Privacy Policy and Data Protection

1. Privacy Policy
1.1 Introduction

SCIOPTA Systems GmbH attribute great importance to the protection of your personal data. Therefore, we conduct our business in compliance with applicable laws on   protection of personal data and data security.

1.2 Scope
This privacy policy informs as to which data we collect, store, circulate and use about visitors to our website. By visiting our websites, you agree with the present Policy, o   therwise you have to refrain from the use of our websites. We reserve the right to adapt this Policy and we will announce such changes on this website.

1.3 Data Collection
Personal data such as name, address, telephone number, email address or other identifying in-formation, will only be collected by us if you provide us with such data   voluntarily (e.g. by registration, survey) or if you have consented or the applicable laws on the protection of personal data allow us to do so. Accordingly, you can visit our   websites without giving any personal data, provided that the use of the website does not require registration.

1.4 Data Security
We will take appropriate technical, administrative and organizational security measures to protect your stored personal data from unauthorized access, improper use,   disclosure, loss or destruction. To ensure the confidentiality of these data, we use state of the art IT security systems.
Please note that your data can be lost or can be accessed by unauthorized parties during trans-mission over the Internet or e-mail. We cannot assume any responsibility and  expressly disclaim any liability for the security of your data during transmission. It is your own responsibility to ensure that the computer you are using is adequately secured   and protected against malicious software and the like. If you cannot ensure this, we ask you to use other means of communication.

1.5 Use of Data
We are collecting and using your personal data primarily to fulfill your requests such as answering your inquiries, processing your orders, the preparation, negotiation,   execution and fulfillment of your contracts and to give you access to certain information.
We also have the authority to use your personal data, notably due to legal obligations, govern-mental or judicial order, to establish or protect a legal claim, to defend against a   legal claim, for operational testing or revision, in connection with the sale, assignment, or another transfer of the business or to prevent misuse and other illegal activities.
To maintain customer relationships, it may be necessary to store and process your personal data, in order to better respond to your needs or to improve our products and   services. Also, we or a third party on our behalf, may use personal data to inform you about products and services from Endress+Hauser, that we believe could be of interest     to you or to carry out online surveys.

1.6 Data Distribution
Apart from the cases provided by this Policy, your personal data will not be sold, transmitted or otherwise distributed to third parties.

1.7 Cookies
This SCIOPTA Systems Web Site is not using cookies.

1.8 Links
This website may contain links to other webpages, these webpages are not covered by this Policy. Content from other webpages will be carefully reviewed by us prior to their   linking in order to ensure that we only link webpages that adhere to the same high privacy policies as SCIOPTA Systems. We are not responsible for the privacy policies or the   content of such other webpages. After becoming aware of infringements by third party content, we will remove the content or the link immediately.

1.9 Information
At your request, SCIOPTA Systems will inform you within a reasonable period of time in writing and in accordance with the applicable law, whether and which personal data of   you is stored in our systems. If, despite our efforts to maintain data accuracy and timeliness, incorrect data should be stored in our systems, we will correct it at your request.   As a registered user you have the opportunity to view, change or delete the personal data you provided.

1.10 Contact
For questions concerning your personal data, for information requests as well as suggestions and complaints, you can contact SCIOPTA Systems. SCIOPTA Systems will   respond to all adequate information requests and to all adequate requests to correct, amend or delete personal data.

 

2. Data Protection

2.1 Introduction
SCIOPTA Systems GmbH attribute great importance to the protection of your personal data. Therefore, we conduct our business in compliance with applicable laws on   protection of personal data and data security.

2.2 Responsibility
SCIOPTA Systems’s internal Data Protection Officer is Mr. Roland Lips and he can be reached by email at roland.lips (at) sciopta.com or by phone +49 7621 940 919 0.

2.3 Contractual Obligations
We process personal data in accordance with the provisions of the EU General Data Protection Regulation (GDPR) for fulfilment of contractual obligations (Art. 6 para. 1 b   GDPR) particularly in connection with customer orders, suppliers, service partners and employees

2.4 Balance of Interests
We process personal data in accordance with the provisions of the EU General Data Protection Regulation (GDPR) to safeguard legitimate interests within the context of a   balance of interests (Art. 6 para. 1 f GDPR), to the extent necessary, we process your data beyond the actual fulfilment of the contract in order to safeguard our legitimate   interests or those of third parties.

2.5 Based on Your Consent
We process personal data in accordance with the provisions of the EU General Data Protection Regulation (GDPR) based on your consent (Art. 6 para. 1 a GDPR). Where you   have granted us consent to process your personal data for certain purposes (e.g. filming and photographs, newsletters), such processing is lawful on the basis of your   consent.  Consent given can be withdrawn at any time. This also applies to the withdrawal of declarations of consent that were given to us before the GDPR came into force,   i.e. before May 25, 2018. Please note that the withdrawal is only valid for the future. Data processed prior to the withdrawal is not affected.

2.6 Based on Legal Requirements or in Public Interest
We process personal data in accordance with the provisions of the EU General Data Protection Regulation (GDPR) Based on legal requirements (Art. 6 para. 1 c GDPR) or in   the  public interest (Art. 6 para. 1e GDPR). We are also subject to various legal obligations, that is to say, statutory requirements (e.g. checks against anti-terrorism lists, anti-   money laundering legislation). Purposes of processing include identity checking, fulfilment of verification and reporting obligations in relation to tax and social security, fraud   and money laundering prevention and measurement and management of risks.

2.7 Data Access
SCIOPTA departments that require your data to fulfil SCIOPTA’s contractual and legal obligations or to safeguard legitimate interests will have access to it.
Affiliated companies of SCIOPTA Systems GmbH, our service providers and vicarious agents appointed by us, public authorities or third parties may also receive data for such   purposes.

2.8 Data Transfer
Data will only be transferred to countries outside the EU or EEA (“third countries”) where necessary to execute your orders (e.g. production, logistics), where legally required   (e.g. to meet tax reporting obligations), where you have given us your consent, or for the purposes of contract data processing.
Where use is made of service providers in third countries, besides written instructions they will also be bound by EU standard contract clauses on compliance with the data   protection levels applicable in the EU.

2.9 Data Storage
We process and store your personal data for as long as necessary to fulfil our contractual and legal obligations. We will delete your personal data once it is no longer needed   for the above purposes. It is possible that personal data may be stored for the period in which claims can be asserted against our companies (statutory limitation periods   range from three to thirty years). We will also store your personal data for as long as we are legally obliged to do so. Commercial and tax legislation imposes corresponding   documentation and retention obligations.

2.10 Data Protection Rights
Every data subject has the right of access to information pursuant to Article 15 GDPR. Subject to certain conditions, every data subject has the right to rectification pursuant to   Article 16 GDPR, the right to restrict processing pursuant to Article 18 GDPR and the right to deletion pursuant to Article 17 GDPR. Furthermore, every data subject has the   right to receive the personal data which they have provided in a structured, commonly used and machine-readable format (data portability) pursuant to Article 20 GDPR,   provided the processing is carried out by automated means and is based on consent.
Concerning the right to information and the right of deletion, for SCIOPTA Systems GmbH, the limitations set out in Sections 34 and 35 of the German Federal Data Protection   Act (BDSG) are applicable.
Every data subject has the right to lodge a complaint with a supervisory authority, particularly in the Member State of his or her habitual residence, place of work or place of   the alleged breach of data protection (Article 77 GDPR).
You may revoke your consent to the processing of personal data at any time. This also applies to the withdrawal of declarations of consent that were given to us before the   GDPR came into force, i.e. before May 25, 2018. Please note that the withdrawal is only valid for the future. Data processed prior to the withdrawal is not affected.

2.11 Right of Objection in Relation to a Specific Case
In addition to the rights referred to above, you also have a right of objection pursuant to Article 21 of the EU General Data Protection Regulation (GDPR). You have the right to   object at any time, on grounds relating to your particular situation, to processing of your personal data which is based on Art. 6 para. 1 e GDPR (data processing in the public   interest) and Art. 6 para. 1 f GDPR (data processing for the purposes of legitimate interests); this includes profiling based on those provisions within the meaning of Art. 4   para.  4 GDPR. If you object, we will no longer process your personal data, unless we are able to demonstrate compelling legitimate grounds for the processing which override   your interests, rights and freedoms, or show that the processing serves for the establishment, exercise or defence of legal claims.

2.12 Right of Objection against Processing of Data for Marketing Purposes
In addition to the rights referred to above, you also have a right of objection pursuant to Article 21 of the EU General Data Protection Regulation (GDPR). In individual cases,   we  may process your personal data for direct marketing purposes. You have the right to object at any time to the processing of your personal data for such marketing; this   also includes profiling where related to such direct marketing. If you object to processing for direct marketing purposes, we will no longer process your personal data for such   purposes. The objection may be submitted, without any requirements as to form, to the person indicated in Section 2.2

2.13 Right of Complaint
You have the right to lodge a complaint with the person indicated in Section 2.2 or with a supervisory authority, particularly in the Member State of your habitual residence,   place of work or place of the alleged breach of data protection (Article 77 GDPR).

2.14 Automatic Decisions
In establishing and maintaining business relations, we generally refrain from fully automated decisionmaking pursuant to Art. 22 DSGVO. If we use such methods in individual   cases, we will inform you separately insofar as we are legally required to do so.

2.15 Profiling
We do not process your data automatically (profiling).