hauser Group; Advertising or market research; Reviewing and optimizing procedures for needs assessments and for direct customer discussions, including customer segmentations and calculation of closing probabilities; Asserting legal claims and defenses in legal disputes; Business management and research and development of products and services; and Risk management. c. Based on your consent (Art. 6 para. 1 a GDPR) Where you have granted us consent to process your personal data for certain purposes (e.g. filming and photographs, newsletters), such processing is lawful on the basis of your consent. Consent given can be withdrawn at any time. This also applies to the withdrawal of declarations of consent that were given to us before the GDPR came into force (before May 25, 2018). Please note that the withdrawal is only valid for the future. Data processed prior to the withdrawal is not affected. d. Based on legal requirements (Art. 6 para. 1 c GDPR) or in the public interest (Art. 6 para. 1 e (GDPR) Endress+Hauser is subject to various legal obligations, both statutory and regulatory. This includes anti-terrorism and anti-money laundering legislation. At times, we will process or use your data to fulfill legal obligations and for reasons of the public interest, including, but not limited to, identity checking, fulfillment of verification and reporting obligations in relation to 2/6

tax and social security, fraud and money laundering prevention and measurement and management of risks within the Endress+Hauser Group. 3. Who receives my data? Within each United States based Endress+Hauser entity, those departments and/or divisions that require your data to fulfil our contractual and legal obligations, to safeguard legitimate interests or where we have a valid legal basis to process the data will have access to it. Affiliated companies of the Endress+Hauser Group, both inside the United States and around the world (including the European Union), our authorized sales representatives and service providers, agents and professional service providers appointed by us, third party service providers and public authorities may also receive and process your data for such purposes. In particular, your personal data may be shared with: Affiliated companies within the Endress+Hauser Group; Endress+Hauser InfoServe as the Group s central data center and controller; Authorized sales representatives and service providers; Third party cloud and ASP service providers; Public bodies and officials for compliance with statutory reporting requirements; Financial institutions for the processing of payments and bank information; Providers of technological support, computer maintenance and IT applications; Data archiving providers; Call center service providers; Compliance service organizations; Screening services for anti-laundering or anti-terrorism purposes; Data destruction providers; Auditing services; Legal services; Leasing companies; Credit checking service providers; Background check service providers; Debt collection companies; Third party payment processors for debit and credit cards and online or electronic payment transactions; Marketing companies; Media technology providers; Legal and governmental reporting agencies; Insurance companies; Telecommunication providers; and Website management companies. 3/6

4. Will data be transferred to other countries? Data will be transferred to other countries as necessary to execute contractual obligations (i.e. customer orders), where legally required, when you have provided us your consent or for the purposes of contract data processing. Like most global businesses, Endress+Hauser transfers some of the personal data that it collects and processes with relevant affiliates in the Endress+Hauser Group in other countries. We may also store your data in a centralized system with other data that we hold about you, which may be located in a country different from where you are located. As such, it may happen that certain personal data is stored or processed at computers located in jurisdictions that do not have the same privacy laws as your country of residence. Endress+Hauser takes measures that such personal data is appropriately protected at all times in any country in which we do business. Endress+Hauser relies upon protections such as the E.U. Standard Contractual Clauses and intracompany agreements to ensure an adequate level of protection for all protected personal data. Where use is made of third-party service providers in other countries, Endress+Hauser will utilize E.U. Standard Contractual Clauses to ensure data protection levels required by law. Appropriate contractual agreements will be concluded between affiliated companies of the Endress+Hauser Group and between Endress+Hauser entities and third-party service providers. 5. How long will my data be stored? Endress+Hauser processes and stores your personal information based upon its legal and business needs and then securely destroys the information. It is possible that personal data may be stored for the period of time for which claims may be asserted against us (statutory limitation periods range from three to thirty years). Commercial and tax regulations and laws also impose documentation and retention obligations. 6. What are my data protection rights, including my right to file a complaint? Every data subject (as defined in the GDPR) has the right of access to information pursuant to Article 15 GDPR. Subject to certain conditions, every data subject has the right to rectification pursuant to Article 16 GDPR, the right to restrict processing pursuant to Article 18 GDPR and the right to deletion pursuant to Article 17 GDPR. Furthermore, every data subject has the right to receive the personal data which they have provided in a structured, commonly used and machine-readable format (data portability) pursuant to Article 20 GDPR, provided the processing is carried out by automated means and is based on consent. Every data subject also has the right to lodge a complaint with a supervisory authority, particularly in the Member State of his or her habitual residence, place of work or place of the alleged breach of data protection (Article 77 GDPR). 4/6

You may revoke your consent to the processing of personal data at any time. This also applies to the withdrawal of declarations of consent that were given to us before the GDPR came into force (before May 25, 2018). Please note that the withdrawal is only valid for the future. Data processed prior to the withdrawal is not affected. If you would like to exercise any of your data protection rights, please contact us by email at law@endress.us.com or by mail at Legal Department, 2350 Endress Place, Greenwood, Indiana 46143. If you believe your dispute or concern has not been properly addressed or resolved to your satisfaction, you may also have the right to file a claim with the relevant oversight agencies for data protection. 7. Right of Objection In addition to the rights referred to above, you also have a right of objection as follows pursuant to Article 21 of the GDPR. Right of Objection in Relation to a Specific Case You have the right to object at any time, on grounds relating to your particular situation, to processing of your personal data which is based on Art. 6 para. 1 e GDPR (data processing in the public interest) and Art. 6 para. 1 f GDPR (data processing for the purposes of legitimate interests); this includes profiling based on those provisions within the meaning of Art. 4 para. 4 GDPR. If you object, we will no longer process your personal data unless we are able to demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or show that the processing is for the establishment, exercise or defense of legal claims. Right of Objection Against Processing Data for Marketing Purposes In individual cases, we may process your personal data for direct marketing purposes. You have the right to object at any time to the processing of your personal data for such marketing; this also includes profiling where related to such direct marketing. If you object to processing for direct marketing purposes, we will no longer process your personal data for such purposes. If you would like to file an objection, please contact us by email at law@endress.us.com or by mail at Legal Department, 2350 Endress Place, Greenwood, Indiana 46143. 8. To What Extent Are Decisions Made Automatically or is Profiling Used? Endress+Hauser processes some of your data automatically with the aim of assessing certain personal aspects (profiling). We will only carry out this type of processing where it is 1) necessary for the entry into or performance of a contract, 2) authorized by applicable law, or 3) if you allowed us to do so. For example, we may use profiling to: Analyze transactional data Provide relevant marketing communications to customers Communicate effectively with customers 5/6

We use assessment tools in order to specifically notify you and advise you about products. These allow communications and marketing to be tailored according to need. Due to legal requirements, we are obliged to compare certain personal data against antiterrorism lists in connection with the sale of our goods and services. 9. Changes Please note that we may update or change this Policy from time to time. When updated, we will revise the last updated notice at the bottom of this Policy. The most current version of this Policy will govern our use of your information. This Policy was last updated: August 2018. 6/6

2024 © financedocbox.com Privacy Policy | Terms of Service | Feedback