We highly value your confidence in us. Therefore, we respect the data protection regulations and inform you about all the recorded and saved data as well as about your rights.
The legal basis is the EU General Data Protection Regulation (GDPR).
1. Provider and Controller for the purposes of EU General Data Protection Regulation is:
Carl Zeiss MES Solutions GmbH
Tel.: +49 731 880177 0
Fax: +49 731 880177 99
Web page: www.guardus.de
2. Name and Address of the Data Protection Officer
The data protection officer is:
Mr Werner Dehne
c/o Carl Zeiss MES Solutions GmbH
Phone: +49 731 880177 70
3. Collection and Saving of Data When on Our Website
If you access our website at www.guardus.de, the browser which is used on your terminal device automatically submits information to the server of our website. This information is temporarily saved in the so-called server log files. The following information is collected:
- Name and URL of the visited website
- Referrer URL
- Date and time of the page call
- IP address
- Web browser and the used operation system of your terminal device
- Domain name.
The legal basis for data processing is Section 6, paragraph 1 sentence 1 lit. f GDPR. This data does not permit any conclusions to be drawn about your person. Such data is not linked to your personal data. We reserve the right to retroactively check this data if we become aware of clear indications of unlawful use.
The collection of this data is absolutely necessary to ensure the connection set-up of the website as well as the comfortable use, delivery and representation of the contents of our website. Moreover, we use this data for the evaluation of the system security and stability as well as for statistical purposes, especially for the optimisation of the website, technique and our product range.
4. Use of Personal Data and Transfer to Third Parties
‘Personal data’ means any information relating to an identified or identifiable natural person such as name, address, e-mail address, phone number and gender.
We only collect, process and use your personal data with your consent or if there is another legal basis consistent with the GDPR.
We will use the personal data that you voluntarily provided to us as part of your purchase order or when contacting us, in order to provide you with information, advertising material and invitations to our events with your consent or to subscribe to our newsletter with your corresponding separate consent. Your personal data will not be used for any other purposes. This shall not apply to the use of the data for statistical purposes, if the data has been provided to us in an anonymous form.
Any transfer of your personal data to third parties will only be made if there is a legal obligation for disclosure, if this is required to process the order or for the establishment, exercise or defence of legal claims, provided that this is necessary and that there is no reason to assume that you have an overriding and legitimate interest in the non-disclosure of your personal data. This data is only transferred to third parties on the basis of the GDPR. Some third parties which are necessary to be involved in the purchase order have their locations without the Federal Republic of Germany or they process your personal data abroad. The level of protection in other countries is potentially not as high as in Germany. However, we transfer your personal data only to countries, for which the EU Commission decided that they guarantee an adequate level of data protection or we take measures to ensure that all the recipients provide an adequate level of data protection by setting standard contractual clauses.
5. Duration of Data Retention and Deletion
We only retain your personal data for as long as is necessary for the execution of contracts in order to fulfil our contractual and legal obligations and to defend ourselves against liability claims. The personal data that you disclose to us in order to receive our newsletters, information and advertising material or invitations to our events will be stored until you revoke your consent to this kind of use of personal data. If the storage purpose is no longer applicable, or a statutory retention period expires, the personal data will be blocked or deleted.
6. Data Security
Appropriate technical and organisational security precautions ensure the protection of your data against accidental or deliberate manipulation, partial or complete loss, destruction or access by unauthorised persons. Our security procedures are continuously revised based on new technological developments. However, Internet-based data transmission may have security gaps so that absolute protection may not be guaranteed.
Two types of cookies are used on our website in order to optimise the user-friendliness:
- Session cookies: These are transient cookies which are stored in the cookie file of your browser until you close our website. They are automatically erased when the user closes the website.
- Persistent cookies: For better user-friendliness, these cookies persist on your terminal device and allow us to recognise your browser when you visit us again. These cookies will be automatically erased after a set expiration date.
Most browsers automatically accept cookies, but you can modify your browser setting to be notified when cookies are set and to decide whether you will accept certain cookies for or decline all of them as well as to delete the set cookies. By disabling of cookies, you may not take full advantage of the functionality of our website.
Our website uses products and services from WiredMinds AG (www.wiredminds.de) for the purpose of marketing and optimisation. Data is collected, processed and stored, and then it is used in order to create usage profiles under a pseudonym. Wherever possible and practical, the usage profiles are fully anonymised. Cookies may be used here. Cookies are small text files which are stored on the visitor’s hard drive via their Internet browser and are used to recognise the Internet browser again at a later date.
The collected data, which may also include personal data is sent to WiredMinds or collected directly by WiredMinds. WiredMinds can use the information generated by visits at websites in order to create anonymised usage profiles. Unless the user has specifically agreed to this, the data acquired in this way is not used to personally identify the visitor to this website and it is not combined with personal data about the holder of the pseudonym.
If IP addresses are collected, they are anonymised immediately after acquisition through the deletion of the last number block. Data collection, processing and storage can be cancelled at any time with effect for the future.
9. Google AdWords
We are a Google AdWords customer and have integrated “Google AdWords” on our web site. Moreover, we also use Google Conversion Tracking. This is a service for Internet
advertisement which allows advertisers to place ads both in the search machine results of Google and in the Google advertising network. “Google Adwords” is a web analytics service provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google AdWords saves a cookie (see point 7) on your PC via your browser if you have accessed our website through a Google ad. These cookies are valid for 30 days and do not serve as personal identification. If you access some of our sites and the cookie is still valid, we and Google can recognise that you have clicked on the ad and, thereafter, were transferred to our website.
Every Google AdWords customer uses a different cookie. Therefore, it is not possible to track cookies via the websites of AdWords customers. The information obtained via the conversion cookie is used to create conversion reports for AdWords customers. The AdWords customers receive the number of users that have clicked their ad and have been transferred to a site that includes the Conversion Tracking Tag but they do not receive any information that would allow them to identify the user.
10. Social Media Plugins
Our website uses social plugins of the social network Facebook which is operated by Facebook Inc.. The plugins are identified by the Facebook logo and the terms “Like”, “Gefällt mir” and “Share”.
If you access a page on our website that includes such a plugin, your browser sets up a direct connection to the Facebook servers. Facebook transfers the social plugin’s content directly to your browser which will then integrate it into the website. Through the integration of the plugin, Facebook obtains the information that your browser has accessed the respective page on our website, even if you are not a registered user of Facebook or are not logged into Facebook. This information (as well as your IP address) is transferred from your browser directly to a server of Facebook and is stored there. We have no influence on the nature and extent of the data that the server of Facebook Inc. collects via the plugins.
If you are logged in to Facebook, Facebook can allocate the visit to our website to your Facebook account. If you interact with the social plugins, e.g. by using the “Like it” or “Share“-button or by posting comments, your browser will transfer such information directly to a server of Facebook where it is being stored. Such information will also be published on your Facebook profile and be displayed to your Facebook friends.
Facebook can use this information for the purpose of advertising, market research and a design of the Facebook pages to meet the customers’ needs. For this purpose, Facebook creates profiles regarding usage, interests and relationships, e.g. to evaluate your use of our website with regard to the advertisements displayed to you on Facebook, to inform other Facebook users about your activities on our website and to provide further related services with the use of Facebook.
Our website uses the “+1” button of the Google Plus social network, provided and operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States (hereinafter referred to as Google). If you visit a website on our Internet site, that contains a “+1” button, your browser establishes a direct connection to Google’s servers. Thus, the information that you visited our website is passed on to Google.
If during your visit of our website, you are logged into Google Plus via your personal user account, Google can associate the visit of the website with your Google+ account. We, therefore, have no influence on the extent and content of the data that Google collects using this button. If you click the “+1” button, the corresponding information is transmitted directly to Google and is stored there.
If you do not want Google to collect data about you via our website, you have to log out of your Google Plus or Google account before visiting our website.
This website uses the XING "Share" button. When you access this website, your browser briefly establishes a connection to the servers of XING SE, Dammtorstraße 30, 20354 Hamburg, with the help of which the XING "Share" button functions (especially the calculation/display of the counter) are provided. XING does not store any personal data about you when you access our website. In particular, XING does not store any IP addresses. Moreover, your usage behaviour is not analysed by means of cookies in connection with the XING "Share" button". You can access the latest data protection information on the XING "Share" button and other information at https://www.xing.com/app/share?op=data_protection.
11. Newsletter and Contact Form
If you subscribed to our newsletter, we will use your e-mail address exclusively to periodically send our newsletter to you. No data will be transferred to third parties. For an effective subscription, we require a valid e-mail address. When subscribing to our newsletter, we will store your IP address as well as the date when you subscribed. We use the “double opt in” procedure.
You may revoke your consent to the collection of personal data for the purpose of receiving our newsletters at any time by unsubscribing from our newsletter. To declare that you want to unsubscribe, you may use the respective link included in all newsletters or you can communicate your wish to unsubscribe per e-mail to email@example.com.
If you have any questions, you can contact us via a contact form on our website. For this, you have to indicate a valid e-mail address so that we know where the question comes from and to be able to process your request or to contact you for possible follow-up questions. Some other personal information is optional. The processing of data for the purpose of contacting us is made with your voluntary consent pursuant to Section 6 paragraph 1 sentence 1 lit. a GDPR. This data will be deleted as soon as your request has been fulfilled.
12. Rights of the Data Subject
If you want to exercise any of your rights as set out below, you may at any time contact our data protection officer or any other employee of ours.
12.1 Right to access (Art. 15 DSGVO)
You are entitled, free of charge, to receive from us information as to your personal data which has been stored by us as well as a copy of this information. Moreover, you are entitled to receive information on the purposes of processing, the categories of personal data concerned, the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisations, where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period, the existence of the right to request from the controller rectification or erasure of personal data or restriction of processing of your personal data or to object to such processing, the right to lodge a complaint with a supervisory authority where the personal data are not collected from the data subject, any available information as to their source, the existence of automated decision-making, including profiling and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject. Moreover, you are entitled to receive information as to whether personal data are transferred to a third country or to an international organisation. In such a case, you will have the right to be informed of the appropriate safeguards relating to the transfer.
12.2 Right to rectification (Art. 16 GDPR)
You are entitled to obtain from the controller without undue delay the rectification of inaccurate personal data. Taking into account the purposes of the processing, you shall have the right to have incomplete personal data completed.
12.3 Right to erasure (right to be forgotten) (Art. 17 and 19 DSGVO)
You are entitled to obtain from us the erasure of personal data concerning you without undue delay if one of the following grounds applies and unless the processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation or for the performance of a task carried out in the public interest or for the establishment, exercise or defence of legal claims.
• the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
• you withdraw your consent on which the processing is based according to point (a) of Article 6(1), or point (a) of Article 9(2), GDPR and where there is no other legal ground for the processing;
• you object to the processing pursuant to Article 21(1) GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Article 21(2) GDPR;
• the personal data have been unlawfully processed.
• the personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject;
• the personal data have been collected in relation to the offer of information society services referred to in Article 8(1) GDPR.
If we have made the personal data public and we are obliged pursuant to Article 17(1) GDPR to erase the personal data, taking account of available technology and the cost of implementation, we shall take reasonable steps, including technical measures, to inform controllers who are processing the disclosed personal data that you have requested the erasure of this data unless the processing is necessary. Our data protection officer or any other employee of ours will take the necessary steps for that.
12.4 Right to the restriction of processing (Art. 18 GDPR)
You are entitled to obtain the restriction of processing if the accuracy of the personal data is contested by you, the processing is unlawful but you oppose the erasure of the personal data, we no longer need the personal data for the purposes of the processing but they are required by you for the establishment, exercise or defence of legal claims, or you have objected to processing pursuant to Art. 21(1) GDPR.
12.5 Right to data portability (Art. 20 GDPR)
You are entitled to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and to transmit those data to another controller, where technically feasible and unless this right shall adversely affect the rights and freedoms of others.
12.6 Right to object (Art. 21 DSGVO)
You are entitled to object, on grounds relating to your particular situation, at any time to the processing of your personal data, including profiling based on these provisions. We shall no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims. Where personal data are processed for direct marketing purposes, you shall have the right to object at any time to the processing of your personal data for such marketing, which includes profiling to the extent that it is related to such direct marketing. If you object to the processing for direct marketing purposes, the personal data shall no longer be processed for such purposes. Where personal data are processed for scientific or historical research purposes or statistical purposes pursuant to Article 89(1) GDPR, you will be entitled, on grounds relating to his or her particular situation, to object to the processing of your personal data, unless the processing is necessary for the performance of a task carried out for reasons of public interest.
12.7 Automated individual decision-making, including profiling (Art. 22 DSGVO)
You are entitled not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. This shall not apply if the decision (i) is necessary for entering into, or performance of, a contract between us or (ii) is authorised by Union or Member State law to which we are subject and which also lays down suitable measures to safeguard your rights and freedoms and legitimate interests; or (iii) is based on your explicit consent.
If the decision is either necessary for entering into, or the performance of, a contract between us or it is based on your explicit consent, we shall implement suitable measures to safeguard your rights and freedoms and legitimate interests, at least the right to obtain human intervention on the part of the controller, to express their point of view and to contest the decision.
12.8 Right to withdraw your consent relating to data protection (Art. 7(3) GDPR)
You are entitled to withdraw your given consent at any time. The consequence of this withdrawal is that we no longer process your personal data based on this consent.
12.9 Right to lodge a complaint with a supervisory authority (Art. 77 DSGVO)
You are entitled to lodge a complaint with a supervisory authority, in particular in your habitual place of residence or place of work or our registered office.