Free phone service number  USA: +1 800 783 2280  /  Canada: +1 800 783 2280

 Privacy Policy

Privacy Policy

In this Privacy Policy we aim to inform you of which personal data we process when you visit our website and what your rights are. We therefore request that you read through the following explanations carefully.

Personal data means all information relating to an identified or identifiable natural person. This includes your name, address and communication data or your e-mail address.

Processing means any operation or set of operations which is performed on personal data or on sets of personal data, both with or without automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

Data subject means each identified or identifiable natural person whose personal data is processed by the controller.

Controller means the natural or legal person, public authority, agency or other body that, alone or jointly with others, determines the purposes and means of the processing of personal data.

User covers all categories of data subject affected by data processing. This includes our business partners and other visitors to our website.

The terms we use are supplemented by the definitions set out in Article 4 of the General Data Protection Regulation (GDPR).

1. Name and address of the controller


CERATIZIT S.A.
101, route de Holzem
L-8232 Mamer

E-mail: esolutions@ceratizit.com
Phone: +352 31 20 85-1
Fax: +352 31 19 11

Share Capital: EUR 17.700.000,00

Registered in the Granduchy of Luxembourg
Luxembourg Register of Commerce
Register number: B-4610

Operating Licence Number 736
Ministry of the economy of the Grand Duchy of Luxembourg
19-21 Boulevard Royal
L-2449 Luxemburg

VAT identification number: LU194170-61

2. Data protection responsibility


All questions on data protection can be addressed to: datenschutz@ceratizit.com or using our postal address with the addition of "FAO Data Protection ".

3 Processing of personal data


3.1 Visits to our website


3.1.1. Scope of data processing

When you visit our website, your browser transmits certain data to our web server for technical reasons. This information comprises the following data (known as "server log files"):

-IP address
-Date and time of the request
-Time and zone difference from Greenwich Mean Time (GMT)
-Content of the request (specific page)
-Operating system and its access status/HTTP status code
-The volume of data transferred
-Website from which the request is received ("referrer URL")
-Browser used, as well as the language and version of the browser software

3.1.2 Purpose of data processing

It is necessary to store this data in log files in order to safeguard website functionality. We use it to optimise the website and ensure that our IT systems remain secure.

3.1.3. Legal basis for processing processing

We collect this data on the basis of our legitimate interest within the context of Article 6(1f) GDPR, in order to display our website and guarantee your security.

3.1.4. Storage period

For security reasons (e.g. for clarifying misuse or acts of fraud), information in the log files is stored for a maximum of 14 days and is then erased. Data that must be stored for longer, such as for evidence purposes, is exempted from erasure until the incident in question has been definitively resolved.

3.1.5. Options for objecting and erasure of data

For technical reasons, the collection of data for the purpose of providing the website and its subsequent storage in log files is essential for the operation of the website. Consequently, the user does not have the option to object.

3.2 Cookies


3.2.1 Scope of data processing

Our website uses cookies. Cookies are small text files that are stored on your computer when you access our website. Cookies do not harm your computer and do not contain any malware, such as viruses. Cookies contain a unique string of characters that allow your browser to be uniquely identified when it requests access to the website again in future. Some elements of our website require the requesting browser to be identified after moving to a new page.

This does not work by association with you personally, but rather by assigning an identification number to the cookie ("cookie ID"). This cookie ID is not linked with your name, IP address or similar data that would enable the cookie to be linked to you.

This website uses transient and persistent cookies.

a) Transient cookies are automatically deleted when you close your browser. These primarily include session cookies. These store a session ID, which is used to assign different requests from your browser to the session as a whole. This means that your computer can be recognised when you return to our website. Session cookies are deleted when you log out or close your browser.

b) Persistent cookies are automatically deleted after a specified time period, which may vary depending on the cookie. You can delete the cookies at any time in the security settings of your browser.

3.2.2.Purpose of data processing

We use cookies to design our website in an attractive and user-friendly way, to improve it and to speed up enquiries.

Some elements of our website require the requesting browser to be identified after moving to a new page. In these cases, it is necessary for the browser to be recognised after accessing a new page.

3.2.3. Legal basis for the data processing

Article 6(1f) GDPR provides the legal basis for the processing of personal data using cookies that are necessary from a technical perspective.

3.2.4 Storage period

Session cookies are deleted as soon as the browser is closed.
Persistent cookies are automatically deleted after a specified time period.

3.2.5. Options for objecting and erasure of data

As the user, you have complete control over the use of cookies. By modifying the settings of your Internet browser, you can ensure that cookies are never stored on your device or are automatically deleted at the end of your browsing session. To do so, select "Do not accept cookies" in your browser’s settings. In Microsoft Internet Explorer, select "Extras > Internet Options > Privacy > Settings"; in Firefox, select "Open menu > Options > Privacy & Security > Cookies and Site Data"; if you are using a different Internet browser, please check your browser's help section for instructions on how to block and delete cookies. However, please note that if you block or delete cookies, you may not be able to use of all the features on this website.

3.3 User Account


You can create a user account in our E-Techstore via the registration function. To ensure registration is successful, all the data requested during the registration process must be entered. After the registration you will receive an e-mail to activate your user account. The data is used solely to provide and manage your user account. The legal basis of the data processing is the consent given by you as set out in Art. 6 (1) lit. a GDPR.

You have the possibility to request the deletion of your user account at any time. Please contact us with this request under (esolutions@ceratizit.com). Your user account data will be stored until its deletion as per your request.

3.4 Processing of orders


Through your user account you are able to place orders at E-Techstore. The order will be linked to the personal data of your user account. The processing of this data is fundamentally necessary to be able to clearly identify you as our customer, to process and fulfil your order and for invoicing purposes. Pursuant to Art. 6 (1) lit. b GDPR, the data processing is required for the processing of your order and for the mutual fulfilment of obligations arising from the purchase contract. The personal data collected by us for the processing of your order will be stored until the end of the statutory tax period and until all commercial storage obligations have been met, and will then be deleted.

A transfer of your personal data relating to your orders to third parties is made exclusively to those service partners involved in the execution of the contract, such as the logistics company commissioned with the delivery and the credit institution responsible for payment matters. However, in cases where your personal data is transferred to third parties, the scope of the data transmitted is limited to the minimum amount of data required for this purpose.

3.5 Web analytics Matomo


On this website, we use the web analysis software Matomo (www.matomo.org), a service of the provider InnoCraft Ltd., 150 Willis St, 6011 Wellington, New Zealand, ("Matomo") based on our legitimate interest in the statistical analysis of user behaviour for optimisation and marketing purposes pursuant to Art. 6 (1) lit. f GDPR to collect and store data. We use the "Privacy Manager" plug-in to anonymise the IP address. From this data, pseudonymised user profiles can be created and evaluated for the described purpose. Therefore, cookies can be used. Cookies are small text files stored locally in the cache of the site visitor's browser. The cookies enable, among other things, the browser to be recognised. The data collected by Matomo (including your pseudonymised IP address) will be processed on our own servers.

The information generated by the cookie in the pseudonymised user profile is not used to personally identify the visitor to this website and is not merged with the visitor’s personal data.

If you do not agree with the storage and evaluation of this visit data, you may object to the storage and use at any time by clicking below. In this case, a so-called opt-out cookie is stored in your browser, with the result that Matomo does not collect any session data. Please note that the complete deletion of your cookies will result in the opt-out cookie also being deleted and therefore may require further reactivation.

4 Data security


We take technical, organisational and contractual measures to safeguard the security of data processing in accordance with the state of the art. In doing so, we ensure that the provisions of data protection law, and the General Data Protection Regulation in particular, are complied with and that the data we process is protected against destruction, loss, modification and unauthorised access. These security measures include the encrypted transmission of data between your browser and our servers. Please note that SSL encryption for online data transfers is only active if the padlock symbol appears in the menu bar of your browser window and the address begins with "https://". SSL (Secure Socket Layer) protects data transmission against illegal access by third parties using encryption technology. If this option is not available, you may also decide not to send certain data via the internet.

All information that you send to us is stored and processed on our servers in the European Union.

5 Disclosure of data to third parties amd third-party providers


Data is only transferred to third parties in accordance with the statutory requirements. We only disclose user data to third parties if, for example, this is necessary for contractual purposes, on the basis of Article 6(1b) GDPR, or due to our legitimate interests, in accordance with Article 6(1f) GDPR, in the profitable and efficient operation of our business activities.

In the context of commissioned data processing in accordance with Article 28 GDPR, we engage sub-contractors for the provision of our services, in particular for the operation, maintenance and hosting of the website. We have taken suitable legal precautions and appropriate technical and organisational measures in order to provide protection for personal data in accordance with the applicable statutory provisions.

6 External services and content on our website


We use external services and content on our website. We do so on the grounds of our legitimate interests in the analysis, optimisation and profitable operation of our online content within the context of Article 6(1f) GDPR.

Where such a service is used, or third-party content is displayed, communication data such as the date, time and IP address is exchanged for technical reasons between your browser and the provider in question. This includes your IP address in particular, which is required to display content in your browser.

It may be the case that the provider of the services or content in question processes your data for further internal purposes. Given that we have no influence on the data collected by third parties and its subsequent processing, we are unable to provide binding information about the purpose and scope of the processing of your data.

Therefore, for additional information about the purpose and scope of the collection and processing of your data, please refer to the data protection information supplied by the provider of the services or content that are/is integrated by us who has responsibility under data protection law.

The following list provides an overview of third-party providers, their content and links to their respective privacy policies, which contain further information on the processing of data and your options for objecting.

Maps for route planning purposes from the service "Google Maps" are made available by the third-party provider Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Privacy Policy:
www.google.com/policies/privacy

Opt-out:
www.google.com/settings/ads

7 Your rights


If we process personal data that concerns you, this means that you are a data subject as defined in the General Data Protection Regulation (GDPR), and that you have the following rights regarding us in relation to the personal data in question:

- Right of access (Article 15 GDPR)
- Right to rectification (Article 16 GDPR)
- Right to erasure (Article 17 GDPR)
- Right to restriction of processing (Article 18 GDPR)
- Right to data portability (Article 20 GDPR)
- Right to object to processing (Article 21 GDPR)

You also have the right to lodge a complaint regarding our processing of your personal data with a data protection supervisory authority.

8 Links to other websites


Our website may contain links to other websites and their professional content. These other websites are not controlled by us. You visit these websites at your own risk. CERATIZIT cannot assume responsibility or liability for such other websites and their content, which it hereby excludes, nor for their data protection practices, which it does not certify. We recommend that you familiarise yourself with the privacy policies of these other websites before providing them with information about yourself or carrying out transactions with them.

9 Changes to this Privacy Policy


We reserve the right to make changes to this Privacy Policy in order to update it in line with altered legal situations or in the event of changes to the services or data processing. However, this only applies with regard to clarifications relating to data processing. Where consent is required from the user or elements of this Privacy Policy contain provisions concerning the contractual relationship with the user, these changes will only be made with the user's consent.

Please familiarise yourself with the contents of this Privacy Policy on a regular basis.