我们使用 Cookie、类似技术和跟踪服务

本网站会使用 Cookie、类似技术和跟踪服务(以下简称“Cookie”)。我们需要获得您的同意,才能使用 Cookie,这些 Cookie 不仅用于从技术上显示我们的网站,还可以使我们的网站达到最佳的使用效果并能根据您的使用行为对我们的网站进行改进,或者展示您可能感兴趣的内容和营销。出于这些目的,我们与第三方供应商合作(例如 Salesforce、LinkedIn、 Google、Microsoft、Piwik PRO)。通过这些合作伙伴,您也可以在其他网站上接收广告。
如果您同意,表示您还接受对您的个人数据的某些后续处理(例如,将您的 IP 地址存储在配置文件中),并且我们的合作伙伴可能会将您的数据传输到美国,以及其他国家/地区(如果适用)。此类传输涉及官方可能访问数据的风险,并且您的权利可能无法得到保障。请在“设置”下选择我们可使用的 cookie。更多信息,尤其是关于您的权利的相关信息(例如撤销同意), 可通过我们的隐私政策进行了解 .

设置

仅技术上必需的 cookie

接受全部

您可以在下方启用/停用本网站上使用的各项技术。

全部接受

必需

这些 Cookie 提供基本功能(例如页面导航、语言设置,Cookie 偏好和对网站受保护区域的访问),保障网站的正常使用。此外,该类别的 Cookie 确保网站符合法规和安全标准。鉴于其重要性,您不能阻止在我们网站上使用这些 Cookie。关于这些 Cookie 的详情,请参见“更多信息”。

功能性和个性化

这些 Cookie 收集有关您使用我们网站习惯的信息,并帮助我们根据您之前的访问、位置和浏览器设置情况来调整我们网站的功能,使其更具吸引力,以改善您的使用体验。它们也使您能够访问我们整合到网站中的第三方工具(例如用于单点登录身份验证的 Microsoft Azure)。这可能涉及将您的数据传输到美国(有关相关风险的信息,请阅读我们的隐私政策第 1.5 条)。如果您不接受这些 Cookie,则您无法使用网站的全部功能。关于所使用工具的详情,请参见“更多信息”。

分析

这些 Cookie 用于根据我们网站的使用情况创建基本的应用和用户数据统计(例如通过 Google Tag Manager、Piwik PRO)。一旦您同意使用 Cookie,表示您也同意后续的数据处理,包括通过所用的服务(例如 Salesforce Pardot)将您的数据传输到美国(有关相关风险的信息,请阅读我们的隐私政策第 1.5 条)。关于所使用工具的详情,请参见“更多信息”。

营销与社交媒体

这些 Cookie 帮助第三方收集您如何在社交媒体上分享我们网站内容的信息,或者当您在社交媒体平台或我们的社交媒体宣传和我们自己的网站之间切换时(例如领英洞察),提供关于您使用行为的分析数据。此外,第三方营销 Cookie 帮助我们评估我们在他方网站上的广告效果(如谷歌广告、微软广告)。我们使用这些 Cookie 来优化我们向您提供内容的方式。所使用的第三方供应商和社交媒体平台可能会将您的数据传输到美国(有关相关风险的信息,请阅读我们的隐私政策第 1.5 条)。一旦您接受,不仅表示您同意使用 Cookie,而且表示您也同意后续的数据处理,包括所述的传输。关于所使用工具和我们社交媒体的详情可以参见“更多信息”。

更多信息

保存设置

  • Duerr campus in Bietigheim-Bissingen

Privacy Policy – China Addendum

Privacy policy

(June 28, 2023)

The task of safeguarding your privacy is extremely important to us. Therefore, we follow the statutory regulations of European and German data protection law in relation to all data protection activities (e.g. collecting, processing, and transferring data).

隐私政策

[最后更新于June 28, 2023]

保护您的隐私对我们来说极为重要。因此,我们在所有数据保护活动(如收集、处理和传输数据)中都遵守欧洲和德国数据保护法的相关规定。

This policy applies to the processing of personal data in connection with your visit to our websites and to other data processing in companies belonging to the Dürr Group. You can find a list of the companies in the Dürr Group in the annex.

本政策适用于与您访问我们网站有关的个人数据处理,以及杜尔集团下属公司的其他数据处理。您可以在附件中找到杜尔集团公司的名单。

Note on the use of this privacy policy:

The general information in section 1 applies to all our processing of personal data. Depending on the circumstances of the data processing, please also read the detailed information in sections 2-6, which take precedence over the more general information in section 1 if there is a conflict between them:

1. General information

2. Detailed information about visiting our websites

3. Privacy information relating to our social media presence

4.Privacy information relating to other data processing by companies in the Dürr Group not in connection with the websites

5. Privacy information relating to the event website

6. Privacy information relating to job applications

关于使用本隐私政策的说明:

第 1 节中的一般信息适用于我们所有对个人数据的处理。根据数据处理的具体情况,请阅读第 2-6 节中的详细信息,如果它们与第 1 节中的一般信息有冲突,则优先于第 1 节中的一般信息:

1.一般信息

2.访问我们网站的详细信息

3.与我们的社交媒体有关的隐私信息

4.与杜尔集团内公司处理数据有关但与网站无关的其他的隐私信息

5.与活动网站有关的隐私信息

6.与工作申请有关的隐私信息

1. General information

Personal data are all types of information that refer to an identified or identifiable natural person (“data subject”), such as your name, address, telephone number, date of birth, and IP address.

We collect and use personal data only to the extent necessary to provide a functioning website and our content, products, and services. We collect and use our users’, customers’, and business partners’ personal data only with the consent of the data subjects or if the processing of the data is permitted by statutory regulations.

1.一般信息

个人数据是指涉及已识别或可识别的自然人("数据主体")的各类信息,例如您的姓名、地址、电话号码、出生日期和 IP 地址。

我们仅在必要的范围内收集和使用个人数据,以提供正常运行的网站和我们的内容、产品和服务。我们收集和使用用户、客户和业务合作伙伴的个人数据,必须征得数据主体的同意,或在法律法规允许的情况下进行。

1.1 For what purpose are my data processed?

We use the personal data you supply to answer your inquiries, provide services, process your orders, and develop and manage our business relationship with you, your company, or your employer. You can find details in sections 2-6.

1.1 我的数据被处理的目的是什么?

我们使用您提供的个人数据来回答您的询问、提供服务、处理您的订单,以及发展和管理我们与您、您的公司或您的雇主之间的业务关系。详情请参见第 2-6 节。

1.2 How and for what purpose are my data disclosed to third parties?

We only disclose or otherwise transfer your personal data to third parties if this is necessary for the purposes of establishing a contractual relationship, entering into or implementing a contract, invoicing, collecting charges (for example, shipping companies or payment service providers), asserting our claims or in the course of the (partial) sale of our company.

In addition, we are authorized by order of the competent public authority in each specific case to provide information about data to the extent that this is necessary for the purposes of criminal prosecution, for the prevention of danger by the police authorities of the federal states, in performance of the statutory tasks imposed by the federal and state constitutional protection authorities, the Federal Intelligence Service (Bundesnachrichtendienst), or the Military Counterintelligence Service (Militärischer Abschirmdienst), or for the enforcement of intellectual property rights.

In these cases, the legal basis is Art. 6(1)(f) GDPR, where our legitimate interest is identical with the purposes described or where you are our contractual partner and are not entering into the contract on behalf of a company, Art. 6(1)(b) GDPR.

We can also disclose or transfer your data to third parties if you have given your explicit consent to this. The legal basis in this case is Art. 6(1)(a) GDPR.

The recipients of the data are also service providers that we use for the purposes of our business (in particular, IT service providers, web hosting companies, marketing firms, advertising agencies, legal advisers).

1.2 如何以及出于何种目的向第三方披露我的数据?

我们只有在建立合同关系、签订或执行合同、开具发票、收取费用(例如,运输公司或支付服务提供商)、主张我们的权利或在我们公司(部分)出售的过程中才会向第三方披露或以其他方式转让您的个人数据。

此外,根据主管当局的命令,我们有权在每种具体情况下提供数据信息,但须出于刑事起诉目的、联邦各州警察当局预防危险的目的、履行联邦和各州宪法保护当局、联邦情报局(德国)或军事反情报局(德国)规定的法定任务的目的,或者是为了实施知识产权的目的。

在这些情况下,法律依据是《通用数据保护条例》(欧盟)(General Data Protection Regulation) 第 6(1)(f)条。如果我们的合法利益与所述目的相同,或者如果您是我们的合同合作伙伴,并且不是代表公司签订合同,则以 《通用数据保护条例》(欧盟) 第 6(1)(b)条为法律依据。

如果您明确表示同意,我们也可以向第三方披露或转让您的数据。这种情况下的法律依据是《通用数据保护条例》(欧盟)第 6(1)(a)条。 数据接收方也是我们为业务目的而使用的服务提供商(尤其是 IT 服务提供商、网络托管公司、营销公司、广告公司、法律顾问)。

1.3 The rights of data subjects

If your personal data are processed, you are a data subject as defined by the GDPR and you have the following rights in relation to the data controller:

1.3 数据主体的权利

如果您的个人数据被处理,您就是 《通用数据保护条例》(欧盟) 所定义的数据主体,您对数据控制者享有以下权利:

a) Access, rectification, restriction of processing, and erasure

You have the right, at any time and free of charge, to access your personal data stored by us and to obtain information about the source and recipients of the data and the purpose of the data processing via our websites. Furthermore, you have the right to the rectification, erasure, and restriction of processing of your personal data, provided that the statutory requirements for this are met.

a) 查阅、更正、限制处理和删除

您有权在任何时候免费访问我们储存的您的个人数据,并通过我们的网站获取有关数据来源和接收方以及数据处理目的的信息。此外,在符合相关法律要求的情况下,您还有权更正、删除和限制处理您的个人数据。

b) Right to data portability

You have the right to receive your personal data, which you have provided to us as the data controller, in a structured, commonly used, and machine-readable format. We can fulfill this right by providing an export of your personal data that we have processed.

b) 数据可携带权

您有权以结构化、常用和机器可读的格式接收您作为数据控制者提供给我们的个人数据。我们可以通过导出我们处理过的您的个人数据来实现这一权利。

c) Right to information

If you have exercised your right to have the data controller rectify, erase, or restrict data processing, the controller is obliged to inform all the recipients of your personal data of the rectification, erasure, or restriction of processing unless this proves impossible or involves a disproportionate effort.

You have the right to be informed by the controller about these recipients.

c) 知情权

如果您行使了要求数据控制者纠正、删除或限制数据处理的权利,则控制者有义务将纠正、删除或限制数据处理一事通知您个人数据的所有接收者,除非事实证明这是不可能的或需要付出不相称的努力。

您有权从控制者处获知这些收件人的信息。

d) Right to object

You have the right, for reasons arising from your particular situation, to object at any time to the processing of the personal data concerning you, that may be processed in accordance with Art. 6(1)(e) or (f) GDPR; this also applies to profiling based on these provisions.

If you object, the controller will no longer process your personal data unless the controller has compelling, legitimate reasons for processing that override your interests, rights, and freedoms, or unless the processing serves to assert, exercise, or defend legal claims.

If the personal data concerning you are processed for direct marketing purposes, you have the right to object at any time to the processing of the personal data concerning you for the purpose of this marketing; this also applies to profiling, to the extent that it is associated with this direct marketing.

If you object to the processing for direct marketing purposes, the personal data concerning you will no longer be processed for these purposes.

You have the option to exercise your right of objection in connection with the use of information society services by means of automated procedures using technical specifications, notwithstanding the provisions of Directive 2002/58/EC.

d) 反对权

您有权在任何时候以您的特殊情况为由,反对根据《通用数据保护条例》(欧盟)第 6 条第(1)款第(e)或(f)项处理与您有关的个人资料。这也适用于根据这些条款进行的个人资料数据剖析。

如果您反对,控制方将不再处理您的个人数据,除非控制方有令人信服的合法理由来凌驾于您的利益、权利和自由之上,或者除非处理用于主张、行使或捍卫法律主张。

如果您的个人数据被用于直接营销目的,您有权在任何时候反对出于营销目的对您的个人数据进行处理;这也适用于与直接营销相关的个人资料数据剖析。

如果您反对出于直接营销目的对您的个人数据进行处理,我们将不再出于这些目的对您的个人数据进行处理。

尽管有(欧盟)第 2002/58/EC 号指令的规定,您仍可选择通过使用技术规范的自动程序行使与使用信息社会服务有关的反对权。

e) Withdrawal of declarations of consent under data protection law

In addition, you may withdraw your consent at any time, with future effect, by contacting us using the contact details given below. For information about withdrawing your consent in connection with our use of cookies and similar technologies, please see section 2.3 e).

e) 根据数据保护法撤销同意声明

此外,您还可以随时通过以下联系方式与我们联系,撤销您的同意,并在未来生效。有关撤销对我们使用 cookie 和类似技术的同意的信息,请参见第 2.3 e) 节。

f) Automated decision-making in individual cases, including profiling

In accordance with Art. 22 GDPR, you have the right not to be subject to a decision based solely on automated processing, including profiling, that produces legal effects concerning you or similarly significantly affects you. This does not apply if the decision:

(1) is necessary for entering into or performance of a contract between you and the data controller

((2) is authorized by European Union or Member State law that the controller is subject to and that also lays down suitable measures to safeguard your rights, freedoms, and legitimate interests or

(3) is based on your explicit consent

However, these decisions must not be based on special categories of personal data according to Art. 9(1) GDPR unless Art. 9(2)(a) or (g) GDPR applies and appropriate measures have been taken to safeguard your rights, freedoms, and legitimate interests.

In the cases referred to in (1) and (3), the controller must take reasonable measures to safeguard your rights, freedoms, and legitimate interests, including at least the right to obtain human intervention on the part of the controller, to express your own point of view, and to contest the decision.

f) 个别情况下的自动决策,包括特征分析

根据《通用数据保护条例》(欧盟)第 22 条的规定,您有权不接受完全基于自动处理(包括特征分析)而对您产生法律效力或类似重大影响的决定。《通用数据保护条例》(欧盟) 第 22 条规定,您有权不接受仅基于自动处理(包括个人资料分析)做出的、对您产生法律效力或类似重大影响的决定。如果该决定符合以下条件,则此规定不适用:

(1) 是您与数据控制者签订或履行合同所必需的

(2)经欧盟或成员国法律授权,且控制者须遵守欧盟或成员国法律,并采取适当措施保障您的权利、自由和合法利益,或

(3) 基于您的明确同意

但是,根据《通用数据保护条例》(欧盟)第 9(1)条,这些决定不得基于特殊类别的个人数据,除非适用《通用数据保护条例》(欧盟)第 9(2)(a)或(g) 条并采取适当措施保障您的权利、自由和合法利益。

在 (1) 和 (3) 所述情况下,控制方必须采取合理措施保障您的权利、自由和合法利益,至少包括获得控制方人工干预的权利、表达自己观点的权利以及对决定提出异议的权利。

g) Right to lodge a complaint with a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to complain to a supervisory authority, in particular in the Member State where you are resident or working or where the alleged infringement occurred, if you believe that the processing of personal data concerning you infringes the GDPR.

The supervisory authority where the complaint has been lodged will inform the complainant of the status and the results of the complaint, including the possibility of a judicial remedy under Art. 78 GDPR.

g) 向监管机构投诉的权利

在不影响任何其他行政或司法补救措施的情况下,如果您认为与您有关的个人数据处理违反了 《通用数据保护条例》(欧盟),您有权向监管机构投诉,特别是在您居住或工作的成员国或涉嫌侵权行为发生的成员国。

受理投诉的监管机构将向投诉人告知投诉的情况和结果,包括根据《通用数据保护条例》(欧盟)第 78 条采取司法补救措施的可能性。

1.4 What security measures have we taken to protect your data?

We have adopted a large number of security measures to provide adequate and appropriate protection for personal data.

Our databases are protected by physical and technical measures as well as procedural measures that restrict access to information to specifically authorized people in accordance with this privacy policy.
Our information system is protected by a software firewall in order to prevent access from other networks connected to the Internet. Only employees who need the information to perform a certain task receive access to personal information. Our employees are trained in security and data protection practices.

When collecting and transferring data via our websites, we use standardized SSL encryption technology. In the order process, personal data are protected by SSL encryption, identifiable by the padlock icon and the prefix “https://” in the address bar.

If a password is necessary for access to our websites, you should never disclose it to third parties and you should change it regularly. In addition, when accessing our websites you should not use the same password that you also use on other websites with password-protected access (email account, online banking, etc.). When you have left our pages, you should log out and close your browser to prevent unauthorized users from accessing your user account.

If you communicate with us by email, we cannot guarantee full data security.

1.4 我们采取了哪些安全措施来保护您的数据?

我们采取了大量安全措施,为个人数据提供充分和适当的保护。

我们的数据库受到物理和技术措施以及程序措施的保护,根据本隐私政策,只有经过专门授权的人员才能访问信息。 我们的信息系统受到软件防火墙的保护,以防止从连接到互联网的其他网络访问。只有需要信息来执行特定任务的员工才能访问个人信息。我们的员工接受过安全和数据保护方面的培训。

在通过我们的网站收集和传输数据时,我们使用标准的 SSL 加密技术。在订购过程中,个人数据受 SSL 加密保护,可通过地址栏中的挂锁图标和前缀 "https://"进行识别。

如果访问我们的网站需要密码,则不得向第三方泄露,并应定期更改。此外,在访问我们的网站时,您不应该使用与其他有密码保护的网站(电子邮件账户、网上银行等)相同的密码。离开我们的网页后,应登出并关闭浏览器,以防止未经授权的用户访问您的用户账户。

如果您通过电子邮件与我们联系,我们无法保证完全的数据安全。

1.5 Transfer to third countries

If the recipients of your data and their service providers are based outside the European Economic Area (EEA) or process your data outside the EEA, we will ensure that your personal data are adequately protected (e.g. by means of an adequacy decision).

The data protection regulations that apply in countries outside the EEA may be different from those in the country where you are resident. Under certain circumstances, the national law may provide less protection than that of the country where you are resident (e.g. because national regulations allow investigative bodies more far-reaching rights of access to personal data).

WPlease note that the USA is a third country that does not provide adequate data protection. This means that the level of data protection in the USA is not comparable with that of the EU. If data are transferred to the USA, there is the risk that the US authorities will access the data via monitoring programs based on Section 702 of the Foreign Intelligence Surveillance Act, Executive Order 12333 or Presidential Police Directive 28, without EU citizens having effective legal protection against accesses of this kind.

If your personal data are transferred to third countries that do not provide adequate data protection, we will take measures to ensure that your personal data have appropriate protection in these countries (e.g. among other things by using the standard contractual clauses of the EU Commission, if necessary with additional protective measures). We can provide information about the protection mechanism via the contact details given in the first subsection of sections 2 ff.

1.5 向第三国转让

如果您的数据接收方及其服务提供商位于欧洲经济区 (EEA) 以外,或在欧洲经济区以外处理您的数据,我们将确保您的个人数据得到充分保护(例如通过适足性认定)。

欧洲经济区以外国家适用的数据保护法规可能与您居住国的法规不同。在某些情况下,国家法律提供的保护可能不如您居住国的法律(例如,因为国家法规允许调查机构拥有更广泛的访问个人数据的权利)。

请注意,美国是一个无法提供充分数据保护的第三国。这意味着美国的数据保护水平无法与欧盟相比。如果将数据传输到美国,美国当局有可能通过基于《外国情报监视法》(Foreign Intelligence Surveillance Act)第 702 条、第 12333 号行政命令或第 28 号总统警察指令的监控程序访问数据,而欧盟公民无法获得针对此类访问的有效法律保护。

如果您的个人数据被转移到不能提供适当数据保护的第三国,我们将采取措施确保您的个人数据在这些国家得到适当保护(例如,使用欧盟委员会的标准合同条款,必要时采取额外的保护措施等等)。我们可以通过第 2 ff 节第一小节中提供的联系方式提供有关保护机制的信息。

1.6 Amendments to this privacy policy

The date of this privacy policy is given directly under the heading. We reserve the right to amend this privacy policy as required and without prior notification. You should therefore visit this page on a regular basis to find out about any amendments to this privacy policy.

1.6 本隐私政策的修订

本隐私政策的日期直接位于标题下方。我们保留根据需要修改本隐私政策的权利,恕不另行通知。因此,您应定期访问本页面,了解本隐私政策的任何修订。

2. Detailed information about visiting our websites

Below you can find out what we do with your data when you visit our websites. This section 2 applies in addition to the general information in section 1. If you cannot find the necessary information in this section 2, please refer to section 1 (e.g. concerning the rights of the data subject). If there is a conflict between section 2 and section 1, the information in section 2 takes precedence over section 1.

Please note that there is a separate privacy policy for our event website, which you can find in section 5.

2.访问我们网站的详细信息

下面您可以了解当您访问我们的网站时,我们会如何处理您的数据。除第 1 部分的一般信息外,本第 2 部分也适用。如果您在第 2 节中找不到必要的信息,请参阅第 1 节(例如,关于数据主体的权利)。如果第 2 节与第 1 节发生冲突,则第 2 节中的信息优先于第 1 节。

请注意,我们的活动网站有单独的隐私政策,请参见第 5 节。

2.1 Who is the data controller with responsibility for processing data?

The data controller for our websites is:

Dürr Aktiengesellschaft
Carl-Benz-Str. 34
74321 Bietigheim-Bissingen
Germany
Telephone +49 71 42 78 0
corpcom(at)durr.com

You can contact our data protection officer at: dataprotection(at)durr.com.

You can also contact our data protection officer under the following address:

Dürr Aktiengesellschaft
Attn. Data Protection Officer
Carl-Benz-Str. 34
74321 Bietigheim-Bissingen
Germany

2.1 谁是负责处理数据的数据控制者?

我们网站的数据控制者是:

Dürr Aktiengesellschaft 

Carl-Benz-Str.34 

74321  Bietigheim-Bissingen

德国

电话 +49 71 42 78 0
corpcom(at)durr.com

您可以通过以下方式联系我们的数据保护负责人:dataprotection(at)durr.com.

您也可以通过以下地址联系我们的数据保护官:

Dürr Aktiengesellschaft

Attn. Data Protection Officer

Carl-Benz-Str.34 

74321  Bietigheim-Bissingen

Germany

2.2 What data are collected and stored during the use of our websites?

a) Accessing the website

When you use our websites, the following data are collected by our web hosting company. The data are stored exclusively for internal system-related and statistical purposes and are referred to as usage data:

  • Information on the type and version of the browser used
  • The IP address of the user
  • Date and time of access
  • Websites accessed by the user’s system via our website

The data are also stored in log files on our systems. These data are not stored with other personal data belonging to the user.

Myra Security

In order to ensure the security of visitors to our websites, all traffic flows are assessed and filtered by our service provider Myra Security GmbH, Landsberger Str. 187, 80687 Munich, Germany (“Myra Security”) before our websites are accessed. Myra Security provides a secure, certified Security-as-a-Service platform for the protection of digital business processes. This enables us to guarantee the availability of our websites and to protect our infrastructure against attacks from criminals, botnets, and other malware. Myra Security analyzes every visit, and this protects the data against unauthorized access. This filtering process does not restrict the use of our websites by our users.

The legal basis for the temporary storage of data and log files and the use of Myra Security is Art. 6(1)(f) GDPR.

The temporary storage of the IP address by the system is necessary to allow the website to be made available on the user’s computer. For this purpose, the user’s IP address must be stored for the duration of the session. Protecting our websites against harmful attacks and therefore also protecting your data is our legitimate interest in using Myra Security.

Data are also stored in log files to ensure that the website functions correctly. In addition, the data allow us to optimize the website and to ensure the security of our information technology systems. The data are not evaluated for marketing purposes in this context.

These purposes also reflect our legitimate interest in data processing in accordance with Art. 6(1)(f) GDPR.

The data are erased as soon as they are no longer needed for the purpose they were collected for. If data are collected to make the website available, they are erased after 14 days.

The collection of data to make the website available and the storage of the relevant data in log files is essential for the operation of the website. Therefore, users have no possibility of objecting to this.

2.2 使用我们的网站时会收集和储存哪些数据?

a) 访问网站

当您使用我们的网站时,我们的网络托管公司会收集以下数据。这些数据仅为内部系统相关和统计目的而存储,称为使用数据:

  • 所用浏览器的类型和版本信息
  • 用户的 IP 地址
  • 访问日期和时间
  • 用户系统通过我们的网站访问的网站

这些数据也保存在我们系统的日志文件中。这些数据不会与用户的其他个人数据一起保存。

Myra Security

为了确保网站访问者的安全,在访问我们的网站之前,我们的服务提供商 Myra Security GmbH(地址:Landsberger Str. 187, 80687 Munich, Germany,以下简称 "Myra Security")会对所有流量进行评估和过滤。Myra Security 提供安全、经过认证的安全即服务平台,用于保护数字业务流程。这使我们能够保证网站的可用性,并保护我们的基础设施免受犯罪分子、僵尸网络和其他恶意软件的攻击。Myra Security 会分析每次访问,从而保护数据免受未经授权的访问。该过滤过程不会限制用户使用我们的网站。

Myra Security 临时存储数据和日志文件以及使用 Myra Security 的法律依据是《通用数据保护条例》(欧盟)第 6(1)(f)条。

系统对 IP 地址的临时存储是网站在用户计算机上运行所必需的。为此,用户的 IP 地址必须在会话期间保存。保护我们的网站免受有害攻击,从而保护您的数据,是我们使用 Myra Security 的合法利益所在。

数据还保存在日志文件中,以确保网站正常运行。此外,这些数据还有助于我们优化网站并确保信息技术系统的安全。在此情况下,我们不会出于营销目的对数据进行评估。

这些目的也反映了我们根据《通用数据保护条例》(欧盟)第 6(1)(f)条处理数据的合法权益。

一旦不再需要用于收集数据的目的,这些数据就会被删除。如果收集数据是为了使网站可用,则会在 14 天后删除。

为使网站可用而收集数据并将相关数据保存在日志文件中对于网站的运行至关重要。因此,用户无法对此提出异议。

b) Login

On our websites, we offer you the option of logging in with a user name and password to access certain content (e.g. download center, B2B workshop). You can register for these services either after making personal contact with our employees or after registering on our websites using the registration form (download center) with access subsequently being granted by one of our employees. The registration form is used to collect the following personal data:

  • First name and last name
  • Company name
  • Position in the company
  • Email address

In these cases, the legal basis for the processing of the data is Art. 6(1)(f) GDPR. Our legitimate interest in processing the data is entering into and implementing the contract with you or your company and making available confidential internal information via our information portals.

Single sign-on: Microsoft Azure Active Directory

We use Azure Active Directory cloud services provided by Microsoft Ireland Operations Limited, 70 Sir Rogerson’s Quay, Dublin 2, Ireland (“Microsoft”) to manage contacts and provide a simple solution for registration (single sign-on). In this context, Microsoft stores a cookie on your device to ensure that you will be recognized. For details of cookies, please refer to section 2.3. You can find information about Microsoft’s data processing activities in Microsoft’s privacy policy at https://privacy.microsoft.com/en-US. Microsoft is a subsidiary of Microsoft Corporation in the USA. It is therefore possible that your data may be transferred to a data center in the USA. The transfer is protected by the standard contractual clauses of the EU Commission (for more information on third-country transfers, please refer to section 1.5). We base our use of services such as Azure Active Directory and the relating processing of data by the service provider for its own limited purposes on Art. 6(1)(f) GDPR and our legitimate interest in providing you with a simple means of logging in to our website.

The data are erased as soon as they are no longer needed for the purpose they were collected for:

  • This is the case for the data collected during the registration process if the registration on our website is canceled or modified.
  • This will be the case during the registration procedure for the performance of a contract or to take steps prior to entering into a contract if the data are no longer needed for the performance of the contract. After the contract has been concluded, it may be necessary to store the contractual partner’s personal data in order to comply with contractual or statutory obligations.

Right to object

In section 1.3 we explain your right to object to the processing of your data on the basis of Art. 6(1)(f) GDPR. As a user, you can cancel your registration at any time. You can have your stored data modified at any time. Simply email us at info(at)durr.com.

If the data are necessary for the performance of a contract or for steps prior to entering into a contract, premature erasure of the data is only possible if this is not prevented by contractual or statutory obligations.

b) 登录

在我们的网站上,您可以选择使用用户名和密码登录,以访问某些内容(如下载中心、B2B 研讨会)。您可以在与我们的员工取得个人联系后注册这些服务,也可以在使用注册表(下载中心)在我们的网站上注册后,由我们的员工授予访问权限。注册表用于收集以下个人数据:

  • 名和姓
  • 公司名称
  • 在公司的职位
  • 电子邮件地址

在这种情况下,处理数据的法律依据是《通用数据保护条例》(欧盟)第 6(1)(f)条。我们处理数据的合法权益在于与您或贵公司签订并执行合同,以及通过我们的信息门户提供内部机密信息。

单点登录Microsoft Azure 活动目录

我们使用 Microsoft Ireland Operations Limited(地址:70 Sir Rogerson's Quay, Dublin 2, Ireland,以下简称 "Microsoft")提供的 Azure Active Directory 云服务来管理联系人并提供简单的注册解决方案(单点登录)。在这种情况下,Microsoft 会在您的设备上存储 cookie,以确保您能被识别。有关 cookie 的详细信息,请参阅第 2.3 节。有关 Microsoft 数据处理活动的信息,请参阅 https://privacy.microsoft.com/en-US 上的 Microsoft 隐私政策。Microsoft 是美国微软公司的子公司。因此,您的数据有可能被转移到美国的数据中心。这种传输受欧盟委员会标准合同条款的保护(有关第三国传输的详细信息,请参阅第 1.5 节)。我们使用 Azure Active Directory 等服务以及服务提供商出于自身有限目的对数据进行相关处理的依据是《通用数据保护条例》(欧盟)第 6(1)(f)条和我们为您提供登录我们网站的简单方式的合法利益为基础。 

一旦不再需要用于收集数据的目的,这些数据就会被删除:

  • 如果在我们网站上的注册被取消或修改,则在注册过程中收集的数据也是如此。
  • 在履行合同的注册程序中,或者在签订合同之前,如果履行合同不再需要这些数据,则需要采取相应措施。合同签订后,为了履行合同或法定义务,可能有必要保存合同方的个人数据。

反对权

在第 1.3 节中,我们将说明您有权根据《通用数据保护条例》(欧盟)第 6(1)(f)条反对处理您的数据。作为用户,您可以随时取消注册。您可以随时修改存储的数据。请发送电子邮件至 info(at)durr.com 联系我们。 

如果数据对履行合同或签订合同前的步骤是必要的,则只有在合同或法定义务没有阻止的情况下,才有可能提前删除数据。

c) Contact options

For certain functions of our websites (e.g. HR inquiries/service inquiries/press contacts), you have the option of contacting us via the email addresses provided and via a contact form. In this case, the personal data of the user submitted via the contact form or in the email will be stored.

We use Salesforce Pardot to provide the forms that you can use to contact us. Salesforce Pardot is a software program developed by salesforce.com Inc., Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, CA 94105, USA (“Salesforce”) for automated lead management, marketing automation, and sales support in the B2B environment. Salesforce stores personal data in the USA. Salesforce has issued binding corporate rules for this purpose (available at https://www.salesforce.com/content/dam/web/en_us/www/documents/legal/misc/Salesforce-Processor-BCR.pdf), which ensure that the data are transferred securely.

In this context, Salesforce stores a cookie. For details of cookies, please refer to section 2.3.

We use your data solely to process your request and can contact you for this purpose using the contact data provided. This is also our legitimate interest in processing the data. The data will be used for advertising purposes or forwarded to third parties only if you have explicitly consented to this.

The legal basis for processing data that are transferred in the course of making contact with us is Art. 6(1)(f) GDPR. If the aim of making contact is to enter into a contract, then the legal basis for processing is Art. 6(1)(b) GDPR.

The data are erased as soon as they are no longer needed for the purpose they were collected for. The personal data that you have sent to us for the purpose of making contact will be erased once the relevant conversation with you has come to an end. The conversation is deemed to have ended when it is clear from the circumstances that the matter in question has been conclusively resolved. However, backup data are stored by Salesforce for another 90 days.

Right to object

In section 1.3 we explain your right to object to the processing of your data on the basis of Art. 6(1)(f) GDPR.

c) 联系方式

对于我们网站的某些功能(如人力资源咨询/服务咨询/新闻联系),您可以选择通过所提供的电子邮件地址或通过联系表格与我们联系。在这种情况下,通过联系表格或电子邮件提交的用户个人数据将被保存。

我们使用 Salesforce Pardot 提供您可以用来联系我们的表单。Salesforce Pardot 是 salesforce.com Inc., Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, CA 94105, USA(以下简称 "Salesforce")开发的一款软件程序,用于 B2B 环境中的自动销售线索管理、营销自动化和销售支持。Salesforce 在美国存储个人数据。Salesforce 为此发布了具有约束力的公司规则(可在 https://www.salesforce.com/content/dam/web/en_us/www/documents/legal/misc/Salesforce-Processor-BCR.pdf 上获取),确保数据安全传输。 

在这种情况下,Salesforce 会存储 cookie。有关 cookie 的详细信息,请参阅第 2.3 节。

我们使用您的数据完全是为了处理您的请求,并可使用您提供的联系数据与您联系。这也是我们处理数据的合法权益。只有在您明确同意的情况下,我们才会将数据用于广告目的或转发给第三方。

处理在与我们联系过程中传输的数据的法律依据是《通用数据保护条例》(欧盟)第 6(1)(f)条。如果联系我们的目的是为了签订合同,则处理数据的法律依据为《通用数据保护条例》(欧盟)第 6(1)(b)条。

一旦不再需要用于收集数据的目的,这些数据就会被删除。一旦与您的相关对话结束,您为与我们联系而发送给我们的个人数据将被删除。如果从当时的情况来看,相关问题已得到最终解决,则视为对话已结束。但是,Salesforce 会将备份数据再保存 90 天。

反对权

在第 1.3 节中,我们将说明您有权根据《通用数据保护条例》(欧盟)第 6(1)(f)条反对处理您的数据。

d) Orders

As a registered and logged-in user, you can place orders on our website, e.g. by making a purchase.

For this purpose and to fulfill the purchase contract, we collect user, shipping, and payment details (e.g. credit card details, account number, bank code) and record other information about the order process (e.g. which items you add to your shopping basket, information about order picking and the order status). These data are required for the conclusion of the contract.

In each case, the data are processed on the basis of Art. 6(1)(f) GDPR and our legitimate interest in enabling you to make the purchase. If you enter into the contract yourself, the data are processed on the basis of Art. 6(1)(b) GDPR and the forthcoming purchase contract.

These data may also be disclosed to third parties (e.g. shipping service providers, carriers, banks) where this is necessary for the performance of the contract. We store the data in accordance with the statutory storage periods for up to ten years. Data that are not subject to a statutory retention obligation are erased as soon as the purpose they were collected for no longer applies. This is the case if you delete a customer account that you have created with us.

Right to object

In section 1.3 we explain your right to object to the processing of your data on the basis of Art. 6(1)(f) GDPR.

d) 订单 

作为注册并登录的用户,您可以在我们的网站上下单,例如购物。

为此,为了履行购买合同,我们会收集用户、运输和付款详细信息(如信用卡详细信息、帐号、银行代码),并记录有关订单流程的其他信息(如您在购物篮中添加的商品、订单拣选信息和订单状态)。这些数据是签订合同所必需的。

在每种情况下,数据处理的依据是《通用数据保护条例》(欧盟)第 6(1)(f)条以及我们为使您能够进行购买的合法利益。如果是您自己签订合同,则数据处理的依据是《《通用数据保护条例》(欧盟)》第 6(1)(b)条和即将签订的合同。

在履行合同的必要情况下,这些数据也可能被披露给第三方(如运输服务提供商、承运商、银行)。我们会按照法定保存期限保存数据,最长可达 10 年。一旦收集数据的目的不再适用,不属于法定保存义务范围的数据将被删除。如果您删除了在我们这里创建的客户账户,则属于这种情况。

反对权

在第 1.3 节中,我们将说明您有权根据《通用数据保护条例》(欧盟)第 6(1)(f)条的规定反对处理您的数据。

e) Dürr Group Integrity Line (Channel for Reporting/Complaints)

We process personal data that is disclosed to us by email, letter, in person, or via our online form called Integrity Line. This data has been disclosed to us in the context of a report regarding a suspected criminal offense or violation of the Dürr Group's Code of Conduct or in the context of human rights or environmental obligations. 

We work with our IT service provider EQS Group AG, Karlstr. 47, 80333 Munich, Germany, who processes the data on our behalf and makes a link to Integrity Line available in the footer of our websites. 

More information on how to submit a complaint under the Supply Chain Due Diligence Act (e.g., on how to contact us and how we process the complaint) can be found on our website

e) 杜尔集团诚信热线(举报/投诉渠道) 

我们处理通过电子邮件、信件、当面或通过名为 「诚信热线」 的在线表格向我们披露的个人数据。这些数据是在举报涉嫌刑事犯罪、违反杜尔集团行为准则、人权或环境义务的情况下披露给我们的。

我们与我们的IT服务提供商EQS Group AG(地址:Karlstr. 47, 80333 Munich, Germany)合作。该公司代表我们处理数据,并在我们网站页脚提供指向诚信热线的链接。

有关如何根据《供应链尽职调查法》(Supply Chain Due Diligence Act)提交投诉的更多信息(例如,如何联系我们以及我们如何处理投诉),请访问我们的网站

Responsibility

Dürr Aktiengesellschaft is solely responsible for operating Integrity Line (contact details can be found in Section 2.1). This responsibility includes processing reports made by external persons, provided that these reports do not concern a data subject employed by a Dürr company. 

If the report concerns a data subject employed by a Dürr company, Dürr Aktiengesellschaft and the employer of the suspected person act as joint controllers under data protection law. This does not apply to Dürr companies in Denmark, Sweden, and Spain. These companies each operate a whistleblower protection portal independently. For a list of companies that belong to the Dürr Group, click here

The following explains in detail how tasks are assigned within this joint responsibility: Companies belonging to the Dürr Group have laid out assigned responsibilities in a contract as follows: Data subjects can approach all joint controllers to exercise their rights as data subjects. Nevertheless, Dürr Aktiengesellschaft will serve as the first point of contact. Dürr Aktiengesellschaft is also responsible for information obligations as defined in Art. 13(f) GDPR. Within their scope of operations, the joint controllers are responsible for fulfilling the required reporting obligations and maintaining documentation; imposing confidentiality obligations on employees; explaining employees' obligations under data protection law to them, and ensuring the technical and organizational security of the data processing.

For more information, employees of the Dürr Group should also read the privacy policies for employees available on the intranet. 

责任

Dürr Aktiengesellschaft 公司全权负责诚信热线的运行(联系方式见第 2.1 节)。该责任包括处理外部人员的报告,前提是这些报告不涉及杜尔公司雇用的数据主体。

如果报告涉及受雇于杜尔公司的数据主体,Dürr Aktiengesellschaft公司和涉嫌人的雇主将根据数据保护法共同承担控制者责任。这不适用于丹麦、瑞典和西班牙的杜尔公司。这些公司各自独立运营举报人保护门户网站。有关杜尔集团下属公司的列表,请单击此处

下面详细说明了在这一共同责任框架内,任务是如何被分配的:杜尔集团旗下的公司已经在合同中明确了各自的责任分配,具体如下:数据主体可以向所有共同控制方提出请求,以行使其数据主体的权利。尽管如此,Dürr Aktiengesellschaft公司将作为首要联系点。Dürr Aktiengesellschaft公司同样负责根据《通用数据保护条例》(欧盟) 第 13(f) 条所定义的信息义务。在各自的业务范围内,共同控制方负责履行必要的报告义务和保持文档记录;对员工施加保密义务;向员工阐明数据保护法律下的义务,并确保数据处理的技术和组织安全性。

如需了解更多信息,杜尔集团的员工也应阅读内网上的员工隐私政策。

Purpose and Data Categories 

We process the personal data of the reporting person as well as of persons affected by the report (e.g., the person who allegedly committed the violation, witnesses). The data is provided to us by the reporting person. We may collect additional data subsequently to clarify facts. The data we process depends on the type and content of the report. For example, reports may contain information about the reporting person (e.g., name, email) and their relationship to Dürr (e.g. employment relationship), as well as information about persons suspected of the violation (e.g., name) and information about the suspected violation (e.g., place, time). 

A secure inbox that is password protected must be opened for each report submitted via Integrity Line. Information on this can be found under "About the secure mailbox" on the Dürr Integrity Line website, as well as under "Confidential treatment of reports and exceptions." 

The data is processed to fulfill legal obligations, for example under the Supply Chain Due Diligence Act (LkSG) and the Whistleblower Protection Act (HinSchG). Both of these laws require us to set up and operate a reporting channel, to document and check reports, and to implement follow-up measures. The reporting persons as well as the persons affected by a report should be afforded special protection. 

Follow-up measures may include initiating internal investigations (including disclosure to external lawyers, auditors, or other professionals bound to confidentiality, as well as to affected Group companies) and, if necessary, involving state authorities (such as the police, public prosecutor's office, or courts).

目的和数据类别  

我们对举报人及受举报影响的个人(例如,被指控违规的人、证人)的个人数据进行处理。这些数据由举报人提供。为了澄清事实,我们可能会进一步收集额外的数据。我们所处理的数据内容取决于举报的具体类型和详细内容。例如,报告中可能包含举报人的信息(如姓名、电子邮箱)以及他们与杜尔的关联性(例如,雇佣关系),还可能包括被怀疑违规者的信息(如姓名)以及有关所疑违规行为的具体信息(如地点、时间)。

通过诚信热线提交的每份报告都必须开设一个受密码保护的安全信箱。有关此信息可在杜尔诚信热线网站 的“关于安全信箱”以及“报告的保密处理及其例外情况”部分找到。

处理数据是为了履行法律义务,例如《供应链尽职调查法》(LkSG)和《举报人保护法》(HinSchG)。这两部法律都要求我们建立和运行举报渠道,记录和检查举报情况,并采取后续措施。举报人和受举报影响的人都应受到特别保护。

后续措施可能包括启动内部调查(包括向外部律师、审计师或其他受保密约束的专业人员以及受影响的集团公司披露),以及在必要时让国家机关(如警方、检察院或法院)介入。

Legal basis

The legal basis for this data processing is as defined in Sections 10 and 12 HinSchG and Art. 6 (1)(f) GDPR, our legitimate interest in complying with obligations arising from the LkSG, and recommendations of the Corporate Governance Code and in investigating and stopping violations. If a report concerns an employee of the Dürr Group, data processing also serves to prevent criminal offenses or other legal violations in connection with the employment relationship (Section 26(1) German Data Protection Act (BDSG), Art. 6 (1)(b) GDPR). According to Section 10(2) HinSchG in conjunction with Art. 9(2)(g) GDPR, the processing of special categories of personal data by a reporting office is permitted notwithstanding Art. 9(1) GDPR if this is necessary to perform its tasks. Section 10(3) HinSchG provides for appropriate and specific measures to protect the fundamental rights and interests of the data subject by referring to Section 22(2) BDSG and the various protective measures available. 

Any transfer of data to Corporate Internal Investigations is based on Art. 6(1)(c) GDPR and Sections 10, 12, 13, and 18 No. 4(a) and 9(3) and (4) No. 2 HinSchG. 

法律依据


数据处理的法律依据是《举报人保护法》(HinSchG)第10条和第12条以及《通用数据保护条例》(欧盟)第6(1)(f)条,我们在遵守《供应链尽职调查法》(LkSG)所规定的义务、公司治理守则的建议以及调查与制止违规行为的正当利益。若报告涉及杜尔集团的员工,数据处理同样旨在预防与雇佣关系相关的刑事犯罪或其他法律违规行为(根据《德国数据保护法》(BDSG)第26(1)条和《通用数据保护条例》(欧盟)第6(1)(b)条)。依照《举报人保护法》(HinSchG)第10(2)条与《通用数据保护条例》(欧盟)第9(2)(g)条的规定, 尽管《通用数据保护条例》(欧盟)第9(1)条有所规定, 报告机构在执行其职责所必需时, 可以处理特殊类别的个人数据。《举报人保护法》(HinSchG)第10(3)条提出了旨在保护数据主体基本权利和利益的适当且具体措施,并引用了《德国数据保护法》(BDSG)第22(2)条和多种保护措施。

任何向公司内部调查转移数据的行为都是基于《通用数据保护条例》(欧盟) 第 6(1)(c) 条、以及《举报人保护法》(HinSchG) 第 10、12、13 条和第 18 条第 4(a) 项、以及第 9(3) 和 (4) 条第 2 项。

Confidential treatment of reports and exceptions 

All reports are treated confidentially and promptly. Any form of discrimination against employees, business partners, or third parties due to a report made in good faith is excluded. This also applies if the report later proves to be unfounded.

Anonymous reporting: It is possible to submit an anonymous report through the reporting channel. Identifying features, such as name or email address, are collected only if the reporting person has answered "yes" to the question asking if they wish to provide their name. Dürr will contact the person directly only if they provide their contact details. To ensure anonymity, please note the Integrity Line information under “About anonymity”.

The reporting person's computer and Integrity Line communicate through an encrypted connection. The IP address of the reporting person's computer is not stored when Integrity Line is in use. To maintain the connection between your computer and the whistleblowing system, a cookie is stored. However, it is valid only until the end of your session and until you close your browser.   

The data submitted to Integrity Line is encrypted and stored with multi-level password protection, so that access is restricted to a very small group of employees authorized expressly for this purpose. We have a strictly role-based authorization concept that follows the need-to-know principle.   Employees of Dürr Aktiengesellschaft's Compliance Department and Corporate Internal Audit responsible for processing reports are specially trained, expressly authorized, and bound to confidentiality. 

Information about attachment transmittal: When submitting a report or sending supplemental information, it is also possible to send attachments to Dürr AG. If you wish to submit a report anonymously, please note the following security information: The files you provide may contain hidden personal data that could jeopardize your anonymity. Remove this data before sending attachments. If you are unable to remove this data or are unsure, copy the text of your attachment into the body of your message.

Submitting a report with stated identity: If the reporting person provides us their name, we are specifically obliged to protect their identity. The same applies to the identity of the persons named in the report, which, in accordance with Section 8(1)(2) HinSchG, is made available only to the persons responsible for receiving reports or implementing follow-up measures. 

Exceptions: There are exceptions to the obligation to protect the confidentiality of the whistleblower's identity if the whistleblower intentionally or with gross negligence reports incorrect information about violations. According to Section 9(2) HinSchG, information about the identity of a whistleblower or other circumstances that allow conclusions to be drawn about the identity of this person may be disclosed if for example, they result from a request from law enforcement authorities, an order in administrative proceedings, or a court decision. The reporting person must always be informed of any such disclosure, unless the requesting body believes that the information would jeopardize related investigations, inquiries, or court proceedings. Furthermore, the identity of the whistleblower may be disclosed to any recipients in accordance with Section 9(3) HinSchG if disclosure is necessary to implement follow-up measures and the whistleblower has previously consented to disclosure in text form as defined in Section 126b of the German Civil Code (BGB). 

The identity of persons who are the subject of a report and of other persons named in the report may be disclosed under the provisions of Section 9(4) HinSchG. Data processing mentioned therein is carried out, for example, on the basis of consent by the data subject pursuant to Art. 6(1) GDPR, whereby consent must be voluntary and informed, or granted on the basis of a legal obligation pursuant to Art. 6(1)(c) GDPR to fulfill the obligation of the internal reporting office to implement follow-up measures pursuant to Section 17(1) No. 6(f) HinSchG.

We would like to point out that in the case of non-anonymous reports, we may be required (possibly once the process is complete) to disclose the identity of the reporting person to the person to whom your report relates. 

举报的保密处理和例外情况

所有举报都会得到保密和及时的处理。  不允许因善意举报而对员工、业务合作伙伴或第三方进行任何形式的歧视。如果事后证明举报毫无根据,这一点也同样适用。

匿名举报:您可以通过举报渠道提交匿名举报。我们仅在举报人在被询问是否愿意提供姓名时回答“是”的情况下,才会收集诸如姓名或电子邮件地址等识别信息。杜尔将仅在举报人提供了联系信息的情况下直接与其取得联系。为确保您的匿名性,请参阅「关于匿名性」的诚信热线相关信息 (https://durr.integrityline.com/app-page;appPageName=Anonymity)。

 举报人的电脑和诚信热线通过加密连接进行通信。  在使用诚信热线时,举报人电脑的IP地址不会被储存。为了保持你的电脑和举报系统之间的连接,会存储一个cookie。不过,它的有效期只到您的会话结束和关闭浏览器为止。   

提交给诚信热线的数据都经过加密,并采用多级密码保护存储,因此只有极少数专门为此目的获得授权的员工才能访问。  我们有严格的基于角色的授权概念,遵循 "需要知道 "原则。  Dürr Aktiengesellschaft公司合规部和公司内部审计部负责处理报告的员工都经过专门培训,获得明确授权,并有保密义务。

附件传输信息: 在提交报告或发送补充信息时,也可以向Dürr AG发送附件。如果您希望匿名提交报告,请注意以下安全信息:您提供的文件可能包含隐藏的个人数据,这可能会危及您的匿名性。在发送附件之前,请删除这些数据。如果您无法删除这些数据或不确定,可将附件文本复制到您的消息正文中。

提交注明身份的报告:如果报告人提供了姓名,我们有义务保护其身份。根据《举报人保护法》(HinSchG)第8(1)(2)条的规定,只有负责接收报告或执行后续措施的人员才能了解报告中所述人员的身份。

例外情况:如果举报人故意或因重大过失举报了不正确的违法信息,保护举报人身份机密的义务也有例外。根据《举报人保护法》(HinSchG)第9(2)条的规定,有关举报人身份的信息或可对该人身份得出结论的其他情况,例如,如果是因执法机关的要求、行政诉讼的命令或法院判决而产生的,则可予以披露。任何此类披露都必须告知举报人,除非请求机构认为该信息会危及相关的调查、询问或法庭程序。此外,如果披露信息是实施后续措施所必需的,且举报人事先同意以《德国民法典》(BGB)第126b条定义的文本形式披露信息,则可根据《举报人保护法》(HinSchG)第9(3)条向任何接收者披露举报人的身份。

根据《举报人保护法》(HinSchG) 第 9(4) 条的规定,可以披露报告中涉及的人员和其他在报告中被提及的人的身份。其中提到的数据处理,例如,可以基于数据主体根据《通用数据保护条例》(欧盟) 第 6(1) 条的同意来进行,其中同意必须是自愿且知情的;或者,基于法律义务,根据《通用数据保护条例》(欧盟) 第 6(1)(c) 条来履行内部报告办公室根据《举报人保护法》(HinSchG) 第 17(1) 条第 6(f) 款实施后续措施的义务。

我们想指出,在非匿名举报的情况下,我们可能会被要求(或许是在程序完成之后)向与您的举报有关的人披露举报人的身份。

Data retention duration

The personal data we collect will be stored until the purposes mentioned above cease to apply and it will then be deleted. In principle, report documentation under the HinSchG is deleted three years after the conclusion of the procedure in accordance with Section 11(5) HinSchG. This does not apply if we are obliged to store the data for a longer period of time in accordance with Article 6(1)(c) GDPR due to statutory retention and documentation obligations (e.g., as defined by the German Commercial Code (HGB), the German Penal Code (StGB), or the German Tax Code (AO)) or are entitled to do so in accordance with Art. 6(1)(f) GDPR, or if the data subject has consented to longer storage in accordance with Art. 6(1)(a) GDPR. 

数据保留期限

我们将保存所收集的个人数据,直至上述目的不再适用,然后予以删除。原则上,根据《举报人保护法》(HinSchG) 第 11(5)条,举报程序结束三年后将删除相关文件。但如果根据《通用数据保护条例》(欧盟) 第 6(1)(c) 条,由于法定保留和文件义务(例如,根据德国商法典(HGB)、德国刑法典(StGB)或德国税法(AO)的规定),我们有义务将数据保存更长时间,或者根据《通用数据保护条例》(欧盟) 第 6(1)(f) 条,我们有权将数据保存更长时间,则上述删除规定不适用。如果数据主体根据《通用数据保护条例》(欧盟) 第 6(1)(a) 条同意延长存储期限,也可以延长存储时间。

Storage location

The data is generally stored within Germany. Some processing may take place in third countries, such as the USA. This is the case, for example, if a translation is required. Data transfers are secured by standard EU contractual clauses. For international transfers, please read Section 1.5.

存储地点

数据一般存储在德国境内。某些处理可能会在美国等第三国进行。例如,在需要翻译的情况下。数据传输受欧盟标准合同条款的保护。关于国际传输,请阅读第 1.5 节。

Obligation to provide data 

Reports are voluntary. However, if a report concerns you, we may be required to investigate the report and process data about you in this context. Under certain circumstances, we may be required to help clarify the allegation. 

提供数据的义务 

举报是自愿的。但是,如果举报与您有关,我们可能需要对举报进行调查,并在此背景下处理有关您的数据。在某些情况下,我们可能需要帮助澄清指控。

Right to object

In Section 1.3 we explain your right to object to the processing of your data on the basis of Art. 6(1)(f) GDPR.

反对权

在第 1.3 节中,我们将说明您有权根据《通用数据保护条例》(欧盟) 第 6(1)(f) 条反对处理您的数据。

2.3 Cookies

We use cookies on our websites. Cookies are small amounts of data in the form of text information that the web server sends to your browser. These cookies are only stored on your hard disk. Cookies can be read only by the server that previously placed them on your device. Cookies do not store any personal information, such as your name. The data stored in the cookies are not linked to your personal data (name, address, etc.).

a) Transient and persistent cookies

Transient cookies are automatically deleted when you close your browser. These include, in particular, session cookies. They store a session ID, which is used to assign different requests from your browser to the joint session. This enables our website to recognize your computer next time you visit. The session cookies are deleted when you log out or close the browser.

We use transient cookies to make our website more user-friendly. Some elements of our website require the calling browser to be identified even after a page change. The following data, for example, are stored and transferred in the cookies:

  • Browser settings regarding cookies (whether they are activated or not)
  • Language settings of the user
  • Login information

We also use persistent cookies on our website that enable us to analyze users’ browsing behavior. Persistent cookies are automatically deleted after a specified period, which can vary depending on the cookie. This allows us to record and analyze the click behavior of users on our websites (the data recorded include, for example, browser data, click frequency, click-through rate, etc.).

The data collected via persistent cookies are pseudonymized using technical measures, which means that it is no longer possible to associate the data with the user. The relevant data are not stored together with other personal data belonging to the users.

2.3 Cookie

我们在网站上使用cookie。cookie是网络服务器发送给您浏览器的文本信息形式的少量数据。这些cookie只存储在您的硬盘上。只有先前在您的设备上放置cookie的服务器才能读取cookie。cookie不会存储任何个人信息,例如您的姓名。cookie中存储的数据与您的个人数据(姓名、地址等)无关。

a) 临时cookie和持久 cookies

当您关闭浏览器时,临时cookie会自动删除。其中尤其包括会话cookie。它们存储一个会话ID,用于将浏览器的不同请求分配到联合会话中。这样,您下次访问时,我们的网站就能识别您的电脑。当您登出或关闭浏览器时,会话 cookie 将被删除。

我们使用临时cookie使我们的网站更方便用户使用。我们网站的某些内容要求在页面更改后仍能识别调用的浏览器。例如,cookie 会存储和传输以下数据:

  • 浏览器有关 cookie 的设置(是否已激活)
  • 用户语言设置
  • 登录信息

我们还在网站上使用持久性 cookie,以便分析用户的浏览行为。持久 cookie 会在指定期限后自动删除,具体期限视 cookie 而定。这使我们能够记录和分析用户在我们网站上的点击行为(记录的数据包括浏览器数据、点击频率、点击率等)。

通过持久性 cookies 收集的数据会通过技术措施进行假名化处理,这意味着无法再将数据与用户联系起来。相关数据不会与用户的其他个人数据一起保存。

b) Tracking/web bugs

Some of our services also use tracking/web bugs or tracking pixels. These are usually code snippets measuring only 1x1 pixel, which are able to identify and recognize your browser ID – the individual fingerprint of your browser. This allows the service provider to see when and how many users have accessed the pixel, or whether and when an email was opened or a website visited.

To block web bugs on our websites, you can use tools such as webwasher, bugnosys, or AdBlock. To block web bugs in our newsletter, please change the settings of your email program so that no HTML is displayed in messages. You can also block web bugs by reading your emails offline. Unless you give your explicit consent, we will not use web bugs to collect personal information about you or to transfer this information to third parties and marketing platforms without your knowledge.

b) 跟踪/网虫

我们的某些服务还使用跟踪/网虫或跟踪像素。这些像素通常是尺寸仅为 1x1 像素的代码片段,能够识别和辨认您的浏览器 ID(您浏览器的个人指纹)。这样,服务提供商就可以知道何时、有多少用户访问过该像素,或者是否、何时打开过电子邮件或访问过网站。

要阻止我们网站上的网络错误,您可以使用 webwasher、buggnosys 或 AdBlock 等工具。要阻止我们的时事通讯中的网页错误,请更改电子邮件程序的设置,使邮件中不显示 HTML。您也可以通过离线阅读电子邮件来阻止网络错误。除非得到您的明确同意,否则我们不会使用网虫收集您的个人信息,也不会在您不知情的情况下将这些信息传输给第三方和营销平台。

c) Local storage

To adapt our services to your needs and make you tailored offers, we use local storage technology in addition to cookies. This technology involves storing certain data in the local cache of your browser. These data are retained after you have closed the browser and can be accessed and read by us again on your next visit to our websites.

Local storage enables us to store your preferences for the use of our websites. The data from the local storage are used on our websites so that, for example, you do not have to make certain selections again after your initial input (Jobcenter/FAQ), so that your choice of certain formats on our websites is retained the next time you visit, or that you are shown an initial selection of interesting articles when you visit the websites.

c) 本地存储

为了使我们的服务适应您的需求,并为您提供量身定制的服务,除了 cookie 之外,我们还使用本地存储技术。该技术包括在浏览器的本地缓存中存储某些数据。这些数据会在您关闭浏览器后保留下来,并在您下次访问我们的网站时再次被我们访问和读取。

本地存储使我们能够存储您在使用我们网站时的偏好。本地存储的数据用于我们的网站,例如,您在首次输入(工作中心/常见问题)后无需再次进行某些选择,以便您下次访问我们的网站时,您对某些格式的选择将被保留,或者当您访问网站时,我们会向您显示初步选择的有趣文章。

d) Legal basis for the use of cookies, web bugs, tracking pixels, etc.

The legal basis for the processing of personal data using technically necessary cookies is Art. 6(1)(f) GDPR in conjunction with section 25(2)(2) of the German Telecommunications and Telemedia Data Protection Act (TTDSG).

The purpose of using necessary cookies is to simplify the use of websites for users. Some functions of our website cannot be offered without the use of cookies. For these, it is necessary for the browser to be recognized even after a page change.

You have no right of objection to necessary cookies, as they are essential for us to be able to show you our website and its contents, and to make the functionality of the website available to you.

The user data collected by necessary cookies are not used to create user profiles.

Technologies for increasing the functionality and for analytical and marketing purposes are used to improve the quality of our website and its content. The analysis cookies enable us to learn how the website is used and to continuously optimize our offering. Processing, in particular on your device, that is based on cookies or other identifiers (e.g. browser fingerprints, pixels, local storage) (referred to as “cookies”) and is not technically required for the function of our websites, will be carried out by us only with your consent, which you can grant via our cookie banner when visiting our websites for the first time. The legal basis for this cookie-based processing is Art. 6(1)(a) GDPR in conjunction with section 25(1) of the German Telecommunications and Telemedia Data Protection Act (TTDSG). Cookies that are not required for the functioning of our websites will not be stored until you have given your consent.

d) 使用 cookie、网虫、跟踪像素等的法律依据。

使用技术上必要的 cookie 处理个人数据的法律依据是《通用数据保护条例》(欧盟)第6(1)(f)条以及《德国电信和媒体数据保护法》(TTDSG)第 25(2)(2)条。

使用必要 cookie 的目的是简化用户对网站的使用。如果不使用 cookie,我们网站的某些功能就无法提供。为此,即使在页面更改后,也必须对浏览器进行识别。

您无权反对必要的 cookie,因为它们对于我们向您展示网站及其内容以及向您提供网站功能至关重要。

必要的 cookies 收集的用户数据不会用于创建用户配置文件。

用于提高功能性以及分析和营销目的的技术用于提高我们网站及其内容的质量。分析 cookie 使我们能够了解网站的使用情况,并不断优化我们的服务。对于基于 cookie 或其他标识符(如浏览器指纹、像素、本地存储)(简称 "cookie")的处理,特别是在您的设备上的处理,在技术上并非我们网站功能所必需,只有在您同意的情况下,我们才会进行处理。这种基于 cookie 的处理的法律依据是《通用数据保护条例》(欧盟)第 6(1)(a)条)与德国电信和电信媒体数据保护法(TTDSG)第 25(1)条。在您同意之前,我们不会存储网站运行所不需要的 cookie。

e) Withdrawal of consent given for the use of cookies, web bugs, tracking pixels, etc.

You can withdraw your consent for the collection of data by cookies at any time. You must follow these steps to do so:

  • Open the settings for cookies on our websites via the “Cookies” footer
  • In the next window that opens, you have the option to withdraw your consent to data processing for individual categories of cookies and similar technologies (e.g. data storage in the local storage)

    Please note: Adblockers may block our Cookie banner. If you use such a blocking technology, you can withdraw your consent to Cookies which are not technically necessary by clicking here. If you click on the above link, the technically unnecessary cookies will be deleted. 

You can also delete cookies at any time or adjust your browser’s corresponding cookie settings. For more information about how you can delete and/or manage cookies using your browser’s settings, please see your browser’s help pages. Data can also be removed from local storage by emptying your browser's local storage.

e) 撤回对使用 cookie、网虫、跟踪像素等的同意。

您可以随时撤销对使用 cookies 收集数据的同意。您必须按照以下步骤进行操作:

  • 通过 "cookies "页脚打开我们网站上的 cookies 设置
  • 在打开的下一个窗口中,您可以选择撤销对个别类别 cookie 和类似技术(如本地存储中的数据存储)的数据处理同意。

    请注意:广告屏蔽器可能会屏蔽我们的 cookie 横幅。如果您使用这种屏蔽技术,您可以点击此处撤销对技术上不必要的 cookie 的同意。 

您也可以随时删除 cookie 或调整浏览器相应的 cookie 设置。有关如何使用浏览器设置删除和/或管理 cookie 的详细信息,请参阅浏览器的帮助页面。也可以通过清空浏览器的本地存储来删除本地存储中的数据。

f) List of the cookies used

Below is a list of the individual cookies used on our websites. We make every effort to keep this table up to date. However, please note that third-party cookies can be changed without our knowledge and that there may therefore be individual differences from the table below. The key information is the details of the various services that you can find in sections 2.2 and 2.4 ff., including the references there.

f) 使用的 cookie 列表

以下是我们网站使用的单个 cookie 列表。我们会尽一切努力更新此表。但请注意,第三方 cookie 可能会在我们不知情的情况下进行更改,因此可能与下表存在个别差异。关键信息是各种服务的详细信息,您可以在第 2.2 节和第 2.4节及其后各节中找到,包括其中的参考文献。

Name of cookie Type of cookie Name of application Purpose of cookie Storage duration
Consent-analysis Technically required Cookie banner This cookie is used by the cookie banner to store the selection for analysis cookies. The banner will subsequently no longer appear on each page. 6 months
Consent-functional Technically required Cookie banner This cookie is used by the cookie banner to store the selection for functional cookies. The banner will subsequently no longer appear on each page. 6 months
Consent-marketing Technically required Cookie banner This cookie is used by the cookie banner to store the selection for marketing cookies. The banner will subsequently no longer appear on each page.  6 months
Consent-youtube, Consent-maps-google, Consent-maps-baidu, Consent-maps-yandex, Consent-socialstream Technically required YouTube, map services, social feeds Part of the two-click solution for the GDPR-compliant use of plugins; used for the recording and recognition of those users who have given their consent to the transfer of data via the plugin concerned. 6 months
fe_typo_user Technically required Login Enables logins from the front end, e.g. in the download center. Until the end of the session
_pk_id.<websiteID>.<domainHash> Analyse Piwik PRO This cookie matches all activities of one user with a specific user ID. The ID is randomly generated during a user's first visit to our website and does not allow us to identify the individual. 13 months
_pk_ses.<websiteID>.<domainHash> Analyse Piwik PRO This cookie indicates an active session of the visitor. 30 minutes
CONSENT Marketing Google Google uses the “CONSENT” cookie to save a user’s cookie decisions. 2 years
SOCS Marketing Google Used to save a user’s cookie decisions. 13 months
AEC Marketing Google This ensures that requests made during a browser session originate from the user and not from other websites. 6 months
LSKey-c$CookieConsentPolicy Required Pardot Webshop Used to apply the end user’s cookie settings determined by our client service program. Salesforce Lightning uses LSKey[<namespace>] as a prefix. 1 year
Oid Required Pardot Webshop Used to direct a user to the correct Salesforce organization and to help the user with the next login. 2 years
clientSrc Required Pardot Webshop Used for security purposes. Until the end of the session
Sid Required Pardot Webshop Used to validate the user’s session. Until the end of the session
Inst Required Pardot Webshop Used to direct requests to an instance when bookmarks and hard-coded URLs send requests to another instance. This type of forwarding can take place after an organizational migration, a division, or a URL update. Until the end of the session
pctrk Required Pardot Webshop Used to distinguish guest users from one another. No user information is stored. 1 year
force-proxy-stream Required Pardot Webshop Ensures that client requests reach the same proxy hosts and that content from the cache is very likely to be accessed. 1 hour
BrowserId_sec Required Pardot Webshop Used for security purposes. Makes it possible to track several login attempts from the same browser in order to identify threads and malicious players (HTTPS). 1 year
CookieConsentPolicy Required Pardot Webshop Used to implement the end user’s cookie settings determined by our client service program. 1 year
force-stream Required Pardot Webshop Used to direct server requests for sticky sessions. 1 year
sid_Client Required Pardot Webshop Used to validate orgid and userid on the client side. Until the end of the session
RRetURL Required Pardot Webshop Used for “Login as” to return to the original page. Until the end of the session
BrowserId Required Pardot Webshop Used for security purposes. Makes it possible to track several login attempts from the same browser in order to identify threads and malicious players (HTTPS). 1 year
sfdc-stream Required Pardot Webshop Used to transfer server requests correctly within the Salesforce infrastructure for sticky sessions. 1 hour
RSID Required Pardot Webshop Used to allow an admin user to log in as one of their organization’s users. Until the end of the session
renderCtx Required Pardot Webshop Used to store site parameters in the session for reuse via requests from an individual client for functional and performance reasons. Until the end of the session
visitor_id<accountid> Analysis Pardot Salesforce The visitor cookie contains a unique visitor ID and a unique identifier for your account. For example, the cookie named visitor_id12345 stores the visitor ID 1010101010. The account identifier 12345 ensures that the visitor is tracked via the correct Pardot account. The visitor value is the visitor_id in your Pardot account. This cookie is stored for visitors by the Pardot tracking code. 180 days
pi_opt_in<accountid> Required Pardot Salesforce If the opt-in settings for tracking are activated, the pi_opt_in cookie is stored with an “or” value if the visitor decides for or against tracking. When a visitor logs in, the value is set to “true” and the visitor is given a cookie and is tracked. When the visitor logs out or ignores the opt-in banner, the value of the opt-in cookie is set to “false.” The visitor cookie is deactivated, and the visitor is not tracked. 180 days
visitor_id<accountid>-hash Analysis Pardot Salesforce The visitor hash cookie contains an account ID and stores a unique hash. For example, the cookie named visitor_id12345-Hash stores the hash "855c3697d9979e78ac404c4ba2c66533” and the account ID is 12345. This cookie is a security measure to prevent malicious users from pretending to be visitors to Pardot and from accessing information about potential customers. 180 days
lpv<accountid> Analysis Pardot Salesforce This LPV cookie is stored to prevent Pardot from tracking several page calls for a single asset during a 30-minute session. For example, if a visitor reloads a destination page several times during a period of 30 minutes, this cookie prevents every reload of the page from being tracked as a page call. Until the end of the session
Pardot Required Pardot Salesforce A session cookie with the name pardot is stored in your browser while you are logged into Pardot as a user or when a visitor accesses a form, a destination page, or a page with a Pardot tracking code. The cookie identifies an active session and is not used for tracking. Until the end of the session
li_fat_id Marketing LinkedIn This cookie is an indirect identifier for members that is used for conversion tracking, retargeting, and analyses. 30 days
lidc Marketing LinkedIn This cookie facilitates data center selection. 24 hours
bcookie Marketing LinkedIn Browser identifier 2 years
UserMatchHistory Marketing LinkedIn This cookie synchronizes the IDs of LinkedIn ads. 30 days
li_giant Marketing LinkedIn Indirect identifier for groups of LinkedIn members that is used for conversion tracking. 7 days
BizographicsOptOut Marketing LinkedIn This cookie is used to determine the opt-out status for third-party tracking. 10 years
lang Marketing LinkedIn This cookie saves a user’s language setting to ensure that LinkedIn.com is displayed in the language the user selected in their settings. Session
li_gc Marketing LinkedIn This cookie saves the visitors’ consent to the use of nonessential cookies. 6 months
li_mc Marketing LinkedIn This cookie is used as a temporary cache to avoid database queries concerning a member’s consent to the use of nonessential cookies. It is also used to provide consent information on the customer side to enforce the consent on the customer side. 6 months
liap Marketing LinkedIn Domains use this cookie without the “www” addition to indicate a member’s login status. 1 year
sdsc Marketing LinkedIn This is a signed context cookie for the data service. It is used for data base routing and is intended to ensure consistency across data bases in the event of changes. This ensures that user inputs are available to the sending user immediately after submission. Session
AnalyticsSyncHistory Marketing LinkedIn This cookie saves the time when synchronization with the “lms_analytics cookie” took place. 30 days
lms_ads Marketing LinkedIn This cookie identifies logged-off LinkedIn members for LinkedIn ads. 30 days
lms_analytics Marketing LinkedIn This cookie identifies logged-off LinkedIn members for analytical purposes. 30 days
ln_or Marketing Oribi Used to determine whether Oribi analyses can be performed for a specific domain. 1 day
x-ms-cpim-admin Functionality Azure AD Contains cross-client data on the user’s membership: Clients that a user belongs to and the level of membership (“admin” or “user”). End of the browser session
x-ms-cpim-slice Functionality Azure AD For transferring requests to the corresponding production instance. End of the browser session
x-ms-cpim-trans Functionality Azure AD For tracking transactions (number of authentication requests to Azure AD B2C) and the current transaction. End of the browser session
x-ms-cpim-sso:{Id} Functionality Azure AD For managing the session with single sign-on (SSO). This cookie is set to persistent if persistent is activated. End of the browser session
x-ms-cpim-cache:{id}_n Functionality Azure AD For managing the request status. End of the browser session, successful authentication
x-ms-cpim-csrf Functionality Azure AD Token for cross-site request forgery (CSRF) to protect against CSRF attacks. End of the browser session
x-ms-cpim-dc Functionality Azure AD For Azure AD B2C network routing. End of the browser session
x-ms-cpim-ctx Functionality Azure AD Context End of the browser session
x-ms-cpim-rp Functionality Azure AD For storing membership data for the resource provider client. End of the browser session
x-ms-cpim-rc Functionality Azure AD For storing the relay cookie. End of the browser session
IDE Marketing GoogleAds Contains a randomly generated user ID. Using this ID, Google can recognize the user on different websites across different domains and display personalized ads. 1 year
test_cookie Marketing GoogleAds Contains a randomly generated user ID. Using this ID, Google can recognize the user on different websites across different domains and display personalized ads. 15 minutes
_gcl_aw Marketing GoogleAds This cookie is set when a user accesses the website by clicking a Google advertisement. It contains information about which advertisement was clicked, enabling successes such as orders or contact requests to be assigned to the advertisement. 90 days
_gcl_au Marketing GoogleAds Google AdSense uses this cookie to adjust the advertising efficiency on websites that use its services (the cookie contains a randomly generated user ID). 3 months
NID Marketing GoogleAds Used to adapt advertising to Google searches. The cookie includes a unique ID that enables Google to collect users’ personal settings for advertising purposes. 6 months
1P_JAR Marketing GoogleAds This cookie collects statistics on website use and measures conversions. The cookie is also used to display relevant ads to users. 30 days
OTZ Marketing GoogleAds Used to support Google’s advertising services. 1 month
DV Marketing GoogleAds Used to support Google’s advertising services. 1 day
MUID Marketing Microsoft Advertising Widely used by Microsoft as a unique user ID. The cookie allows for user tracking by synchronizing the ID in several Microsoft domains. 390 days
_EDGE_S Marketing Microsoft Advertising Collects information about user behavior on several websites. This information is used on the website to optimize the relevance of the advertising. Session
_clck Marketing Microsoft Advertising Collects data about the navigation and the behavior of the user on the website. This data is used to create statistical reports and heat maps for the website operator. 1 year
_uetvid Marketing Microsoft Advertising Used to track users on several websites in order to display relevant advertising based on the user’s preferences. 390 days
_uetsid Marketing Microsoft Advertising Collects data about user behavior on several websites in order to display more relevant advertising. This also allows the website to limit the number of times the same ad is displayed. 1 day
_clsk Marketing Microsoft Advertising Records statistical data about the behavior of the visitor on the website. 1 day
ComponentDefStorage__MUTEX_X, GlobalValueProviders__MUTEX_X, GlobalValueProviders__MUTEX_Y Marketing shop.homag.com Used to track users on several websites to display relevant advertising based on the user’s preferences. Persistent

g) Google Tag Manager

We use Tag Manager for website tracking, delivering advertising, and displaying elements of the website of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google Ireland Ltd. is a subsidiary of Google LLC with headquarters in the USA. Any Google service may transfer your data that has been collected by Google (e.g. your IP address) to the USA (for more information on third-country transfers, please refer to section 1.5). The transfer takes place on the basis of the standard contractual clauses of the EU Commission.

Google Tag Manager makes it easier for us to integrate and manage our cookies and Google tools. Google Tag Manager is also an assistant that processes even personal data only for technically necessary purposes. However, the other components uploaded by Google Tag Manager will, if necessary, process other data for other purposes that Google can combine with other data. You can find further information about Google Tag Manager in the Google privacy policy at https://policies.google.com/privacy?hl=en-US. You can find further information about Google Tag Manager at: https://www.google.com/intl/de/tagmanager/use-policy.html.

The legal basis for the related processing of data is your consent, Art. 6(1)(a) GDPR. Without your consent, we will use Google Tag Manager only for the correct display of elements of our websites (but not for tracking and advertising).

Withdrawal of consent

You can withdraw your consent to the processing of your data by the services and networks integrated via the plugins at any time with future effect if you follow the instructions in section 2.3 e).

You can also prevent the data relating to your use of the website (including your IP address) from being collected and transferred to Google and prevent Google from processing these data by downloading and installing the browser plugin available via the following link: http://tools.google.com/dlpage/gaoptout?hl=en.

g) 谷歌标签管理器

我们使用 Tag Manager 进行网站跟踪、发布广告以及显示 Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland(以下简称 "谷歌")网站的元素。Google Ireland Ltd.是Google LLC的子公司,总部设在美国。任何谷歌服务都可能将谷歌收集到的您的数据(例如您的 IP 地址)传输到美国(有关第三国传输的更多信息,请参阅第 1.5 节)。这种转移是根据欧盟委员会的标准合同条款进行的。

谷歌标签管理器(Google Tag Manager)使我们更容易整合和管理我们的 cookies 和谷歌工具。谷歌标签管理器也是一个助手,它甚至只出于技术上的必要目的处理个人数据。但是,谷歌标签管理器上传的其他组件会在必要时处理其他数据,用于其他目的,谷歌可以将这些数据与其他数据结合起来。有关谷歌标签管理器的更多信息,请参阅 https://policies.google.com/privacy?hl=en-US 上的 Google 隐私政策。有关谷歌标签管理器的更多信息,请访问:https://www.google.com/intl/de/tagmanager/use-policy.html。 

相关数据处理的法律依据是您的同意,即《通用数据保护条例》(欧盟)第 6(1)(a)条。未经您的同意,我们将使用谷歌标签管理器仅用于正确显示我们网站的元素(但不用于跟踪和广告)。

撤销同意

如果您按照第 2.3 e) 条中的说明操作,您可以随时撤销对通过插件集成的服务和网络处理您的数据的同意,并在未来生效。

您也可以通过下载和安装以下链接提供的浏览器插件,阻止收集和向谷歌传输与您使用网站有关的数据(包括您的 IP 地址),并阻止谷歌处理这些数据:http://tools.google.com/dlpage/gaoptout?hl=en。 

2.4 Plugins for social media and map services

We have a presence on social media. For more information, please refer to section 3 of our privacy policy.

Here you will find information about how we integrate features and tools from social media channels and map services into our websites:

All the buttons for social networks and map services are integrated into our websites via placeholders. The buttons are only loaded when you click on the “Agreed” button in the respective placeholder. Only then will a connection be made to the servers of the relevant third-party provider and the information about your visit to our websites transferred. Before this, a text field will appear containing further information about the details of the possible transfer of data to third-party providers, with reference being made to this part of our privacy policy.

Your usage data will be transferred only when you are logged into your account on the social network or service concerned (e.g. Google account – Google Maps). By clicking on the placeholder of the button, you consent to the processing of the data as described in this section of our privacy policy.

In this case, the legal basis for the processing of your data is the consent you have given by clicking on the button, in accordance with Art. 6(1)(a) GDPR. Your consent to the transmission of data is documented in a cookie stored on your device.

Withdrawal of consent

You can withdraw your consent to the processing of your data by the services and networks integrated via the plugins at any time with future effect if you follow the instructions in section 2.3 e).

We use plugins from the following providers:

2.4 社交媒体和地图服务插件

我们有经营社交媒体。如需了解更多信息,请参阅我们的隐私政策第 3 节。

在这里,您将了解到我们如何将社交媒体渠道和地图服务的功能和工具整合到我们的网站中:

社交网络和地图服务的所有按钮均通过占位符集成到我们的网站中。只有当您点击相应占位符中的 "同意 "按钮时,这些按钮才会被加载。只有这样,才会与相关第三方供应商的服务器建立连接,并传输您访问我们网站的相关信息。在此之前,会出现一个文本字段,其中包含有关可能向第三方提供商传输数据详情的更多信息,请参阅我们隐私政策的这一部分。

您的使用数据只有在您登录相关社交网络或服务(如谷歌帐户 - 谷歌地图)的帐户时才会被传输。点击该按钮的占位符,即表示您同意按照我们隐私政策本节所述的方式处理数据。

在这种情况下,处理您的数据的法律依据是您点击按钮所表示的同意,依据《通用数据保护条例》(欧盟)第 6(1)(a)条的规定。您对数据传输的同意记录在存储在您设备上的 cookie 中。

撤销同意

如果您按照第 2.3 e) 条中的说明操作,您可以随时撤销对通过插件集成的服务和网络处理您的数据的同意,并在未来生效。

我们使用以下供应商提供的插件:

a) Twitter

We have integrated plugins from the social network Twitter into our website. Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA, has exclusive responsibility for Twitter and its websites. Twitter is a company headquartered in the USA. It is therefore likely that your data that is collected by Twitter will be transferred to the USA. For information on third-country transfers, please refer to section 1.5.

Details of the Twitter plugin:

If you have activated the plugin, tweets will be loaded and a connection will be made to the Twitter servers. If are logged into your Twitter user account, certain information and user data will be passed on to Twitter, including the fact that you have visited our website. This information will be transferred to Twitter, where it will be stored and, in certain circumstances, will also be forwarded to third parties, in particular advertising partners of Twitter. However, this will only happen if you are logged into your Twitter user account. To prevent data from being transferred to Twitter, you must log out of your Twitter user account before you click on Twitter links in our websites. Please note that the functions assigned to the Twitter links, in particular the transfer of information and user data to Twitter, are not activated by visiting our websites but only by clicking on the plugin.

You can obtain further information about the purpose and extent of data collection and the further processing and use of your data by Twitter and the data storage period from Twitter’s privacy policy. This can be found on the Internet at https://twitter.com/en/privacy. Here you will also find, for example, information about optional settings to protect your privacy and about your additional rights relating to the collection, processing, and use of your data by Twitter, and about how to withdraw your consent.

a) Twitter

我们在网站中集成了社交网络 Twitter 的插件。Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA 对 Twitter 及其网站负有独家责任。Twitter 是一家总部位于美国的公司。因此,Twitter 可能会将收集到的您的数据传输到美国。有关第三国传输的信息,请参阅第 1.5 节。

Twitter 插件的详细信息: 

您可以从 Twitter 的隐私政策中进一步了解 Twitter 收集数据、进一步处理和使用您的数据的目的和范围以及数据存储期限。该政策可在互联网上找到:https://twitter.com/en/privacy。例如,您还可以在此找到关于保护您隐私的可选设置的信息,以及关于您在 Twitter 收集、处理和使用您的数据方面的其他权利和如何撤销同意的信息。 如果您已激活插件,则将加载推文并与 Twitter 服务器建立连接。如果您登录了 Twitter 用户账户,某些信息和用户数据将传递给 Twitter,包括您访问过我们网站的事实。这些信息将被传输到 Twitter,并在那里存储,在某些情况下,还将转发给第三方,特别是 Twitter 的广告合作伙伴。不过,这只有在您登录 Twitter 用户账户后才会发生。为了防止数据被传送到 Twitter,您必须在点击我们网站上的 Twitter 链接之前登出您的 Twitter 用户帐户。请注意,Twitter 链接的指定功能,尤其是向 Twitter 传输信息和用户数据的功能,并非通过访问我们的网站激活,而只能通过点击插件激活。

b) YouTube (Google)

We have integrated videos and a social stream on our websites from the provider YouTube LLC, 901 Cherry Avenue, San Bruno, CA 94066, USA (“YouTube”). YouTube is represented by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google Ireland Ltd. is a subsidiary of Google LLC with headquarters in the USA. Any Google service may transfer your data that has been collected by Google to the USA (for more information on third-country transfers, please refer to section 1.5). The transfer takes place on the basis of the standard contractual clauses of the EU Commission.

Details of the YouTube plugin:

The YouTube videos on our video channel are only loaded when you click on the corresponding plugin, at which point a connection will be established with Google’s servers.

To embed videos we use the enhanced privacy mode, which imposes further restrictions on the processing of data by Google. In this case, according to Google, no information about the users of our website will be stored until these users watch the embedded video. However, it is still possible that data will be forwarded to Google partners.

Once you have activated the plugin, a connection will be established to Google’s servers and Google will collect data about which of our pages you have visited. Google collects further data about your browsing behavior when you are logged into your YouTube account. To prevent your usage data from being transferred to Google, you must log out of your YouTube account before you click on the YouTube links on our website.

You can obtain further information about the purpose and extent of data collection and the further processing and use of your data by YouTube and the data storage period from YouTube’s privacy policy. This can be found on the Internet at https://www.youtube.com/account_privacy. Here you will also find, for example, information about optional settings to protect your privacy and about your additional rights relating to the collection, processing, and use of your data by YouTube, and about how to withdraw your consent. If you do not have your own YouTube account, you can find the Google privacy policy at https://policies.google.com/privacy?hl=en-US.

b) YouTube(谷歌) 

我们在网站上集成了 YouTube LLC(地址:901 Cherry Avenue, San Bruno, CA 94066, USA,简称 "YouTube")提供的视频和社交流。YouTube 由位于Gordon House, Barrow Street, Dublin 4, Ireland的Google Ireland Limited("谷歌")代理。Google Ireland Ltd. 是总部位于美国的 Google LLC 的子公司。谷歌的任何服务都可能将谷歌收集的您的数据传输到美国(有关第三国传输的更多信息,请参阅第 1.5 节)。这种转移是根据欧盟委员会的标准合同条款进行的。

YouTube 插件的详细信息: 

我们视频频道上的 YouTube 视频只有在您点击相应插件时才会加载,此时会与谷歌服务器建立连接。

为了嵌入视频,我们使用了增强隐私模式,该模式对谷歌的数据处理施加了进一步的限制。在这种情况下,根据谷歌的规定,在我们网站的用户观看嵌入的视频之前,不会存储这些用户的任何信息。但仍有可能将数据转发给谷歌合作伙伴。

激活插件后,将与 Google 服务器建立连接,Google 将收集您访问过我们哪些网页的数据。当您登录 YouTube 帐户时,谷歌还会收集有关您浏览行为的更多数据。为了防止您的使用数据被传输到谷歌,您必须在点击我们网站上的 YouTube 链接之前登出您的 YouTube 帐户。

您可以从 YouTube 的隐私政策中获得更多关于数据收集的目的和范围、YouTube 对您的数据的进一步处理和使用以及数据存储期限的信息。该政策可在互联网上找到:https://www.youtube.com/account_privacy。例如,您还可以在这里找到有关保护您的隐私的可选设置的信息、有关您在YouTube收集、处理和使用您的数据方面的其他权利的信息,以及有关如何撤销您的同意的信息。如果您没有自己的 YouTube 帐户,您可以在 https://policies.google.com/privacy?hl=en-US 上找到 Google 的隐私政策。

c) Map services

(1) Google Maps

We use a plugin of the Internet service Google Maps on our website. The operator of Google Maps is Google Ireland Limited (for details of Google, see section 2.4 b)). Once you activate the Google Maps plugin on our website, information about the use of this website and your IP address is transferred to a Google server in the USA and also stored on this server. We have no knowledge either of the exact content of the data transferred or of how the data are used by Google. In this context, the company states that it does not connect the data with information from other Google services and the collection of personal data.

By activating the plugin, you consent to the information being collected and processed by Google as described. You can find more information about the privacy policy and terms of use for Google Maps here: https://www.google.com/help/terms_maps/

(2) Baidu Maps

We use a plugin of the Internet service Baidu on our website. The operator of Baidu Maps is Baidu Inc, Baidu Campus, No. 10 Shangdi 10th Street, Haidian District, Beijing, 100085 China (“Baidu”). Please note that we offer the Baidu service only to people outside the EU and the EEA. If you activate the Baidu Maps plugin on our website, information about the use of this website and your IP address is transferred to a Baidu server and also stored on this server. We have no knowledge either of the exact content of the data transferred or of how the data are used by Baidu. Therefore, we accept no liability for the processing of the data.

When you activate the plugin, you declare that you are outside the EU and the EEA and that you consent to the information being collected and processed by Baidu as described. You can find more information about the privacy policy and terms of use for Baidu Maps here: http://ir.baidu.com/baidu-statement-privacy-protection/

(3) Yandex.Maps

We use a plugin of the Internet service Yandex on our website. The operator of Yandex.Maps is YANDEX LLC, Ulitsa Lva Tolstogo 16, Moscow, 119021 Russia (“Yandex”). Please note that we offer the Yandex service only to people outside the EU and the EEA. If you activate the Yandex.Maps plugin on our website, information about the use of this website and your IP address is transferred to Yandex servers in Russia and the EEA and also stored on these servers. We have no knowledge either of the exact content of the data transferred or of how the data are used by Yandex. Yandex itself indicates that personal data collected via its services are aggregated and merged in your Yandex user account if you are logged into it while using Yandex.Maps on our websites. Therefore, we accept no liability for the processing of the data.

When you activate the plugin, you declare that you are outside the EU and the EEA and that you consent to the information being collected and processed by Yandex as described. You can find more information about the privacy policy and terms of use for Yandex.Maps here: https://yandex.com/legal/confidential/

c) 地图服务 

(1) 谷歌地图

我们在网站上使用互联网服务 Google Maps 的插件。谷歌地图的运营商是Google Ireland Limited(有关谷歌的详细信息,请参见第 2.4 b) 节)。一旦您在我们的网站上激活谷歌地图插件,有关使用本网站的信息和您的 IP 地址就会被传输到谷歌在美国的服务器上,并存储在该服务器上。我们既不知道传输数据的确切内容,也不知道谷歌如何使用这些数据。在这种情况下,谷歌公司声明不会将这些数据与谷歌其他服务的信息以及个人数据的收集联系起来。

激活插件即表示您同意谷歌按上述方式收集和处理信息。有关 Google 地图隐私政策和使用条款的更多信息,请访问:https://www.google.com/help/terms_maps/

(2) 百度地图 

我们在网站上使用互联网服务百度的插件。百度地图的运营商是百度公司,地址为中国北京市海淀区上地十街 10 号百度园区,邮编 100085("百度")。请注意,我们仅向欧盟和欧洲经济区以外的用户提供百度服务。如果您在我们的网站上激活百度地图插件,有关使用本网站和您的 IP 地址的信息将被传输到百度服务器,并存储在该服务器上。我们既不知道传输数据的确切内容,也不知道百度如何使用这些数据。因此,我们对数据的处理不承担任何责任。

当您激活该插件时,您声明您不在欧盟和欧洲经济区,并同意百度按上述方式收集和处理信息。有关百度地图隐私政策和使用条款的更多信息,请访问:http://ir.baidu.com/baidu-statement-privacy-protection/

(3) Yandex.Maps

我们在网站上使用互联网服务 Yandex 的插件。Yandex.Maps 的运营商是 YANDEX LLC, Ulitsa Lva Tolstogo 16, Moscow, 119021 Russia("Yandex")。请注意,我们仅向欧盟和欧洲经济区以外的用户提供 Yandex 服务。如果您在我们的网站上激活 Yandex.Maps 插件,有关使用本网站的信息和您的 IP 地址将被传输到 Yandex 在俄罗斯和欧洲经济区的服务器上,并存储在这些服务器上。我们既不知道传输数据的确切内容,也不知道 Yandex 如何使用这些数据。Yandex 本身指出,如果您在我们的网站上使用 Yandex.Maps 时登录了您的 Yandex 用户帐户,则通过其服务收集的个人数据会被汇总并合并到您的 Yandex 用户帐户中。因此,我们对数据处理不承担任何责任。

当您激活该插件时,您声明您不在欧盟和欧洲经济区,并同意 Yandex 按上述方式收集和处理信息。有关 Yandex.Maps 隐私政策和使用条款的更多信息,请访问:https://yandex.com/legal/confidential/。 

2.5 Hyperlinks to social networks

We also have links on our websites to social media platforms where we have a profile. These consist of the icons of the social media platforms that have links to our pages on the relevant platforms. Social plugins (such as the Facebook “Like” button) are not integrated in these cases.

Our links to the social media services do not result in any of your data being transferred to these services. These are normal hyperlinks that generally do not involve any transfers of data. Clicking on the link will take you directly to our social media presence with the respective social media service. Data are only transferred if you are logged into your user account with the social media service in question.

By clicking on the links, you are personally responsible for the data transfer to the above-mentioned social networks because by logging into your social network account and following the link in question, you become actively involved and initiate the subsequent processing of data by the relevant social network.

Please refer to the privacy policy for our social media presence in section 3.

2.5 与社交网络的超链接

我们还在网站上设置了与我们拥有个人资料的社交媒体平台的链接。这些链接由社交媒体平台的图标组成,并链接到我们在相关平台上的页面。在这种情况下,不会集成社交插件(如 Facebook "赞 "按钮)。

我们与社交媒体服务的链接不会将您的任何数据传输到这些服务。这些都是正常的超链接,一般不涉及任何数据传输。点击链接后,您将直接进入我们在相应社交媒体服务中的社交媒体页面。只有在您登录到相关社交媒体服务的用户账户时,数据才会被传输。

通过点击链接,您本人要对将数据传输到上述社交网络负责,因为通过登录您的社交网络账户并点击相关链接,您将积极参与并启动相关社交网络对数据的后续处理。

请参阅第 3 部分中有关我们社交媒体的隐私政策。

2.6 Analysis services

a) Piwik PRO

We use the Piwik PRO Analytics Suite analysis tool, a cloud-based web analysis service provided by Piwik PRO GmbH in Germany, for the statistical and analytical evaluation of certain data.

We process the data collected by the analysis tool solely on the basis of your prior consent, in order to continuously improve the services and offers on our website and to ensure that they remain available for our customers. The legal basis for the data processing is Art. 6(1)(a) GDPR.

Piwik PRO uses cookies (for more information on cookies, see section 2.3). The data collected includes, for example, the truncated IP address, operating system, browser ID, browsing activity and other information. You can find more information about the data collected by Piwik PRO at https://help.piwik.pro/support/privacy/what-data-does-piwik-pro-collect/.

To exclude the possibility of the IP address being linked to an individual person, we have ensured that Piwik PRO uses only IP addresses that have been truncated by two bytes. In addition, Piwik PRO is hosted on Microsoft Azure servers in Germany (for more information about Microsoft and a possible third country transfer, see section 2.2 b) and section 1.5 above). The data is deleted after 25 months.

Piwik PRO calculates metrics such as bounce rate, page views, and sessions, among others, so we can understand how our website is being used. We can also create visitor profiles using browsing history, which enables us to analyze visitor behavior, display personalized content, and run online campaigns. Piwik PRO does not transfer website visitor data to other sub-processors or to third parties and does not use the data for its own purposes. You can find more information about data protection at Piwik PRO here and in the Piwik PRO privacy policy.

You can prevent cookies from being stored by selecting the appropriate settings in your browser. However, please note that if you do so, you may not be able to use the full functionality of this website.

Withdrawal of consent

You can prevent Piwik PRO from collecting data related to your use of the website and from processing the data in the future by following the instructions in section 2.3 e) above and withdrawing your consent.

2.6 分析服务

a) Piwik PRO

我们使用 Piwik PRO Analytics Suite 分析工具对某些数据进行统计和分析评估,该工具是由德国的 Piwik PRO GmbH 提供的基于云的网络分析服务。

我们仅在您事先同意的基础上处理通过分析工具收集的数据,以便不断改进我们网站上的服务和产品,并确保这些服务和产品可供客户使用。数据处理的法律依据是《通用数据保护条例》(欧盟)第 6(1)(a)条。

Piwik PRO 使用 cookie(关于 cookie 的更多信息,请参见第 2.3 节)。收集的数据包括截断的 IP 地址、操作系统、浏览器 ID、浏览活动和其他信息。有关 Piwik PRO 收集数据的更多信息,请访问 https://help.piwik.pro/support/privacy/what-data-does-piwik-pro-collect/。 

T为了排除 IP 地址与个人相关联的可能性,我们确保 Piwik PRO 只使用截断两个字节的 IP 地址。此外,Piwik PRO 由位于德国的 Microsoft Azure 服务器托管(有关 Microsoft 和可能的第三国传输的更多信息,请参见上文第 2.2 b) 节和第 1.5 节)。数据在 25 个月后删除。

Piwik PRO 可以计算跳出率、页面浏览量和会话次数等指标,以便我们了解网站的使用情况。我们还可以利用浏览历史记录创建访客档案,以便分析访客行为、显示个性化内容和开展在线活动。Piwik PRO 不会将网站访客数据传输给其他子处理程序或第三方,也不会将这些数据用于自己的目的。您可以在 这里Piwik PRO 隐私政策中找到更多关于 Piwik PRO 数据保护的信息。

您可以通过在浏览器中选择适当的设置来阻止 cookie 的存储。但请注意,如果这样做,您可能无法使用本网站的全部功能。

撤销同意 

您可以按照上述第2.3 e)节中的说明,撤销您的同意,从而阻止Piwik PRO收集与您使用网站相关的数据,并阻止Piwik PRO在将来处理这些数据。

b) Salesforce Pardot

On our websites we also use the Salesforce Pardot analysis services provided by Salesforce (for details of Salesforce, see section 2.2 c)). If you have consented to this (Art. 6(1)(a) GDPR), Salesforce Pardot in combination with cookies enables us to recognize you as a visitor to our websites and to record and analyze your user behavior in pseudonymized form. This allows us to offer you better, more convenient and more personalized services. These data will be linked with an existing customer profile in our customer database, which enables us to provide you with personal and individual advice if necessary. The personal data processed by Salesforce Pardot is processed only on our behalf and in accordance with our instructions.

Pardot stores cookies if you have consented to this and providing that no cookies of this kind have already been stored on your device (for more information on cookies, see section 2.3). We use the Pardot cookies to analyze your usage of our websites, so that we can continuously improve them. You can find information about Pardot tracking at https://help.salesforce.com/s/articleView?id=pardot_admin_tracker_domain_visitor_tracking.htm&type=5&language=en.

Withdrawal of consent

You can withdraw your consent at any time, with future effect, by following the instructions in section 2.3 e). However, this can result in restrictions on the functions and user friendliness of our websites.

b) Salesforce Pardot

在我们的网站上,我们还使用 Salesforce 提供的 Salesforce Pardot 分析服务(有关 Salesforce 的详细信息,请参见第 2.2 c) 节)。如果您同意(《通用数据保护条例》(欧盟) 第 6(1)(a)条),Salesforce Pardot 将与 cookie 结合使用,使我们能够识别您是我们网站的访问者,并以假名形式记录和分析您的用户行为。这样我们就能为您提供更好、更方便和更个性化的服务。这些数据将与我们客户数据库中现有的客户档案联系起来,使我们能够在必要时为您提供个性化建议。Salesforce Pardot 处理的个人数据仅代表我们并根据我们的指示进行处理。

Pardot 会在您同意的情况下存储 cookie,前提是您的设备上尚未存储过此类 cookie(有关 cookie 的更多信息,请参见第 2.3 节)。我们使用 Pardot cookies 分析您对我们网站的使用情况,以便不断改进我们的网站。有关 Pardot 跟踪的信息,请访问 https://help.salesforce.com/s/articleView?id=pardot_admin_tracker_domain_visitor_tracking.htm&type=5&language=en.

撤销同意 

您可以按照第 2.3 e) 条中的说明随时撤销您的同意,并在未来生效。不过,这可能会导致我们网站的功能和用户友善性受到限制。

2.7 Marketing services

a) LinkedIn Insight Tag

Our website uses the “LinkedIn Insight Tag” conversion tool from LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (“LinkedIn”). This tool stores a cookie in your web browser that allows the following data to be collected: IP address, device properties, browser properties, and page events (e.g. page visits), demographic data from LinkedIn if the user is an active LinkedIn member, last URL visited, time information. These data are encrypted by LinkedIn, pseudonymized within seven days and the pseudonymized data are erased within 90 days. We and LinkedIn act as joint controllers for the processing of this data. You can see the agreement on this subject at LinkedIn and in section 3.4. You can find more information about the cookies stored in this context in section 2.3, at https://www.linkedin.com/help/linkedin/answer/a427660, and in the LinkedIn privacy policy at https://www.linkedin.com/legal/privacy-policy.

This technology enables us to produce reports on the effectiveness of our advertising and information on website interaction and to display targeted advertising on LinkedIn (conversion tracking), without us identifying you as a website visitor. However, LinkedIn can connect your data to your LinkedIn profile if you are logged into LinkedIn when you visit our website. We process your data to evaluate events and to collect information about website visitors who may have reached us via LinkedIn. We process your data because you have consented to this in accordance with Art. 6(1)(a) GDPR and we store your data for as long as necessary for the respective purpose (event evaluation) and provided that you have not objected to the storage of your data or withdrawn your consent. If LinkedIn transfers the data to its own parent company in the USA, this transfer takes place on the basis of the standard contractual clauses of the EU Commission. For information on third-country transfers, please refer to section 1.5.

You can object to your data being processed by LinkedIn via the following link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

Withdrawal of consent

LinkedIn members can control the use of their personal data for advertising purposes in their account settings. To deactivate the Insight tag on our websites, please follow the instructions in section 2.3 e).

2.7 营销服务

a) LinkedIn Insight 标签

我们的网站使用 LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland("领英")提供的 "LinkedIn Insight Tag" 转换工具。该工具会在您的网络浏览器中存储一个 cookie,以便收集以下数据:IP地址、设备属性、浏览器属性和页面事件(如页面访问)、来自领英的人口统计数据(如果用户是领英的活跃会员)、最后访问的URL、时间信息。领英会对这些数据进行加密,并在 7 天内对其进行化名处理,在 90 天内删除化名数据。我们和领英作为联合控制方处理这些数据。您可以在 LinkedIn 和第 3.4 节中查看相关协议。您可以在 https://www.linkedin.com/help/linkedin/answer/a427660 的第 2.3 节和 https://www.linkedin.com/legal/privacy-policy 的 LinkedIn 隐私政策中找到有关在此情况下存储的 cookies 的更多信息。 

通过这项技术,我们可以生成广告效果报告和网站互动信息,并在领英上显示有针对性的广告(转换跟踪),而不会识别您作为网站访客的身份。不过,如果您在访问我们的网站时登录了 领英,领英可以将您的数据与您的 领英资料连接起来。我们处理您的数据是为了评估活动,并收集可能通过 领英访问我们的网站访客的信息。我们之所以处理您的数据,是因为您已根据《通用数据保护条例》(欧盟)第 6(1)(a)条同意我们这样做,并且我们会在必要时为相应目的(活动评估)存储您的数据,前提是您没有反对存储您的数据或撤回您的同意。如果领英将数据传输至其在美国的母公司,则会根据欧盟委员会的标准合同条款进行传输。有关第三国转移的信息,请参阅第 1.5 节。

您可以通过以下链接反对领英处理您的数据:https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

撤销同意

领英会员可以在账户设置中控制将其个人数据用于广告目的。要停用我们网站上的 Insight 标签,请按照第 2.3 e) 节中的说明操作。

b) Google Ads (Google AdWords Remarketing)

On our websites we use remarketing services from Google as an online marketing measure (for details of Google, see section 2.4 b)). This allows us to show visitors to our websites ads relating to their interests on other websites in the Google advertising network, in Google searches, and on YouTube. To do this, we analyze the interactions of visitors to our websites, e.g. the offers they were interested in, in order to be able to display targeted ads to these visitors on other websites after they have visited our websites.

Google stores cookies for this purpose on the visitors’ devices. These cookies are listed in section 2.3. The visits are recorded using these cookies. In this context, we collect the following personal data of visitors to our websites: duration of visit, IP address, pages visited, content of interest to the visitor, and website usage.

The data are processed in the European Union. However, the information about your use of our websites may be transferred to a Google server in the USA or in another country outside the EU and the EEA and stored there (namely Singapore, Taiwan, or Chile). The recipients of the data are Google LLC and Alphabet Inc., both of which belong to the Google Group. If the data are transferred to the USA, there is the risk that your data will be processed by the US authorities for control and monitoring purposes, without the possibility of you being able to seek a judicial remedy. This can be the case for different purposes, e.g. storage or processing. The transfer of data to third countries that do not provide adequate data protection is based on the standard contractual clauses of the EU Commission. For information on third-country transfers, please refer to section 1.5.

For more information, please refer to the Google privacy policy at https://policies.google.com/privacy?hl=en-US.

Withdrawal of consent

We obtain your prior consent to the processing of your data (Art. 6(1)(a) GDPR), which you can withdraw at any time with future effect by following the instructions in section 2.3 e).

b) 谷歌广告(谷歌 AdWords 再营销)

在我们的网站上,我们使用谷歌的再营销服务作为在线营销措施(有关谷歌的详细信息,请参见第 2.4 b) 节)。这使我们能够在谷歌广告网络的其他网站、谷歌搜索和 YouTube 上向我们网站的访问者展示与其兴趣相关的广告。为此,我们会分析网站访客的互动情况,例如他们感兴趣的产品,以便在访客访问我们的网站后,在其他网站上向他们展示有针对性的广告。

为此,谷歌会在访问者的设备上存储 cookies。这些 cookie 在第 2.3 节中列出。访问记录通过这些 cookie 进行记录。在这种情况下,我们会收集网站访问者的以下个人数据:访问时间、IP 地址、访问页面、访问者感兴趣的内容以及网站使用情况。

数据在欧盟境内处理。但是,有关您使用我们网站的信息可能会被传输到谷歌在美国或欧盟和欧洲经济区以外的其他国家的服务器,并存储在那里(即新加坡、台湾或智利)。数据接收方为Google LLC和 Alphabet 公司(Alphabet Inc.如果数据被转移到美国,您的数据有可能被美国当局出于控制和监控目的而处理,而您无法寻求司法补救。这可能是出于不同的目的,如存储或处理。根据欧盟委员会的标准合同条款,将数据传输到不能提供充分数据保护的第三国。有关第三国传输的信息,请参见第 1.5 节。

如需了解更多信息,请参阅 https://policies.google.com/privacy?hl=en-US 上的 Google 隐私政策。

撤销同意 

我们在处理您的数据之前会事先征得您的同意(《通用数据保护条例》(欧盟) 第 6(1)(a)条),您可以按照第 2.3 e) 节中的说明随时撤销同意,并在将来生效。

c) Microsoft Advertising (formerly Bing Ads)

On our website we use the Microsoft Advertising remarketing function of Microsoft Ireland Operations Limited (for more information about Microsoft and a possible third country transfer see section 2.2 b) and section 1.5 above).

With your consent (Section 25(1) of the German Telecommunications and Telemedia Data Protection Act (TTDSG)), cookies are stored on and retrieved from your end device if you access our website via a Microsoft Advertising ad. In addition, a Universal Event Tracking tag is added to our website. This is a tool that recognizes visitors and stores some data about the use of the website in combination with the cookies. This data includes the IP address, country, language settings, screen resolution, page load time, last website visited, and time spent on the website, together with the areas of the website that were accessed and the ad that led the user to the website.

Microsoft uses the data to create pseudonymized user profiles. We divide the interests of our website visitors into segments so that we can customize our advertising activities to those interests. We are informed only about the total number of users who have clicked on a Microsoft ad and been taken to the conversion page.

Microsoft uses the data it collects to provide the Microsoft Advertising service, including, if necessary, retargeting and conversions, and for its own purposes, such as for improving its services, for reporting, and for performance analysis. Microsoft deletes your personal data after a maximum of 390 days.

You can find more information about data protection and the cookies used by Microsoft Advertising at https://privacy.microsoft.com/de-de/privacystatement; Details about the cookies can also be found in section 2.3 f).

If you do not want Microsoft to use your information as described above, you can block the cookie that is required for the collection of the data. You can do this by entering your details on opt-out lists (for example at https://youradchoices.com) or by preventing any cookies from being stored automatically via the settings in your browser. In addition, you can stop Microsoft from collecting and processing the data generated by the cookie and relating to your use of the website by objecting to this via the following link http://choice.microsoft.com/de-DE/opt-out.

Withdrawal of consent
We obtain your prior consent to the processing of your data (Art. 6(1)(a) GDPR), which you can withdraw at any time with future effect by following the instructions in section 2.3 e).

c) 微软广告(前身为必应广告)

在我们的网站上,我们使用 Microsoft Ireland Operations Limited 的 Microsoft Advertising 再营销功能(有关 微软和可能的第三国转让的更多信息,请参阅上文第 2.2 b) 节和第 1.5 节)。

经您同意(《德国电信和电信媒体数据保护法》(TTDSG)第 25(1)条),如果您通过微软广告访问我们的网站,我们会在您的终端设备上存储 cookie 并进行检索。此外,我们的网站还添加了通用事件跟踪标签。这是一种识别访问者的工具,与 cookie 一起存储一些有关网站使用情况的数据。这些数据包括 IP 地址、国家、语言设置、屏幕分辨率、页面加载时间、最后访问的网站和在网站上花费的时间,以及访问的网站区域和引导用户访问网站的广告。

微软使用这些数据创建化名用户档案。我们将网站访问者的兴趣划分为不同的部分,以便根据这些兴趣定制我们的广告活动。我们只了解点击 微软广告并进入转换页面的用户总数。

微软将收集到的数据用于提供 微软广告服务,包括在必要时进行重定向和转换,以及用于其自身目的,例如用于改进其服务、报告和性能分析。微软最多会在 390 天后删除您的个人数据。

有关数据保护和 Microsoft Advertising 使用的 cookies 的更多信息,请访问 https://privacy.microsoft.com/de-de/privacystatement;;有关 cookies 的详细信息,请参见第 2.3 f) 节。

如果您不希望 微软以上述方式使用您的信息,您可以阻止收集数据所需的 cookie。为此,您可以在退出列表(例如 https://youradchoices.com)中输入您的详细信息,或者通过浏览器中的设置阻止自动存储任何 cookie。此外,您还可以通过以下链接 http://choice.microsoft.com/de-DE/opt-out 阻止微软收集和处理 cookie 生成的与您使用网站相关的数据。

撤销同意 
我们在处理您的数据之前会事先征得您的同意(《通用数据保护条例》(欧盟) 第 6(1)(a)条),您可以按照第 2.3 e) 节中的说明随时撤销同意,并在将来生效。

d) Sales Viewer

We use the SalesViewer® technology from SalesViewe GmbH, Huestraße 30, 44787 Bochum, Germany, to identify employees of companies and organizations among the visitors to our website. SalesViewer® collects and stores the data of website visitors for the purposes of analysis, market research, and optimization.

SalesViewer® uses a JavaScript-based tracking code on our website. The data collected are stored on servers in Germany and include the IP address, name, location, and industry of the visitor’s company, the most recently visited website, the user’s behavior (e.g., the (sub)pages visited, the time and duration of the visit), and the mouse movements.

SalesViewer® is designed to identify the companies that visit a website, which is why, as a general rule, only company data are collected and processed. Otherwise, visitor data are collected and processed only in pseudonymized form.

The visiting company is identified instead by means of a comparison with generally available information that is described below. For this purpose, the online identifier of the website visitor is encrypted using an irreversible, one-way function (known as hashing). After a selection process that filters out private accesses, the online identifier is transferred in pseudonymized form to SalesViewer® GmbH.

The online identifiers are compared by SalesViewer® GmbH with a database that contains only company-related data.

If company-related website accesses are identified during this process, the company-related data concerning the website visit are made available to us via a secure and encrypted SalesViewer® login area. In this area it is also possible for us to obtain other generally available data (e.g., address and contact details) about the visiting companies.

SalesViewer® uses the software as a service delivery model. We have signed a data processing contract with SalesViewer® GmbH.

As well as identifying potential customers, SalesViewer® also creates profiles of them that include information about the company name, location, contact details, industry, website, referring website, search terms used, and user behavior (e.g., pages visited, time and duration of the visit), and technical data about the system used and the browser.

Using the technology from SalesViewer® GmbH, we collect and store data for marketing, market research, and optimization purposes on the basis of our legitimate interest (Art. 6(1)(f) GDPR).

The data stored by SalesViewer® are erased as soon as they are no longer needed for the purpose in question, provided that they are not subject to statutory retention obligations.

You can find more information about SalesViewer® at https://www.salesviewer.com/en/and the SalesViewer® privacy policy at https://www.salesviewer.com/en/privacy-policy/.

If you do not want SalesViewer® to use your information as described above, you can object to the future collection and storage of data by clicking this link www.salesviewer.com/opt-out. This will prevent SalesViewer® from collecting your data within this website in the future. An opt-out cookie for this website will be stored on your device. If you delete the cookies in your browser, you must click this link again.

Right to object

In section 1.3 we explain your right to object to the processing of your data on the basis of Art. 6(1)(f) GDPR.

d) SalesViewer

我们使用来自 SalesViewer® GmbH(地址:Huestraße 30, 44787 Bochum, Germany)的 SalesViewer® 技术来识别网站访问者中的公司和组织员工。SalesViewer® 收集并存储网站访问者的数据,用于分析、市场调研和优化。

SalesViewer® 在我们的网站上使用基于 JavaScript 的跟踪代码。收集的数据存储在德国的服务器上,其中包括 IP 地址、访客公司的名称、地点和行业、最近访问的网站、用户行为(例如访问的(子)页面、访问时间和持续时间)以及鼠标移动。

SalesViewer® 旨在识别访问网站的公司,因此一般只收集和处理公司数据。否则,只以假名形式收集和处理访问者数据。

访问公司是通过与下文所述的一般可用信息进行比较来识别的。为此,网站访问者的在线标识符使用不可逆的单向函数(称为散列)进行加密。经过过滤私人访问的选择过程后,在线标识符以化名形式传输到 SalesViewer® GmbH。

在线标识符由 SalesViewer® GmbH 与仅包含公司相关数据的数据库进行比较。

如果在此过程中识别出与公司相关的网站访问,则会通过安全加密的 SalesViewer® 登录区域向我们提供与网站访问相关的公司数据。在该区域,我们还可以获得访问公司的其他一般可用数据(如地址和联系方式)。

SalesViewer® 采用软件即服务的交付模式。我们与 SalesViewer® GmbH 签订了数据处理合同。

除了识别潜在客户,SalesViewer® 还会创建客户档案,其中包括有关公司名称、地点、联系方式、行业、网站、引用网站、使用的搜索条件和用户行为(如访问的页面、访问时间和持续时间)的信息,以及有关所用系统和浏览器的技术数据。

我们使用 SalesViewer® GmbH 的技术收集和存储数据,用于营销、市场调研和优化目的,这是基于我们的合法权益(《欧盟数据保护法》第 6(1)(f)条)。

一旦不再需要用于相关目的,SalesViewer® 存储的数据将被删除,前提是这些数据不受法定保留义务的限制。

有关 SalesViewer® 的更多信息,请访问 https://www.salesviewer.com/en/ 及SalesViewer® 隐私政策,请访问 https://www.salesviewer.com/en/privacy-policy/

如果您不希望 SalesViewer® 以上述方式使用您的信息,您可以单击此链接 www.salesviewer.com/opt-out,反对将来收集和存储数据。这将阻止 SalesViewer® 今后在本网站上收集您的数据。本网站的退出 cookie 将存储在您的设备上。如果您删除了浏览器中的 cookie,则必须重新点击此链接。

反对权

在第 1.3 节中,我们将说明您有权根据《通用数据保护条例》(欧盟)第 6(1)(f)条的规定反对处理您的数据。 

2.8 Advertising messages (e.g. email newsletters, newsletter tracking)

In order to make additional information on our offering available to you, we enable you to subscribe to newsletters on some of our websites. We obtain your consent to the processing of data for the advertising messages referred to below as part of the subscription process and we refer to this privacy policy.

The legal basis for the processing of data after you have subscribed to these services is Art. 6(1)(a) GDPR. The purpose of collecting your email address is to send you the newsletter. The collection of other personal data as part of the subscription process is intended to prevent the misuse of the services or of the email address that is used.

The data are erased as soon as they are no longer needed for the purpose they were collected for. Your email address will be stored for as long as your subscription to the information service is active.

You can cancel your subscription to the services at any time. Each newsletter contains a corresponding reference to this. This also makes it possible for you to withdraw your consent to the storage of personal data collected during the subscription process.

a) Corporate information and financial reports of Dürr AG

We offer you the opportunity to receive corporate information and financial reports via our ordering service.

To send email messages to our customers, we use the advertising service of the provider EQS Group, Karlstr. 47, 80333 Munich, Germany (“EQS”). The data referred to below are processed by EQS on our behalf and stored for this purpose on the servers of EQS in Germany. EQS uses your data only to send the advertising messages.

The data collected from the input screen are transferred to us during the registration process.

  • Company
  • Department
  • Position in the company
  • First name and last name
  • Address
  • Email address
  • Telephone number (optional)
  • Fax number (optional)
  • Cell phone number (optional)

b) Online publications of Dürr AG and newsletter tracking

It is also possible to receive information about online publications of the Dürr Group via our newsletter. The data collected from the input screen are transferred to us during the registration process.

Salesforce Pardot:

We use the advertising email service Salesforce Pardot to send newsletters to our customers and to evaluate them (for details of Salesforce, see section 2.2 c)). The data referred to below are processed by Salesforce on our behalf. This involves the data being transferred to the USA. Salesforce has issued binding corporate rules (available at https://www.salesforce.com/content/dam/web/en_us/www/documents/legal/misc/Salesforce-Processor-BCR.pdf), which ensure that the data are transferred securely. For information on third-country transfers, please refer to section 1.5.

The following data are processed in this context:

  • Email address
  • Company (optional)
  • Salutation and title (optional)
  • First name and last name (optional)
  • Street address (optional)

The newsletters sent on our behalf by Salesforce contain a tracking pixel that transfers information to Salesforce when you open the newsletter. We then download this information from the Salesforce servers to generate statistical analyses and to evaluate the success of our newsletter campaigns. The data that are collected are also used to send you information that corresponds to your specific interests.

This information allows us to determine whether the newsletters are opened, when they are opened, and which links within the newsletter are clicked on. We use the analyses primarily to identify the degree of interest in specific topics and to measure the effectiveness of our communication measures. We collect your data only after you have subscribed to the service and have specifically consented to your data being collected and stored for this purpose. In this case, the legal basis for the processing of your data is the consent you have given in accordance with Art. 6(1)(a) GDPR.

SC-Networks:

As an alternative to Salesforce Pardot, we use the advertising email service of the provider SC-Networks GmbH, Würmstraße 4, 82319 Starnberg, Germany ("SC-Networks") to send the newsletter. The data named below is processed by SC-Networks on our behalf and stored for this purpose on the servers of SC-Networks in Germany.

  • Email address
  • Company (optional)
  • Salutation and title (optional)
  • First name and last name (optional)
  • Street address (optional)

The newsletters sent on our behalf by SC-Networks contain a tracking pixel that transmits information to SC-Networks as soon as the newsletter is opened by you. This information is then retrieved by us from the servers of SC-Networks in order to generate statistical evaluations and to be able to measure the success of our newsletter campaigns. In addition, the data obtained is used to send you information that corresponds to your specific interests.

This information allows us to determine whether the newsletters are opened, at what time they are opened and which links are clicked within the newsletter. The evaluations serve us predominantly to determine the degree of interest in certain topics and to measure the effectiveness of our communication measures. For this purpose, we only collect your data if you have expressly consented to the collection and storage of your data for this purpose when you subscribe to the service. In this case, the legal basis for the processing of your personal data is the consent you have given pursuant to Art. 6 (1) p. 1 lit. a DSGVO.

Withdrawal of consent

You can withdraw your consent to newsletter tracking at any time by clicking on the corresponding link in each newsletter or by sending an email to info[at]durr.com.

2.8 广告信息(如电子邮件通讯、通讯跟踪)

为了向您提供有关我们产品的更多信息,我们允许您在我们的某些网站上订阅新闻简报。作为订阅过程的一部分,我们会征得您的同意,以便处理以下提及的广告信息数据,并参考本隐私政策。

您订购这些服务后,数据处理的法律依据是《通用数据保护条例》(欧盟)第 6(1)(a)条。收集您的电子邮件地址是为了向您发送时事通讯。在订阅过程中收集其他个人数据的目的是防止滥用服务或所使用的电子邮件地址。

一旦不再需要用于收集数据的目的,这些数据就会被删除。只要您订阅的信息服务有效,您的电子邮件地址就会一直保存。

您可以随时取消订阅服务。每份新闻简报都有相关说明。这样您也可以撤销对在订阅过程中收集的个人数据的存储同意。

a) Dürr AG的公司信息和财务报告

我们为您提供通过订购服务接收公司信息和财务报告的机会。

为了向我们的客户发送电子邮件,我们使用了供应商 EQS Group, Karlstr.47, 80333 Munich, Germany ("EQS")提供的广告服务。下面提到的数据由 EQS 代表我们处理,并为此目的存储在德国 EQS 的服务器上。EQS 仅将您的数据用于发送广告信息。

从输入屏幕收集的数据将在注册过程中传输给我们。

  • 公司名称
  • 部门
  • 在公司的职位
  • 名和姓
  • 地址
  • 电子邮件地址
  • 电话号码(可选)
  • 传真号码(可选)
  • 手机号码(可选)

b) Dürr AG的在线出版物和通讯追踪

您也可以通过我们的时事通讯获得有关杜尔集团在线出版物的信息。从输入屏幕上收集的数据将在注册过程中传输给我们。

Salesforce Pardot:

我们使用广告电子邮件服务 Salesforce Pardot 向客户发送新闻简报并对其进行评估(有关 Salesforce 的详细信息,请参见第 2.2 c) 节)。下面提到的数据由 Salesforce 代表我们处理。这涉及到将数据传输到美国。Salesforce 发布了具有约束力的公司规则(可在 https://www.salesforce.com/content/dam/web/en_us/www/documents/legal/misc/Salesforce-Processor-BCR.pdf 上获取),确保数据安全传输。有关第三国传输的信息,请参阅第 1.5 节。 

在此情况下,将对以下数据进行处理:

  • 电子邮件地址
  • 公司(可选)
  • 称呼和标题(可选)
  • 名和姓(可选)
  • 街道地址(可选)

Salesforce 代表我们发送的时事通讯包含一个跟踪像素,当您打开时事通讯时,该像素会将信息传输给 Salesforce。然后,我们会从 Salesforce 服务器下载这些信息,以生成统计分析并评估我们的时事通讯活动是否成功。收集到的数据还用于向您发送符合您特定兴趣的信息。

通过这些信息,我们可以确定通讯是否被打开、何时被打开以及通讯中的哪些链接被点击。我们主要利用这些分析来确定对特定主题的兴趣程度,并衡量我们通讯措施的有效性。我们仅在您订阅服务并明确同意为此目的收集和存储您的数据后,才会收集您的数据。在这种情况下,处理您的数据的法律依据是您根据《通用数据保护条例》(欧盟)第 6(1)(a)条的规定所给予的同意。

撤销同意

您可以随时点击每期通讯中的相应链接或发送电子邮件至 info[at]durr.com.,撤销对通讯跟踪的同意。

 

2.9 Your rights as a data subject

In section 1.3, we describe in detail the rights you have in relation to our processing of your data.

2.9 您作为数据主体的权利

在第 1.3 节中,我们将详细描述您在我们处理您的数据时享有的权利。

3. Privacy information relating to our social media presence

Below you can find out what we do with your data when you visit our social media pages. This section 3 applies in addition to the general information in section 1. If you cannot find the necessary information in this section 3, please refer to section 1 (e.g. concerning the rights of the data subject in section 1.3). If there is a conflict between the general information and this specific information, the information in this section 3 takes precedence over section 1.

Please note that we have provided additional information about features and tools that we use on our websites and that are supplied by social media providers (e.g. plugins, cookies, etc.) in sections 2.3-2.8.

The information below is structured as follows: Firstly, we provide you with general information in section 3.1 that applies to our presence on all social media platforms. Additional, specific information about our presence on each individual social media platform can be found in sections 3.2 to 3.8.

3.与我们的社交媒体有关的隐私信息

下面您可以了解当您访问我们的社交媒体页面时,我们会如何处理您的数据。除第 1 节中的一般信息外,本第 3 节也适用。如果您在第 3 节中找不到必要的信息,请参阅第 1 节(例如,第 1.3 节中有关数据主体权利的内容)。如果一般信息与本具体信息之间存在冲突,则第 3 节中的信息优先于第 1 节中的信息。

请注意,我们已在第 2.3-2.8 节中提供了有关我们在网站上使用的、由社交媒体提供商提供的功能和工具(如插件、cookie 等)的补充信息。

以下信息结构如下:首先,我们在第 3.1 节为您提供适用于我们在所有社交媒体平台上的一般信息。有关我们在各个社交媒体平台上的其他具体信息,请参见第 3.2 至 3.8 节。

3.1 Who is the data controller with responsibility for processing data?

Dürr AG (details in section 2.1) maintains our social media presence. Visiting our social media pages results in a variety of data being processed. As the operator of these social media pages, we are the joint data controllers, together with the network operators, in accordance with Art. 4(7) GDPR.

a) Which social media platforms do we have a presence on?

We have a social media presence on the following networks:

  • Facebook: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland (“Facebook”, details in section 3.2);
  • Instagram: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland (“Instagram”, details in section 3.3);
  • LinkedIn: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (“LinkedIn”, details in section 3.4);
  • YouTube: YouTube LLC, 901 Cherry Avenue, San Bruno, CA 94066, USA, represented by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“YouTube”, details in section 3.5);
  • Twitter: Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland (“Twitter”, details in section 3.6);
  • Xing: New Work SE, Am Strandkai 1, 20457 Hamburg, Germany (“Xing”, details in section 3.7);
  • Kununu: NEW WORK AUSTRIA, XING kununu Prescreen GmbH, Schottenring 2-6, 1010 Vienna, Austria (“Kununu”, details in section 3.8).

3.1 谁是负责处理数据的数据控制者?

Dürr AG(详见第 2.1 节)负责维护我们的社交媒体。访问我们的社交媒体页面会导致各种数据被处理。作为这些社交媒体页面的运营者,根据 《通用数据保护条例》(欧盟) 第 4(7)条,我们与网络运营者是共同的数据控制者。

a) 我们在哪些社交媒体平台上有展示?

我们在以下网络拥有社交媒体:

  • Facebook:Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland("Facebook",详情见第 3.2 节);
  • Instagram:Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland("Instagram",详情见第 3.3 节);
  • LinkedIn:LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland("领英",详情见第 3.4 节);
  • YouTube:YouTube LLC, 901 Cherry Avenue, San Bruno, CA 94066, USA, 由 Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland 代表("YouTube",详情见第 3.5 节);
  • Twitter: Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland("Twitter",详情见第 3.6 节);
  • Xing:New Work SE, Am Strandkai 1, 20457 Hamburg, Germany("Xing",详见第 3.7 节);
  • Kununu:NEW WORK AUSTRIA, XING kununu Prescreen GmbH, Schottenring 2-6, 1010 Vienna, Austria ("Kununu",详见 3.8 节)。

b) What purposes are my data processed for?

Dürr maintains a presence on social media platforms to give you an in-depth insight into our offering and our everyday business activities with the aim of arousing your interest in us as your (future) business partner or as your (future) employer.

 

  • Information made public: In individual cases, Dürr can only access the information in your profile that you have made public (for example, your user name, the content published in your profile, and the actions that you take in relation to it, e.g. if you like or share a post). You can find out which information this is under your profile settings. In addition, you have the option to stop following our social media presence. If you do so, your profile will no longer appear in the list of fans (linked contacts) on this social media presence.
  • Making contact: We process your data if you make contact with us via our social media presence, e.g. if you send us a direct message via the network or if you like, share, or comment on one of our posts or if you mention us in a post or if we like, share, or comment on one of your posts. We will use your data (such as your first name, last name, message) so that our customer support can respond to your request.
  • Analysis of usage behavior: We use analysis technologies provided by the network operators to carry out statistical evaluations of the response to our social media presence from visitors. This enables us to adjust and optimize our offering to correspond with visitors’ interests. For this purpose, the network operators store cookies and similar technologies, e.g. pixels, during visits to our social media pages. Many network operators make use of third-party services (e.g. Piwik PRO) for this purpose. Registered users can be identified by the network operators. As well as producing the statistics about page use that have been referred to, this processing also helps to improve the advertising displayed by the network operators via the network and on third-party pages.

The legal basis for the data processing is Art. 6(1)(f) GDPR and our legitimate interest in answering your inquiry, offering you services and products that correspond with your interests, and improving our offering and our social media presence, and adapting it to the needs and interests of our visitors. The same applies if you send us your request via a form on the network. You can find details of processing in the context of CRM in section 4.4. If social media providers store cookies or similar technologies on our website for analysis or marketing purposes, we will obtain your consent. For details, please refer to section 2.3.

Right to object

In section 1.3 we explain your right to object to the processing of your data on the basis of Art. 6(1)(f) GDPR.

Note: Processing by network operators and third parties: Please note that network operators also process the data that you have voluntarily made publicly available when you visit and use our social media presence (e.g. reading, commenting on, or liking a post). In addition, network operators also process log data (e.g. your IP address, browser and device information, most recently visited page, location, time stamp, settings). If you have logged into the network using your own profile, the network can assign these data to your profile. Partners of the network operator and third parties can also store cookies via social media networks to provide services to companies that advertise on the networks. This processing is based on the general terms and conditions and privacy policy of the network in question. You will find links to these below. We cannot track or influence processing of this kind.

b) 处理我的数据的目的是什么?

杜尔通过社交媒体平台向您深入介绍我们的产品和日常业务活动,旨在引起您对我们作为您(未来)的业务合作伙伴或(未来)雇主的兴趣。

 

  • 公开的信息:在个别情况下,杜尔只能访问您个人档案中您已公开的信息(例如,您的用户名、在您个人档案中发布的内容以及您采取的相关行动,例如,如果您喜欢或分享一个帖子)。您可以在个人档案设置中找到这些信息。此外,您还可以选择停止关注我们的社交媒体。如果您这样做,您的个人资料将不再出现在该社交媒体上的粉丝(链接联系人)列表中。
  • 联系:如果您通过我们的社交媒体与我们取得联系,例如您通过网络向我们发送直接消息,或者您喜欢、分享或评论我们的帖子,或者您在帖子中提到我们,或者我们喜欢、分享或评论您的帖子,我们将处理您的数据。我们将使用您的数据(如您的名字、姓氏、信息),以便我们的客户支持部门能够回复您的请求。
  • 使用行为分析:我们使用网络运营商提供的分析技术,对访客对我们社交媒体的反应进行统计评估。这使我们能够根据访问者的兴趣调整和优化我们的服务。为此,网络运营商会在访问我们的社交媒体页面时存储 cookie 和类似技术,例如像素。许多网络运营商为此使用第三方服务(如 Piwik PRO)。网络运营商可以识别注册用户。除了生成上述页面使用统计数据外,这种处理还有助于改进网络运营商通过网络和第三方页面显示的广告。

数据处理的法律依据是《通用数据保护条例》(欧盟)第 6(1)(f)条以及我们的合法利益,即回答您的询问、向您提供符合您兴趣的服务和产品、改进我们的产品和社交媒体,并使其适应访客的需求和兴趣。如果您通过网络上的表格向我们发送请求,我们也会这样做。您可以在第 4.4 节中找到有关客户关系管理处理的详细信息。如果社交媒体提供商出于分析或营销目的在我们的网站上存储 cookies 或类似技术,我们将征得您的同意。详情请参见第 2.3 节。

反对权

在第 1.3 节中,我们将说明您有权根据《通用数据保护条例》(欧盟)第 6(1)(f)条的规定反对处理您的数据。

注:由网络运营商和第三方处理:请注意,网络运营商也会处理您在访问和使用我们的社交媒体时自愿公开的数据(例如,阅读、评论或喜欢某个帖子)。此外,网络运营商还会处理日志数据(例如您的 IP 地址、浏览器和设备信息、最近访问的页面、位置、时间戳、设置)。如果您使用自己的个人资料登录了网络,网络可将这些数据分配到您的个人资料中。网络运营商的合作伙伴和第三方也可以通过社交媒体网络存储 cookie,以便为在网络上做广告的公司提供服务。这种处理以相关网络的一般条款和条件以及隐私政策为基础。您可以在下面找到相关链接。我们无法跟踪或影响此类处理。

c) Facelift social media management tool

To manage our social media presence effectively, we use Facelift Cloud from Facelift Brand Building Technologies GmbH, Gerhofstrasse 19, 20354 Hamburg, Germany (“Facelift”).

Facelift Cloud is a platform that supports our processes and enables us to take digital marketing measures with a focus on social media. Facelift Cloud allows content to be added to our presence on social media networks such as Facebook, Instagram, Xing, LinkedIn, Pinterest, YouTube and Twitter, the use of the content by visitors to be evaluated, the social media presence to be adapted to users’ needs, and the presence to be moderated. Facelift provides us with evaluations of the use of our presence on different social media channels. The analysis data are anonymized by Facelift from the start. Facelift stores the messages sent to us via our social media presence for a maximum of one year. For these purposes, Facelift processes the personal data, referred to in section 3.1 b), belonging to users of and visitors to our social media presence as our processor.

This data processing is based on Art. 6(1)(f) GDPR. We have a legitimate interest in analyzing the use of our social media presence and in rapid and efficient communication in order to improve our customer service, the customer experience on our social media presence, and our advertising.

You can find more information about data protection at Facelift Brand Building Technologies GmbH at: https://www.facelift-bbt.com/en/imprint

Right to object

In section 1.3 we explain your right to object to the processing of your data on the basis of Art. 6(1)(f) GDPR.

c) Facelift 社交媒体管理工具

为了有效管理我们的社交媒体,我们使用了 Facelift Brand Building Technologies GmbH, Gerhofstrasse 19, 20354 Hamburg, Germany("Facelift")的 Facelift Cloud。

Facelift Cloud 是一个支持我们工作流程的平台,使我们能够采取以社交媒体为重点的数字营销措施。Facelift Cloud 允许我们在 Facebook、Instagram、Xing、领英、Pinterest、YouTube 和 Twitter 等社交媒体网络上添加内容,评估访问者对内容的使用情况,根据用户需求调整社交媒体,并对社交媒体进行管理。Facelift 向我们提供对我们在不同社交媒体渠道上存在的使用情况的评估。Facelift 从一开始就对分析数据进行匿名处理。Facelift 将通过我们的社交媒体向我们发送的信息最多保存一年。为了这些目的,Facelift 作为我们的处理者,处理第 3.1 b) 节中提到的属于我们社交媒体的用户和访问者的个人数据。

此数据处理基于《通用数据保护条例》(欧盟)第 6(1)(f)条。我们有合法权益分析我们社交媒体的使用情况并进行快速有效的沟通,以改善我们的客户服务、客户在我们社交媒体上的体验以及我们的广告。

有关 Facelift 品牌建设技术有限公司数据保护的更多信息,请访问:https://www.facelift-bbt.com/en/imprint

反对权

在第 1.3 节中,我们将说明您有权根据《通用数据保护条例》(欧盟)第 6(1)(f)条反对处理您的数据。

d) Meltwater social media management platform

We use the all-in-one platform from Meltwater Deutschland GmbH, Rotherstrasse 22, 10245 Berlin, Germany (“Meltwater”), which enables us to manage our social media presence and, at the same time, to monitor traditional online media. The tool analyzes our activities and provides us with information about PR reports relating to us. Meltwater searches publicly available information on our behalf from the following sources among others: Twitter, blogs, forums, Facebook, YouTube, Instagram, Reddit, evaluations, Pinterest, TikTok (you can find information about our social media presence in section 3.1 a)). Meltwater crawls these data sources searching for keywords and relevant themes that we have defined in advance. We receive the results in the form of a dashboard that gives an overview of the previous 15 months. Meltwater anonymizes user data and does not make it available to us. You can find further information about data processing by Meltwater in the Meltwater privacy policy at: https://www.meltwater.com/en/privacy. The data processing is based on our legitimate interest (Art. 6(1)(f) GDPR) in analyzing and managing our media coverage.

Right to object

In section 1.3 we explain your right to object to the processing of your data on the basis of Art. 6(1)(f) GDPR.

After this general information, we have provided you below with information about each individual offering:

d) Meltwatear 社交媒体管理平台

我们使用 Meltwater Deutschland GmbH, Rotherstrasse 22, 10245 Berlin, Germany("Meltwater")的一体化平台,该平台使我们能够管理我们的社交媒体,同时监控传统的网络媒体。该工具可对我们的活动进行分析,并为我们提供与我们相关的公关报告信息。Meltwater 代表我们从以下来源搜索公开信息:Twitter、博客、论坛、Facebook、YouTube、Instagram、Reddit、评估、Pinterest、TikTok(您可在第 3.1 a) 节中找到有关我们社交媒体存在的信息)。Meltwater 会抓取这些数据源,搜索我们事先定义的关键字和相关主题。我们以仪表板的形式收到结果,该仪表板提供了过去 15 个月的概况。Meltwater 会对用户数据进行匿名处理,不会将其提供给我们。有关 Meltwater 数据处理的详细信息,请参阅 Meltwater 隐私政策: https://www.meltwater.com/en/privacy。数据处理基于我们分析和管理媒体报道的合法权益(《通用数据保护条例》(欧盟) 第 6(1)(f)条)。 

反对权 

在第 1.3 节中,我们将说明您有权根据《通用数据保护条例》(欧盟)第 6(1)(f)条反对处理您的数据。

在这些一般信息之后,我们为您提供了有关每种产品的信息:

3.2 Facebook (Fan page)

Dürr maintains a fan page on Facebook (for details of Facebook, see section 3.1 a)). .

The operator of Facebook is Meta Platforms, Inc. (“Meta”, formerly Facebook, Inc.), 1601 Willow Road, Menlo Park, CA 94025, USA. On the basis of the standard contractual clauses of the EU Commission, Facebook transfers personal data to Meta (for more information on third-country transfers, please refer to section 1.5).

The Facebook terms of service that you can find at the following link apply https://www.facebook.com/terms. You will find information about data collection and other processing by Facebook in Facebook’s data policy: https://facebook.com/about/privacy/

Facebook Insights: Whenever a user makes a visit to our fan page, some of the user’s personal data are collected, e.g. by using cookies. The data are collected primarily by Facebook. You can find details of how Facebook uses cookies in Facebook’s cookie policy at: https://www.facebook.com/policies/cookies/. Visitors to our fan page who are not logged in or registered with Facebook are also recorded.

Dürr has no direct access to the data collected by Facebook. Instead, Facebook provides us only with highly summarized evaluations, e.g.:

  • Followers: Number of people following Dürr, including the growth and development over a defined period.
  • Reach: Number of people who see a specific post. Number of interactions on a post. This indicates, for example, which content receives a better response from the community.
  • Ad performance: How many people have seen an ad?
  • Demographics: average age of visitors, gender, place of residence, language

We use these statistics, which cannot be traced to any particular user, to constantly improve our online offering on Facebook and to better meet our users’ needs. The legal basis for these usage statistics is Art. 6(1)(f) GDPR.

We cannot connect the statistical data to any of our fans’ profile data. You can go to your Facebook settings to choose how targeted ads will be shown to you.

We have reached an agreement with Facebook concerning the joint responsibility under Art. 26 GDPR. You can find the agreement at the following link: https://www.facebook.com/legal/terms/page_controller_addendum. In the agreement, Facebook acknowledges the joint responsibility under data protection law with regard to the Insights data and complies with key obligations under data protection law (e.g. information from data subjects, data security and reporting breaches of data protection, main contact point for data subjects).

In this particular case, you can exercise your rights as a data subject as follows:

  • If you have questions about the data collected by Facebook, please contact Facebook (you can find information about this in the Facebook data policy, see above).
  • If you have questions or concerns about the Insights data processed by Dürr, please contact our data protection officer (see section 2.1). You will find the remaining rights of data subjects in section 1.3.

3.2 Facebook(粉丝专页)

杜尔在 Facebook 上设有粉丝页面(有关 Facebook 的详细信息,请参见第 3.1 a) 节)。

Facebook 的运营商为 Meta Platforms, Inc.(以下简称 "Meta",前身为 Facebook, Inc.),地址为 1601 Willow Road, Menlo Park, CA 94025, USA。根据欧盟委员会的标准合同条款,Facebook 将个人数据传输给 Meta(有关第三国传输的更多信息,请参阅第 1.5 节)。

您可在以下链接找到的 Facebook 服务条款适用于 https://www.facebook.com/terms。您可以在 Facebook 的数据政策中找到有关 Facebook 数据收集和其他处理的信息:https://facebook.com/about/privacy/。 

Facebook Insights:每当用户访问我们的粉丝页面时,我们都会通过 cookie 等方式收集用户的部分个人数据。这些数据主要由 Facebook 收集。有关 Facebook 如何使用 cookie 的详细信息,请参见 Facebook 的 cookie 政策:https://www.facebook.com/policies/cookies/。未登录或未在 Facebook 注册的粉丝页面访问者也会被记录在案。 

杜尔无法直接访问 Facebook 收集的数据。相反,Facebook 只向我们提供高度概括的评估,例如

  • 追随者:关注 杜尔的人数,包括在规定时间内的增长和发展情况。
  • 到达率:看到特定帖子的人数。帖子的互动次数。例如,这表明哪些内容在社区中得到了更好的回应。
  • 广告效果:有多少人看过广告?
  • 人口统计:游客的平均年龄、性别、居住地、语言

我们利用这些无法追踪到任何特定用户的统计数据,不断改进 Facebook 上的在线服务,更好地满足用户需求。这些使用统计数据的法律依据是《通用数据保护条例》(欧盟)第 6(1)(f)条。

我们无法将统计数据与任何粉丝的个人资料数据联系起来。您可以在 Facebook 设置中选择如何向您显示定向广告。

我们已与 Facebook 就《通用数据保护条例》(欧盟)第 26 条规定的共同责任达成协议。您可以在以下链接中找到该协议:https://www.facebook.com/legal/terms/page_controller_addendum。在协议中,Facebook 承认根据数据保护法对 Insights 数据承担共同责任,并遵守数据保护法规定的主要义务(例如,数据主体的信息、数据安全和报告违反数据保护的行为、数据主体的主要联系人)。

在这种特殊情况下,作为数据主体,您可以行使以下权利:

  • 如果您对 Facebook 收集的数据有任何疑问,请联系 Facebook(您可以在 Facebook 数据政策中找到相关信息,见上文)。
  • 如果您对杜尔处理的 Insights 数据有问题或疑虑,请联系我们的数据保护官(参见第 2.1 节)。您可在第 1.3 节中找到数据主体的其余权利。

3.3 Instagram

Dürr has a presence on the Instagram service provided by Facebook.

The operator of Facebook is Meta (you can find details of Facebook, Meta, and data transfers in sections 3.1 a) and section 3.2).

The Instagram terms of use that you can find at the following link apply https://help.instagram.com/581066165581870. You will find information about data collection and other processing by Facebook in Instagram’s data policy: https://help.instagram.com/519522125107875.

Instagram Insights: Whenever a user makes a visit to our Instagram presence, some of the user’s personal data are collected, e.g. by using cookies. The data are collected primarily by Facebook. You can find details of how Facebook uses cookies in Facebook’s cookie policy at: https://www.facebook.com/policies/cookies/. Visitors to our Instagram presence who are not logged in or registered with Instagram are also recorded.

We use the Instagram Insights function to obtain statistical evaluations of the readers of our posts. You can find details at: https://help.latest.instagram.com/788388387972460?helpref=hc_fnav. Dürr has no direct access to the data collected by Facebook. Please note the additional information about Facebook Insights data in section 3.2, which also applies to Instagram.

3.3 Instagram

杜尔在 Facebook 提供的 Instagram 服务上设有社交媒体。

Facebook 的运营商是 Meta(有关 Facebook、Meta 和数据传输的详细信息,请参见第 3.1 a) 节和第 3.2 节)。

您可在以下链接找到 Instagram 的使用条款:https://help.instagram.com/581066165581870。您可以在 Instagram 的数据政策中找到有关 Facebook 数据收集和其他处理的信息:https://help.instagram.com/519522125107875。 

Instagram Insights:每当用户访问我们的 Instagram 网站时,我们都会通过 cookie 等方式收集用户的部分个人数据。这些数据主要由 Facebook 收集。有关 Facebook 如何使用 cookie 的详细信息,请参见 Facebook 的 cookie 政策:https://www.facebook.com/policies/cookies/。未登录或注册 Instagram 的 Instagram 访问者也会被记录。

我们使用 Instagram Insights 功能对我们文章的读者进行统计评估。详情请访问:https://help.latest.instagram.com/788388387972460?helpref=hc_fnav。杜尔无法直接访问 Facebook 收集的数据。请注意第 3.2 节中有关 Facebook Insights 数据的附加信息,该信息也适用于 Instagram。 

3.4 LinkedIn

Dürr maintains a presence on LinkedIn (for details of LinkedIn, see section 3.1 a)).

LinkedIn belongs to the LinkedIn Corporation, 1000 W Maude Ave, Sunnyvale, CA, USA. Therefore, data can be transferred to the USA (for more information on third-country transfers, please refer to section 1.5). This transfer is covered by the standard contractual clauses of the EU Commission.

You can find more information about data protection at LinkedIn in the LinkedIn privacy policy: https://www.linkedin.com/legal/privacy-policy. You will find the conditions of use of LinkedIn at: https://www.linkedin.com/legal/user-agreement.

In accordance with the agreement that we have entered into with LinkedIn (available at https://www.linkedin.com/legal/l/dpa), LinkedIn will inform us if a user exercises their rights as a data subject under Art. 15 to 22 GDPR. LinkedIn will help us to answer requests for information. You can exercise your rights (for more information, see section 1.3) against us and against LinkedIn.

LinkedIn Page Analytics: In connection with our LinkedIn presence, we use LinkedIn Page Analytics. LinkedIn acknowledges its role as a joint controller (see the agreement that covers this and that is available at: https://legal.linkedin.com/pages-joint-controller-addendum). LinkedIn uses cookies, for example, to evaluate users’ behavior. From Page Analytics, we obtain information about the use of our content in the form of aggregated data that we cannot link to the profiles of our visitors. In the agreement referred to, LinkedIn accepts responsibility for the rights of data subjects. However, you can still contact us about this, as we explained in section 1.3.

For more information about how we use services from LinkedIn on our websites, please refer to section 2.7 a). You can object to LinkedIn processing your data for advertising purposes at the following link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

3.4 领英

杜尔在领英上设有社交媒体(有关 LinkedIn 的详细信息,请参见第 3.1 a) 节)。

领英属于 LinkedIn Corporation(地址:1000 W Maude Ave, Sunnyvale, CA, USA)。因此,数据可以传输到美国(有关第三国传输的更多信息,请参阅第 1.5 节)。这种传输受欧盟委员会标准合同条款的保护。

有关 领英数据保护的更多信息,请参见 领英隐私政策:https://www.linkedin.com/legal/privacy-policy。您可以在以下网址找到 LinkedIn 的使用条件:https://www.linkedin.com/legal/user-agreement。 

根据我们与领英签订的协议(见 https://www.linkedin.com/legal/l/dpa),如果用户行使《通用数据保护条例》(欧盟)15 至 22条其作为数据主体的权利,领英将通知我们。领英将帮助我们回复信息请求。您可以针对我们和 领英行使您的权利(更多信息,请参见第 1.3 节)。 

领英页面分析:在 领英上,我们使用 领英页面分析(Page Analytics)。领英承认其作为共同控制人的角色(请参阅涵盖此内容的协议,该协议可在以下网址获取:https://legal.linkedin.com/pages-joint-controller-addendum)。例如,领英使用 cookies 来评估用户行为。从页面分析中,我们以汇总数据的形式获得了有关我们内容使用情况的信息,但我们无法将这些数据与访问者的个人资料联系起来。在上述协议中,领英对数据主体的权利承担责任。不过,正如我们在第 1.3 节中所解释的,您仍可就此与我们联系。

有关我们如何在网站上使用 领英服务的更多信息,请参阅第 2.7 a) 节。您可以通过以下链接反对 领英出于广告目的处理您的数据:https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

3.5 YouTube

Dürr has a channel on the YouTube platform provided by YouTube LLC (for more details, see section 3.1.a)), a subsidiary of Google LLC with headquarters in the USA.

Any Google service may transfer your data that has been collected by Google to the USA (for more information on third-country transfers, please refer to section 1.5). The transfer takes place on the basis of the standard contractual clauses of the EU Commission.

YouTube Analytics: We receive statistics about the use of our channel, including the following aggregated and therefore anonymized information:

  • Total number of video views
  • Average video views per person and trend (falling/rising and by how much)
  • Number of subscribers and trend
  • Number of visitors
  • Interactions from viewers (likes, comments, shared content)
  • Time visitors spent watching videos on the channel
  • Reach of videos
  • Percentage of videos that users watch on average

Data are processed by the network operator on the basis of the terms of service (https://www.youtube.com/static?template=terms) and the Google privacy policy (https://policies.google.com/privacy). You can object to your data being processed by the network operator by changing the settings of your Google account here: https://adssettings.google.com/authenticated. You can find information about managing the privacy settings of your Google account here: https://support.google.com/youtube/topic/9257518?hl=en&ref_topic=9257107.

The agreement that we have reached with Google about our YouTube channel allows you to exercise your rights as a data subject against us (for more information, see section 1.3) and against Google.

3.5 YouTube

杜尔在 YouTube 平台上开设了一个频道,由总部位于美国的Google LLC的子公司 YouTube LLC(详见第 3.1.a 节)提供。

任何谷歌服务都可能将谷歌收集到的您的数据传输到美国(有关第三国传输的更多信息,请参阅第 1.5 节)。这种转移是根据欧盟委员会的标准合同条款进行的。

YouTube Analytics:我们会接收有关我们频道使用情况的统计信息,包括以下汇总信息和匿名信息:

  • 视频观看总数
  • 人均视频观看次数及趋势(下降/上升及上升幅度)
  • 用户数量和趋势
  • 访客数量
  • 观众的互动(点赞、评论、分享内容)
  • 访客在频道上观看视频的时间
  • 视频的传播范围
  • 用户平均观看视频的百分比

网络运营商根据服务条款 (https://www.youtube.com/static?template=terms) 和 谷歌隐私政策 (https://policies.google.com/privacy) 处理数据。您可以通过更改 谷歌帐户的设置来反对网络运营商处理您的数据:https://adssettings.google.com/authenticated。您可以在 https://support.google.com/youtube/topic/9257518?hl=en&ref_topic=9257107 找到有关管理 谷歌帐户隐私设置的信息。 

根据我们与谷歌就 YouTube 频道达成的协议,您可以作为数据主体针对我们(更多信息,请参见第 1.3 节)和谷歌行使您的权利。

3.6 Twitter

Dürr has a presence on Twitter (for more details of Twitter, see section 3.1.a)).

Twitter belongs to Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA, and transfers data to the USA on the basis of the standard contractual clauses of the EU Commission (for more information on third-country transfers, please refer to section 1.5).

Twitter processes data on the basis of its terms of service (available at: https://twitter.com/en/tos) and the guidelines referred to there, in particular the Twitter privacy policy (available at: https://twitter.com/en/privacy).

Twitter Analytics: We use the Twitter Analytics statistics service, which records the activities of visitors to our Twitter account and processes the data to provide us with statistics. This gives us details about how the subscribers and other visitors to our Twitter account read and use our tweets and which countries and cities they come from and also provides statistics about their gender ratios, age distribution, providers, and interests (accumulated). It is not possible to identify individual visitors (the exception to this is the monthly evaluation of the top follower and top mention).

In the agreement entered into with us (which you can access here: https://privacy.twitter.com/en/for-our-partners/global-dpa), Twitter has undertaken to inform us in the event of inquiries from data subjects relating to our Twitter presence. For information about the rights of data subjects, please refer to section 1.3.

3.6 Twitter

杜尔在 Twitter 上设有社交媒体(有关 Twitter 的更多详情,请参见第 3.1.a) 节)。

Twitter 属于 Twitter Inc.(地址:1355 Market Street, Suite 900, San Francisco, CA 94103, USA),并根据欧盟委员会的标准合同条款将数据传输到美国(有关第三国传输的更多信息,请参阅第 1.5 节)。

Twitter 处理数据的依据是其服务条款(网址:https://twitter.com/en/tos)及其中提及的指导原则,尤其是 Twitter 隐私政策(网址:https://twitter.com/en/privacy)。

Twitter Analytics:我们使用 Twitter Analytics 统计服务,该服务记录我们 Twitter 账户访客的活动,并处理这些数据,为我们提供统计数据。这使我们能够详细了解我们 Twitter 账户的订阅者和其他访问者是如何阅读和使用我们的推文的,他们来自哪些国家和城市,还能提供有关他们的性别比例、年龄分布、提供商和兴趣(累积)的统计数据。无法识别访问者的个人身份(对最高关注者和最高提及者的月度评估除外)。

在与我们签订的协议中(您可在此访问:https://privacy.twitter.com/en/for-our-partners/global-dpa),Twitter 承诺在数据主体就我们的 Twitter 存在提出询问时通知我们。有关数据主体权利的信息,请参阅第 1.3 节。

3.7 Xing

Dürr has a social media presence on Xing (for details of Xing, see section 3.1 a)).

You can find information about the way in which Xing processes your data (including the use of cookies and similar technologies) in the Xing general terms and conditions (available at: https://www.xing.com/terms) and in the Xing privacy policy (https://privacy.xing.com/en/privacy-policy).

Analysis: We are provided with statistical evaluations (e.g. Xing BrandManager and Recruiter Insights) of the accesses to our Xing presence (including click paths). Xing uses third-party providers (e.g. Google, Adobe) for this purpose, and the data may be transferred to third countries that do not provide adequate data protection (for more information on third-country transfers, please refer to section 1.5). We cannot identify individual visitors using these aggregated data. We use the statistical evaluations to improve the attractiveness of our presence and to adapt it to the interests of our visitors.

If users are logged into their Xing profile when they access our Xing presence, information can be assigned to the profile. In addition, we can see the information from the user account. If you want to prevent this from happening, you should log out of your own Xing profile before you visit our Xing presence.

Xing provides information about other ways to object to tracking by Xing and its service providers under the following link: https://privacy.xing.com/en/privacy-policy/information-we-automatically-receive-through-your-use-of-xing/provision-of-our-service. To exercise your rights as a data subject, please refer to section 1.3.

3.7 Xing

杜尔在 Xing 上设有社交媒体(有关 Xing 的详细信息,请参见第 3.1 a) 节)。

您可以在 Xing 一般条款和条件(网址:https://www.xing.com/terms)和 Xing 隐私政策(网址:https://privacy.xing.com/en/privacy-policy)中找到有关 Xing 处理您的数据(包括使用 cookie 和类似技术)的方式的信息。 

分析:我们将获得对访问我们的 Xing 存在(包括点击路径)的统计评估(例如 Xing BrandManager 和 Recruiter Insights)。为此,Xing 使用第三方提供商(如 谷歌、Adobe),这些数据可能会被转移到无法提供充分数据保护的第三国(有关第三国转移的更多信息,请参阅第 1.5 节)。我们无法通过这些汇总数据识别访问者个人。我们利用统计评估来提高我们网站的吸引力,并使其适应访客的兴趣。

如果用户在访问我们的 Xing 社交媒体时登录了他们的 Xing帐户,信息则可能分配给该帐户。此外,我们还可以看到用户账户中的信息。如果您想避免这种情况发生,应在访问我们的 Xing 存在之前登出自己的 Xing 帐户。

Xing提供有关反对Xing及其服务提供商进行跟踪的其他方式的信息,链接如下:https://privacy.xing.com/en/privacy-policy/information-we-automatically-receive-through-your-use-of-xing/provision-of-our-service。要行使您作为数据主体的权利,请参阅第 1.3 节。 

3.8 Kununu

Dürr has a social media presence on Kununu (for details of Kununu, see section 3.1 a)). Kununu belongs to Xing, and the basic conditions are the same in some cases (see section 3.7).

You can find information about the way in which Kununu processes your data (including the use of cookies and similar technologies) in the Xing privacy policy (see section 3.7), which also applies to Kununu. You can find the Kununu general terms and conditions at: https://www.kununu.com/de/info/agb.

Analysis: We have access to statistical evaluations of accesses and activities on our Kununu presence. The information provided about Xing (section 3.7) also applies in this case. For information about the rights of data subjects, please refer to section 1.3.

3.8 Kununu

杜尔在 Kununu 上拥有社交媒体(有关 Kununu 的详细信息,请参见第 3.1 a) 节)。Kununu 属于 Xing,在某些情况下基本条件相同(见第 3.7 节)。

您可以在 Xing 隐私政策(见第 3.7 节)中找到有关 Kununu 处理您的数据的方式(包括 cookie 和类似技术的使用)的信息,该政策同样适用于 Kununu。您可以在以下网址找到 Kununu 的一般条款和条件:https://www.kununu.com/de/info/agb。 

分析:我们可以对 Kununu 上的访问和活动进行统计评估。有关 Xing 的信息(第 3.7 节)也适用于这种情况。有关数据主体权利的信息,请参阅第 1.3 节。

3.9 Your rights as a data subject

In section 1.3, we describe in detail the rights you have in relation to our processing of your data.

3.9 您作为数据主体的权利

在第 1.3 节中,我们详细描述了您在我们处理您的数据时享有的权利。

4. Privacy information relating to other data processing by companies in the Dürr Group not in connection with the websites

Below you can find out what we do with your data in our business activities that are not connected with our websites. This section 4 applies in addition to the general information in section 1. If you cannot find the necessary information in this section 4, please refer to section 1 (e.g. concerning the rights of the data subject). If there is a conflict between section 4 and section 1, the information in section 4 takes precedence over section 1.

4.与杜尔集团内公司处理与网站无关的其他数据有关的隐私信息

下面您可以了解我们在与网站无关的业务活动中如何处理您的数据。除第 1 部分的一般信息外,本第 4 部分也适用。如果您在第 4 节中找不到必要的信息,请参阅第 1 节(例如,关于数据主体的权利)。如果第 4 条和第 1 条之间存在冲突,则第 4 条中的信息优先于第 1 条。

4.1 Who is the data controller with responsibility for processing data?

This section covers data processing by the companies in the Dürr Group that are included in this list, unless the processing is based on the provision of the website (in which case sections 2 and 5 apply).

In the annex, you will also find the contact details of the data controller (the company that you are in contact with) and its data protection officer.

Alternatively, if you have any questions or concerns relating to data protection, you can also contact the data protection officer of Dürr AG by email at dataprotection[at]durr.com or by mail at

Dürr Aktiengesellschaft
Attn: Data Protection Officer
Carl-Benz-Str. 34
74321 Bietigheim-Bissingen
Germany

In many cases that are described in detail here, two or more companies of the Dürr Group are joint controllers with responsibility for processing the data (see section 4.4, for example).

4.1 谁是负责处理数据的数据控制者?

本节涵盖杜尔集团中包含在此列表中的公司的数据处理,除非数据处理是基于网站的提供(在这种情况下适用第 2 节和第 5 节)。

在附件中,您还可以找到数据控制者(与您联系的公司)及其数据保护官的详细联系方式。

此外,如果您有任何与数据保护相关的问题或疑虑,也可以通过电子邮件 dataprotection[at]durr.com 或邮寄至以下地址联系Dürr AG的数据保护官 

Dürr Aktiengesellschaft
收件人:数据保护官
Carl-Benz-Str. 34
74321 Bietigheim-Bissingen
德国

在此处详细描述的许多情况下,杜尔集团的两家或多家公司是共同控制人,负责处理数据(例如,参见第 4.4 节)。

4.2 Collection, storage and use of personal data

If you enter into a contractual relationship with us (e.g. if you place an order for our goods and services or if we award a contract to your company) or if a contractual relationship with you is planned or if we make contact with or provide information to companies or if we carry out customer satisfaction studies or product surveys, we collect the following information:

  • Master data (e.g. title, first name, last name, gender)
  • (Publicly available) data about your company/employer
  • Communication data (e.g. business telephone number (landline and/or cell phone), valid email address, business mailing address)
  • Survey data (comments and evaluations provided by the customer) and log data (time stamp showing when the customer responded to the survey)
  • Data provided during the use of a training portal, e.g. participation details, evaluations, test results, and comments

These data are collected:

  • to be able to identify you or your company/your employer as our customer/potential customer for our services/supplier
  • to fulfill statutory obligations (for example, concerning supply chain transparency or combating corruption or terrorism)
  • to enter into a contractual relationship with you/your company/your employer
  • to fulfill the contract subsequently entered into with you/your company/your employer
  • to correspond with you for the purpose of entering into or fulfilling a contract
  • to issue invoices if a contractual relationship involving payment is entered into
  • to improve our customer service, services, and products
  • for marketing and advertising purposes
  • for the purposes of our legitimate interests

The data are processed at your request or as part of customer satisfaction studies and product surveys, and the processing is necessary in accordance with Art. 6(1)(b) GDPR or Art. 6(1)(f) GDPR (if you work for a company) for the specified purposes in order to enter into a contractual relationship and to allow both parties to fulfill their obligations under the contract that is subsequently concluded. In the event of a statutory obligation, the legal basis is national or EU legislation in conjunction with Art. 6(1)(c) GDPR.

If you have given your consent to us processing your data for specific purposes, such as product advertising or marketing, this is based on Art. 6(1)(a) GDPR.

In addition, your personal data are processed for the purposes of our legitimate interests in accordance with Art. 6(1)(f) GDPR, including:

  • to improve the Dürr Group’s portfolio of products and services on your behalf
  • to produce statistical evaluations
  • to be able to pass your inquiry on to one of our distributors and to guarantee that the Dürr Group's IT systems and buildings are secure

The personal data we collect are stored until the purposes listed above no longer apply and are then erased, unless we are required to store the data for a longer period in accordance with Art. 6(1)(c) GDPR on the basis of legal retention and documentation requirements (e.g. in the German Commercial Code, Criminal Code, or Fiscal Code) or unless you have consented to the data being stored for a longer period in accordance with Art. 6(1)(a) GDPR.

4.2 个人数据的收集、储存和使用

如果您与我们建立了合同关系(例如,您订购了我们的商品和服务,或者我们与贵公司签订了合同),或者我们计划与您建立合同关系,或者我们与公司联系或向公司提供信息,或者我们开展了客户满意度研究或产品调查,我们都会收集以下信息:

  • 主数据(如职称、名、姓、性别)
  • (有关贵公司/雇主的(公开)数据
  • 通信数据(例如企业电话号码(固定电话和/或手机)、有效的电子邮件地址、企业邮寄地址)
  • 调查数据(客户提供的评论和评价)和日志数据(显示客户何时回复调查的时间戳)
  • 在使用培训门户网站期间提供的数据,例如参与详情、评估、测试结果和意见

这些数据是收集来的:

  • 以确定您或您的公司/雇主是我们的客户/我们服务的潜在客户/供应商
  • 履行法定义务(例如,有关供应链透明度或打击腐败或恐怖主义的义务)
  • 与您/您的公司/您的雇主建立合同关系
  • 履行随后与您/您的公司/您的雇主签订的合同
  • 为签订或履行合同与您通信
  • 如果签订了涉及付款的合同关系,则开具发票
  • 改进我们的客户服务、服务和产品
  • 用于营销和广告目的

这些数据是应您的要求或作为客户满意度研究和产品调查的一部分进行处理的,并且根据《通用数据保护条例》(欧盟)第 6(1)(b)条的规定其处理是必要的,或第6(1)(f)条(如果您在一家公司工作)为达成合同关系并使双方能够履行随后签订的合同规定的义务,有必要出于指定目的处理您的数据。如果存在法定义务,法律依据是国家或欧盟法律以及《通用数据保护条例》(欧盟)第 6(1)(c)条。

如果您同意我们出于特定目的(如产品广告或营销)处理您的数据,则这是基于《通用数据保护条例》(欧盟)第 6(1)(a)条的规定。

此外,您的个人数据将根据《通用数据保护条例》(欧盟)第 6(1)(f)条的规定,出于我们合法利益的目的进行处理,其中包括

  • 代表您改进杜尔集团的产品和服务组合
  • 进行统计评估
  • 以便将您的查询转给我们的分销商,并保证杜尔集团 IT 系统和楼宇的安全

我们收集的个人数据会一直保存到上述目的不再适用为止,然后会被删除,除非根据《通用数据保护条例》(欧盟)第 6(1)(c)条的规定,我们由于法律的保存和存档要求需要将数据保存更长的时间(例如《德国商法典》、《德国刑法典》或《德国财政法典》)。

4.3 Disclosure of your data

Your personal data will not be transferred to third parties except for the purposes listed below.

If this is necessary in accordance with Art. 6(1)(b) GPDR (or in accordance with Art. 6(1)(f) GDPR if you are representing a company) for the purpose of fulfilling a contract that we have entered into with you, your personal data will be transferred to third parties. These include in particular companies in the Dürr Group or its partners that we use as shipping and payment service providers or portal operators for the performance of the contract.

The data that are transferred may be used by these third parties only for the specified purposes.

In accordance with Art. 6(1)(f) GDPR, your personal data can also be transferred to third parties that we use for the purposes of our legitimate interests as described in section 4.2 (including marketing service providers, distributors, consultants, agencies, companies from the Dürr Group).

If this is necessary for us to provide a service, your personal data, which we have your consent to use for the purposes in accordance with Art. 6(1)(a) GDPR, will be transferred to partners (including advertising and shipping service providers, Dürr Group companies).

If the recipients referred to above process your data outside the EEA, please refer to section 1.5.

4.3 您数据的披露

除非出于以下目的,您的个人数据不会转交给第三方。

如果按照《通用数据保护条例》(欧盟)第有6(1)(b)条必要的话 (或按照第 6(1)(f)条,如果您代表的是公司),为履行我们与您签订的合同,有必要将您的个人数据传输给第三方。这些第三方尤其包括杜尔集团内的公司或我们为履行合同而用作运输和支付服务提供商或门户网站运营商的合作伙伴。

这些第三方只能将所传输的数据用于指定目的。

根据 《通用数据保护条例》(欧盟) 第 6(1)(f)条的规定,您的个人数据也可能被转移给我们出于第 4.2 节所述的合法利益而使用的第三方(包括营销服务提供商、分销商、顾问、代理机构、杜尔集团的公司)。

如果这是我们提供服务所必需的,在征得您同意的情况下,您的个人数据将根据 《通用数据保护条例》(欧盟) 第 6(1)(a)条的规定将被转移给合作伙伴(包括广告和运输服务提供商、杜尔集团公司)。

如果上述接收方在欧洲经济区以外处理您的数据,请参阅第 1.5 节。

4.4 Joint CRM system that we operate as a joint controller

The companies in the Dürr Group operate a joint database (CRM system) and therefore act as joint controllers under the terms of Art. 26 GDPR.

You can find a list of the companies in the Dürr Group here. The data are stored only as long as required for the purpose they were collected for or as required by law or if we have a legitimate interest in storing them, for example, law enforcement.

If the data are transferred to Dürr companies outside the EEA, this is based on the standard contractual clauses of the EU Commission. Please also refer to the information on third-country transfers in section 1.5.

The CRM system is provided by Salesforce. The data are stored in the EU. Data may be transferred to companies in the Salesforce Group outside the EEA (for details of Salesforce, see section 2.2 c)).  

Internally we have drawn up a contract that divides the joint controller roles as follows: Data subjects can approach all joint controllers to exercise their rights as data subjects (for details of the rights of data subjects, see section 1.3).

The company in the Dürr Group that you provided your data to is your first point of contact. Dürr Systems AG is the controller responsible for the information obligations under Art. 13(f) GDPR and has overall responsibility for the CRM system. Within their scope of operations, the joint controllers are responsible for fulfilling the required reporting obligations and maintaining documentation; imposing confidentiality obligations on employees; explaining employees’ obligations under data protection law to them and ensuring the technical and organizational security of the data processing.

4.4 我们作为联合控制方运行的联合客户关系管理系统

杜尔集团的各公司运营着一个联合数据库(CRM 系统),因此,根据 《通用数据保护条例》(欧盟) 第 26 条的规定,它们是联合控制者。

您可以在这里找到杜尔集团的公司列表。数据的保存时间仅限于收集目的所需的时间,或法律要求的时间,或我们有合法权益保存数据的时间,例如执法。 

如果数据被转移到欧洲经济区以外的杜尔公司,则以欧盟委员会的标准合同条款为基础。另请参阅第 1.5 节中有关第三国传输的信息。

客户关系管理系统由 Salesforce 提供。数据存储在欧盟。数据可能被转移到欧洲经济区以外的 Salesforce 集团公司(有关 Salesforce 的详细信息,请参见第 2.2 c) 节)。

我们在内部起草了一份合同,对联合控制人的角色进行了如下划分:数据主体可以联系所有联合控制人,行使其作为数据主体的权利(有关数据主体权利的详情,请参见第 1.3 节)。

您向其提供数据的杜尔集团公司是您的第一联系人。Dürr Systems AG 是负责履行 《通用数据保护条例》(欧盟) 第 13(f) 条规定的信息义务的控制方,并全面负责 CRM 系统,并全面负责 CRM 系统。在其业务范围内,联合控制人负责履行规定的报告义务和维护文件;对员工规定保密义务;向员工解释数据保护法规定的义务,并确保数据处理的技术和组织安全。

4.5 Your rights as a data subject

In section 1.3, we describe in detail the rights you have in relation to our processing of your data.

4.5 您作为数据主体的权利

在第 1.3 节中,我们详细描述了您在我们处理您的数据时享有的权利。

5. Privacy information relating to the event website

Below you can find out what we do with your data when you visit events.durr.com (our “event website”). This section 5 applies in addition to the general information in section 1. If you cannot find the necessary information in this section 5, please refer to section 1 (e.g. concerning the rights of the data subject).

If we refer to detailed information in sections 2 and 3 in the following, these sections also apply accordingly. If there is a conflict between section 5 and sections 1-3, the information in section 5 takes precedence over sections 1-3.

5.与活动网站有关的隐私信息

当您访问 events.durr.com(我们的 "活动网站")时,您可以在下文中了解我们会如何处理您的数据。除第 1 节中的一般信息外,本第 5 节也适用。如果您在第 5 节中找不到必要的信息,请参阅第 1 节(例如,关于数据主体的权利)。

如果我们在下文中提及第 2 节和第 3 节的详细信息,这些章节也同样适用。如果第 5 节与第 1-3 节之间存在冲突,则第 5 节中的信息优先于第 1-3 节。

5.1 Who is the data controller with responsibility for processing data?

The data controller responsible for data processing in connection with the event website is:

Dürr Systems Aktiengesellschaft
Carl-Benz-Straße 34
74321 Bietigheim-Bissingen
Telephone +49 71 42 78 0

If your event is not organized by Dürr Systems AG, but by another Dürr Group company (details of the organizer can be found in the invitation email or event announcement on this website, for example), Dürr Systems AG and the respective Group company (also referred to as the “organizer”) act as joint controllers. You can find the names of contacts and their contact information here.

Internally we have divided up the joint controller roles as follows: Data subjects can approach both joint controllers to exercise their rights as data subjects (see Section 1.3). The organizer is responsible for the use of the contact information. Dürr Systems AG is the controller responsible for the information obligations under Art. 13(f) GDPR. Within their scope of operations, both joint controllers are responsible for fulfilling the required reporting obligations and maintaining documentation; imposing confidentiality obligations on employees; explaining employees’ obligations under data protection law to them and ensuring the technical and organizational security of the data processing.

Alternatively, you can also contact our data protection officer by email at dataprotection[at]durr.com if you have any questions or concerns relating to data protection.

5.1 谁是负责处理数据的数据控制者?

负责与活动网站有关的数据处理的数据控制者是

Dürr Systems Aktiengesellschaft
Carl-Benz-Straße 34
74321 Bietigheim-Bissingen
电话 +49 71 42 78 0

如果您的活动不是由Dürr Systems AG组织的,而是由杜尔集团的其他公司组织的(例如,组织者的详细信息可以在邀请电子邮件或本网站上的活动公告中找到),Dürr Systems AG和相应的集团公司(也称为 "组织者")将作为联合控制者。您可以在此处找到联系人姓名及其联系信息。 

在内部,我们对联合控制人的角色进行了如下划分:数据主体可以同时联系两个联合控制人,行使其作为数据主体的权利(参见第 1.3 节)。主办方负责联系信息的使用。Dürr Systems AG是负责履行 《通用数据保护条例》(欧盟) 第 13(f) 条规定的信息义务的控制方。在其业务范围内,两个联合控制人都有责任履行规定的报告义务并保存文件;对员工规定保密义务;向员工解释数据保护法规定的义务,并确保数据处理的技术和组织安全。

此外,如果您有任何与数据保护相关的问题或疑虑,也可以通过电子邮件 dataprotection[at]durr.com 联系我们的数据保护官。

5.2 What personal data are collected and stored and for what purposes?

On our event website, we organize digital networking events, product launches, presentations, discussion panels, meetings, and other events that visitors to our website can take part in (“events”).

a) Visiting the event website

When you use our event website, your personal data are logged, as described in section 2.2 a). The information there applies accordingly.

Cookie management tool:

On our event website, we also use the cookie management tool supplied by Piwik Pro GmbH, Kurfürstendamm 21, 10719 Berlin ("Piwik Pro").

Using the tool, we obtain your consent to store specific cookies on your device and document them in accordance with data protection legislation. You can also change your preferences at any time by clicking on "Cookies" in the footer of our website.

When you visit our website, a connection is made to the servers of Piwik Pro to obtain your consent and provide you with information about the use of cookies. Subsequently, Piwik Pro stores a cookie in your browser so that it can connect the consent you have granted and the withdrawal of this consent to you. The data that are collected in this way are stored until you ask us to erase them or erase the Piwik Pro cookie yourself or until the purpose for storing the data no longer applies. Any statutory obligations to store the data remain unaffected.

We use the Piwik Pro tool to obtain the consent required by law for the use of cookies. The legal basis for the processing of the consent is Art. 6(1)(c) GDPR. The use of the tools is based on our legitimate interest in using a specialist tool to provide transparent information about our cookies and about the management of website users’ consent (Art. 6(1)(f) GDPR).

You can find more information about how Piwik Pro processes your data here https://piwik.pro/privacy-policy/.

5.2 收集和存储哪些个人数据?

在我们的活动网站上,我们组织数字网络活动、产品发布、演示、讨论小组、会议和其他活动("活动"),我们网站的访问者可以参加这些活动。

a) 访问活动网站

如第 2.2 a) 节所述,当您使用我们的活动网站时,您的个人数据将被记录。其中的信息也相应适用。

cookie 管理工具

在我们的活动网站上,我们还使用 Piwik Pro GmbH, Kurfürstendamm 21, 10719 Berlin("Piwik Pro")提供的 cookie 管理工具。

通过使用该工具,我们可以征得您的同意,在您的设备上存储特定的 cookie,并根据数据保护法对其进行记录。您也可以随时点击我们网站页脚的 "cookies "来更改您的偏好。

我们使用 Piwik Pro 工具获得法律规定的使用 cookie 的同意。处理同意书的法律依据是《通用数据保护条例》(欧盟)第 6(1)(c)条。使用该工具是基于我们的合法权益,即使用专业工具提供有关我们 cookie 和网站用户同意管理的透明信息(《通用数据保护条例》(欧盟) 第 6(1)(f)条)。

We use the Piwik Pro tool to obtain the consent required by law for the use of cookies. The legal basis for the processing of the consent is Art. 6(1)(c) GDPR. The use of the tools is based on our legitimate interest in using a specialist tool to provide transparent information about our cookies and about the management of website users’ consent (Art. 6(1)(f) GDPR).

有关 Piwik Pro 如何处理您的数据的更多信息,请访问 https://piwikpro.de/datenschutz/。 

b) Logging in, registering, streaming, participant administration

(1) Streamboxy:
In connection with our event website, we use services provided by the service provider MAKONIS GmbH, Walter-Gropius-Str. 15, 80807 Munich, Germany ("Streamboxy") for livestreaming, conferences, online and hybrid events, registration, participant administration, interaction and communication tools, such as chats and surveys, and the integration of third-party providers. Please read the privacy policy of Streamboxy for more information (e.g. about the other providers used by Streamboxy).

(2) Microsoft:
We also use cloud services for contact management and in order to provide a simple solution for registering for all of our events (single sign-on) provided by Microsoft Ireland Operations Limited, 70 Sir Rogerson’s Quay, Dublin 2, Ireland (“Microsoft”, for more information see section 2.2 b)).

We use the services of both Streamboxy and Microsoft as follows: For certain content on our event website (e.g. participating in an event, download center), we offer you the option of logging in with a user name and password. Registration for these services takes place either after personal contact with our employees or after registering on our website using the registration form, with access subsequently being granted by one of our employees. The registration form is used to collect the following data, in particular:

  • First name and last name, title
  • Company name
  • Position in the company
  • Email address
  • Any other information that you provide voluntarily, such as a photo, which you can upload, or your areas of interest.

In addition, audio and video recordings of events and, where applicable, your active participation in them (e.g. if you spoke or gave a commentary) (for more details see sections 5.2 c) and d) below) and your activity status are processed.

These data are stored on the servers of Microsoft Ireland Operations Limited and of the hosting service provider Streamboxy within the EU and can be transferred to associated companies of Microsoft (for details of Microsoft, see section 5.2 d) below). According to Microsoft, the potential transfer of data to third countries is based on the so-called standard contractual clauses published by the EU Commission. In addition, Microsoft Corporation is certified under the EU-US Privacy Framework (for more information about third-country transfers, please also refer to section 1.5).

The legal basis for the processing of the data that you provide to us during registration is Art. 6(1)(b) GDPR for contracts that are implemented or, where there is no contract, Art. 6(1)(f) GDPR, and our legitimate interest, which is the same as the purpose of the processing, in other words, providing you with the information you requested and holding the event that you are interested in and have registered for. The provision of the data is not required by law or under the terms of a contract. Participation in one of our events without registration is not possible, because under some circumstances we provide confidential and internal company information via our website. We must ensure that this information is only accessed by authorized parties.

The data are erased as soon as they are no longer needed for the purpose they were collected for. For example, when the data are no longer required for the implementation of the contract. After the conclusion of the contract, it may be necessary to store the contractual partner’s personal data in order to comply with contractual or statutory obligations.

As a user, you can cancel your registration at any time. You can have your stored data modified at any time. Simply email us at info[at]durr.com.

If the data are necessary for the performance of a contract or for steps prior to entering into a contract, premature erasure of the data is only possible if this is not prevented by contractual or statutory obligations.

b) 登录、注册、分流、与会者管理

(1) Streamboxy:
在我们的活动网站上,我们使用服务提供商 MAKONIS GmbH, Walter-Gropius-Str.15,80807 Munich,Germany)(以下简称 "Streamboxy")提供的服务,用于直播、会议、在线和混合活动、注册、参与者管理、互动和交流工具(如聊天和调查)以及整合第三方供应商。请阅读 Streamboxy 的隐私政策,了解更多信息(例如 Streamboxy 使用的其他供应商)。

(2) 微软公司:
我们还使用Microsoft Ireland Operations Limited (地址: 70 Sir Rogerson's Quay, Dublin 2, Ireland)(以下简称 "微软",更多信息请参见第 2.2 b) 节)提供的云服务进行联系人管理,以便为我们的所有活动提供简单的注册解决方案(单点登录)。

我们使用 Streamboxy 和 Microsoft 的服务如下:对于我们活动网站上的某些内容(如参与活动、下载中心),我们会向您提供使用用户名和密码登录的选项。注册这些服务需要与我们的员工取得个人联系,或使用注册表在我们的网站上注册,随后由我们的员工授予访问权限。注册表主要用于收集以下数据:

  • 姓名、职称
  • 公司名称
  • 在公司的职位
  • 电子邮件地址
  • 您自愿提供的任何其他信息,例如您可以上传的照片或您感兴趣的领域。

此外,还将处理活动的录音和录像,并酌情处理您积极参与活动的情况(如发言或评论)(详见下文第 5.2 c) 和 d) 节)以及您的活动状态。

这些数据存储在欧盟境内 Microsoft Ireland Operations Limited 和托管服务提供商 Streamboxy 的服务器上,并可能被转移到 Microsoft 的关联公司(有关 Microsoft 的详细信息,请参阅下文第 5.2 d) 节)。据微软称,向第三国转移数据的可能性是基于欧盟委员会公布的所谓标准合同条款。此外,微软公司还通过了欧盟-美国隐私框架认证(有关第三国传输的更多信息,请参阅第 1.5 节)。

处理您在注册期间向我们提供的数据的法律依据是《通用数据保护条例》(欧盟) 第 6(1)(b)条(适用于已执行合同的),或者,如果没有合同,则适用 《通用数据保护条例》(欧盟) 第 6(1)(f)条,以及我们的合法利益,与处理的目的相同,换句话说,为您提供您请求的信息并举办您感兴趣并已注册的活动。提供数据并非法律或合同条款的要求。在某些情况下,我们会通过网站提供公司的机密和内部信息,因此未经注册不可能参加我们的活动。我们必须确保只有经过授权的人才能访问这些信息。

一旦不再需要用于收集数据的目的,这些数据就会被删除。例如,在合同执行过程中不再需要这些数据时。合同签订后,为了履行合同或法定义务,可能有必要保存合同方的个人数据。

作为用户,您可以随时取消注册。您可以随时修改存储的数据。请发送电子邮件至 info[at]durr.com。 

如果数据对履行合同或签订合同前的步骤是必要的,则只有在合同或法定义务没有阻止的情况下,才有可能提前删除数据。

c) Contact options, chat and poll function

We offer you various contact options, e.g. contact via the email addresses provided, a chat function, and a contact form, for certain functions of our website (e.g. inquiries from customers, visitors, or the press). Polls and surveys may also be carried out during events. Participation is not possible without the specified data being collected.

We use the services of Streamboxy in this connection as well (see section 5.2 b)). The data transferred via the contact form, the chat function, the surveys, and polls, and their use, and the user’s data transferred in the email are stored. This includes the participants in the communications, the time and content of the messages and the participation, the users, and the forms they used. Streamboxy evaluates this information on our behalf in aggregated form against the total number of uses of the respective form.

In addition to the evaluation referred to above, we use your data solely to process your request and your participation and can contact you for this purpose, where applicable, using the contact data provided. The legal basis for processing data that are transferred in the course of contacting us is Art. 6 (1)(f) GDPR and our legitimate interest in responding to the inquiry and evaluating the use of the form. If the aim of making contact is to enter into a contract, then the legal basis for processing is Art. 6 (1)(b) GDPR.

The data are erased as soon as they are no longer needed for the purpose they were collected for. The personal data that you have sent to us for the purpose of making contact will be erased once the relevant conversation with you has come to an end. The conversation is deemed to have ended when it is clear from the circumstances that the matter in question has been conclusively resolved. We generally store the written transcript of the chat together with the conference for a period of four weeks after the chat occurred only insofar as separate erasure from the conference recording is not possible. However, under some circumstances we are entitled and, in some cases, obligated to store the data for longer, e.g. due to a statutory documentation obligation.

c) 联系选项、聊天和投票功能

我们为您提供多种联系方式,例如,通过所提供的电子邮件地址、聊天功能和联系表单进行联系,用于我们网站的某些功能(例如,客户、访客或媒体的咨询)。活动期间还可能进行投票和调查。如果未收集指定数据,则无法参与。

在这方面,我们也使用 Streamboxy 的服务(参见第 5.2 b) 节)。通过联系表单、聊天功能、调查和民意测验传输的数据及其使用情况,以及通过电子邮件传输的用户数据都会被储存起来。其中包括通信的参与者、信息和参与的时间和内容、用户及其使用的表格。Streamboxy 代表我们对这些信息进行汇总评估,并与相关表格的使用总数进行比较。

除上述评估外,我们使用您的数据仅是为了处理您的请求和参与活动,并在适当情况下使用您提供的联系数据与您联系。处理在与我们联系过程中传输的数据的法律依据是《通用数据保护条例》(欧盟)第 6 (1) (f)条以及我们在回复咨询和评估表格使用情况时的合法权益。如果联系我们的目的是为了签订合同,则处理的法律依据为《通用数据保护条例》(欧盟)第 6 (1) (b)条。

一旦不再需要用于收集数据的目的,这些数据就会被删除。一旦与您的相关对话结束,您为与我们联系而发送给我们的个人数据将被删除。如果从当时的情况来看,相关问题已得到最终解决,则视为谈话结束。我们通常会在聊天结束后四周内将聊天的书面记录与会议记录一起保存,但仅限于无法从会议记录中单独删除的情况。但是,在某些情况下,我们有权,而且在某些情况下,有义务将数据保存更长的时间,例如,由于法定文件义务。

d) Video and audio chats, video conferences (e.g. webinars or presentations), transcriptions

As a registered user of our website on the basis of Art. 6 (1)(b) GDPR, when you log in to the website you can visit dedicated chatrooms for your event, where you can speak to our employees, the moderators, and other guests. Additionally, on our website we offer the option of participating in video conferences of various types (e.g. webinars, presentations, panel discussions, networking events).

(1) Microsoft:
In this area, we work with a third-party provider, depending on the format and technology, such as Microsoft and its “Teams” video conference service or Streamboxy (for more details see section 5.2 b)). At our events, the speeches can be turned into subtitles. This also allows the content of the event to be transcribed so that it can be searched and read later. Please note the following information: Microsoft processes the personal data of the visitors to the events, which we organize using Microsoft Teams, as our processor (we remain the controller responsible for the processing). However, Microsoft also processes some data (e.g. data generated by cookies for measuring the use of the services or other telemetry data) for its own business purposes (e.g. invoicing and account management), for Microsoft internal reporting and business modeling (e.g. forecasts, revenue, capacity planning, product strategy), combating fraud, and improving core functionality. This applies regardless of whether or not you yourself have a Microsoft user account and whether or not you are logged in. Microsoft is a subsidiary of Microsoft Corporation in the USA. It is therefore possible that your data may be transferred to a data center in the USA. The transfer is based on the standard contractual clauses of the EU Commission and on additional assurances made by Microsoft to the users. In addition, Microsoft Corporation is certified under the EU-US Privacy Framework. Please refer to the general Microsoft privacy policy at https://privacy.microsoft.com/en-US. We base our use of services such as Teams and the processing of the provider associated with this for its own limited purposes on Art. 6(1)(f) GDPR and our legitimate interest in holding the events in digital form.

(2) b&b Digital GmbH:
To live stream an event, we use the service provided by b&b Digital GmbH (“b&b”). b&b processes the personal data of the visitors to our events, where we use the streaming service of b&b, as our processor (we remain the controller responsible for the processing). b&b collects the following personal data: Login and logout are stored with the time stamp, name and IP address. Additionally, the streams may be recorded (see “Recordings”). We base our use of the streaming service of b&b and the processing associated with this on Art. 6(1)(f) GDPR and our legitimate interest in holding the events in digital form.

(3) Slido:
We use the chat function of the service provider sli.do s. r. o., Vajnorská 100/A, 831 04 Bratislava, Slovakia (“slido”), which is part of the Cisco Systems Inc. Group and which, as our processor, processes personal data of the participants (e.g. name, email, company), as well as data shared by the participants with other participants via the service (e.g. questions, ideas, chat messages). We base our use of slido’s service and the processing associated with this on Art. 6(1)(f) GDPR and our legitimate interest in communicating with the participants while holding the events in digital form. If slido transfers the data to third countries, this transfer is based on standard contractual clauses.  

Recordings, access to the microphone and camera:
In individual cases, a recording may be made of the chat, your active participation, or your spoken message. By switching on your camera and/or your microphone and participating in our event, you consent (in accordance with Art. 6(1)(a) GDPR) to the recording of your image and/or your voice. The provision of data of this kind is not required by law or under the terms of a contract. Your active participation is voluntary, but your consent is required to access your microphone and, where applicable, your camera and to record your voice and your image. If you do not want your voice or image to be recorded, you can withdraw your consent at any time by switching off your camera and/or your microphone. Please note that withdrawal does not affect the lawfulness of any processing that had already occurred. Even if you switch off your microphone and/or your camera, it is possible to ask questions in writing, either during the event or afterwards.  We store the chats for a period of four weeks after they were recorded, unless separate erasure from the conference recording is not possible, e.g. because you asked a question during a conference and your spoken message was recorded along with the conference. Depending on the event, we keep the recording of the event accessible on the Internet for as long as we deem reasonable. However, under some circumstances we are entitled and, in some cases, obligated to store the data for longer, e.g. due to a statutory documentation obligation.

d) 视频和音频聊天、视频会议(如网络研讨会或演示)、转录

根据 《通用数据保护条例》(欧盟) 第 6 (1) (b)条规定,作为我们网站的注册用户, 当您登录网站时,您可以访问您活动的专用聊天室,在那里您可以与我们的员工、主持人和其他来宾交谈。此外,在我们的网站上,您还可以选择参加各种类型的视频会议(如网络研讨会、演讲、小组讨论、交流活动)。

(1) 微软:
在这方面,我们根据不同的形式和技术与第三方供应商合作,如微软及其 "Teams "视频会议服务或 Streamboxy(详见第 5.2 b) 节)。在我们的活动中,演讲内容可以变成字幕。这样还可以对活动内容进行转录,以便日后搜索和阅读。请注意以下信息:微软作为我们的处理方(我们仍然是负责处理的控制方)处理我们使用 Microsoft Teams 组织的活动的访问者的个人数据。但是,Microsoft 也会出于自身的业务目的(如开具发票和账户管理)、Microsoft 内部报告和业务建模(如预测、收入、能力规划、产品策略)、打击欺诈和改进核心功能而处理某些数据(如 cookie 生成的用于衡量服务使用情况的数据或其他遥测数据)。无论您本人是否拥有 Microsoft 用户帐户,也无论您是否登录,这都适用。Microsoft 是美国微软公司的子公司。因此,您的数据有可能被转移到美国的数据中心。这种转移基于欧盟委员会的标准合同条款以及 Microsoft 向用户提供的附加保证。此外,微软公司已通过欧盟-美国隐私框架认证。请参阅 https://privacy.microsoft.com/en-US 上的 Microsoft 一般隐私政策。我们对 Teams 等服务的使用以及与此相关的提供商为其自身有限目的而进行的处理均以《通用数据保护条例》(欧盟)第 6(1)(f)条为基础以及我们以数字形式举办活动的合法权益。

(2) b&b Digital GmbH:
我们使用 b&b Digital GmbH("b&b")提供的服务对活动进行流媒体直播。b&b 作为我们的处理方(我们仍是负责处理的控制方),在我们使用 b&b 的流媒体服务时,会处理我们活动游客的个人数据:登录和登出时会存储时间戳、姓名和 IP 地址。此外,流媒体可能会被记录(参见 "记录")。我们对 b&b 流媒体服务的使用以及与此相关的处理均基于《通用数据保护条例》(欧盟)第 6(1)(f)条以及我们以数字形式举办活动的合法权益。

(3) Slido:
我们使用服务提供商 sli.do s. r. o., Vajnorská 100/A, 831 04 Bratislava, Slovakia("slido")的聊天功能。slido"),它隶属于思科系统公司(Cisco Systems Inc. Group),作为我们的处理方,负责处理参与者的个人数据(如姓名、电子邮件、公司),以及参与者通过服务与其他参与者共享的数据(如问题、想法、聊天信息)。我们使用 slido 的服务以及与此相关的处理均以欧盟《通用数据保护条例》(欧盟)第 6(1)(f)条为依据以及我们在以数字形式举办活动时与参与者交流的合法权益。如果Slido将数据传输到第三国,则会根据标准合同条款进行传输。

录音、使用麦克风和摄像机:
在个别情况下,可能会对聊天、您的积极参与或您的发言进行录音。打开摄像头和/或麦克风并参与我们的活动,即表示您同意(根据《通用数据保护条例》(欧盟))第 6(1)(a)条)对您的图像和/或声音进行录音。法律或合同条款并未要求提供此类数据。您的积极参与是自愿的,但在使用麦克风和摄像头(如适用)以及录制您的声音和图像时,必须征得您的同意。如果您不希望您的声音或图像被录制,您可以随时关闭摄像头和/或麦克风,撤回您的同意。请注意,撤销同意并不影响已经进行的任何处理的合法性。即使您关闭了麦克风和/或摄像头,也可以在活动中或活动后以书面形式提出问题。 我们会将聊天记录保存四周,除非无法从会议录音中单独删除,例如您在会议期间提出了问题,而您的口语信息与会议一起被录制下来。根据不同的活动,我们会在我们认为合理的时间内将活动录音保留在互联网上。不过,在某些情况下,我们有权,而且在某些情况下,有义务将数据保存更长时间,例如,由于法定文件保存义务。

e) Advertising messages (e.g. email newsletters, invitations)

You can register on our website for advertising messages from Dürr AG (e.g. newsletters) to obtain more detailed information about our offering or to receive invitations to future events. For details, please refer to section 2.8.

Future invitations (tracking)

If you also want to be invited to our events in the future, you can register for the corresponding information service, which is also provided by our service provider Streamboxy (for details of Streamboxy, see Section 5.2.b)).

Streamboxy Tracking

The invitation emails sent by Streamboxy on our behalf contain a tracking pixel, which transfers information to Streamboxy when you open the email. We receive this information from Streamboxy's servers to generate statistical analyses, to measure the success of our invitations, and to check whether you were invited, when you register for a future event. The tracking pixel in the emails is used to track whether the email or a link in the email was opened and also, in some cases, for how long. If an email is sent to multiple recipients, it is not possible to know who opened the email/link, but only that the email or link was opened by one of the addressees. This information is also used to produce anonymized analyses, statistics, and evaluations. The legal basis for the processing of the data is your consent in accordance with Art. 6(1)(a) GDPR, which we obtain during the registration process for the invitation service. We erase the data three years after the end of the Streamboxy event.

e) 广告信息(如电子邮件通讯、邀请函等)

您可以在我们的网站上注册,以获取Dürr AG的广告信息(如新闻简报),从而获得有关我们产品的更多详细信息或接收未来活动的邀请。详情请参阅第 2.8 节。

未来的邀请(跟踪)

如果您还希望今后受邀参加我们的活动,可以注册相应的信息服务,该服务也由我们的服务提供商 Streamboxy 提供(有关 Streamboxy 的详细信息,请参见第 5.2.b) 节)。

Streamboxy 跟踪

Streamboxy 代表我们发送的邀请邮件包含一个跟踪像素,当您打开邮件时,该像素会将信息传输给 Streamboxy。我们从 Streamboxy 服务器接收这些信息,以生成统计分析,衡量我们的邀请是否成功,并在您注册未来活动时检查您是否被邀请。邮件中的跟踪像素用于跟踪邮件或邮件中的链接是否被打开,在某些情况下还用于跟踪打开的时间。如果电子邮件发送给多个收件人,则无法知道谁打开了电子邮件/链接,只能知道其中一个收件人打开了电子邮件或链接。这些信息还用于进行匿名分析、统计和评估。处理数据的法律依据是根据《通用数据保护条例》(欧盟)第 6(1)(a)条的同意。即我们在邀请服务注册过程中获得您的同意。我们会在Streamboxy活动结束三年后删除数据。

5.3 Cookies

We use cookies on our website. For details, please refer to section 2.3, which also applies to the event website.

The following cookies in particular are used on the event website.

5.3. cookie

我们在网站上使用 cookie。详情请参见第 2.3 节,该节也适用于活动网站。

活动网站特别使用以下 cookies。

Name of cookie Type of cookie Name of application Purpose of cookie Storage duration
idsrv.session Technically required  Streamboxy Implementation Login End of the browser session
idsrv.external Technically required  Streamboxy Implementation Login End of the browser session
.AspNetCore.Correlation.<sessionid></sessionid> Technically required  Streamboxy Implementation Login After successful login
.AspNetCore.Identity.Application Technically required  Streamboxy Implementation Login End of the browser session
.AspNetCore.OpenIdConnect.Nonce.<sessionid></sessionid> Technically required  Streamboxy Implementation Login After successful login
__cfruid  Technically required  Cloudflare This cookie is used by Cloudflare to guarantee confidential access. All cookies stored by other websites are ignored during the access.  12 months
li_fat_id Marketing LinkedIn This cookie is an indirect identifier for members that is used for conversion tracking, retargeting, and analyses. 30 days
lidc Marketing LinkedIn This cookie facilitates data center selection. 24 hours
bcookie Marketing LinkedIn Browser identifier 2 years
UserMatchHistory Marketing LinkedIn This cookie synchronizes the IDs of LinkedIn ads. 30 days
li_giant Marketing LinkedIn Indirect identifier for groups of LinkedIn members that is used for conversion tracking. 7 days
BizographicsOptOut Marketing LinkedIn This cookie is used to determine the opt-out status for third-party tracking. 10 years
x-ms-cpim-admin Functionality Azure AD Contains cross-client data on the user’s membership: Clients that a user belongs to and the level of membership (“admin” or “user”). End of the browser session
x-ms-cpim-slice Functionality Azure AD For transferring requests to the corresponding production instance. End of the browser session
x-ms-cpim-trans Functionality Azure AD For tracking transactions (number of authentication requests to Azure AD B2C) and the current transaction. End of the browser session
x-ms-cpim-sso:{Id} Functionality Azure AD For managing the session with single sign-on (SSO). This cookie is set to persistent if persistent is activated. End of the browser session
x-ms-cpim-cache:{id}_n Functionality Azure AD For managing the request status. End of the browser session, successful authentication
x-ms-cpim-csrf Functionality Azure AD Token for cross-site request forgery (CSRF) to protect against CSRF attacks. End of the browser session
x-ms-cpim-dc Functionality Azure AD For Azure AD B2C network routing. End of the browser session
x-ms-cpim-ctx Functionality Azure AD Context End of the browser session
x-ms-cpim-rp Functionality Azure AD For storing membership data for the resource provider client. End of the browser session
x-ms-cpim-rc Functionality Azure AD For storing the relay cookie. End of the browser session
consent_type_analytics Technically required  Cookie-Compliance-Tool (Piwik Pro) Is recorded when a visitor gives their consent to Analytics (or not). 12 months

5.4 Disclosure of your data

We can disclose your data to third parties as described in section 1.2.

We can also disclose your data to our IT service providers that help us to provide the website, send invitations, hold events, etc. (e.g. Microsoft or TEMA AG, which helped us to set up the website).

5.4 您数据的披露

如第 1.2 节所述,我们可以向第三方披露您的数据。

我们还可以向帮助我们提供网站、发送邀请函、举办活动等服务的 IT 服务供应商披露您的数据(例如帮助我们建立网站的微软公司或 TEMA AG 公司)。

5.5 Integration and use of social networks and map services (cookies, plugins, and hyperlinks)

Please refer to sections 2.4 and 2.5, which also apply to the event website, for information about the integration (e.g. via links and plugins) by us and the integration of map services. You can find privacy information relating to our use of social networks in section 3.

5.5 社交网络和地图服务的整合与使用(cookies、插件和超链接)

请参阅第 2.4 节和第 2.5 节(同样适用于活动网站),了解有关我们的整合(例如通过链接和插件)以及地图服务整合的信息。有关我们使用社交网络的隐私信息,请参阅第 3 节。

5.6 Use of analysis and marketing services

Please refer to section 2.7, which also applies to the event website, for information about use of analysis and marketing services.

5.6 分析和营销服务的使用

有关使用分析和营销服务的信息,请参阅第 2.7 节(也适用于活动网站)。

5.7 Your rights as a data subject

In section 1.3, we describe in detail the rights you have in relation to our processing of your data.

5.7 您作为数据主体的权利

在第 1.3 节中,我们将详细描述您在我们处理您的数据时享有的权利。

6. Privacy information relating to job applications

Below you can find out what we do with your data when you send us a job application. This section 6 applies in addition to the general information in section 1. If you cannot find the necessary information in this section 6, please refer to section 1 (e.g. concerning the rights of the data subject).

If we refer to detailed information in sections 1-5 in the following, these sections also apply. If there is a conflict between section 6 and sections 1-5, the information in section 6 takes precedence over sections 1-5.

6.与工作申请有关的隐私信息

下面您可以了解当您向我们发送求职申请时,我们会如何处理您的数据。除第 1 部分的一般信息外,本第 6 部分也适用。如果您在第 6 节中找不到必要的信息,请参阅第 1 节(例如,关于数据主体的权利)。

如果我们在下文中提及第 1-5 节中的详细信息,这些章节也同样适用。如果第 6 节与第 1-5 节发生冲突,则第 6 节中的信息优先于第 1-5 节。

6.1 Who is the data controller with responsibility for processing data?

This section 6 covers data processing relating to your job application by the companies in the Dürr Group that are included in this list. The company that you apply to is always the controller responsible for processing your application data. In the list under the link, you will find the contact details of the controller and the relevant data protection officer. Alternatively, if you have any questions or concerns relating to data protection, you can also contact the data protection officer of Dürr Aktiengesellschaft by email at dataprotection[at]durr.com or by mail at

Dürr Aktiengesellschaft
Attn: Data Protection Officer
Carl-Benz-Str. 34
74321 Bietigheim-Bissingen
Germany

The controller for the data processing in relation to the provision of the job application website is Dürr Aktiengesellschaft. In this case section 2 applies additionally.

6.1 谁是负责处理数据的数据控制者?

本第 6 部分涵盖了杜尔集团中包含在此列表中的公司对您求职申请相关数据的处理。您申请的公司始终是负责处理您申请数据的控制方。在链接下的列表中,您可以找到控制者和相关数据保护负责人的详细联系方式。此外,如果您有任何与数据保护相关的问题或疑虑,也可以通过电子邮件 dataprotection[at]durr.com 或邮寄至以下地址联系杜尔股份公司的数据保护官 

Dürr Aktiengesellschaft
收件人:Data Protection Officer
Carl-Benz-Str. 34
74321 Bietigheim-Bissingen
德国

与求职网站相关的数据处理控制方为 Dürr Aktiengesellschaft。在这种情况下,第 2 条也适用。

6.2 Collection, storage and use of personal data

When you apply to a company in the Dürr Group, you provide the company with your personal data for the purposes of a job application. Your data will be stored and processed on the IT systems of our external providers of recruitment management services.

Apart from that, group companies (Dürr Aktiengesellschaft and Dürr Group Services GmbH) perform recruitment services acting as data processors for the company that you apply to.

During the application process, we collect the following data:

  • Master data (e.g. title, first name, last name, date of birth, place of residence,
  • Documents (e.g. references, certificates, CV, motivation letter,
  • If you had reimbursable expenses, relevant data, e.g. bank details,
  • Communication data (e.g. phone number (landline and/or cell phone), email address, mailing address),
  • Log data generated during the use of the IT systems,
  • Video and audio data collected when using communication technology and recorded with your consent, if applicable,
  • If applicable, further data depending on the requirements of the job description or the online form; under certain circumstances, this may also be special categories of data, such as health data;

The data are processed at your request and in relation to your application, and the processing is necessary in accordance with Art. 6(1)(b) GDPR in order to enter into a contractual relationship and to allow both parties to fulfill their obligations under the employment contract that may subsequently be concluded. Insofar as the collection of special categories of data should be necessary, this processing is based in particular on Art. 9 (2) b GDPR (reasons of labor law, social security law or social protection), on Art. 9 (2) c GDPR (protection of vital interests of applicants or third parties), or on Art. 9 (2) a GDPR (your consent). Within the Dürr Group company that you apply to, only the people and departments involved in the recruitment process (e.g. managers and employees who are involved in the recruitment process from the technical department and HR and employee representatives) have access to your personal data.

If you have also given your consent to us processing your data for specific purposes, this is based on Art. 6(1)(a) GDPR. In addition, your personal data are processed for the purposes of our legitimate interests in accordance with Art. 6(1)(f) GDPR, among other things to produce anonymized statistical evaluations, to handle the application process or for legal action.

The personal data we collect are stored until the purposes listed above no longer apply and are then erased, unless we are required to store the data for a longer period in accordance with Art. 6(1)(c) GDPR on the basis of legal retention and documentation requirements (e.g. in the German Commercial Code, Criminal Code, or Fiscal Code) or unless you have consented to the data being stored for a longer period in accordance with Art. 6(1)(a) GDPR (e.g. for the receipt of a job alert).

In the event of an unsuccessful application, the data will be deleted after six months following the conclusion of the procedure, unless longer retention periods are required in individual cases (e.g. for receipts for the reimbursement of travel expenses). If the application is successful, the data from the application procedure may also be processed for the purpose of the employment relationship.

As part of the application process, we use cloud-based software services for document storage and management, calendar management, emailing, spreadsheets and presentations, exchanging documents, content and information with specific recipients or for publishing web pages, forms or other content and information, as well as chats and participation in audio and video conferences.

In this context, personal applications data may be processed and stored on the providers’ servers to the extent that such data is part of communication processes with us or is otherwise processed by us or by the providers as set forth in this privacy information.

6.2 个人数据的收集、储存和使用

当您向杜尔集团的一家公司提出申请时,您将向该公司提供您的个人数据,用于工作申请。您的数据将在我们的外部招聘管理服务提供商的 IT 系统中存储和处理。

除此之外,集团公司(Dürr Aktiengesellschaft 和 Dürr Group Services GmbH)作为您所申请的公司的数据处理方提供招聘服务。

在申请过程中,我们会收集以下数据:

  • 主数据(如职称、名、姓、出生日期、居住地)、
  • 文件(如推荐信、证书、简历、动机信)、
  • 如果您有可报销的费用,请提供相关数据,如银行详情、
  • 通讯数据(如电话号码(座机和/或手机)、电子邮件地址、邮寄地址)、
  • 信息技术系统使用过程中产生的日志数据、
  • 在使用通信技术时收集的视频和音频数据,并在征得您同意的情况下进行记录(如适用)、
  • 如果适用,根据职位描述或在线表格的要求提供更多数据;在某些情况下,这也可能是特殊类别的数据,如健康数据;

这些数据是应您的要求并就您的申请而进行处理的,根据《欧盟数据保护法》第 6(1)(b)条的规定,处理这些数据是必要的,处理数据的目的是为了建立合同关系,并使双方能够履行随后可能签订的雇佣合同规定的义务。在有必要收集特殊类别数据的情况下,这种处理是基于《通用数据保护条例》(欧盟) 第 9 (2) b 条(劳动法、社会保障法或社会保护的原因),及 《通用数据保护条例》(欧盟) 第 9 (2) c 条(保护申请人或第三方的重要利益),或 《通用数据保护条例》(欧盟) 第 9 (2) a 条(您的同意)。在您应聘的杜尔集团公司内,只有参与招聘过程的人员和部门(如技术部门参与招聘过程的经理和员工、人力资源部门和员工代表)有权访问您的个人数据。

如果您还同意我们出于特定目的处理您的数据,则这是基于《通用数据保护条例》(欧盟)第 6(1)(a)条的规定。此外,我们还将根据《通用数据保护条例》(欧盟)第 6(1)(f)条的规定,出于合法利益的目的处理您的个人资料,包括进行匿名统计评估、处理申请程序或采取法律行动。

我们收集的个人数据会一直保存到上述目的不再适用为止,然后会被删除,除非根据《通用数据保护条例》(欧盟)第 6(1)(c)条的规定,我们需要将数据保存更长的时间,根据法律保留文件的要求(如《德国商法典》、《刑法典》或《财政法典》中的规定),或您同意将数据保存更长时间(例如,为了接收工作提示)。

如果申请不成功,数据将在程序结束后六个月后删除,除非个别情况下需要更长的保留期(如报销差旅费的收据)。如果申请成功,申请程序中的数据也可能因雇用关系的目的而被处理。

作为申请流程的一部分,我们使用基于云的软件服务进行文件存储和管理、日历管理、电子邮件发送、电子表格和演示文稿、与特定收件人交换文件、内容和信息或发布网页、表格或其他内容和信息,以及聊天和参加音频和视频会议。

在这种情况下,个人应用程序数据可能会被处理并存储在提供商的服务器上,只要这些数据是与我们通信过程的一部分,或者是由我们或提供商按照本隐私信息的规定进行处理的。

a) Application for an apprenticeship

You can apply for an apprenticeship with us under this link.

We use the recruitment platform and applicant management services of umantis Deutschland GmbH, Munzinger Straße 9, 79111 Freiburg, Germany for the application process of apprentices. umantis Deutschland GmbH is part of the Abacus Group. Their privacy policy can be found at https://www.abacus.ch/en/data-protection.

For apprenticeship recruiting, we also use testing and diagnostic services via the e-recruiting solution Jobmatcher from HR Diagnostics AG, Königstraße 20, 70173 Stuttgart, Germany; privacy policy: https://www.hr-diagnostics.de/en/privacy. Data collected as part of Jobmatcher is hosted in Germany. The invitation to tests and the processing of their results are carried out by umantis Deutschland GmbH.

a) 申请学徒

您可以通过此链接申请成为我们的学徒

我们使用 umantis Deutschland GmbH(地址:Munzinger Straße 9, 79111 Freiburg, Germany)的招聘平台和申请人管理服务进行学徒申请。其隐私政策请访问 https://www.abacus.ch/en/data-protection。 

在学徒招聘方面,我们还通过 HR Diagnostics AG 公司(地址:Königstraße 20, 70173 Stuttgart, Germany)的电子招聘解决方案 Jobmatcher 使用测试和诊断服务;隐私政策:https://www.hr-diagnostics.de/en/privacy。作为 Jobmatcher 的一部分而收集的数据在德国托管。测试邀请和结果处理由 umantis Deutschland GmbH 公司负责。 

b) Oracle

We provide an application center under this link.

For our application process (except for trainees, for these see above under a)) we use services of ORACLE Deutschland B.V & Co. KG ("Oracle").

You can also subscribe to a job alert if you consent to receiving the alerts by e-mail (Art. 6 (1) a GDPR). You can revoke your consent at any time with effect for the future (e.g., by clicking on the unsubscribe link at the bottom of each e-mail).

You can also register in our Talent Community. This allows you to apply for jobs at Dürr Group quickly and easily. By uploading your CV, we can also offer you positions that are a perfect fit. The legal basis is your consent to store your data for a period of two years and to forward it to Dürr Group companies (Art. 6 (1) a GDPR). You can withdraw your consent at any time with future effect, e.g. by e-mail or by deleting your user account.

Oracle is affiliated with Oracle Corporation in the USA. In this respect, it cannot be ruled out that your data will be transferred to a data center in the USA as well as to other countries with a lower level of data protection. The transfer to affiliated companies of Oracle is protected by Binding Corporate Rules, which you can access here, and the transfer to non-affiliated companies is protected by standard contractual clauses of the EU Commission or by adequacy decisions of the EU Commission (for further information on international transfers, please also read section 1.5).

For details on data processing by Oracle, please refer to Oracle's general privacy policy, available at https://www.oracle.com/legal/privacy/services-privacy-policy.html#1-6.

b) Oracle

我们在此链接下提供了一个申请中心。 

在申请过程中(实习生除外,参见上文 a) 项),我们使用 ORACLE Deutschland B.V & Co.KG("Oracle")的服务。

如果您同意通过电子邮件接收工作提示,您也可以订阅工作提示(《通用数据保护条例》(欧盟) 第 6 (1) a 条)。您可以随时撤销您的同意,并在未来生效(例如,通过点击每封邮件底部的退订链接)。

您还可以在我们的人才社区注册。这样您就可以方便快捷地申请杜尔集团的职位。通过上传您的简历,我们还可以为您提供最合适的职位。将您的数据保存两年并转发给杜尔集团公司的法律依据是您的同意(《通用数据保护条例》(欧盟) 第 6 (1) a 条)。您可以通过电子邮件或删除您的用户帐户等方式随时撤销您的同意,并在将来生效。

Oracle隶属于美国Oracle Corporation。因此,不排除您的数据会被转移到美国的数据中心以及数据保护水平较低的其他国家。向Oracle关联公司的数据传输受《具有约束力的公司规则》(Binding Corporate Rules)的保护,您可以在此访问该规则;向非关联公司的数据传输受欧盟委员会的标准合同条款或欧盟委员会的适足性认定的保护(有关国际传输的更多信息,请阅读第 1.5 节)。 

有关Oracle公司数据处理的详细信息,请参阅Oracle公司的一般隐私政策,网址为 https://www.oracle.com/legal/privacy/services-privacy-policy.html#1-6。 

6.3 Cookies

In this context, Oracle uses cookies which, among other things, ensure that users are recognized when they return to our website. For general details on cookies, please also read section 2.3.

In detail, the following cookies are used:

6.3 cookie

在这种情况下,Oracle公司使用cookies来确保用户返回我们的网站时能够被识别。有关 cookie 的一般详情,请阅读第 2.3 节。

具体而言,我们使用以下 cookies:

Name of cookie Type of cookie Name of application Purpose of cookie Storage duration
ORA_FND_SESSION_<PODNAME>_F Technically required Oracle Cloud This is a session cookie set by Oracle Cloud or middleware for tracking web sessions and routing traffic to the right servers. End of browser session
ORA_FND_SESSION_<PODNAME>_GSI_F Technically required Oracle Cloud This is a session cookie set by Oracle Cloud or middleware for tracking web sessions and routing traffic to the right servers. End of browser session
ORA_FUSION_PREFS Technically required Oracle Cloud This cookie is used by the cookie banner to store the selection for marketing cookies. The banner will subsequently no longer appear on each page.  End of browser session
JSESSIONID Technically required Oracle Cloud This is a session cookie set by Oracle Cloud or middleware for tracking web sessions and routing traffic to the right servers. End of browser session
OAMAuthnHintCookie Technically required Oracle Cloud This is a session cookie set by Oracle Cloud or middleware for tracking web sessions and routing traffic to the right servers. End of browser session
OAM_REQ_0 Technically required Oracle Cloud This cookie is set by Oracle Cloud or middleware to track career site resource access. This cookie is secure and http only. End of browser session
OAM_REQ_COUNT Technically required Oracle Cloud This cookie is set by Oracle Cloud or middleware to track career site resource access. This cookie is secure and http only. End of browser session
OAM_REQ_1 Technically required Oracle Cloud This cookie is set by Oracle Cloud or middleware to track career site resource access. This cookie is secure and http only. End of browser session
ECID-Context Technically required Oracle Cloud This cookie indicates execution context for http calls between career site and core product. End of browser session
<SITE_NUMBER>_cookieAccept Analytics Cookiebanner Oracle This cookie is used for user tracking purposes. It indicates whether the user accepted nonessential cookies. 7 days
ORA_CX_USERID - GUID Analytics Oracle Cloud This cookie is used for user tracking purposes. It holds the user ID. 90 days
ORA_CANDIDATE_NUMBER Analytics Oracle Cloud This cookie is used for user tracking purposes. It holds the candidate number. 90 days
ORA_CX_SITE_LANG Functionality Oracle Cloud This cookie is used to store the candidate language preference. Next time the candidate visits the career site that it will be loaded in the user preferred language. 7 days
ORA_CX_DEVICEID Functionality Oracle Cloud This cookie is used for the Keep Me Signed In feature. It's used to recognize the device used by the candidate to allow automated verification of candidate when Keep Me Signed In option was selected in the past on the same device. This cookie isn't tied to the cookie consent. 3 months
ORA_FPC Analytics Oracle Cloud This cookie is used for user tracking purposes. 1 year
ORA_EVENT Analytics Oracle Cloud This cookie is used for user tracking purposes. End of browser session
verificationToken Analytics Oracle Cloud Stores the token needed for session persistence in the partner assessment flow. 4 hours

c) Microsoft

Depending on the format and technology used, we work together with a third-party provider, for example Microsoft for the video conferencing service "Teams", cloud storage, cloud infrastructure services and cloud-based application software. In this respect, we refer to the explanations under section 5.2.d) (1).

c) 微软 

根据所使用的格式和技术,我们与第三方供应商合作,例如微软的视频会议服务 "Teams"、云存储、云基础设施服务和基于云的应用软件。关于这一点,请参见第 5.2.d) (1) 节的说明。

6.4 Disclosure of your data

The data from your application can be transferred within the Dürr Group in relation to another job advertisement in accordance with Art. 6(1)(a) GDPR if you are a match for the other job and if you have given your consent to your data being transferred for this purpose.

To take steps prior to entering into a contract as part of the recruitment process, your data will be transferred to third parties in accordance with Art. 6(1)(b) GDPR. These include our external provider of recruitment management services. The data that are transferred may be used by these third parties only for the specified purposes.

For the purposes of the legitimate interests referred to in section 6.2 in accordance with Art. 6(1)(f) GDPR, your personal data will only be transferred to our external provider of recruitment management services for the creation of anonymized statistical evaluations.

Your data may also be disclosed pursuant to Art. 6 (1) c GDPR if we are legally obliged to do so, for example in the context of investigative proceedings.

If the recipients referred to above process your data outside the EEA, please refer to section 1.5.

6.4 您数据的披露

如果您与其他职位相匹配,并且您同意将您的数据用于此目的,根据 《通用数据保护条例》(欧盟) 第 6(1)(a)条的规定,您的申请数据可在杜尔集团内部就另一个招聘广告进行传输。

作为招聘流程的一部分,为了在签订合同前采取措施,我们将根据《通用数据保护条例》(欧盟)第 6(1)(b)条的规定,将您的数据传输给第三方。这些第三方包括我们的外部招聘管理服务提供商。这些第三方仅可将所传输的数据用于指定目的。

出于第 6.2 节所述的合法权益目的,根据《通用数据保护条例》(欧盟)第 6(1)(f)条,您的个人数据仅会转给我们的外部招聘管理服务提供商,用于创建匿名统计评估。

根据《通用数据保护条例》(欧盟)第 6 (1) c 条,我们也可能披露您的数据。如果我们在法律上有义务这样做,例如在调查程序中,我们也会披露您的数据。

如果上述接收方在欧洲经济区以外处理您的数据,请参阅第 1.5 节。

6.5 Your rights as a data subject

In section 1.3, we describe in detail the rights you have in relation to our processing of your data.

6.5 您作为数据主体的权利

在第 1.3 节中,我们详细描述了您在我们处理您的数据时享有的权利。

Privacy Policy – China Addendum