Data privacy

Basic principle
NVT AG takes the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection provisions and this privacy policy.

It is ordinarily possible to use our website without supplying personal data. If personal data (such as name, address or e-mail addresses) is collected on our pages, this always occurs on a voluntary basis to the extent possible. Such data is not shared with third parties without your express consent.

We point out that the transmission of data over the Internet (for example, while communicating via e-mail) can have security vulnerabilities. It is not possible to completely protect data against third-party access.

Name and address of party responsible for the processing
The controller in terms of the General Data Protection Regulation, of other applicable data protection laws in the member states of the European Union and of other provisions with a data protection character is:

NVT AG
Rue de Lausanne 29
1110 Morges
Switzerland
Tel.: +41 (0)21 804 80 41
E-Mail: info@nvt-med.com

Name and address of the data protection officer
The data protection officer of the controller is:

Steffen Wacker
E-Mail: privacy@nvt-med.com

Cookies
In order to design the visit to our website attractively and make it possible to use certain functions, we use so-called “cookies” on various pages. These are small text files that are stored on your terminal. Some of the cookies we use are deleted after the browser session ends—in other words, after your browser is closed (so-called “session cookies”). Other cookies remain on your terminal and enable us or our partner enterprises (cookies from third-party providers) to recognize your browser at the next visit (persistent cookies). When cookies are set, they collect and process certain user information on an individual basis, such as browser and location data and IP address values. Persistent cookies are automatically deleted after a predefined period, which can differ depending on the cookie.

Through the storage of settings, cookies partially serve to simplify the ordering process (for example, memorizing the contents of a virtual shopping cart for a later visit to the website). If personal data is also processed through individual cookies that we have implemented, it is processed pursuant to Art. 6(1)(b) GDPR either for the performance of the contract or pursuant to Art. 6(1)(f) GDPR to protect our legitimate interests in ensuring the best possible functionality of the website as well as a customer-friendly and effective design of the visit to the page.

In some circumstances we work with advertising partners, who help us design our Internet presence to be more interesting for you. In this case, cookies of partner enterprises are also stored on your hard drive for this purpose during your visit to our website (cookies of third-party providers). When we work with the aforementioned advertising partners, you are informed individually and separately in the following paragraphs about the use of such cookies and the scope of the information collected in each case.

Server-Log-Files
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type and version
  • Operating system used
  • Referrer URL
  • Hostname of the accessing computer
  • Date and time of the server request
  • Quantity of data sent in bytes
  • Your IP address (in anonymized form, if appropriate)

This data cannot be related to specific persons. This data is not conflated with other data sources. The data is processed pursuant to Art. 6 (1)(f) GDPR based on our legitimate interest in improving the stability and functionality of our website. The data is not shared or used in any other manner. We reserve the right to review this data later if we become aware of concrete indications of unlawful use.

Please keep in mind that you can set your browser to inform you of the setting of cookies and can individually decide on accepting them or can exclude cookies for specific cases or generally. Each browser differs in the way it administers cookie settings. This is described in the help menu of each browser, which explains for you how you can change your cookie settings. You can find them for the particular browsers at the following links:

Internet Explorer:
https://support.microsoft.com/en-us/help/17442/windows-internet-explorer-delete-manage-cookies

Firefox:
https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences

Chrome:
https://support.google.com/chrome/answer/95647?hl=en&hlrm=en

Safari:
https://support.apple.com/en-gb/HT201265

Opera:
https://help.opera.com/en/latest/web-preferences/

Please note that refusal to accept cookies can limit the functionality of our website.

Making contact

Contact form
If you send inquiries to us by a contact form, we store your information from the inquiry form—including the contact data you supply there—for the purpose of processing the inquiry and in case of follow-up questions. We do not share this data without your consent.

The data that is entered into the contact form is thus processed exclusively based on your consent (Art. 6(1)(a) GDPR). You can revoke this consent at any time.

An informal e-mail communication to us is sufficient. The lawfulness of the data processing operations that are completed up to the revocation remains unaffected by the revocation.

Data you entered in the contact form remains with us until you ask us to delete it, you revoke your consent to store it or the purpose of the data storage no longer applies (for example, after completion of the processing of your query). Compulsory statutory provisions—especially retention periods—remain unaffected.

Query by e-mail, telephone or fax
When you contact us by e-mail, telephone or fax, your query, along with all resulting personal data (name, query), is stored and processed by us for purposes of handling your matter. We do not share this data without your consent.

This data is processed based on Art. 6(1)(b) GDPR if your query is associated with the fulfillment of a contract or is required for the performance of pre-contractual activities. In all other cases, the processing is based on your consent (Art. 6(1)(a) GDPR) and/or on our legitimate interests (Art. 6 (1)(f) GDPR) because we have a legitimate interest in the effective handling of the queries that are sent to us.

Data you sent to us via contact requests remains with us until you ask us to delete it, you revoke your consent to store it or the purpose of the data storage no longer applies (for example, after the processing of your matter is completed). Compulsory statutory provisions—especially statutory retention periods—remain unaffected.

Data processing for order handling
To process your order, we work with service providers who assist us, entirely or in part, with the performance of contracts that have been entered into. When you engage us to render a service or to ship goods, your personal data is used without your separate consent only to the extent necessary for rendering the service or performing the contract. This expressly includes the sharing of your data with carriers, credit bureaus or other service companies that are employed to render the service or process the contract.

We share personal data we collect in the course of contract processing with, for example, the carrier that is engaged for the delivery, provided that this is required for the delivery of the goods. We share your payment data with the financial institution we engage in the course of payment processing, provided that such is required for payment processing. The legal basis for the sharing of the data while doing this is Art. 6 (1)(b) GDPR.

We disclose customer accounts and personal data about customers when we are legally required to do so or when such disclosure is required in order to enforce our general terms and conditions of business or other agreements or to protect our rights and the rights of our customers and those of third parties.

Information on the inclusion of videos
We use videos on our website. For the inclusion of our videos, we utilize the capabilities of external third-party providers. The inclusion of videos is technically conditioned on calling up the servers of the providers.

YouTube
This website uses the YouTube embedding function for displaying and playing videos of the provider “YouTube,” which belongs to Google LLC., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”).

Here the enhanced data protection mode is used, which activates storage of user information according to provider information only when the video is played. If the playback of embedded YouTube videos is started, the provider “YouTube” sets cookies in order to gather information on user behavior. According to information from “YouTube,” among other things, they serve to collect video statistics, to improve user friendliness and prevent improper behavior. If you are logged in at Google, your data is directly associated with your account when you click on a video. If you do not wish the video to be associated with your profile at YouTube, you must log out before activating the button. Google stores your data (even for users who are not logged in) as usage profiles and analyzes them. Such an analysis particularly occurs pursuant to Art. 6 (1) (f) GDPR on the basis of the legitimate interests of Google in displaying personalized advertising, in doing market research and/or the needs-oriented design of its website. You have a right to object to the creation of these user profiles; to exercise this right, you must address your objection to YouTube.

Independently from the playback of the embedded videos, every time this website is called up a connection is established with the Google “DoubleClick” network, which can trigger further data processing operations without our influence.

Google LLC, headquartered in the US, is certified for the US-European data protection agreement “Privacy Shield,” which ensures compliance with the level of data privacy in the EU.

You can find further information on data privacy at “YouTube” in the privacy policy of the provider at:
https://policies.google.com/privacy?hl=en&gl=de

Google Analytics
This website uses functions of the web analysis service Google Analytics. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Google Analytics uses so-called “cookies.” These are text files that are stored on your computer to facilitate an analysis of your usage of the website. Information generated by cookies about your use of this website is usually transmitted to a Google server in the United States and stored there.

Google LLC, headquartered in the US, is certified for the US-European data protection agreement “Privacy Shield,” which ensures compliance with the level of data privacy in the EU.

This website additionally uses Google Analytics for a cross-device analysis of visitor influxes, which is performed via a user ID. The first time a page is called up, the user is assigned a unique, permanent and anonymized ID, which is set across multiple devices. This makes it possible to match interaction data from various devices and from different sessions with an individual user. The user ID contains no personal data, nor does it transmit any to Google.

The collection and storage of data through the user ID can be objected to at any time with future effect. To do this, you must deactivate Google Analytics on all systems you use, such as in another browser or on your mobile device.

IP anonymization
We have activated the IP anonymization function on this website. This causes Google to truncate your IP address within member states of the European Union or in other states which are party to the Agreement on the European Economic Area before it is transmitted to the United States. Only in exceptional cases is the full IP address transmitted to a server of Google in the United States and truncated there. In such exceptional cases, the processing occurs pursuant to Art. 6 (1)(f) GDPR. Google will use this information on behalf of the operator of this website to evaluate your use of the website, compile reports about website activities and provide the website's operator further services related to website and Internet usage. The IP address transmitted by your browser as part of Google Analytics is not conflated with other data from Google.

Browser plug-in
You can prevent the storage of cookies by appropriately setting your browser software; in this case, however, please note that you might not be able to fully use all functions offered by this website. In addition, you can prevent data generated by the cookie and relating to your use of the website (including your IP address) from being collected and processed by Google by downloading and installing a browser plug-in from the following link: https://tools.google.com/dlpage/gaoptout?hl=en'

Objection to data collection
As an alternative to the browser plug-in or within browsers on mobile devices, please click on the following link in order to set an opt-out cookie that prevents future collection through Google Analytics within this website (this opt-out cookie functions only in this browser and only for this domain; if you delete your cookies in this browser, you must click this link again): Google Analytics deactivate

You can find further information on Universal Analytics here:
https://support.google.com/analytics/answer/2838718?hl=en&ref_topic=6010376

Contract data processing
We have entered into an agreement on contract data processing with Google and are fully implementing the strict standards of the German data protection authorities in the use of Google Analytics.

Use of Google Maps
On our page, we use the "Google Maps" component of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA (“Google” herein).

Google sets a cookie with each individual call-up of the "Google Maps" component in order to process user settings and data upon the display of the page on which the "Google Maps" component is integrated. This cookie is normally not deleted through closing the browser, but expires after a specific time unless you manually delete it earlier.

To use the functions of Google Maps, it is necessary for your IP address to be stored. This information is generally transmitted to a server of Google in the United States and stored there. The provider of this site has no influence on this transmission of data.

Google Maps is used for the benefit of creating an attractive presentation of our online offerings and to make it easy to locate the places we indicate on the website. This constitutes a legitimate interest in terms of Art. 6 (1) f GDPR.

If you do not agree with such processing of your data, it is possible to deactivate the service of "Google Maps" and to prevent the transmission of data to Google in this way. To do this, you must deactivate JavaScript in your browser. However, we would point out that in this case you will be unable to use “Google Maps” or only to a limited extent.

"Google Maps" and the information acquired through "Google Maps" is used in accordance with the Google Terms of Service
http://www.google.de/intl/de/policies/terms/regional.html

and the Additional Terms of Service for “Google Maps”
https://www.google.com/intl/de_de/help/terms_maps.html.

Rights of the data subject
Applicable data protection law affords you extensive data-subject rights (information and intervention rights) toward the controller regarding the processing of your personal data; we inform you of these rights below:

  • Right to information pursuant to Art. 15 GDPR: You expressly have a right to information about your personal data that we process, the processing purposes, the categories of personal data processed, the recipients or categories of recipients to whom your data was or is disclosed, the planned duration of storage or criteria for its definition, the existence of a right to rectification, erasure or restriction of processing, the right to object to the processing, lodging a complaint with a supervisory authority, the origin of your data if we did not collect it from you, the existence of an automated decision-making process, including profiling and any meaningful information about the logic involved and the implications and intended effects on you of such processing as well as your right to be informed of the safeguards which exist pursuant to Art. 46 GDPR if your data is transmitted to a third country;
  • Right to rectification pursuant to Art. 16 GDPR: You have a right to have, without undue delay, incorrect data that concerns you rectified and/or your incomplete data that is stored with us completed;
  • Right to erasure pursuant to Art. 17 GDPR: You have the right to request that your personal data be erased if the requirements of Art. 17 (1) GDPR exist. However, this right expressly does not exist if processing is necessary for exercising the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defense of legal claims;
  • Right to restriction of processing pursuant to Art. 18 GDPR: You have the right to request that the processing of your personal data be restricted while the accuracy of your data that you have contested is being verified, when you oppose the erasure of your data in view of unlawful processing and instead request that the processing of your data be restricted, when you need your data for the establishment, exercise or defense of legal claims after we no longer need this data for the purpose of the processing or when you have objected for reasons of your special situation, pending verification whether our legitimate grounds are overriding;
  • Right to notification pursuant to Art. 19 GDPR: If you have asserted the right to rectification, erasure or restriction of processing with respect to the controller, the controller is obligated to communicate such rectification or erasure of the data or restriction of processing to all recipients to whom the personal data concerning you has been disclosed, unless this proves impossible or involves disproportionate effort. You have the right to be informed about those recipients.
  • Right to data portability pursuant to Art. 20 GDPR: You have the right to receive your personal data you have provided to us in a structured, commonly used and machine-readable format or to request transmission to another controller as long as this is technically feasible;
  • Right under Art. 7 (3) GDPR to withdraw consents you have given: You have the right to withdraw, at any time with future effect, a consent you once gave for the processing of data. In case of withdrawal, we will erase the data at issue without undue delay, unless a continued processing is legally supportable on the basis of processing without consent. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal;
  • Right to lodge a complaint pursuant to Art. 77 GDPR: If you feel that the processing of personal data concerning you infringes the GDPR, you have—without prejudice to any other administrative or judicial remedy—the right to lodge a complaint with a supervisory authority, in particular in the member state of your habitual residence, your place of work or the place of the alleged infringement.

SSL encryption
This site uses SSL encryption for reasons of security and to protect the transmission of confidential content, such as the queries you send to us as the site operator. You can recognize an encrypted connection by the fact that the browser address line changes from “http://” to https://” and through the padlock icon in your browser line. When SSL encryption is activated, the data you transmit to us cannot be read by third parties.

Right to information, erasure, blocking
You have the right at all times to information, without charge, about your stored personal data, its origin and recipient(s) and the purpose of the data processing as well as a right to have the data rectified, blocked or erased. For this and other questions on the subject of personal data, you may contact us at any time at the address indicated in the Imprint.

Should you have questions that this privacy policy was unable to answer or should you have questions about the processing of your personal data, you can contact our data protection officer, who is also available to respond to requests for information, suggestions or complaints.

Data protection officer:
Steffen Wacker
E-Mail: privacy@nvt-med.com

Data security
We maintain all kinds of security measures in terms of Art. 32 GDPR (technical and organizational measures) for the protection of your personal data. If you should contact us by e-mail, we point out that the confidentiality of the transmitted information is not guaranteed. Under certain circumstances, the content of e-mails can be viewed by third parties. We therefore recommend that you send confidential information to us by conventional mail.

Objection to promotional e-mails
Contact information published for the site notice obligation may not be used to send promotional and informational materials that have not been expressly requested. The operators of the pages expressly reserve the right to take legal steps against unsolicited promotional information, such as in the form of spam.

Right to object
If in the course of a weighing of interests, we process your personal data based on our predominantly legitimate interests, you have the right to object to this processing at any time with future effect for reasons that originate from your special situation.

If you avail yourself of the right to object, we stop processing the affected data. However, we reserve the right to continue processing if we can prove compelling reasons for processing that are worth protecting and outweigh your interests, fundamental rights and freedoms, or if the processing serves the establishment, exercise or defense of legal claims.

If we process your personal data in order to engage in direct advertising, you have the right to object at any time to the processing of personal data about you for purposes of such advertising. You can make the objection as described above. If you avail yourself of the right to object, we stop processing the affected data for purposes of direct advertising.

Duration of the storage of personal data
The duration of the storage of personal data is calculated with reference to the respective statutory retention period (e.g. commercial and taxation-related retention periods). Upon expiration of the period, the corresponding data is routinely erased unless it is still required for contract performance or initiation and/or a legitimate interest in continued storage persists on our part.

Update of the privacy policy
This privacy policy shall be updated if and when NVT AG launches new products or services, changes Internet procedures or if Internet and computer security technology develops. We will publish the changes here.

 

to the information obligations