Data protection information SEW-EURODRIVE

SEW-EURODRIVE GmbH & Co KG (hereinafter: SEW-EURODRIVE) appreciates you visiting our website, using our mobile apps and your interest in our products and our company. The privacy and protection of your personal data is important to us and we take this into account in all our business processes. We therefore process your personal data by taking the applicable data protection regulations into account, in particular the requirements of the EU General Data Protection Regulation (GDPR).

On this website, we we wish to provide you with information on data processing in cases where SEW‑EURODRIVE carries out processing procedures. Please select in the below table which processing you would like to receive more detailed information about.

The "controller," as defined by Article 4, No. 7 of the GDPR is SEW-EURODRIVE GmbH & Co KG, Ernst-Blickle-Str. 42, 76646 Bruchsal, Germany, tel. +49 7251 75-0, fax +49 7251 75-1970, e-mail sew-webmaster@sew-eurodrive.de . If you have any questions about our processing of your personal data, or about data protection in general, please contact our data protection officer at the above address or by e-mail at datenschutz@sew-eurodrive.de .

I. Personal data

II. Data protection notice for our websites and apps (with cookie policy)

III. Data protection information for customers and interested parties of SEW-EURODRIVE

IV. Data protection information for suppliers and subcontractors

V. Data protection information for job applicants at SEW-EURODRIVE

VI. Data protection information for visitors of SEW-EURODRIVE

VII. Data protection information on the processing of personal data in connection with trade fairs and other events

VIII. Data protection information for the creation and publication of photo, audio and video recordings as well as press and advertising texts

IX. Data Protection Information for the Use of Microsoft Teams as a Collaboration Platform

X. Data protection information regarding the use of Cisco Webex

XI. Video Surveillance Data Protection Information Notice

XII. Your rights as a person affected

I. Definition of personal data

Personal data is defined as all information that relates to an identified or identifiable natural person. This includes, for example, your name, your (business) contact details, your phone number or e-mail address and relationship to a company, and your interactions/activities with us.

When you use our website, personal data in the form of information about your use of our website, for instance, may be processed. This includes, for instance, connection data or sources retrieved by you. This information is usually collected by using log files and cookies.

In the case of applications, personal data includes your name, your (business and private) contact information, your address, hobbies or information about sicknesses and your tax status (with your religion). We shall treat all information you send us, in addition to your resume, if applicable also your picture, any information about your health condition or other private information as application data.

II. Data protection notice for our websites and apps (with cookie policy)

Below, SEW-EURODRIVE, the operator of different websites and developer of various mobile apps, would like to provide you with an overview of how we ensure the protection of your personal data on our website and further online contact forms and what type of personal data we process for which purposes and to what extent.

1. Data processing – Offers on our website
When you access our website, general information is automatically collected. This information (server log files) includes the type of web browser, the operating system used, the domain name of your internet service provider and the like. In addition, the IP address is transmitted and used to utilize the service you requested. This information is essential when using the Internet and is technically necessary in order to ensure the constant availability of the website. Following a period of a few weeks as a rule, this logfile data will be anonymized by us or deleted, unless we describe extended data processing below. If you send us an inquiry by e-mail, we collect data you provide for processing your inquiry and fulfill your requests, if applicable. The legal basis for this is Article 6(1)(1)(f) GDPR.

If you use any services offered on our website, further personal data may be collected from you. We process this data to the extent necessary to provide the services you requested. In addition, you may create further personal data voluntarily. We describe the legal basis in the following individually presented functions and offerings.

If you send us an inquiry by e-mail, we collect data you provide for processing your inquiry and fulfill your requests, if applicable. The legal basis for both cases is Article 6(1)(1)(f) GDPR.

If you provide us with your contact details in the context of concluding a contract or via registration in our customer portal, please take note of the information on data protection mentioned under III..

Further processing of your data by us or other group companies or service providers for purposes which go beyond those above takes place as set out below in accordance with the use selected by you or if you have issued your consent.

2. General inquiries and business correspondence via the online contact form

In addition to contacting us by telephone and e-mail, you can also use the online contact form to send us your general inquiries about us or our products and services. We process the data that you have entered in the form on our servers in Bruchsal. The form includes required information, which we need in order to process and respond to your inquiry, as well as largely voluntary information that you enter voluntarily in the free text fields. The data is as follows:

• E-mail address (required information)

• Zip code (required information)

• Subject of your inquiry (voluntary)

• Content of your message (voluntary)

• Academic title (voluntary)

• Customer number (voluntary)

• First name, last name (voluntary)

• Company name (voluntary)

• Street name, house number, town/city (voluntary)

• Country/region (voluntary)

• Telephone number (voluntary)

• Telephone extension (voluntary)

• Cell phone number (voluntary)

• Attachments that you upload via the form (voluntary)

We process and save the data to the extent and for the duration necessary to process and respond to your inquiry and/or to comply with retention obligations.

The legal basis for requesting and processing required information is Art. 6(1)(f) GDPR. We require this information, such as your e-mail address and zip code, to enable us to automatically forward your inquiry to the relevant internal department and to process and respond to your inquiry. In this respect, the collection and processing of this required information is in your interest.

The legal basis for processing the information that you enter on a voluntary basis in the free text form fields is Art. 6(1)(f) GDPR. By voluntarily entering this information in the online form, you express that the processing of this information is in your interest and that you knowingly wish it to be processed. In this respect, the processing is in your interest.

The legal basis is Art. 6(1)(b) GDPR if your details and the correspondence between you and us is necessary so that you as an employee of our customers, suppliers or other third parties are able to do your job and contact us in a business capacity, for example, to order products and services or to report a support case if you are an existing customer.

3. Security information and external links
We take technical and organizational security precautions on our websites to protect personal data stored by us against access by third parties, loss or misuse, and to enable secure data transfer.
We wish to inform you that due to the structure of the Internet and the sending of e-mails when transferring information, unwanted third-party access may occur. It is therefore also your responsibility to protect your data by encryption or any other method against misuse.

Our websites contain links to other websites from other providers. SEW-EURODRIVE is not responsible for the data protection policies or the content of these other websites.

4. Customer and online support
We offer you comprehensive interaction with us in our online support account at https://www.sew-eurodrive.de/de_de/online_support/. Once you register, you will have access to many functions and services of SEW‑EURODRIVE. The processing purposes and processed data can be ascertained from the individual functions, e.g. drawing up sales contracts, requesting the delivery status or carrying out troubleshooting.

The legal basis for your registration with online support is Article 6(1)(1)(b) GDPR. For the assignment of specific services and the further processing of your data, e.g. to optimize our Online Support platform and improve your customer experience, please note our supplementary data protection information under II. 6. as well as III.

5. Advertising mailings
If you have given your consent (e.g. via the following link www.sew-eurodrive.de/consent), or if we received your contact details as part of concluding a contract, we can send you information about our products and services by e-mail. The processing in accordance with your consent is described under this link. We can continue to send you information concerning events, trade fairs, products and services by post if we have obtained your address and you have not objected to the information. Further information on how your data is used for advertising purposes if a business relationship exists can be found under number III) 1) c) below.

You may, of course, revoke your consent to receive advertising mailings, or object to the use for advertising purposes, at any time. The easiest way to revoke your consent is to visit www.sew-eurodrive.de/consent or send us an e-mail at abbestellen@sew-eurodrive.de .

6. Processing of data - our mobile apps
We provide various mobile apps in the Apple App Store and the Google Play Store. When you download the mobile app, the necessary information is transferred to the App Store, i.e. in particular the user name, e-mail address and customer number of your account, the time of downloading, payment information and the individual device identifier. The App Store also collects various data by itself and provides you with analysis results. We have no influence over this data processing and are not responsible for it. We only process the data if this is necessary for downloading the mobile app onto your mobile device.

When using the apps, we process the personal data described below in order to enable comfortable use of the functions. Should you wish to use our mobile app, we generally process the data described under 1 above for websites which is technically necessary for us in order to provide you with the functions of our mobile app and to ensure stability and security. In addition, in order to provide the app functions, it may be necessary to process data such as your device identifier, IMEI (international mobile equipment identity), IMSI (international mobile subscriber identity) cell phone number (MSISDN), MAC address for WLAN use, the name of your mobile end device and e-mail address, should this be required to provide the functions which you have accessed. The legal basis here is also Article 6(1)(1)(f) GDPR.

7. Processing of online data at SEW-EURODRIVE (“cookie policy“)
a) Information concerning the use of technical aids (in particular cookies)
Our website (and some of our apps) use technical aids for various functions, in particular so-called cookies. Cookies are small text files that are stored on your end device and that are saved by your browser. They are used to make our offerings more user-friendly, effective and secure. We use so-called temporary cookies that are automatically deleted once you close your browser ("session cookies"), as well as persistent (permanent) cookies.

When accessing our website (or using the apps) and at any time subsequently, you have the choice of whether you wish to permit the setting of cookies and individual additional functions. You can carry out changes in your browser settings or via our consent manager. Should you reject functions or cookies, you may not be able to fully use our service.

When using cookies, we make a distinction between essential cookies (to display and operate the website) and supplementary cookies, such as the anonymous measurement of access numbers (functional cookies) and marketing cookies (advertising purposes, display or relevant and personalized content). Below, we wish to inform you of the various processing purposes and the services which are used in concrete terms. We will also describe the data processing which will take place.

b) Essential functions and cookies when using the website / apps
We use functions which are essential for the use of our websites / apps. These include so-called session cookies, which enable us to recognize you once again when you visit the site during an individual session. These session cookies contribute to safe use of our offering by, for instance, enabling you to use the online support functions. These functions can be viewed in the cookie consent tool. The legal basis of the processing is Article 6(1)(1)(f) GDPR, § 25 Abs. 2 Nr. 2 TTDSG.

c) Use of functions for the recording of use behavior (tracking) with right to object:

The use of tracking functions which primarily gather information by means of cookies enables us to analyze the use of our website and to improve it as a result. For this purpose, we can either use utilization statistics (anonymous results) or functions which enable us to recognize users once again when our website is accessed, which allows us to assign utilization processes to an internally allocated number (pseudonym). This allows us to record access to our website and to analyze it systematically.

Specifically, we use the following tracking functions:

(1) Creation of utilization statistics via etracker
Services from etracker GmbH based in Hamburg, Germany ( www.etracker.com) are used on this website to analyze utilization data. In this context, cookies are generally used to enable a statistical analysis of the utilization of this website by its users, and to display utilization-related content or advertising. etracker cookies do not include any information that would make it possible to identify a user. In addition, we can also use etracker variants without cookies, in which we carry out the data processing described here to a lesser extent.

The data which is generated as a result is processed on our behalf by etracker exclusively in Germany according to our specifications and is therefore subject to the strict German and European data protection laws and standards. etracker does not carry out any data processing for its own purposes and has been independently audited, certified and awarded the ePrivacyseal data protection seal of approval with regard to compliance with EU data protection standards.

The data processing takes place on the basis of the legal provisions of Article 6(1)(1)(f) GDPR. Our concern under the GDPR (legitimate interest) is to analyze the use of our website and to obtain statistics relating to its use, in order to guarantee the regular optimization of our online service and web presence, so that our website can be made more interest for you as a user. Since the privacy of our visitors is important to us, any data that may allow for a reference to an individual person, such as the IP address, login and device identifications, is pseudonymized or anonymized as quickly as possible. There is no other processing or combination with other data of etracker or transfer to third parties.

You may object to the above data processing at any time, should this be related to personal data:

I object to data processing by etracker on this website here
Your Opt-out was successful!
.

You can find more information about data protection at etracker here.

(2) Creation of utilization statistics by SEW‑EURODRIVE

We also use a particular tool, which has been developed in-house, to enable us to analyze usage of our website and usage of our Online Support portal and to continually improve your customer experience and make it more interesting.

We do not process your name and IP address for these analyses.

If you are not logged in as a customer, we are not able to identify you using the data and information listed below. We place a cookie on your computer (browser) and allocate a random session ID. The following information is processed in this cookie:

• Screen size

• Screen resolution

• Type of device

• Operating system and version

• Browser

• Information as to whether cookies are activated in the browser

• Geo data (continent, country, region, city)

• Timestamp (date, time of login)

• "Click data" (individual applications accessed)

• Search queries

• "abandoned shopping carts" (product placed in the shopping cart but not ordered)

• Bandwidth and Internet provider

We do this in order to be able to analyze whether and how users not logged in as customers use our Online Support offering.

If you are logged into our Online Support as a customer, in order to optimize the Online Support platform and improve your customer experience when using our platform, in addition to the aforementioned information, we also analyze the following data - only internally at SEW-EURODRIVE and without processing your name or your IP address:

• Your role at the company

• Registration date

• Name of company, entity, account number

• Type of company

• Order designation

• Net price entitlement

• Sales Organization

The information recorded and analyzed is only stored on our servers in Germany provided it is needed for the analysis and optimization of Online Support and only for as long as it is needed for this purpose. It is stored and processed for 5 years at the most.

The legal basis for the capture and creation of these analyses is Article 6(1)(1)(f) GDPR. If you do not want any analyses performed during use of the Online Support via your end device, object to tracking with the SEW‑EURODRIVE tool here
Your Opt-out was successful!
.

(d) Functions with use of cookies following your consent
Below is an overview of the functions which we use on receiving your consent when you start using our website. These are functions which are used for advertising purposes and use cookies for this purpose.

Use of functions for advertising purposes

We use functions which deploy cookies for marketing purposes, for example in order to tailor advertising to the interests of a website visitor. They are also used to limit the frequency with which ads are displayed and to measure the effectiveness of the adverts. They record which websites and which items are clicked. This enables us to record information about user habits in order to provide interest-based advertising. The advertising networks used may share this information with third parties. In such cases, the advertising partner regularly sets the cookies directly.

The following functions are used for advertising purposes in particular:

(1) Use of Google Ads /Google Remarketing

We use the service of Google Ads to draw attention on external websites to our attractive products by using advertising tools (so-called Google advertising). These advertising tools are delivered by Google by means of so-called "ad servers." Ad server cookies that allow for the analysis of performance parameters are used in this process, e.g. ad impressions, clicks and conversations. This allows us to determine how successful individual advertising measures are in relation to the data of the advertising campaigns.

If you access our website via a Google ad, Google Ads will save a cookie on your end device. These cookies are not intended to identify you personally. By means of the integration of the cookies, Google is informed that you have visited the corresponding page of our website or have clicked on one of our advertisements by including tracking tools. If you are registered with a Google service, Google can allocate the visit to your account. Even if you have not registered with Google or are not logged in, it is possible that the provider finds out and saves your IP address. With the company's conversion remarketing technologies, users who have already visited our website and online services and shown interest in our products will see further related advertisements on other websites in the Google Partners network. As a rule, the following analysis values are also saved:

  • Unique cookie ID
  • Number of ad impressions per placing (frequency)
  • Last impression (relevant to post-view conversions)
  • Opt-out information (marking that the user no longer wants to be contacted)

The cookies set by Google enable Google to recognize your Internet browser once again in the future. If a user visits certain pages of a website of an Ads customer and the cookie that has been saved on his or her end device has not expired, Google and the customer can detect that the user has clicked the advertisement and was forwarded to this site. A different cookie is assigned to each Ads customer, so that cookies cannot be traced via the websites of Ads customers. Your browser automatically establishes a direct connection to the Google server based on the marketing tools deployed. We ourselves do not independently gather personal data during the named advertising measures, rather we only provide Google with the possibility of obtaining the data. In this respect, we are jointly responsible with Google for the data gathering and transfer. Google is responsible under data protection laws for the subsequent data processing. We are only provided with statistical analysis by Google. This analysis allows us to identify which of the deployed advertising measures are particularly effective. We do not receive any further data from the deployment of advertising measures, and, in particular, we are not able to identify users based on this information. The legal basis for processing your data is Article 6(1)(1)(a) GDPR.

Please note that Google may process data outside of the area of the European Union. Google also processes your personal data in the USA and has undertaken to comply with a standard which corresponds to the former EU-US Privacy Shield. We have also agreed so-called standard contractual clauses with Google, the purpose of which is compliance with a reasonable level of data protection in the third country.

We use Google Ads with the Google Remarketing function in order to provide you with advertising which is tailored to your interests. This application enables displaying our advertising when you are visiting other websites after visiting our website. This is accomplished with the use of cookies that are saved in your browser via which your utilization behavior is captured and analyzed by Google when you visit various websites. This enables Google to determine your previous visit to our website. According to Google, the data collected within the scope of remarketing is not combined with your personal data that may have been saved by Google. In particular, according to Google, pseudonymization is used during remarketing. You can prevent the remarketing function by not consenting to its use and also by revoking your consent subsequently, as described in the paragraph below. The legal basis is your consent in accordance with Article 6(1)(1)(a) GDPR.

Should you not wish for advertising which is tailored to your interests to be displayed after you have issued your consent or should you not wish for the remarketing function to be used, you can revoke your consent in our cookie settings or de-activate this in your browser cookies. You can also notify Google of this directly for the future via the following link: https://www.google.com/settings/ads/onweb/. In addition, you can object to the Google remarketing via the website of the Network Advertising Initiative (NAI): http://optout.networkadvertising.org. Alternatively, you can de-activate the use of cookies by third-party providers by accessing the de-activation site of the Network Advertising Initiative ( http://www.networkadvertising.org/managing/opt_out.asp) or administering the use of the device identifiers via the device settings ( https://support.google.com/ads/answer/1660762#mob). Further information of the provider can be found at https://support.google.com/google-ads/answer/2549063?hl=de/. Full information concerning data protection at Google can be found on their website at https://policies.google.com/privacy?hl=en and https://services.google.com/sitestats/de.html

(2) Use of Marketo

On our website, we continue to use the service of Marketo Inc ("Marketo"). Thereby cookies are used, which are saved on your end device and which enable an analysis of your use of the website.

For this purpose, profiles are created under a pseudonym. During this process, your IP address is anonymized immediately. The analysis of your use of the website serves the purpose of displaying use-related content and interest-based advertising, as well as the regular optimization of our online service and our website in order to make it more interesting for you as a user through interest-based content and advertising using the analysis which has been obtained. The information concerning your use of the website which is generated by the cookie is transferred on our behalf to a server of Marketo within the EU and saved there. In order to guarantee these functions, the service of Cloudfare is used, which controls various certificates for Marketo, for example the SSL certificate and distributes the inquiry load across various servers, in order to increase the security and performance of websites (load balancing).

In individual cases, the data may also be transferred to servers in the USA for advertising-related use and saved there. In these cases, Marketo has undertaken to comply with a standard which corresponds to the former EU-US Privacy Shield. We have also agreed so-called standard contractual clauses with Marketo and Cloudfare, the purpose of which is compliance with a reasonable level of data protection in the third country.

The data processing takes place on the basis of your consent in accordance with Article 6(1)(1)(a) GDPR. . You can revoke your consent to the data processing at any time (without the lawfulness of the processing which has taken place up until this time being affected) by de-selecting the functions in our cookie settings or clicking here.

(3) LinkedIn Insight-Tag
(1) Furthermore, the website uses the so-called LinkedIn Insight tag (or LinkedIn Pixel) of LinkedIn Ireland Unlimited Company ("LinkedIn"). Through JavaScript tag integration, you as a user of our website can be shown interest-based advertisements ("ads") that are relevant to you when you visit the social network LinkedIn or other websites that also use the procedure and we receive statistics in relation to website visitors and demographics. Furthermore, we can evaluate your use of our LinkedIn advertising and interest in our services, also by means of a conversion tracking function, and also show you LinkedIn ads on other websites by means of retargeting. By doing so, we are pursuing our interest in improving the effectiveness of LinkedIn ads and making our website more interesting for you.

(2) By integrating the LinkedIn Insight tag, your browser automatically establishes a direct connection to the LinkedIn server, both when visiting the LinkedIn website and also when visiting websites that have integrated the LinkedIn Insight tag. LinkedIn and ourselves are jointly responsible for collecting your usage data when you visit our website and transmitting it to the provider, however LinkedIn is solely responsible for the relevant processing to carry out the objectives described, once the data has been transferred. We have no influence over the extent and type of use of the data by LinkedIn, we are therefore informing you according to the state of our knowledge: By means of the integration of the LinkedIn Insight tag, LinkedIn is informed that you have visited the website of our Internet presence or have clicked one of our advertisements. If you are registered with a LinkedIn service, LinkedIn can allocate the visit to your account. Even if you have not registered with LinkedIn or are not logged in, it is possible that the provider obtains knowledge of your IP address, time window and further identification characteristics and connects these to the actions attributable to you.

(3) It is possible to de-activate the LinkedIn Insight tag and other advertising objections in the settings for advertisements at https://www.linkedin.com/help/linkedin/answer/62931?trk=microsites-frontend_legal_privacy-policy&lang=en and additionally at https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out. Further settings options and information can be found in the LinkedIn Privacy Center: https://privacy.linkedin.com/de-de?lr=1/.

(4) The legal basis of the processing of your data for the purposes referred to above is your consent in accordance with Article 6(1)(1)(a) GDPR. You can revoke your consent at any time. The easiest way to do this is to de-select the function in our cookie settings. LinkedIn also processes your personal data in the USA and has undertaken to comply with a standard which corresponds to the previous EU-US Privacy Shield. We have also agreed so-called standard contractual clauses with LinkedIn, the purpose of which is compliance with a reasonable level of data protection in the third country. By means of your consent, you are also agreeing not only to the setting of cookies and usage analysis, but also to the transfer of the information saved in the cookies to the USA and possible accessing of this data by the United States authorities. The legal basis for this is Article 6 Paragraph 1 Letter a) and Article 49 Paragraph 1 Letter a) GDPR.

(5) Further information concerning data processing by LinkedIn can be obtained from the provider, LinkedIn Ireland Unlimited Company, Attn: Legal Dept. (Privacy Policy and User Agreement), Wilton Plaza, Wilton Place, Dublin 2, Ireland; Information relating to the LinkedIn Insight-Tag: https://business.linkedin.com/de-de/marketing-solutions/insight-tag?lr=1/; Data protection information: https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy/.

(4) Integration of YouTube videos into our website

On individual websites, we have integrated YouTube videos which are saved at http://www.youtube.com and can be played back directly on our website. These videos are included in the "extended data protection mode," i.e. no data about you as a user will be transmitted to YouTube unless you play back the videos. The below data is only transmitted when you play back the videos. We cannot influence this data transmission.

By playing back the embedded videos, YouTube receives the information that you have accessed the corresponding page on our website, and it is furthermore possible that other data is transmitted to YouTube of which we have no knowledge. This will occur regardless of whether YouTube has provided a user account through which you have logged in or if no user account exists. If you are logged into YouTube, your data will be directly allocated to your account. If you do not want this allocation to your profile with YouTube, you must log out before you activate the button. YouTube saves your data as utilization profiles and uses it for the purposes of advertisements, market research and/or the needs-compliant design of its website. Such an analysis can be carried out (even for users that are not logged in) especially for providing needs-compliant advertisements and to inform other YouTube users about your activities on our website. You have the right to object to the creation of these user profiles. Such requests must be addressed to YouTube.

YouTube also processes your personal data in the USA and has undertaken to comply with a standard which corresponds to the former EU-US Privacy Shield. Further information concerning the purpose and scope of the data gathering, the subsequent processing and the safeguarding of the data transfer to a third country can be found in the data protection policy of YouTube. This is also where you will find further information about your rights and setting options to protect your privacy: https://www.google.de/intl/de/policies/privacy. The legal basis of the processing of your data for the purposes referred to above is your consent in accordance with Article 6(1)(1)(a) GDPR. You can revoke your consent at any time. The easiest way to do this is to de-select the function in our cookie settings.

By means of your consent, you are also agreeing not only to the setting of cookies and usage analysis, but also to the transfer of the information saved in the cookies to the USA and possible accessing of this data by the United States authorities. The legal basis for this is Article 6 Paragraph 1 Letter a) and Article 49 Paragraph 1 Letter a) GDPR.

(5) Integration of Google Fonts after opening a YouTube video

We have not yet integrated the Google Fonts API into our websites, but as soon as you open a YouTube video that is embedded in our websites, Google Fonts is activated by YouTube / Google, word fonts are reloaded via Google servers and personal data is then transferred to Google LLC, including to the USA. The browser on your end device sends HTTP requests to the Google Fonts Web API. The Google Fonts Web API provides you with the Google Fonts cascading style sheets (CSS) and then the fonts that are indicated in the CCS. The following data is transferred to Google: Your IP address, the requested URL on the Google server and the HTTP headers, including the user agent which describes your browser and operating system versions, as well as the referral URL (in other words the website on which the Google font is to be displayed). No cookies are set.

In accordance with the information provided by Google Developers, no IP addresses are logged or stored on Google servers and these are not analyzed. The Google Fonts Web API records details of the HTTP requests (requested URL, user agent and referring URL). Access to this data is restricted and subject to strict controls.Google does not use any of the information collected by Google Fonts to create profiles of end users or to display targeted adverts. Further information can be found in the Google Fonts FAQ’s: Data protection and data gathering | Google Fonts | Google Developers

By clicking on the video, you are agreeing to the data processing described here when using Google Fonts and to the data transfer of your IP address to the USA, with possible accessing on the part of the United States authorities. You can revoke your consent at any time, without the lawfulness of the data processing that took place in accordance with your consent prior to the revocation being affected. The legal basis in this respect is Article 6 Paragraph 1 Letter a) and Article 49 Paragraph 1 Letter a) GDPR.

8. Integration of Google Maps
Via an API, this site uses Google Maps, a map service which is provided by Google Inc. In order to use the functions of Google Maps, Google sets technically necessary cookies and possibly also tracking and analysis cookies so that your user behavior can be analyzed. For this purpose, Google processes your IP address and other usage data, such as your GPS location data, should you have agreed to such before using the map service. This information is normally sent to a Google server in the US and stored there. We have no influence over this data transfer. Google can connect the usage data with other data and assign it to your Google account, should you be logged in to this. Google Maps is used for the purpose of providing an attractive display of our online services and helping to easily find the locations given on our website. The legal basis for the processing of your data for the purposes referred to above is your consent in accordance with Article 6 Paragraph 1 Sentence 1 Letter a) GDPR and § 25 Paragraph 1 of the Telecommunications - Telemedia Data Protection Act (TTDSG). You can revoke your consent at any time. The easiest way to do this is to de-select the function in our cookie settings.

By means of your consent, you are also agreeing not only to the setting of cookies and the connection of your usage data by Google, but also to the transfer to the USA and possible accessing of this data by the United States authorities. The legal basis for this is Article 6 Paragraph 1 Letter a) and Article 49 Paragraph 1 Letter a) GDPR.

Further information concerning the processing of your user data can be found in the data protection policy of Google: https://www.google.de/intl/de/policies/privacy/ .

9. SEW-EURODRIVE profiles on social networks
a) Facebook fan page
For the information services offered here, we use the technical platform and services of Facebook Ireland Ltd., 4 Grand Canal Square Grand Canal Harbour, Dublin 2, Ireland. We wish to inform you that use of our Facebook page at https://www.facebook.com/sew.antriebstechnik and its functions takes place under your own responsibility. This applies, in particular, to the use of interactive functions (e.g. Comment, Share, Rate).

When you visit our Facebook page, Facebook records, among other things, your IP address as well as additional information which is found on your PC in the form of cookies. This information is used to supply us as the provider of the Facebook pages with statistical information about the use of our Facebook page (so-called Facebook “insights”). Facebook provides further information via the following linkWhen you visit our Facebook page, Facebook records, among other things, your IP address as well as additional information which is found on your PC in the form of cookies. This information is used to supply us as the provider of the Facebook pages with statistical information about the use of our Facebook page (so-called Facebook “insights”). Facebook provides further information via the following link: http://de-de.facebook.com/help/pages/insights.

The data collected in this context is processed by Facebook Ltd. and may be transmitted to countries outside the European Union, in particular the US. Your data may be transferred to the USA, whereby according to the information provided by Facebook, it complies with a reasonable level of data protection which corresponds to the former EU-US Privacy Shield ( www.privacyshield.gov). Facebook describes which information it receives and how it uses it in general terms in its Data Use Guidelines. They also provide information about how to contact Facebook and how to change your advertising settings. The data use policies are available via the following link: http://de-de.facebook.com/about/privacy/. The full Facebook Data Use Policy can be accessed here: https://de-de.facebook.com/full_data_use_policy. The following Facebook support pages provide details on how to manage and delete existing information about you: https://de-de.facebook.com/about/privacy#

Facebook does not conclusively and clearly state, nor do we know, the extent to which Facebook uses data from your visit to the Facebook pages for its own purposes, the extent to which activities on the Facebook pages are allocated to individual users, for how long Facebook stores this data and whether data from a visit to the Facebook page is passed on to third parties. Data processing by Facebook may vary depending on whether you are registered with, and logged into, Facebook, or whether you access the site as a non-registered and/or not logged in user.

When you access a Facebook page, or make a contribution, the IP address allocated to your end device is transmitted to Facebook. According to Facebook, this IP address is anonymized (for “German” IP addresses) and deleted after 90 days. In addition, Facebook saves information about the end devices of its users (e.g. as part of the “Log-in notification” function); this may allow Facebook to allocate IP addresses to individual users. If you as a user are currently logged into Facebook, a cookie containing your Facebook ID is currently saved on your end device. This enables Facebook to track that you have visited this page and how you used it. This also applies to all other Facebook pages. With the help of Facebook buttons embedded in websites, Facebook can record your visits to these websites and allocate them to your Facebook profile. Based on this data, contents or advertising can be tailored to you.

If you want to avoid or restrict the data processing described above by Facebook, you should log out of Facebook or disable the “remain logged in” function, delete any cookies on your device and restart your browser. This deletes Facebook information, which can be used to identify you. You can thereby use our Facebook page without disclosing your Facebook ID. If you try to use the page's interactive functions (Like, Comment, Share, Messages, etc.), a Facebook login screen is displayed. After you log in, Facebook can again identify you as a specific user.

In addition to this, we as the provider of the information service only process the data from your use of our service which you provide and which requires interaction. For example, if you ask a question which we can only answer by e-mail, we will save your information in accordance with our General Data Protection Principles, as described in our Data Protection Information. The legal basis for processing your data on the fan page is Article 6(1)(1)(f) GDPR.

You can contact either us or Facebook to exercise your rights as the data subject. If a party is not responsible for providing a reply, or must receive information from the other party, we or Facebook will forward the query to the relevant other party. Please contact Facebook directly for any queries concerning the setting up of your profile, the processing of your data when using the website and insights (see above for the link). If you have any questions regarding how we process your interaction with us on our site, please do not hesitate to contact us at datenschutz@sew-eurodrive.de .

If you have any questions regarding our information offering, please do not hesitate to contact us by using the above contact details. The concept underlying the service is available via the following Internet address: https://www.facebook.com/sew.antriebstechnik. For more information on Facebook, other social networks and how you can protect your data, see www.youngdata.de.

b) Other sites on social media platforms
We also maintain sites on other so-called social media platforms. We also have sites with the following providers:

media platforms

Twitter

YouTube

LinkedIn

Instagram

Xing

To provide these information services, we access the providers’ technical platform and services. We hereby inform you that use of our sites on social media platforms and their functions is at your own risk. This applies, in particular, to the use of interactive functions (e.g. Comment, Share, Rate). When you visit our pages, the social media platform providers record, among other things, your IP address as well as additional information found on your PC as cookies. This information is used to supply us as the provider of the accounts with statistical information about the interaction with us.

The details relating to Facebook described above also apply here. In particular, your data may be transmitted to the USA; all of the above providers state that they comply with a reasonable level of data protection which corresponds to the former EU-US Privacy Shield (with the exception of Xing, as this provider’s head office is located in the EU). We do not know in what way the social media platforms use the data from your visit of our account and from the interaction with our contributions for their own purposes, for how long they store this data and whether they pass on the data to third parties. Data processing may vary depending on whether you are registered with, and logged into, the social network, or whether you access the site as a non-registered and/or not logged in user. When you access a contribution or the account, the IP address assigned to your end device is transmitted to the provider of the social media platform. If you are currently logged in as a user, a cookie on your end device can be used to track how you surfed the internet. If you want to avoid this, you should log out, delete any cookies on your device and restart your browser.

In addition to this, we as the provider of the information service only process the data from your use of our service which you provide and which requires interaction. For example, if you ask a question which we can only answer by e-mail, we will save your information in accordance with our General Data Protection Principles, as described in our Data Protection Information. The legal basis for processing your data on the social media platform is Article 6(1)(1)(f) GDPR.

You can contact either us or the provider of the social media platform to exercise your rights as the data subject. If a party is not responsible for providing a reply, or must receive information from the other party, we or the provider of the social media platform will forward the query to the relevant other party. Please contact the provider of the social media platform directly for any queries concerning setting up your profile or the processing of your data when using the website. If you have any questions regarding how we process your interaction with us on this site, please do not hesitate to contact us at Datenschutz@sew-eurodrive.de .

In their data protection policies, the providers describe what information the social media platform receives and how this is used (see table above for the link). These also provide information about how to contact them and how to change your advertising settings. For more information on social networks and how you can protect your data, see www.youngdata.de.

10. Registering, ordering and downloading other online services and offers

On our websites, we also offer services such as downloading white papers, ordering tickets to trade fairs, registering for online events and newsletters. To provide these offers and services, we use solutions and services from Marketo. Please also see the data protection information regarding the use of Marketo.

a. Ordering a trade fair ticket

If you wish to visit us at a trade fair, you can order your ticket directly online. The information that you enter in the form is transferred to us. In particular this is:

• First name, last name (required information)

• E-mail address (required information)

• Company name (required information)

• Your department (required information)

• Your position in the company (required information)

• Street name, house number, zip code, city/town (voluntary)

• Academic title (voluntary)

• Country/region (voluntary)

• Industry (voluntary)

• Telephone number (voluntary)

• Cell phone number (voluntary)

The information marked as required information is essential in order for us to process the order for the trade fair ticket, send the ticket to you and be able to introduce you to the most appropriate contact person at SEW EURODRIVE on the day of the trade fair so that they can answer your questions. In this respect, the processing of the required information is in your and our legitimate interest. The legal basis for this is Art. 6(1)(b)(f) GDPR.

We process and save the data to the extent and for the duration necessary to fulfill the purpose, i.e. to process the ticket order.

b. Downloading information materials (e.g. white papers)

We make information materials, such as white papers, about various topics and SEW EURODRIVE products available on our website for you to download free of charge to enable you to get to know us and our products better (public relations work).

The information that you enter in the form is transferred to us. In particular this is:

• E-mail address (required information)

• Academic title (voluntary)

• Last name, first name (voluntary)

• Company name (voluntary)

• Street name, house number, zip code, city/town (voluntary)

• Industry (voluntary)

• Department, position in the company (voluntary)

• Telephone number (voluntary)

• Cell phone number (voluntary)

Your e-mail address is essential for us to be able to send the information materials by e-mail. This is our legitimate interest. The legal basis is Art. 6(1)(f) GDPR.

We process and save the data to the extent and for the duration necessary to fulfill the purpose.

The legal basis for processing the information that you enter on a voluntary basis is also Art. 6(1)(f) GDPR. By entering the information voluntarily, you indicate that you are in agreement with the data processing described here, i.e. that you have an interest in the processing.

We may forward this data internally to our Sales department so that our Sales department can contact you.

c. Webinars and online events

We offer webinars and online events on our website. We process the information that you enter in the form. In particular this is:

• First name (required information)

• Last name (required information)

• E-mail address (required information)

• Company name (required information)

• Department (required information)

• Position (required information)

• Acad. title (voluntary)

• Country/region (voluntary)

• Industry (voluntary)

• Telephone number (voluntary)

• Cell phone number (voluntary)

The information marked as required information is essential in order to conduct the webinar or online event. For example, we need your e-mail address, your first and last names, department and position in the company in order, for example, to send you an invitation link by e-mail and send you the most appropriate information possible. This is also our legitimate interest. The legal basis is Art. 6(1)(b)(f) GDPR.

Furthermore, we process and save the data to the extent and for the duration necessary to conduct the webinar or event.

The legal basis for processing the information that you enter on a voluntary basis is also Art. 6(1)(f) GDPR. By entering the information voluntarily, you indicate that you are in agreement with the data processing described here, i.e. that you have an interest in the processing.

III. Data protection information for customers and interested parties of SEW-EURODRIVE

1. Scope of data processing and designated uses

a) Performance of the contract

SEW-EURODRIVE processes the data it receives from you as part of your inquiries or existing contractual relationships, in particular e-mails, orders, your wishes regarding our products, payment data.

We process the following information we receive from you and about you in our CRM systems on premise in Bruchsal and in the cloud-based application of an external provider with data centers in the EU:

  • Name, first name, name affix
  • Form of address
  • Academic title
  • E-mail address (business)
  • Telephone and fax numbers (business)
  • Language
  • Your consent to marketing activities
  • Creation and modification date of your CRM entry
  • Change history of your CRM entry
  • Overview of our interactions (phone calls, visits, appointments, etc.)
  • Overview of incoming and existing orders
  • Your function / Your role at the company
  • "Proxy" in the company. What is meant is our subjective assessment of your presumed powers of representation and decision-making
  • "Importance" in the company. From function and "Proxy" we determine (subjectively) your "importance", decision-making authority in the company. As for this purpose, we set numerical values and "calculate" the "rank of your importance in the company".
  • Activity Level. The more often your name is mentioned in orders, offers, complaints, service requests, tickets, the higher your activity level is
  • Your preferred contact type
  • "Perception”. What is meant is our subjective assessment of how you presumably see SEW
  • Your contact partner at SEW‑EURODRIVE
  • Project organization chart
  • Linking the contact person to leads and opportunities
  • Assignment to SEW customer incl. business address
  • URL to your profiles in social networks
  • Information from the connected on line support incl. support tickets
  • Name of the campaigns and target groups to which you are internally assigned

We process this information for the purpose of customer service and more efficient assignment and order processing. Our service employees need this data to contact you and to remedy the possible malfunction. In this respect, the processing of this information is necessary so that you and our employees can carry out your job smoothly.

In addition, if a request for financing is made, the data required for generating a quotation may be used by SEW-EURODRIVE and, if necessary, passed on to contractual partners. Further details regarding the purposes of use can be found in the relevant contractual documents.

The legal basis for the data processing is Art. 6, para. (1), lit. b) and (f) of the General Data Protection Regulation (GDPR). The aforementioned purposes represent our legitimate interest in data processing.

External attorneys, tax advisors and auditors may access the information and documents necessary to perform their professional consulting and auditing services that relate to our business collaboration.

In order to protect the data subjects and our IT systems from cyber attacks and hackers, we do not publish the names of the external system providers directly, instead, on request, we will provide you with the (company) names of the external recipients. The data centers of SEW and the external cloud providers are located in the EU. Access to the data in the CRM is also granted to persons from sales and customer support for the purpose of processing business transactions, as well as to the persons who maintain our IT and cloud systems and provide support services. We have entered into data processing agreements with the external providers

SEW-EURODRIVE processes and stores the collected data (on premise and in an external cloud) to the extent and for as long as this is necessary for the establishment, performance and termination of the business cooperation and to the extent and for as long as it is necessary in accordance with Art. 17, para. (3) lit. e) GDPR for the assertion and exercise of or defense against legal claims (e.g. for delivery, payment, warranty, damages) or to the extent and for as long as tax, accounting and bookkeeping retention periods and obligations require this. The legal basis for the storage is Art. 6, para. (1) lit. b), Art. 17, para. 3 lit. e) GDPR as well as Art. 6, para. (1) lit c) GDPR in connection with the respective legal obligation to retain data, e.g. according to sections 257, para. (3), (4) German Commercial Code (HGB), 146, para. (3), (4) German Fiscal Code (AO), 14 b, para. (1) Federal VAT Act (UStG) (among others 10 years for invoices).

b) Verification of address and credit worthiness

To verify your address and credit rating, SEW EURODRIVE accesses databases from external agencies in order to gather address details and credit data about your company, including data that was calculated using statistical methods (scoring). This is done as long as SEW-EURODRIVE is undertaking a commercial risk in concluding the contract and seeks to safeguard itself through this credit check. This information is used by SEW-EURODRIVE to grant trade credit for goods or services.

The following agencies provide addresses and credit data to SEW-EURODRIVE:

  • Bisnode D&B Deutschland GmbH
  • Deutsche Bank AG
  • German Debtor's Register (Deutsches Debitorenregister, DRD), a payment records pool from the Verband der Vereine Creditreform e.V. organization
  • Verband der Vereine Creditreform e.V.

The information provided by the agencies and the internal information regarding payment behavior is internally evaluated by SEW-EURODRIVE, which then creates its own rating for use as the basis for granting a credit limit. The credit data is deleted 5 years after the last delivery of goods. This mode of data processing is performed in accordance with Article 6(1)(1)(f) GDPR in order to grant you trade credit for goods and services.

c) Promotional use of data by SEW-EURODRIVE
SEW-EURODRIVE and engaged service providers (printing companies, lettershops, etc.) use your name and address as a contact person in ongoing business relationships or of interested persons for additional measures for entering into and activating business partnerships.

This includes the sending of advertising by post in relation to interesting products and services, so that potential customers and business partners can become aware of products which may be of interest and in order to form a long-term business relationship. Last but not least, we would like to stay in touch with you on special occasions and send you Christmas greetings, for example. SEW-EURODRIVE uses your telephone number for promotional purposes only if you have given your consent or if consent can be reasonably presumed – for example, within an existing business relationship or after previous contact. SEW-EURODRIVE also uses your e-mail address which was obtained from the contact persons during the conclusion of contracts in order to advertise similar products and services. In all other cases, we only use your e-mail address for advertising purposes with your separate consent. Of course, you have the right to refuse these promotional contacts. We notify you of your right to object to advertising in each separate case.

Furthermore, SEW-EURODRIVE processes the data collected within the framework of the business relationship (contact information, product purchases, services ordered) and obtained when the services on the website are used, at trade fairs or during other advertising campaigns (use of data when accessing the website or when participating in advertising campaigns, as well as the voluntary information which you disclose when using the website) in order to provide you with offers which are tailored to your interests. By means of the above, we use the data which is collected over the course of the business relationship and the data which is obtained when using products / services in order to inform you of offers, information and current developments in relation to our products and services which may be of interest. Thereby SEW-EURODRIVE provides further information concerning products and services of the SEW-EURODRIVE Group. By means of this data processing, we can showcase the products and services which we think may be of interest to you by means of personalized offers (website, e-mail or postal advertising).

We may also send you - as an existing customer or if we have otherwise received your contact details - information in relation to special promotions, events or trade fair events by post within the framework described above. In this case, you will receive post from us with information about the specific campaign and how you can participate and what information you must issue us with. We will then often register your participation via an event-related website and process your data for the stated purposes indicated, for example to provide the products offered or send you information. We may use the information received as part of the processing described here. At the time of selection and sending of the initial information, your data is processed on the basis of a consideration of our interests, Article 6(1)(1)(f) GDPR; when you participate in a campaign and register, your data is processed for the performance of the contract, in accordance with Article 6(1)(1)(b) GDPR.

As a rule, your data is saved in the EU for advertising purposes. Thereby we can use service providers whom we have carefully inspected and audited. Should data be transferred to and processed on servers in third countries outside the EU/EEA in individual cases, i.e. in particular the USA and, where applicable, the United Kingdom (UK), we use engaged and monitored service providers who have undertaken to guarantee an reasonable level of data protection and with whom the EU standard data protection clauses of the EU Commission have been agreed in principle. In individual cases, permission for data transfer may also arise under Article 49 GDPR, for example fulfillment of a contract with an international focus or if you have issued your consent.

To achieve the goals associated with this promotional usage, we process your data over the service lives of our products and as long as you remain a customer. Exceptions are made if you consent to a longer period of usage and/or if the data is subject to statutory retention obligations. In the latter case, the data is deleted after the retention period has elapsed. The processing period may be shorter if you exercise your right to object, of which we inform you in Section V.

The legal basis for this promotional usage is Article 6(1)(1)(f) GDPR or, if you have given your consent, Article 6(1)(1)(a) GDPR. We will inform you below of your rights regarding use for advertising purposes, in particular your right to object.

d) Processing of personal data due to legal obligations
SEW-EURODRIVE, like every other company in Germany and Europe, is subject to various legal obligations to verify the data of our customers and business partners. In such cases, we process your personal data only to the extent legally required. To fulfill these legal obligations, it may be necessary to process some of your data automatically in order to evaluate personal aspects (profiling). Unless you are expressly notified, automated individual decision-making is conducted. The legal basis for this processing is Article 6(1)(1)(c) GDPR in conjunction with the applicable statutory provisions.

These statutory provisions relate to, in particular:

  • Prevention of fraud and money laundering
  • Tax auditing and reporting requirements
  • Evaluation and management of risks in the Group
  • Sanctions lists
  • Export control, customs regulations
  • Auditing, in particular by tax consultants and auditors

e) Scraping in publicly available sources to update the data in the CRM

We would like to keep your contact data in our database / CRM (on premise and cloud) always up to date, so that you and our employees can "do their job without jolts" and communicate with each other in the course of business. In addition, data must be "factually correct" and "upto date" according to Art. 5, para. (1)(d) GDPR.

To ensure data accuracy, we use automated scraping tools. Using this technology, we extract information from you and about you from publicly available sources and platforms such as e-mail signatures, websites, blogs, social networks (e.g. Xing, LinkedIN), (analog and digital) business cards and import them into our CRM. Specifically, these are: Form of address, last name, first name, business e-mail address, business phone number, business address, role and department in the company, company name, URL of your social media profile, messenger URL, other information from business cards and e-mail signatures.

Access is granted to the people who have access to our CRM. At the moment, the information is extracted from public sources by SnapAddy, among others, and imported into our CRM (on premise and cloud). We have concluded a data processing agreement with SnapAddy. Our data centers, SnapAddy's data centers, and cloud providers are located within the EU. Since the information is imported into our CRM, the storage period is based on the storage period in the CRM (see section III. Paragraph (1a) above).

The legal basis is Art. 6, para. (1), lit. b) and f) GDPR

2. Distribution of data within the SEW-EURODRIVE Group

SEW-EURODRIVE may pass on your master data (company name, contact persons, address and contact details such as telephone number and e-mail address) to other companies within the SEW-EURODRIVE Group and possibly update it in order to ensure that all SEW-EURODRIVE companies involved with you in a transaction (for example fulfilling a contract) have the same master data. This is intended to simplify our processes and may help you avoid having to provide the master data again when contacting another company within the Group. The legal basis for this mode of data processing is Article 6(1)(1)(b or f) GDPR. Your rights are safeguarded by internal contractual policies that ensure a high standard of data protection.

Furthermore, in addition to master data, data relating to a concrete order (order data) or data for the preparation of such an order in case of your inquiry can be passed on to other EURODRIVE companies, should this be necessary due to your order. For example, different SEW-EURODRIVE products are manufactured by different SEW-EURODRIVE companies, so data may need to be transferred to simplify order processing and delivery. In such cases, you will be informed of this transfer upon conclusion of the contract. The legal basis for this processing is Article 6(1)(1)(b) GDPR.

If your company is based outside Germany, an SEW-EURODRIVE subsidiary associated with us will be responsible for managing and processing your contracts or inquires. Therefore, if you wish to receive contract offers or additional information about SEW-EURODRIVE and our products, the personal information we have stored for you (in particular: name, contact details, associated company, products in which you are interested) must be transferred to the SEW-EURODRIVE subsidiary that is responsible for your company's location. This international representative of ours will use your personal data unless you object to the dissemination or saving of your data in these subsidiaries.

The processing procedures referred to above may result in your master data being processed by SEW-EURODRIVE companies outside of the European Union (EU) or European Economic Area (EEA). In cases where the EU Commission has not specified an reasonable level of data protection, we have made contractual commitments; generally, we have concluded the EU standard contractual clauses and checked the level of protection of the country in detail. You can find a list of the companies belonging to the Group here. This data is subject to the same deletion policies described above.

3. Surveys with online tools

In some cases, we conduct surveys/questionnaires with customers, suppliers, visitors to trade fairs and interested parties to learn as much as possible about their requirements for our products and innovative solutions. We will therefore periodically ask you to take part in a survey, which is always voluntary. We conduct surveys in different places, for different reasons and purposes, using different technical tools and different people. If we survey you in person at an event or trade fair, we may conduct and document the survey and documentation using an electronic device, such as a tablet.

We use your surname, first name and e-mail address in order to invite you to complete a survey. If we have invited you to complete a survey by e-mail and you do so online, a cookie will be placed on your end device to prevent multiple participations and a falsification of the results. This information is kept separate from the information and details provided in the survey and is not linked to any other data.

We conduct both anonymous and personal surveys.

When you participate in an anonymous survey, the responses from all respondents are statistically combined and evaluated collectively. It is therefore not possible to match answers to certain participants. Furthermore, we formulate the questions in such a way that we cannot identify the person responding.

When you participate in a personal, non-anonymous survey, we generally collect your surname, first name, business contact details, the name and sector of your company, your role within the company, etc. and then evaluate this information.

We use the services of LamaPoll to conduct surveys, especially to collect and evaluate the information gathered. We have commissioned LamaPoll as a data processor and have audited them accordingly. (Further information on data processing can be found in the data protection declaration of the provider, https://www.lamapoll.de/Support/Datenschutz/#oben). The data is hosted in a data center in Berlin.

We sometimes link participation in the survey with a contest or other rewards; in such cases, we always ensure that the answers and the rewards are separate so that we cannot identify a person’s answers. We may also display individualized design elements such as images, videos, questions or pages.

The legal basis for processing your contact details for promotional purposes is further detailed in No. III. 1. c of this data protection notice. The legal basis for processing your data when you participate in an anonymous survey is Art. 6 Para. 1 (1) f GDPR. Our legitimate interest consists in receiving voluntary feedback from you about the company and our products. If you participate in a personal survey, we will obtain your consent beforehand. The legal basis is Art. 6 Para. 1 (1) a GDPR.

If you withdraw your consent, the data will be deleted within a month unless there are any laws, duties or overriding interests which preclude immediate deletion. In all other respects, the information will be deleted insofar and as long as the processing of said information is no longer required to fulfill specific purposes, for record retention requirements or to defend against or assert legal rights.

IV. Data protection information for suppliers and subcontractors

a) Establishment, performance and termination of the supply contract / transaction

SEW EURODRIVE procures goods and services from various suppliers and subcontractors around the world for the execution of both internal and external tasks, projects and transactions. In order to establish, perform and terminate these supply/support transactions and to carry out their professional tasks, it is necessary (purpose of the processing) for the employees of SEW EURODRIVE and the contact persons of the suppliers/subcontractors to exchange information by post, telephone or electronically, e.g. by e-mail, and to process and store this information in their respective analog and digital supplier management systems and databases.

The following data is processed: last name; first name; (business) e-mail address; telephone number; cellphone number; role in the company; delivery and postal address; information from quotations, order confirmations, contracts and invoices; your qualifications and certificates; the contents of the supplier's self-disclosure; notes from conversations; and information from our verbal, telephone or electronic correspondence.

SEW EURODRIVE processes the specified information in paper form and digitally on servers in Bruchsal (Germany). All data is processed according to the need-to-know principle. Auditors, tax advisors, lawyers, social insurance agencies and supervisory/investigative authorities shall have access to this information only to the extent and for the duration required by law and necessary for the fulfillment of their tasks. Access may also be granted to service providers who have been carefully selected and who are needed to properly manage the supplier relationship (e.g. supplier surveys, supplier audits, supply chain monitoring).

The data will be stored only to the extent and for the duration necessary to establish, perform and terminate the services and to comply with legal, contractual or internal retention periods.

The legal basis for the data processing is Art. 6 para. 1(b) and (f) of the General Data Protection Regulation (GDPR). The aforementioned purpose of the processing also constitutes our legitimate interest.

If the cooperation between suppliers and SEW EURODRIVE constitutes a data processing agreement or a joint controllership, we shall conclude corresponding agreements with these suppliers.

b) Supply chain monitoring and regular supplier surveys

EU regulations (e.g. EU Conflict Minerals Regulation 2017/821/EU from May 17, 2017) and both national (e.g. the German Supply Chain Act (LkSG)) and international (e.g. the U.S. Dodd-Frank Act of 2010) standards and laws regarding transparency require us to exercise due diligence in selecting our worldwide suppliers and to regularly review our supplier relationships, including the supply chains, on both a legal and ethical level. In addition to the applicable legal provisions, we observe our internal Code of Conduct in all SEW EURODRIVE subsidiaries worldwide. Key tenets of our corporate philosophy include respecting human rights worldwide, ensuring fair working conditions, combating corruption, mitigating armed conflicts, monitoring supply chains and protecting the environment.

We conduct annual supplier surveys in order to prevent the use of conflict materials, conflict resources and conflict minerals in our supply chain (purpose of the processing). We conduct the surveys ourselves (see III. 3. Online inquiries) or commission the specialized service provider IntegrityNext GmbH from Munich (hereinafter IntegrityNext) for this purpose.

Section 1502 of the U.S. Dodd-Frank Act 2010 prohibits the use of so-called conflict materials. To complete the survey, we upload your company name and email address to the IntegrityNext platform and IntegrityNext then invites you to complete an inquiry on IntegrityNext platform. As part of the survey/inquiry, the following information is generally processed from you and about you: Name, first name, (business) e-mail address, company name, and especially your entries in the questionnaire.

The data will be stored in the (AWS) EU-data centers of IntegrityNext only to the extent and for the duration necessary to fulfill the purpose of processing and to comply with legal, contractual or internal retention periods.

The legal basis for the data processing is Art. 6 para. 1(f) of the General Data Protection Regulation (GDPR). Our legitimate interest in surveying suppliers' employees—whether by us or external service providers—prevails, as this is the only way to uniformly inspect supply chains and materials to ensure that they are "conflict free." This also constitutes our suppliers' interest.

V. Data protection information for job applicants at SEW-EURODRIVE

If you apply at SEW‑EURODRIVE, the principles for data processing as described below apply. After hiring you, we will inform you about data processing separately in the context of concluding the contract.

1. Scope of data processing and designated uses

a) Internal data processing when checking your application

We process the data you have provided in the context of your application for the purposes of evaluating your application and verifying suitability for the advertised position. We save your data in our own computing center in Germany, should you apply via one of our service providers or via a social media platform. In order to check your application, we can use specialized service providers who are monitored by us (recruiting platforms). Suitable applications for a position are forwarded by HR to the corresponding department or subsidiary for further evaluation. In order to comprehensively evaluate your application, we always require your resume, as well as certificates or relevant proof. Further information as well as a photo are optional.

Unless you want to be saved in our pool of applicants (see 3.), we will delete your application data 6 months after completing the application process, i.e. after the position has been filled. This data processing takes place on the basis of Article 6(1)(1)(b) GDPR and § 26 Paragraph 1 Sentence 1 of the German Federal Data Protection Act (BDSG).

If you are under 18, we require the consent of your guardians to conclude a contract with you. Even saving your application data for a longer period of time (e.g. for a work placement at a later point in time) is only carried out with your consent and the consent of your parent or legal guardian which is noted in the templates.

b) Adjustment to open job offers at the SEW-EURODRIVE Group
Should you have agreed during your application by ticking the relevant box, we will check during the application process whether you are suitable for positions other than those named by you which correspond to your qualifications. In order to carry out this comparison, we store your applicant data in a database which can be accessed not only by us as the parent company, but also by our subsidiary SEW-USOCOME SAS in Haguenau, France. Access may be particularly useful if you have applied for a position that is also open in the same or similar form in other companies of our Group, or if you live in a border region. Should you not wish for such access to take place in future, it goes without saying that you can notify us of such at any time in an informal manner by e-mail or in the manner described in (V) Should you raise an objection, this will of course not affect the outcome of your current application. This data processing takes place on the legal basis of Article 6(1)(1)(b) GDPR and § 26 Paragraph 1 of the German Federal Data Protection Act (BDSG). Your data is also deleted in the manner described in a) above, if we are unable to find a suitable position for you. Your rights are safeguarded by internal contractual policies that ensure a high standard of data protection.

c) Saving your application in our talent pool
If we were not able to consider your application for a specific position, we would still like to save your application in our talent pool. For this purpose, you need only tick off the corresponding check box next to your application in the Application Wizard. This enables us to notify you once a position suitable for you becomes available. We will only save your application if you have provided us with the corresponding explicit consent. Please go here to see the consent text.

In the event of your consent, we will save your application data for a maximum of 5 years; after this period, we will delete your data unless you request further storage. Please note that if you object to the data processing, we may not be able to consider you for the future filling of positions that may be suitable for you. The legal basis in this regard is Article 6(1)(1)(a) GDPR.

2. Applications via social media platforms

You can also apply to us using social media platforms (for example Xing or Linkedin). We then receive your resume and any other documents which you have provided via the platforms. In this case, the platforms provide us with the data which has been stored on them. We do not have any further details on how these platforms process data. The legal basis is Article 6(1)(1)(b) GDPR and § 26 Paragraph 1 of the German Federal Data Protection Act (BDSG).

3. Applications of apprentices, students with co-op terms and trainees still at school

We will gladly accept your applications as apprentices, students with co-op terms and trainees still at school. Your application data will be processed in accordance with the principles as described here at all times, with the restriction that we will not include you in our applicant pool. If your application is unsuccessful, we will delete your application documentation at the end of the quarter following the completion of the application process. The legal basis is Article 6(1)(1)(b) GDPR and § 26 Paragraph 1 of the German Federal Data Protection Act (BDSG).

If you would like to apply again at a later time, we look forward to receiving a new application.

4. Applications of holiday workers

We will gladly accept your applications as holiday workers. Your application data will be processed in accordance with the principles as described here at all times, with the restriction that we will not include you in our applicant pool. If your application is unsuccessful, we will delete your application documentation 6 months after the completion of the application process. The legal basis is Article 6(1)(1)(b) GDPR and § 26 Paragraph 1 of the German Federal Data Protection Act (BDSG).

If you would like to apply again at a later time, we look forward to receiving a new application.

VI. Data protection information for visitors of SEW-EURODRIVE

We are pleased when you visit us on site - whether as a contact person of a company (such as a customer or supplier), as a prospective customer, applicant or employee from our SEW locations around the world. In order to be able to quickly identify the respective location in the event of an accident in our plant facilities or in the company and business premises and to be able to track your visit to us, e.g., due to the assertion of claims for damages and to protect our business and trade secrets (processing purposes), we record the following information about you digitally in an internal IT visitor system:

- Last name, first name

- Name of your organization or company and its location

- Your contact person at SEW EURODRIVE

- Date and time of your arrival and departure

The legal basis is Article 6(1)(f) GDPR. The above purposes of processing constitute our "legitimate interests". We store the information about you that is registered in our internal visitor system for a period of three years.

VII. Data protection information on the processing of personal data in connection with trade fairs and other events

If you visit us at a trade fair or other networking event, we may exchange information about our products or about existing or future collaboration, or for the purpose of contacting each other for future business affairs, i.e. to initiate, carry out or conclude business.

We will process the following information about you, depending on the individual situation/case or what information you share with us:

• First name, last name.

• address.

• Title.

• (Business) phone number.

• (Business) e-mail address.

• Contents of your e-mail/messenger messages in connection with our correspondence before, during or after a trade fair or event.

• Name and address of your company.

• Department in which you work.

• Your role at the company.

• Your industry.

• Information contained on the business cards that we exchange or that you give us.

• Information taken from your (public) website or (public) social media profile.

• Your likeness/appearance on foto, audio recording or video recording, if we make and publish recordings as part of the event. If you are the focus of the foto/recording, i.e. you are specifically to be seen or heard, we will obtain your consent in advance.

• The information you enter in the Process Modules Questionnaire. In addition to your name and contact details, this consists mainly of our questions and your answers about products and processes (see Process Modules Questionnaire). If you answer the questions on site using a tablet, the date and time will also be recorded.

• The information that is recorded and documented in the conversation note. In addition to your name and contact details, this includes but is not limited to information about your industry, project planning, your visitor category (customer, OEM, potential customer, supplier, press, student, applicant, other service providers), main topics of the conversation, notes from the conversation, excerpts of your statements (original audio) from the conversation, your requested contact method (telephone, mail, e-mail, messenger), interest in advertising, your planned orders.

• Other information from our correspondence before, during and after the trade fair.

• Documentation/comment on the conversation note that you have objected to the processing and storage of your data in our IT systems and files.

If you are a new customer, existing customer or prospective customer, the information listed here will be entered into our Customer Relationship Management (CRM) system and processed. The information is processed on SEW EURODRIVE servers (on premises) in Bruchsal, Germany and in the cloud environment of external cloud providers. To protect our IT systems from cyber attacks and hackers, we do not publish the names of the external system providers directly, but on request we will provide you with the (company) names of the external recipients, system providers and/or cloud providers. The data centers of SEW EURODRIVE and the external cloud providers are located in the EU. The CRM can be accessed by employees working in sales and customer support, as well as by those who maintain the IT systems and provide support services.

If you are a supplier, the information presented here will be entered and managed in our supplier management system.

If you contact us in a professional capacity, i.e. in the performance of your job at the trade fair or event, the data processing will be based on Art. 6 para. 1 lit. b) GDPR, as the data processing (exchanging contact details, initiating business/projects) is necessary for you and our employees to complete your/their tasks.

The legal basis is also Art. 6 para. 1 lit. f) GDPR. Managing contacts, initiating business and conducting business constitute both our and your legitimate interest.

For the purpose of public relations, we may make and publish still images, audio recordings and video recordings of the event or our trade fair booth. If you are the focus of the image/recording, i.e. you are specifically to be seen and/or heard, we will obtain your consent. We will also obtain your consent if we interview you and publish this interview or a statement (original audio) from you in the media. The legal basis is Art. 6 para. 1 lit. a) GDPR. If you are not the focus of the recording but rather a peripheral person, e.g. one person among many, then our legitimate interest in making and publishing the recordings takes precedence. The legal basis is then Art. 6 para. 1 lit. f) GDPR. Please read our data protection information on the creation and publication of fotos, audio recordings and video recordings.

If you participate in an on-site survey/questionnaire, we will obtain your consent in advance. The legal basis is then Art. 6 para. 1 lit. a) GDPR.

The information is stored insofar and as long as is necessary to fulfill the aforementioned purposes and/or to comply with legal retention obligations.

If you are a customer or potential customer, we will also process your data as described in Section III.

If you take part in an on-site survey, the data protection information in Section III.3. also applies.

If we connect on a social network such as XING or LinkedIn in connection with the event, the privacy policy of the social network in question must also be observed.

VIII. Data protection information for the creation and publication of photo, audio and video recordings as well as press and advertising texts

If you attend one of our events or training sessions or visit us at a trade fair or for other reasons and make contact with us in person, we or an authorized external agency may for the purposes of public relations work or employer branding create and publish photo, audio and video recordings of the proceedings and the people at our events (training sessions, trade fairs etc.), in which you are either the focus of the photo/recording or are recognizable as a peripheral person, i.e. one person among many and not in the focus of the respective photograph/recording. In individual cases, you may talk to us or we may ask you specifically about the particular event, our products or our cooperation, for example, and we may process and publish a quote or statement from you in a press release. In addition to your outward appearance (photograph and video recording), voice and language (video and sound recording), we may in certain circumstances also collect – depending on the situation – your name, position in the company, e-mail address, phone number, for example, if we mention you in a press release, social media post or in an image caption. If you are the focus of the photographs/recordings, we will assign a tag ID to enable us to subsequently identify you on the photographs/recordings.

Depending on how and where the images/recordings and the press releases in which you are mentioned are published, they may be seen, heard, saved, evaluated or reproduced internally within SEW EURODRIVE and externally, that is, worldwide by anyone who has access to the particular medium. Media are, for example, the worldwide web, local, regional, national, global online and print media, printed advertising materials, such as brochures and fliers from SEW EURODRIVE GmbH & Co KG and its affiliated companies (https://www.sew-eurodrive.de/meta-pages/contacts_worldwide.html), on the websites, mobile apps and blogs of SEW EURODRIVE GmbH & Co KG and on the websites, mobile apps and blogs of its affiliated companies (https://www.sew-eurodrive.de/meta-pages/contacts_worldwide.html), in regional, national and international trade magazines, on the local, regional and national radio and television stations, online journals, social media platforms, in digital media, on the pages/profiles of SEW EURODRIVE GmbH & Co KG and its affiliated companies, in social networks such as YouTube, Facebook, Instagram, Twitter, LinkedIn, XING as well as in internal SEW EURODRIVE media (e.g. the global SEW EURODRIVE intranet DriveNet, SEW EURODRIVE company magazines such as EURODRIVER/Direkt, News Center, mitarbeiterinfo.sew), in newsletters or e-mails from SEW EURODRIVE GmbH & Co KG and in newsletters or e-mails from its affiliated companies. If we publish images/recordings and press releases, for example, in our EURODRIVER employee magazine, the images and, for example, your statements and quotes may be read by SEW EURODRIVE customers worldwide or by former SEW EURODRIVE employees who receive the magazine. If we publish images/recordings and press releases on our Facebook, YouTube, Twitter, Xing, LinkedIn or Instagram channels, all users of these social media platforms can access them. If we publish recordings on the radio and television, everyone who receives these channels can watch and listen to them.

If you are the focus of an image/recording and can be clearly and unambiguously recognized or heard and/or are mentioned by name in a press release/advertising text, for example, together with a quote and your position at the company and are published in the stated media, we will obtain your informed consent in advance. When we obtain your consent, we will also assign a tag ID. The purpose of this is to enable us to subsequently identify you in the images/recordings. The legal basis in this case is Art. 6(1)(a), 7 GDPR. In accordance with Art. 7(3) GDPR, you can withdraw your consent at any time without stating the reasons for doing so. You can do this, for example, by sending an e-mail to datenschutz@sew-eurodrive.de.

If you have granted us unlimited consent, we will publish and save the press releases/advertising texts and images/recordings for an unlimited period of time. If you withdraw your consent within one month, we will delete the images/recordings in which you alone are the focus. Passages in press releases/advertising texts in which you are specifically mentioned will be deleted within one month provided that this is legally, technically and economically possible and reasonable for us.

If you are not the focus of the images/recordings, but are merely a peripheral person in a recording or depicted group, then our legitimate interest (for example public relations work and employer branding) in the publication of this image/recording may in certain circumstances also outweigh your interest in non-publication. The legal basis is Art. 6(1)(f) GDPR. In accordance with Art. 21(1) GDPR, you can raise an objection to this at any time without stating the reasons for doing so. You can do this, for example, by sending an e-mail to datenschutz@sew-eurodrive.de. If you have raised an objection, we will try to make you unrecognizable and/or inaudible in the texts and/or images/recordings within one month by pixelating (image, photograph, video) and/or distorting them (voice, sound) and/or deleting the text, provided that this is legally, technically and economically possible and reasonable for us.

We also wish to inform you that we cannot exclude the possibility that press releases/advertising texts or images/recordings that were published on the Internet with your consent or based on our overriding interest, may continue to circulate on the Internet even after they have been deleted or made unrecognizable (for example, by pixelating) by us and the media/portals for which SEW EURODRIVE is responsible. We also cannot exclude the possibility that they may have been previously downloaded, copied and further processed by third parties in their original "uncensored" state.

IX. Data Protection Information for the Use of Microsoft Teams as a Collaboration Platform

Microsoft Teams (hereinafter MS Teams) enables collaboration and communication through virtual teams and channels, message exchange via chat, use of presence information, file exchange and storage as well as web conferencing and voluntary recording of images and sound - e.g. for documentation, learning and training purposes. The following data can be processed:

  • name, first name
  • display name / username
  • username, UserID / Meeting-ID
  • (preferably business) e-mail address and telephone number, if applicable
  • date and content of chat and video chat messages
  • documents sent and shared via the platform
  • external image and appearance (face, body, facial expressions, gestures, body movements, gait, etc.), provided that the video camera is activated and released
  • profile picture, if you use a profile picture
  • spoken words, voice and language, provided you have activated your microphone and / or provided that you have spoken in the meeting
  • recording of the meeting in picture and sound, provided that the recording has been activated and consent to the recording has been given in advance
  • pseudonymized diagnostic data (metadata): data required for MS Teams operation as well as product enhancements such as information about the current MS Teams version, operating system version, system crashes. This data is linked to a pseudonymized ID, which Microsoft does not use to identify users, but to check whether, for example, system crashes occurred for one person (one ID) or for 100 people (100 IDs);

You can find here further data that Microsoft might process if you use MS Teams: Microsoft Teams – Privacy - Microsoft Teams | Microsoft Docs

If SEW-EURODRIVE employees or applicants carry out and complete their (professional) correspondence and tasks, e.g. by video conference, the processing is based on Section 26 (1) of the German Federal Data Protection Act (BDSG) in conjunction with the respective applicable company agreement. If the performance of the job or the application in a number of cases requires data transfer to third countries, the legal basis is Art. 6 para. 1 lit. b) DSGVO in conjunction with. Art. 49 (1) lit. b) GDPR.

If employees of SEW-EURODRIVE customers, suppliers, interested parties, other third parties or employees of a company belonging to the global SEW Group, for example, participate in a video conference, the data is processed so that they can perform their job and we can communicate with each other to establish, carry out or terminate the business. The legal basis is Art. 6 para. 1 lit. b) GDPR as well as Art. 6 para. 1 lit. f) GDPR. If, in a number of cases, data must be transferred and transfered to third countries for the purpose of performing the job and correspondence, Art. 49 (1) (b) and (c) DSGVO are also relevant.

If the video conference is to be recorded, e.g., to allow those who could not participate in the live event to view it afterwards or for learning and training purposes, SEW-EURODRIVE will obtain the consent of the users by recording the consent of the users/participants verbally or expressed by other actions at the beginning of the recording. The legal basis is Articles 6, paragraph (1) letter a) and 7 GDPR as well as 49, paragraph (1), letter a) GDPR if the data is transferred to third countries.

Access to this information is granted to persons who, for example, participate in a videoconference and/or to whom a recording of the videoconference is available, as well as, if applicable, the employees of SEW-EURODRIVE and Microsoft Corporation and Microsoft Ireland Operations Ltd., to the extent that they are responsible for the provision and support of MS Teams.

MS Teams is cloud-based. We have entered into a data processing agreement with Microsoft. Microsoft's data centers are located in Amsterdam (Netherlands) or within the EU. Since the above-mentioned pseudonymized diagnostic data (metadata) could be transferred through and from you to Microsoft Corporation in the USA, EU standard contractual clauses have been concluded with Microsoft Corporation. Furthermore, Microsoft has adopted additional technical and organizational protective measures to safeguard data transfers from and to the USA. Moreover, Microsoft ensures that law enforcement authorities will not be granted access to the information described unless a law permits or expressly requires them to do so.

SEW-EURODRIVE does not delete contents and documents of the chats as well as the published contributions in teams and channels unless the users instruct SEW to delete these contents and documents. In addition, users can delete their content and documents in chats, channels and teams themselves.

If the MS Teams account is deleted, the associated account login data as well as the contents and documents of the account (document storage, e-mail inbox) will be permanently deleted after 60-90 days in accordance with Microsoft standards, unless further processing is required in individual cases to fulfill legal retention obligations/periods. SEW-EURODRIVE points out that even after the deletion of an individual account, the contents and documents of the chats as well as the contributions in the team rooms and channels will continue to be available to the existing users with whom the departing person has exchanged via the platform in their individual storage.

If the users have consented to the creation and storage of a recording, the data will be deleted within one month after withdrawal, unless SEW-EURODRIVE is legally obligated to further processing or the rights of third parties prevent the deletion of the entire recording, e.g. the rights of the other participants.

In all other respects, reference is made to the data protection information of MS Teams: Microsoft Teams – Privacy - Microsoft Teams | Microsoft Learn

X. Data protection information regarding the use of Cisco Webex

With Cisco Webex, we can discuss, talk, and conduct virtual meetings anywhere around the world, regardless of location, via video conference and chat. For this purpose, the following information from and/or about you is processed on the premises in our data center and, in some cases, in the cloud data centers of the provider:

  • Surname, first name
  • User name, user ID
  • Business e-mail address and, if applicable, telephone number; if necessary, role in the company
  • Date and all textual content in video chat messages, such as files (type, name, size), (external) links, read confirmation (depending on configuration)
  • The spoken conversation during the video conference
  • External appearance (face, body)
  • Voice and language
  • Name of the end device, GPS data, IP address, operating system, MAC address, time zone, activity logs

In individual cases, it is possible that video conferences may be recorded, e.g. for learning and training purposes and/or for persons who cannot participate in the video conference LIVE. We shall record only if all participants have given their consent (separately) prior to the recording. Such a consent is also recorded.

If you, as SEW employees, conduct a video conference to perform and complete your professional correspondence and tasks, or participate in such a conference as an applicant without the video conference being recorded, the processing is performed in accordance with Art. 6(1)(b) of the General Data Protection Regulation (GDPR) and Art. 26(1) of the German Federal Data Protection Act (BDSG). If the professional activities or the application require data to be transferred to non-EU ("third") countries in a number of cases, the legal basis is Art. 6(1)(b) GDPR in conjunction with Art. 49(1)(b) GDPR.

If you participate in a video conference as an employee of our customers, suppliers, interested parties, or other third parties or as an employee of a company belonging to the worldwide SEW Group, your data will be processed so that you can perform your professional tasks at your employer and so that we can communicate with each other to establish, conduct, or terminate the business. The legal basis in this respect is Art. 6(1)(b) and Art. 6(1)(f) GDPR. If data must be transmitted and exchanged in third countries for the purpose of professional activities and correspondence in a series of cases, Art. 49(1)(b) and (c) GDPR are also relevant.

If the video conference is to be recorded, for example, to enable those who could not attend the live event to be aware of it later or for learning and training purposes, we will obtain your informed consent prior to the recording. The legal basis is Art. 6(1)(a)(7) GDPR and Art. 49(1)(a) GDPR if the data is transferred to third countries.

Access to the data is granted to persons who participate in the video conference and/or who have access to the recording of the video conference, as well as SEW or Cisco employees, as long as and insofar as they are responsible for providing and supporting the video conference systems. We have concluded a data processing agreement with Cisco.

If we conduct video conferences via Cisco Webex, no data is ever transferred to insecure third countries. Cisco's data centers are located in Amsterdam and London. With regard to London (UK), the EU has decided that the UK has an appropriate level of data protection that corresponds to that of the EU. In the event that information is transferred to insecure non-EU countries or there is a possibility that national investigation authorities and secret services could have access to the information from the video conferences, we conclude standard contractual clauses and, if necessary, take additional technical and organizational measures to secure the data transfers. As a precaution, we have concluded the EU standard contractual clauses (2021/914) with Cisco.

The information and data are stored insofar and as long as is necessary to conduct the video conference and/or to comply with any statutory retention obligations. If you have consented to the production and storage of the recording for a limited or unlimited period of time, we shall delete the data after the expiry of this period or within one month after your revocation, unless we are legally obliged to further processing or third-party rights are opposed to the deletion of the entire recording, e.g. the rights of the other participants. If it is not possible for us to delete, for example, your voice and/or your external appearance on a recording, we shall attempt to pixelate the voice and/or your image, unless this is not legally, technically, and/or economically possible and/or reasonable for us.

XI. Video Surveillance Data Protection Information Notice

In order to protect visitors, employees and equipment from damage to life, limb, health, property and possessions caused by unauthorized third parties, we monitor the plant site as well as business and operating premises at designated locations by means of video cameras with video recordings. The following information may be processed here:

  • Exterior appearance (e.g., hair color, eye color, face shape, body, clothing, other visible exterior features, visual and walking aids);
  • Body language and posture (e.g., gait, facial expressions, gestures, agility).

Everything is recorded without sound.

The plant security may access the recordings. The recordings are usually stored for a maximum of 96 hours.

In the event of a suspicion of serious breach of duty (under labor or civil law), administrative offense or crime, the responsible managers, the responsible employees in the legal and HR departments, the works council’s members and the data protection officer may also access and analyze the recordings. Should there be a suspicion of a crime, the recordings may be forwarded to the competent investigation authorities. In such cases, it may be proportionate and justified to store and process the recordings for more than 96 hours, i.e. until the matter has been clarified and closed.

The legal basis is Article 6(1)(f) GDPR. Protection of persons and property (prevention and prosecution) represent our legitimate interests.

Articles 6(1)(b), 88(1) GDPR in conjunction with the applicable works agreement also apply to SEW employees.

XII. Your rights as the data subject

As a data subject, you have various rights. You can find general contact details and the contact details of our data protection officer at the start of this website. The relevant chapters in the text of this data protection information describe the solution most suited to you for exercising your rights.

Every data subject is entitled to the following rights:

  • Right of access (Article 15 GDPR)
  • Right to rectification of incorrect data (Article 16 GDPR)
  • Right to erasure (Article 17 GDPR)
  • Right to restriction of processing of personal data (Article 18 GDPR)
  • Right to data portability (Article 20 GDPR)
  • Right to lodge a complaint with a supervisory authority (Article 77 GDPR).

You can object to the processing of personal data for promotional purposes – including the analysis of customer data – or the dissemination to third-parties for promotional purposes at any time without providing a reason.

Furthermore, every data subject is entitled to a general right to object (see Article 21(1) GDPR). In this case, the objection to data processing must be justified. If the data is processed with your consent, you may revoke this consent at any time with immediate future effect. Revoking your consent does not affect the legality of the data processing that occurred with your consent until the time of revocation.

Last modification: 07/2023