Toggle Nav
Contact
en English
My Cart
  • Sign in
    • Search
    • Compare Products
    Menu
    Account
    Language
    en English

    Privacy Statement

    DR. JOHANNES HEIDENHAIN GmbH is pleased about your interest in our company and products. The protection of your personal data is important to us, and we want you to feel secure when visiting our website. 

     

    § 1: Information concerning the collection of personal data 

    (1) The following provides information about the collection of personal data during the use of our website. Personal data are all data that are related to you personally, such as your name, address, e-mail addresses and user behavior.

    (2) The controller pursuant to Article 4, Paragraph 7 of the EU General Data Protection Regulation (GDPR) is:

    DR. JOHANNES HEIDENHAIN GmbH
    Dr.-Johannes-Heidenhain-Straße 5
    83301 Traunreut, Germany
    Tel.: +49 8669 31-0
    E-mail: info@heidenhain.de 
    (View our legal notice: https://www.heidenhain.com/legal-notice)

    You can contact our data protection officer at:  

    DR. JOHANNES HEIDENHAIN GmbH
    Datenschutzbeauftragte
    Dr.-Johannes-Heidenhain-Straße 5
    83301 Traunreut, Germany
    E-mail: datenschutz@heidenhain.de

    (3) If we rely on contracted service providers for individual functions of our offerings, or if we wish to use your data for advertising purposes, then we will inform you in detail below about the respective activities.

    The rights of data subjects are set forth in § 2 "Your rights.”

     

    § 2: Your rights

    (1) You have the following rights vis-à-vis ourselves with regard to the personal data concerning you:
    •    Right of access (Article 15 of the GDPR)
    •    Right of rectification (Article 16 of the GDPR)
    •    Right of erasure (Article 17 of the GDPR)
    •    Right to restriction of processing (Article 18 of the GDPR)
    •    Right to portability (Article 20 of the GDPR)
    •    Right to object to data processing (Article 21 of the GDPR)
    •    Right to withdraw consent (Article 7, Paragraph 3 of the GDPR)

    (2) Please submit any queries regarding your rights as a data subject using the contact information provided in § 1. You may submit your queries by mail, e-mail or phone.

    (3) You also have the right to submit a complaint to a data protection supervisory authority regarding our processing of your personal data. The data protection supervisory authority responsible for us is:

    Bayerisches Landesamt für Datenschutzaufsicht [Bavarian State Office for Data Protection Oversight]
    Promenade 27
    91522 Ansbach, Germany

    § 3: Collection of personal data when you visit our website

    (1) If you use the website for informational purposes only, meaning that you are not registering or otherwise transferring information to us, then we collect only the personal data that your browser transfers to our server. If you wish to view our website, then we collect the following data, which we require for technical reasons in order to display our website to you and ensure stability and security (the legal basis is Article 6, Paragraph 1, Letter (f) of the GDPR):
    – IP address
    – Date and time of the query
    – Time zone difference relative to Greenwich Mean Time (GMT)
    – Content of the query (specific page)
    – Access status/HTTP status code
    – Data volume transferred in each case
    – Website from which the request originates
    – Browser
    – Operating system and its user interface, and
    – Language and version of the browser software

    (2) If you register on our platform and/or conclude any further contract with us via the platform, then we will process the data required for the conclusion, performance, or termination of the contract with you. This includes:
    •    Company name (required)
    •    Home page
    •    VAT identification number (required)
    •    HEIDENHAIN customer number
    •    Street address (required)
    •    Postal code (required)
    •    City (required)
    •    Country (required)
    •    Business phone number (required)
    •    Job title
    •    Salutation
    •    Full name (required)
    •    Personal phone number (required)
    •    Billing and shipping address
    •    E-mail address (required)
    •    Billing and payment information
    •    Information regarding placed orders

    We will pass on information regarding your shipping address to logistics companies and shipping partners commissioned by us. To ensure that the delivery of goods is in accordance with your wishes, we will provide, if necessary, your e-mail address and, if needed, your telephone number to the logistics company and/or shipping partner that we have commissioned to handle the delivery. The logistics company and/or shipping partner may contact you in advance in order to arrange the delivery details with you. The relevant data will be passed on solely for the given purposes and deleted after successful delivery, unless our service providers are obligated by law to retain such data.

    The legal basis for this is Article 6, Paragraph 1, Letter (b) of the GDPR, meaning that you provide us with the data based on the given contractual relationship (e.g., maintaining a customer/user account, processing a contract of sale) between yourself and HEIDENHAIN. In the event that you purchase from us, we are also obligated, due to legal requirements within the German Civil Code (BGB), to send an electronic order confirmation (Article 6, Paragraph 1, Letter (c) of the GDPR).
     
    (3) In addition to the abovementioned data, cookies are stored on your computer when you use our website. Cookies are small text files that are stored, under assignment to the browser you are using, on your hard drive. Through cookies, certain types of information flow to the entity that places them (in this case, to us). Cookies cannot execute programs or transfer viruses to your computer. Their purpose is to make internet offerings overall more user-friendly and more effective.

    (4) Use of cookies

    a) This website uses the following types of cookies. Their scope and principle of operation are explained below:

    – Transient cookies (see b)
    – Persistent cookies (see c).

    b) Transient cookies are automatically deleted when you close the browser. Transient cookies especially include session cookies. Session cookies store what is called a session ID, with which different queries of your browser can be assigned to the session, thereby enabling your computer to be recognized when you return to our website, in order, for example, to prevent you from needing to reregister every time you change pages. Session cookies are deleted when you log out or close the browser.

    c) Persistent cookies are automatically deleted after a specified time, which may vary depending on the cookie. How long the cookie remains on your device depends on the duration or expiration date of the respective cookie, and on your browser's settings. You can delete the cookies in your browser’s security settings at any time. 
    The website uses these cookies to remember your information and settings the next time you visit it. As a result, you can access the website faster and more easily because you do not need to reset the desired language, for example.
    You can configure your browser settings as you wish and, for example, refuse to accept third-party cookies or any cookies at all. In this case, you might not be able to use all of this website's functions. For more information, see our Cookie settings.

    When you visit our website, we will inform you about the types of cookies used by us and will give you the opportunity to agree to or decline individual types of cookies. We load unnecessary cookies only after you have agreed to using the respective types of cookies. 

    To obtain your consent pursuant to Article 6, Paragraph 1, Letter (a) of the GDPR for storing certain cookies in your browser, and to document your consent in compliance with data privacy, our website uses cookie consent technology from Amasty. This technology is provided by Amasty, Softonomika Limited, Clarion Business Centre, Office 208, Afroditis 25, Nicosia 1060, Cyprus. A data processing agreement was concluded with Amasty in accordance with Article 28 of the GDPR.

    If you visit our website, then, in your browser, an Amasty cookie is stored that saves your granted or withdrawn consent. 

    The recorded data are stored until you ask us to delete them, until you delete the Amasty cookie yourself or until the purpose for storing the data no longer applies. Any legally required storage periods remain unaffected. For more details about the data processing performed by Amasty, visit: https://amasty.com/privacy-policy.html?_gl=1*bprpb5*_up*MQ..*_ga*MTUwNzk1NjM5MC4xNzM0MzQ2NzYx*_ga_R3HWQ50MM4*MTczNDM0Njc2MC4xLjEuMTczNDM0Njc2MC4wLjAuMTkzNDE0Nzgz

    Amasty cookie consent technology is used for obtaining the consent legally required for the use of cookies. The legal basis for this is Article 6, Paragraph 1, Letter (c) of the GDPR.

    § 4: Additional functions and offerings of our website

    (1) Along with the purely informational use of our website, we offer various services that you can use based on interest. To do this, you will usually need to provide additional personal data, which we will use in order to provide the respective service and to which the abovementioned data processing principles apply. Details regarding the type and extent of the data for the respective processing activities, processing purpose, legal basis and storage duration are set forth in the following privacy statement. 

    (2) We may also pass on your personal data to third parties if we offer marketing campaigns, prize drawings, the concluding of contracts or other similar services in collaboration with partners. Details regarding the type and extent of the data for the respective processing activities, processing purpose, legal basis and storage duration are set forth in the following privacy statement.

     

    § 5: Recipients and categories of recipients 

    (1) As a part of our activities and services, we may need to share the personal data we have stored about you with natural persons, legal persons, or other entities. If relevant, we conclude data processing agreements with our service providers. These agreements ensure that the service providers are permitted to process personal data only in the manner that we have explicitly instructed them. We also ensure that these service providers have taken the necessary technological and organizational measures to process your data securely and to save your personal data only as long as is actually necessary. External service providers who may receive personal data usually fall under the following categories of recipients:
    -    Credit institutions and providers of payment services for invoices and for the processing of payments (online payment service providers)
    -    Parcel shippers
    -    IT service providers and cloud providers for maintaining our IT infrastructure and for the management of files 
    -    Service providers for the optimization of online offerings
    -    Organizers of sales promotions, such as special offers or prize drawings of selected partners
    -    Debt collection service providers and lawyers for the collection of debts and the legal enforcement of claims. If, in the event of debt collection, your personal data (customer data, contact data, payment agencies, point of use, and data concerning the debt) are transferred to a debt collection service provider, then we will notify you about the intended data transfer in advance  

    For the purposes and to the extent required for conducting our business activities, we transfer personal data to our HEIDENHAIN Corporate Group companies.

    (2) If data are processed in countries outside of the EU, then we ensure that your personal data are processed equivalently to the European level of data protection. In the absence of a decision by the European Commission about the country, we will transfer data solely to service providers from third countries that provide appropriate safeguards pursuant to Article 46 of the GDPR (generally, EU standard contractual clauses). In cases in which this cannot be ensured, not even through the EU standard contractual clauses, we strive for further-reaching arrangements and assurances on the part of the recipient in the respective country.

     

    § 6: Contacting us/ Inquiring about products

    (1) The information you provide when contacting us (e.g., by e-mail or using the contact form) is processed for the purpose of handling your query and any follow-up questions that may arise. The contact form is an additional service provided by us and serves our legitimate interests in enabling you to contact us quickly and easily (cf. Article 6, Paragraph 1, Letter (f) of the GDPR).

    (2) The personal data we collect within this context are deleted when the matter about which you contacted us has been fully resolved and there is no reason to expect that this specific instance of contacting us will become relevant again in the future, unless storage of the data is required by law.

    (3) Requests for contact and product queries on the part of persons outside the European Union (EU) will be forwarded to the appropriate subsidiary. If personal data are sent to non-European countries, then all requirements of Article 44 ff. of the GDPR necessary for secure transfer are complied with. We accordingly transfer personal data only to third countries that have an adequacy decision in accordance with Article 45 of the GDPR, or to a subsidiary with which standard contractual clauses have been concluded in order to be able to ensure protection equivalent to the level of European data protection.

     

    § 7: Use of our webshop, and ordering

    If you would like to place an order on our webshop, then concluding the contract requires that you provide the personal data needed by us in order to process your order. Requested information required for the processing of the contract is specially indicated as such. All other requested information is voluntary. We will process the data you have provided to us in order to process your order. When we deliver the goods to you, we will pass on your data to the commissioned shipping company to the extent necessary for delivery. The legal basis for this is Article 6, Paragraph 1, Letter (b) of the GDPR. The failure to provide these data may make it impossible to complete the order.  

     

    § 8: Newsletters

    (1) We send out newsletters, e-mails and other electronic notifications containing marketing information. Our newsletter contains information about our products, offerings, promotions and company. The following information regards the content of our newsletter as well as the procedures for registration, shipping, statistical analysis and your rights to object.

    (2) We use a logged double opt-in procedure for our newsletter registration. This means that, after registration, you will receive an e-mail in which you will be asked to confirm your registration. This confirmation is necessary so that nobody can register with an e-mail address that is not their own. Registrations for the newsletter are logged for providing proof of the registration process in accordance with legal requirements. This includes storing the time of registration, the time of confirmation, and the IP address. Any changes to your data stored at the shipping service provider are also logged. The purpose of this procedure is to verify your registration and, if necessary, to uncover any possible misuse of your personal data.

    (3) In order to sign up for the newsletter, it is sufficient if you provide your e-mail address. The provision of other data is voluntary and is used in order to address you personally. After your confirmation, we will save your e-mail address for the purpose of sending you the newsletter. The sending of the newsletter and the measurement of success are based on your consent pursuant to Article 6, Paragraph 1, Letter (a), and Article 7 of the GDPR. Your entered data will be used for the purposes of personalizing the newsletter and will not be passed to third parties.

    (4) You can revoke your consent to receiving the newsletter at any time and unsubscribe from the newsletter. You can declare your revocation by clicking the link included in each newsletter e-mail, by sending an e-mail, or by sending notification to the contact information provided in the legal notice.

    (5) We use the provider Adobe Commerce to send the newsletter. To view the data privacy policy of the shipping service provider and other data protection details, visit: https://www.adobe.com/privacy.html 

     

    § 9: Google reCAPTCHA 

    1) We use Google reCAPTCHA (hereinafter: “reCAPTCHA”) on our websites. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). For all information about the extent of data processing, the legal basis, and the duration of storage during the use of cookies, view our Cookie settings.

    (2) The purpose of reCAPTCHA is to determine whether the data entered on our websites (e.g., information entered into a contact form) is being provided by a human user or by an automated program. To determine this, reCAPTCHA analyzes the behavior of website visitors based on a variety of parameters. This analysis starts automatically as soon as a website visitor enters the site. For this analysis, reCAPTCHA evaluates a variety of information (e.g., IP address, session duration, or cursor movements performed by the user). The data tracked during such analyses are forwarded to Google. The reCAPTCHA analyses run entirely in the background. Website visitors are not alerted that an analysis is underway.

    (3) This data processing is performed on the basis of your consent that you grant when opening the contact form through the cookie banner, pursuant to Article 6, Paragraph 1, Letter (a) of the GDPR.

    (4) Within the scope of use of reCAPTCHA, data may be sent to Google. For this case, we have concluded a data processing agreement and the EU standard data protection clauses with Google. In addition, Google is certified in accordance with the EU-U.S. Data Privacy Framework. Google LLC, domiciled in California, United States, and possibly U.S. authorities can access the data stored at Google. For more information, view the Google Privacy Policy.
     

    § 10: Online presences on social media sites and portals

    (1) We maintain online presences in the social networks and platforms stated below. From a data protection perspective, we and the platform operators are therefore joint controllers (Article 26 of the GDPR). If possible, we have concluded a contract regarding joint responsibility (see below). Our corporate presences on social media portals are a means of communicating with customers, interested parties and users, and they serve marketing and market research purposes. If you contact us through our social media channels, then we will process the data that you provide to us, along with the data that are required for processing the query (Article 6, Paragraph 1, Letter (b) of the GDPR). The processing of further data is performed pursuant to Article 6, Paragraph 1, Letter (f) of the GDPR, based on a legitimate interest in direct communication with users and in the optimization of the design of our online presences. If you grant your consent to the operators of the respective social media platforms (e.g., via an opt-in checkbox), then processing will be performed in accordance with Article 6, Paragraph 1, Letter (a) of the GDPR. You can withdraw your consent from the provider of the respective platform at any time with future effect.  

    On the social media platform IndustryArena, corporate profiles can be created, and blog articles can be written and uploaded. IndustryArena also includes a forum for interacting with users.

    (2) When you open our social media pages, your user data are recorded and provided to us by the provider. The exact types of data differ from provider to provider but usually encompass the following information:

    -    Followers: Number of followers and stored profiles; information regarding increases and trends over a defined period.

    -    Reach: Number of persons who see a specific post; number of interactions on a post. Based on this information, it can be determined which content is more popular in the community than other content.

    -    Ad performance: How many people were reached by a post or a paid ad, and how many have interacted with it?

    -    Demographics: Average age of the visitor, as well as gender, place of residence, language.

    (3) Because our social media channels are operated by the providers of the respective social networks, these providers may potentially also use your personal data. We have no influence on this usage. This often involves the recording of your IP address, the creation of statistical evaluations, and the processing of further information that is stored in the form of cookies. These data are also often used to show you interest-based advertisements both on and outside of the platforms. As a profile operator, we have no influence on advertisement generation or appearance and can neither deactivate this function nor prevent this processing of data. To the extent possible, we have linked all other data privacy information of the platform operators below.

    (4) The assertion of rights of data subjects and requests for information can most effectively be made directly with the providers of the platforms because they alone have access to your data and can take immediate action. If our cooperation is required for this, then we will support you as needed in enforcing your rights as a data subject.   

    (5) The providers of the networks we use are listed below. For more information about the terms of use and data protection of the respective platform, as well as detailed information regarding further data processing and the respective possibilities for objection, please refer to the pages of the providers at:

    Instagram (Meta Platforms, Inc., represented by Meta Platforms Ireland Limited, Block J, Serpentine Avenue, Dublin 4, Ireland)
    http://instagram.com/legal/privacy/ 
    https://www.facebook.com/business/gdpr  
    https://www.facebook.com/privacy/policy/?entry_point=data_policy_redirect&entry=0  
    Agreement on joint responsibility pursuant to Article 26 of the GDPR: 
    https://www.facebook.com/legal/controller_addendum

    LinkedIn (LinkedIn Ireland, Privacy Policy Issues, Wilton Plaza, Wilton Place, Dublin 2, Ireland).
    Privacy policy: https://www.linkedin.com/legal/privacy-policy.
    Opt-out link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.   
    Agreement on joint responsibility pursuant to Article 26 of the GDPR:  
    https://legal.linkedin.com/pages-joint-controller-addendum 

    Xing (New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany): https://privacy.xing.com/en 
    Agreement on joint responsibility pursuant to Article 26 of the GDPR: Not offered. 

    YouTube (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland): https://policies.google.com/privacy?hl=en&gl=de.
    Agreement on joint responsibility pursuant to Article 26 of the GDPR:  https://support.google.com/analytics/answer/9012600?hl=en 

    IndustryArena (IndustryArena LLC, represented by IndustryArena GmbH, Katzbergstraße 3, 40764 Langenfeld, Germany) https://en.industryarena.com/privacy.
    Agreement on joint responsibility pursuant to Article 26 of the GDPR: Not offered. 

     

    § 11: Other possibilities for interaction

    (1) As an interested party, you can continue to contact us through various online forms. These forms cover the following topics: Customer service, product query, advisory services query, trade press and general query. We collect the following data for the purpose of processing your query: name, address, country, company information, telephone number, e-mail address, and other data that may be relevant for processing your query on an individual basis.

    (2) The information you provide when contacting us is processed for the purpose of handling your query and any follow-up questions. The legal basis for this is Article 6, Paragraph 1, Letter (f), of the GDPR. The personal data collected by us in this context will be deleted when your reason for contacting us has been fully resolved, and when it is unlikely that this specific instance of contacting us will become relevant again in the future, unless there are any conflicting statutory retention requirements.

     

    § 12: Google Ads

    (1) Google Ads is an advertising system of the company Google LLC: Advertisers can use it to place ads primarily based on search results during usage of Google's services. For complete information about the extent of data processing, the legal basis and the storage duration when cookies are used, please refer to our Cookie settings.

    (2) Google Ads uses personal data for the personalization of advertisements and cookies, as well as for personalized and non-personalized advertising. In addition, locally stored tags are collected.

    (3) The purpose of data collection and processing is advertising that is personalized and tailored to the customer. The legal basis for this is your consent pursuant to Article 6, Paragraph 1), Letter (a) of the GDPR.

    (4) Google Ads belongs to Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. For more information, please see the Google Privacy Policy.

     

    § 13: Use of  Google Analytics 4

    If you have given your consent, then Google Analytics 4, a web analysis service from Google LLC, will be used on the website. The controller for users in the EU/EEA and Switzerland is Google Ireland Limited, Gordon House, 4 Barrow Street, Dublin 4, Ireland ("Google”). The Legal basis for this data processing is your consent pursuant to Article 6, Paragraph 1, Letter (a) of the GDPR and §25, Paragraph 1, Sentence 1 of the German Federal Telecommunications Digital Services Data Protection Act (German abbreviation: TDDDG). 

    (2) Google Analytics uses cookies that enable the analysis of your use of our websites. The information about your use of this website, collected by means of these cookies, is usually sent to a Google server in the U.S. and stored there. 

    In Google Analytics 4, the anonymization of IP addresses is enabled by default. Due to IP anonymization, your IP address will be truncated by Google within the member countries of the European Union or in other member states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the U.S. and truncated there. According to Google, the IP address transferred by your browser within the scope of Google Analytics will not be combined with other data from Google. During your visit to the website, your user behavior will be tracked in the form of "events." Events may include the following:

    -    The opening of pages
    -    The first visit to a website
    -    The beginning of session
    -    Your click path and interaction with the website
    -    Scrolling (whenever a user scrolls to the end of the page (90%))
    -    Clicking of external links 
    -    Internal searches
    -    Interaction with videos
    -    File downloads
    -    Seeing/clicking on adds
    -    Language setting

    Other collected information:

    -    Your approximate location (region)
    -    Date and time of the visit
    -    Your IP address (in truncated form)
    -    Technical information about your browser and the end devices you use (e.g., language setting, screen resolution)
    -    Your internet provider
    -    The referrer URL (via which website / means of advertising you arrived at this website)

    (3) On behalf of the operator of this website, Google will use this information to evaluate your usage of the website and to prepare reports on website activities. The purpose of the reports prepared by Google Analytics is to analyze the performance of our website.

    (4) The recipients of the data may be the following:

    -    Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (as a data processor pursuant to Article 28 of the GDPR)
    -    Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA
    -    Alphabet Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA

    It cannot be ruled out that United States officials have access to the data stored at Google.

    (5) The European Commission adopted its adequacy decision for the United States on July 10, 2023. Google LLC is certified in accordance with the EU-U.S. Data Privacy Framework. Because Google servers are spread out around the world and the transfer of data to third countries cannot be fully ruled out, we have also concluded the EU standard contractual clauses and a data processing agreement with the provider.

    (6) The data sent by us and tied to cookies will be automatically deleted after 14 months. The maximum duration of Google Analytics cookies is two years. The deletion of data whose storage duration has been reached is performed automatically once per month.

    (7) You are entitled to revoke your consent with future effect at any time by opening the cookie settings and changing your selection. The legal basis for the consensual processing of data until revocation remains unaffected by this.

    You can also prevent the storage of cookies from the outset via the relevant setting in your browser software. If you configure your browser such that all cookies are rejected, then the functionality of this and other websites may be limited. You can also prevent the collection of data that are generated by the cookie and related to your usage of the website (including your IP address) by Google and the processing of these data by Google as follows:

    a.) By not granting your consent for the setting of the cookie, or
    b.) By downloading and installing from here the browser add-on for deactivating Google Analytics.

    For more information, please refer to the Terms of Service and the Privacy Policy of Google Analytics.

     

    § 14: Google Tag Manager

    (1) We use the Google Tag Manager (GTM) from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (Google). We use this tool to organize the scripts used on our page and to check when they are executed. The purpose of GTM is the centralized configuration and management of the data collection. This service also allows website tags to be managed. GTM does not set any cookies itself but rather only tags; nor does it collect personal data. Under certain circumstances, however, GTM may cause the triggering of other tags that record personal data. In this case, the data are passed on but are not collected or stored. For more information about data privacy with Tag Manager, please visit this site

    Any possible data processing via GTM takes place on servers in data centers within the European Union. Unfortunately, when Google products are used, it cannot be ruled out that at least metadata and diagnostic data are sent to the United States. 

    We have concluded a data processing agreement, including the EU standard data protection clauses, with Google pursuant to Article 28 of the GDPR. In addition, Google is already certified under the new Transatlantic Data Privacy Framework, which legally protects the transfer of data to the United States. For more information, please visit this site.

    (2) We use GTM on the basis of a legitimate interest pursuant to Article 6, Section 1, Letter (f) of the GDPR. If other services used through GTM require consent pursuant to §25, Paragraph 1 , Sentence 1 of the TDDDG, then we will use them only if you have granted consent via the cookie banner. For more information about the legal basis and the storage duration, visit our Cookie settings

    (3) Google processes a large number of other personal data items for its own purposes. We have no influence on this data processing by Google. To the extent that Google processes personal data in connection with legitimate business purposes, Google is an independent controller for such data processing activities and, as such, is responsible for complying with all applicable data protection regulations. If you require information about the data processing performed by Google, please view the relevant statement from Google: https://policies.google.com/privacy?hl=en 

     

    § 15: Google Analytics Remarketing

    (1) Our website uses the features of Google Analytics Remarketing combined with the cross-device capabilities of Google AdWords and Google DoubleClick. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. For complete information about the extent of data processing, the legal basis and the storage duration when cookies are used, please refer to our Cookie settings.

    (2) This functionality makes it possible to link target audiences created with Google Analytics Remarketing to the cross-device capabilities of Google AdWords and Google DoubleClick. Personalized, interest-based marketing messages that have been tailored to you based on your prior surfing and usage behavior on one of your end devices (e.g., a cell phone) can thereby be displayed on another one of your end devices (e.g., a tablet or PC). To support this functionality, Google Analytics collects Google-authenticated IDs of users. These IDs are temporarily linked to our Google Analytics data to define and create audiences for cross-device ad promotion.

    (3) The legal basis for this data processing is your consent provided via the cookie banner, pursuant to Article 6, Paragraph 1, Letter (a) of the GDPR. You may revoke your consent with future effect at any time by opening and changing your cookie settings. You can also prevent the storage of cookies by configuring the proper setting in your browser software, but you may then not be able to use all the functions of this website. You can also prevent Google’s collection of the cookie-generated data related to your use of the website (including your IP address), as well as the processing of these data by Google, by either withholding your consent to having the cookie placed or by permanently opting out of cross-device remarketing/targeting by turning off personalized advertising in your Google account; to do so, follow this link: https://www.google.com/settings/ads/onweb/.

    (4) The recipient of the data is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, as the data processor. For this reason, we have concluded an order processing agreement and the EU standard data protection clauses with Google. Google LLC, domiciled in California, United States, and possibly U.S. authorities can access the data stored at Google. 

    (5) For more information, please refer to the Google Privacy Policy

     

    § 16: Google Looker Studio

    (1) Google Looker Studio is a free tool for creating reports using various sources of data. Google Looker Studio can draw on data collected by Google products such as Google Analytics and Google Ads (referred to as Google Connectors). For more information about Google Connectors, please refer to the Google Privacy Policy.

    (2) The purpose of the tool for online marketing is a clear presentation in the form of report creation pursuant to Article 6, Paragraph 1, Letter (b) of the GDPR. For complete information about the extent of data processing, the legal basis and the storage duration when cookies are used, please refer to our Cookie settings.

    (3) Use of third-party providers: Along with Google Connectors, Google Looker Studio can pass on data for processing in Google Looker Studio, including data of third-party providers, via an API programmed with Google Apps Script.

    (4) Google Data Studio belongs to Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. For more information, please refer to the Google Privacy Policy.

     

    § 17: Membership in the TNC Club

    (1) To become a member of the TNC Club, you, as an authorized representative of your company, must be registered at https://www.tnc-club.com/membership/become-a-member. For more information, please refer to the participation conditions for the TNC Club of DR. JOHANNES HEIDENHAIN GmbH. The fields marked with an asterisk in the registration form are mandatory; all other information is voluntary.

    (2) We process the data you provide as part of the registration process for the purpose of performing the contract, pursuant to Article 6, Paragraph 1, Letter (b) of the GDPR. For Premium memberships, we also process information about payment methods based on Article 6, Paragraph 1, Letter (b) of the GDPR. In addition to the data processing activities required for performing the contract, we use your voluntarily provided data for the duration of your membership based on your granted consent, pursuant to Article 6, Paragraph 1, Letter (a), for the following purposes:
    •    Provision of the TNC Club newsletter
    •    Invitation to workshops, training courses, and trade shows (if there is a regional connection with the member)

    (3) Your data are deleted when your membership ends. If legally required storage periods prohibit deletion, then we will limit data processing and set the data in our CRM to inactive.

    § 18: SendGrid

    For implementing the registration process and, if needed, for further e-mail correspondence, we use the SendGrid external e-mail delivery service. The service provider is the American company Twilio Inc., 889 Winslow St, Redwood City, California 94063, USA. Twilio Inc. is certified under the EU-U.S. Data Privacy Framework and has thereby obligated itself to comply with the high data protection standards of Europe. We have also concluded a data processing agreement with the service provider.