1. Information about the collection of personal data
(1) In the following, Chromsystems Instruments & Chemicals GmbH (hereinafter referred to as “Chromsystems”) informs you about the collection of personal data upon use of this website. Personal data are defined as all data which can be attributed to your person, e.g. name, address, e-mail address, user behaviour.
(2) The Controller in terms of Article 4 (7) of the EU General Data Protection Regulation (GDPR) is Chromsystems Instruments & Chemicals GmbH, Am Haag 12, 82166 Gräfelfing/Munich, Germany, E-mail: firstname.lastname@example.org (see Imprint).
The Chromsystems Data Protection Officer is available to answer your questions about the processing of your personal data by e-mail, email@example.com, or by post with the addition “The Data Protection Officer” in the address.
(3) When you contact Chromsystems by e-mail or via the contact form, the data you have provided (your e-mail address and, where applicable, your name and your telephone number) will be stored by Chromsystems for the purpose of responding to your enquiry. The data collected in this context are deleted once storage is no longer required; if there is a statutory duty to retain the data, processing will be restricted.
(4) If Chromsystems wishes to use commissioned subcontractors for individual functions of this service or to use your data for commercial purposes, detailed information about the respective processes is provided below. The fixed criteria for storage periods are likewise stated below.
2. Your rights
(1) You have the following rights in your relationship with Chromsystems with regard to the personal data concerning your person:
– Right to information,
– Right to correction or erasure,
– Right to limit processing,
– Right to object to processing,
– Right to data portability.
(2) You also have the right to complain to a data protection supervisory authority about the processing of your personal data by Chromsystems.
The designated data protection supervisory authority is Bayerisches Landesamt für Datenschutzaufsicht, Promenade 27 (Schloss), 91522 Ansbach, Germany, Telephone: +49 (0) 981 53 1300, Fax: +49 (0) 981 53 98 1300, E-mail: firstname.lastname@example.org
3. Collection of personal data upon visiting this website
(1) If you are using the website only on an informational basis, i.e. you do not register or otherwise transmit information to Chromsystems, Chromsystems will only collect the personal data transmitted to the server by your browser. If you wish to view the website, Chromsystems collects the following data, which are technically required in order to display this website to you and ensure stability and security (the legal basis is Article 6 (1) (f) GDPR):
– IP address
– Date and time of access
– Time zone difference to Greenwich Mean Time (GMT)
– Content of request (specific page)
– Access status/HTTP status code
– Amount of data transferred
– Website from which the request is made
– Operating system and its user interface
– Language and version of browser software.
(2) In addition to the aforementioned data, cookies are stored on your computer when you use this website. Cookies are small text files which are stored on your hard drive and allocated to the browser used by you and through which the agency which sets the cookie (in this case Chromsystems) is provided with particular pieces of information. Cookies cannot execute applications or transfer viruses to your computer. Their purpose is to make the online service generally more user-friendly and effective.
a) This website uses the following types of cookies, the scope and functioning of which are explained below:
– Transient cookies (see b)
– Persistent cookies (see c).
b) Transient cookies are automatically deleted when you close your browser. This particularly includes session cookies. These store a so-called session ID, through which different requests by your browser may be allocated to a single session. This enables your computer to be recognised when you return to this website. Session cookies are deleted when you log out or close the browser.
c) Persistent cookies are deleted automatically after a pre-set period, which may differ depending on the type of cookie. You may at any time delete cookies in your browser’s security settings.
d) You may configure your browser settings according to your preferences and, for example, reject the acceptance of third-party cookies or all cookies. This may mean that you will not be able to use all functions of this website.
4. Further functions and services of this website
(1) Alongside the purely informational use of this website, Chromsystems offers a number of different services which you may use if they are of interest to you. For this purpose, you will normally have to supply some additional personal data which Chromsystems will use to provide the respective service and to which the aforementioned principles of data processing apply.
(2) Chromsystems uses external service providers for some parts of the processing of your data. These providers have been carefully selected and engaged by Chromsystems, are bound to instructions and are monitored regularly.
(3) Furthermore, Chromsystems may provide your personal data to third parties if participation in promotions, contract conclusions or similar services of Chromsystems are offered in conjunction with associates. You will receive detailed information on this when you supply your personal data, or in the service description below.
(4) If these service providers or associates are domiciled in a state outside the European Economic Area (EEA), Chromsystems will inform you of the consequences of this fact in the service description.
5. Objection or revocation of consent to the processing of your data
(1) If you have given your consent for your data to be processed, you may revoke it at any time. Such a revocation affects the lawfulness of processing of your personal data once you have declared it to Chromsystems.
(2) If the processing of your personal data is based on a weighing up of interests, you may object to the processing. This is the case particularly if the processing is not required to fulfil a contract with you, which is explained by Chromsystems in each case in the following description of functions. If you wish to declare such an objection, Chromsystems requests that you stipulate the reasons why you wish no processing of your personal data to take place. In the event of a justified objection, Chromsystems will investigate the circumstances and either cease or adjust data processing, or notify you of mandatory reasons meriting protection, due to which the processing must be continued.
(3) You may, of course, at any time object to the processing of your personal data for the purposes of advertising and data analysis. Please use the following contact details to inform Chromsystems of your objection to advertising:
Chromsystems Instruments & Chemicals GmbH
Am Haag 12
82166 Gräfelfing/Munich, Germany
Telephone: +49 89 18930-0
Fax: +49 89 18930-299
6. Use of the online shop
(1) When you place an order in the Chromsystems online shop, you must provide the personal data which Chromsystems needs to implement the order in order for a contract to be concluded. Information strictly required for contract implementation is marked as compulsory; the provision of further information is voluntary. Chromsystems uses the data you have provided to implement your order. For this purpose, your payment data may be transferred to the company bank. The legal basis for this is Article 6 (1) (b) GDPR.
Chromsystems may also process the data you have provided to inform you of further interesting products in its product portfolio, or send you e-mails containing technical information.
(2) Due to provisions of commercial and tax law, Chromsystems is under obligation to store your address, payment and order data for a period of ten years. However, after two years, Chromsystems restricts the processing of this data, i.e. your data will only be used to comply with the statutory obligations.
(3) The ordering process is encrypted by TLS technology to prevent the unauthorised access of third parties to your personal data, particularly financial data.
(1) If you would like to register on the Chromsystems website, you must provide your e-mail address, all relevant business details and a password of your choice. Chromsystems uses a double-opt-in procedure for registration, i.e. your registration is only complete once you have confirmed your registration by clinking on the link in the confirmation e-mail sent to you for this purpose. If you do not confirm registration within 72 hours, your registration is deleted from the Chromsystems data bank. Provision of the aforementioned data is compulsory; all other data may be provided on a voluntary basis.
(2) When you register, Chromsystems stores the data required for contract performance, including details of the payment method. Furthermore, Chromsystems stores the data you have provided voluntarily for the period of your use of the portal. You may manage and edit all details in the secure customer area. The legal basis for this is Article 6 (1) (f) GDPR.
(3) In order to prevent the unauthorised access of third parties to your personal data, particularly financial data, the connection is encrypted by TLS technology.
(1) With your consent, you may subscribe to the Chromsystems newsletter. The goods and services advertised are specified in the declaration of consent.
(2) Chromsystems uses a double-opt-in procedure for newsletter subscription. This means that following your registration for subscription Chromsystems will send you an e-mail to the e-mail address provided in which you are asked to confirm that you wish to receive the newsletter. If you do not confirm your subscription within 72 hours, your information will be blocked and deleted after one month. In addition, Chromsystems stores the IP addresses used by you in each case, and the time of registration and confirmation. The purpose of this procedure is to be able to prove your registration and investigate and solve any potential misuse of your personal data.
(3) The only mandatory information for the sending of the newsletter is your e-mail address. Where applicable, the provision of further, separately marked details is voluntary and is used to enable us to address you personally. Following your confirmation, Chromsystems stores your e-mail address for the purpose of sending you the newsletter. The legal basis for this is Article 6 (1) (a) GDPR.
(4) You may at any time revoke your consent for the newsletter to be sent and unsubscribe from the newsletter. You may declare revocation by clicking on the link provided in each newsletter e-mail, by e-mail to email@example.com, or by a message to the contact details included in the Imprint.
(5) Please note that we analyse your user behaviour when we send newsletters. For this purpose, the e-mails sent contain so-called web beacons or tracking pixels, which consist of a one-pixel image file stored on our website. For our analysis we link the data specified in paragraph 3 and the web beacons with your e-mail address and an individual ID.
Links contained in the newsletter likewise contain this ID.
The data collected in this way inform us of the time you read our newsletter, which links you click on in the newsletter, and very generally track the user behaviour of the users of our website.
You may object to this tracking at any time by e-mail to firstname.lastname@example.org. The information is stored for as long as you are subscribed to the newsletter. Following unsubscription we store the data purely for statistically purposes and anonymously.
Furthermore, the tracking described above is not possible if you have disabled the display of images in your e-mail application by default. In this case the newsletter will not be fully displayed and you may not be able to use all functions. If you manually cause the images to be displayed, tracking will be enabled as described above.
9. Use of Google Analytics
(1) This website uses Google Analytics, a web analysis service of Google Inc. („Google“). Google Analytics uses „Cookies“, which are text files placed on your computer, to allow the website operator to analyse how users use the site. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. However, if IP anonymisation is activated on this website, Google will reduce your IP address within Member States of the European Union or in other states party to the Agreement on the European Economic Area beforehand. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of Chromsystems, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide the website operator with other services related to website and Internet use.
(2) The IP address transmitted by your browser in the context of Google Analytics is not merged with other Google data.
(4) This website uses Google Analytics with the extension “_anonymizeIp()”. This means that IP addresses are processed further in a shortened version, which excludes the possibility of attribution to a particular individual. If the data collected about you is attributable to your person, this attribution is therefore immediately excluded and the personal data therefore immediately deleted.
(5) Chromsystems uses Google Analytics in order to be able to analyse use of and continually improve this website. The statistics gained enable Chromsystems to improve its services and design them in a manner which is of more interest to you as the user. For the exceptional cases in which personal data is transferred to the USA, Google has committed itself to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework. The legal basis for the use of Google Analytics is Article 6 (1) (f) GDPR.
(6) Details of the third-party provider: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.
Privacy Statement: https://policies.google.com/privacy.
(7) This website also uses Google Analytics to enable cross-device analysis of user streams, conducted through a user ID. You may deactivate the cross-device analysis of your usage in your Google account under “My data”, “personal data”.
10. Use of Google Ads
(1) We use the services of Google Ads in order to use advertising measures (so-called Google Ads) on external websites to draw attention to our attractive products. We are able to ascertain the success of individual advertising measures in relation to the data of the advertising campaign. Our aim is to display advertising to you which is of interest to you, to design our website in a way that ensures you find it interesting and to achieve a fair charging structure for advertising.
(2) These advertising measures are supplied by Google via so-called ad servers. For this purpose, we use ad server cookies, which enable us to evaluate particular parameters of success evaluation, such as display of advertisements or clicks by users. If you have reached our website through a google advert, Google Ads will set a cookie in your computer. These cookies usually lose validity after 30 days and are not designed to identify you personally. The information generally stored in relation to the cookie comprises analysis values such as the unique cookie ID, the number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (marking to the effect that the user does not wish to be approached again).
(3) These cookies enable Google to recognise your internet browser. If a user visits particular pages of the website of an Ads customer and the cookie set on his or her computer has not yet expired, Google and the Ads customer are able to see that the user has clicked on the advertisement and been transferred to this page. Each Ads customer is allocated a different cookie. Cookies may therefore not be traced via the websites of Ads customers. We do not ourselves collect and process any personal data in the context of the aforementioned advertising measures. We are merely provided with statistical analyses by Google. These analyses allow us to evaluate which of our advertising measures have been particularly effective. We do not receive any other data resulting from the use of these advertising measures; in particular, we are not able to identify users by way of this information.
(4) Due to the marketing tool used, your browser will automatically establish a direct connection with the servers of Google. We have no control over the scope and further use of data which are collected by Google via the use of this tool, and therefore inform you merely in accordance with our state of knowledge: By including Ads Conversion, Google receives information to the effect that you have accessed the respective part of our online presence or have clicked on an advertisement by us. If you are registered for a Google service, Google may attribute the visit to your account. Even if you are not registered with Google and/or are not logged in there is a possibility that the provider will learn and store your IP address.
(5) You can prevent participation in this tracking process in a number of ways: a) by configuring your browser software settings; the rejection of third-party cookies will, in particular, prevent the receipt of any third-party advertisements; b) by deactivating cookies for conversion tracking by configuring your browser to block cookies from the domain “www.googleadservices.com”, https://www.google.com/settings/ads; note that these settings are deleted when you delete your cookies; c) by deactivating the interest-specific advertisements of providers who are members of the “About Ads” campaign via the link https://www.aboutads.info/choices; note that these settings are deleted when you delete your cookies; d) by permanent deactivation in your Firefox, Internet Explorer or Google Chrome browsers under the link https://www.google.com/settings/ads/plugin. Please note that in this case you may not be able to make full use of all functions of this service.
11. Use of Google Web Fonts
Chromsystems embeds fonts („Google Fonts“) that are being offered by Google LLC., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA („Google“). When you open a page, your browser will load the necessary Web Fonts into your browser cache, in order to show texts and fonts correctly. For this purpose, your browser has to establish a connection to the Google server. Hereby, Google gets knowledge that via your IP address the Chromsystems site has been opened. The use of Google Web Fonts takes place for the benefit of a consistent and appealing presentation of the online-services of Chromsystems. This represents a legitimate interest according to Art. 6 (1) f GDPR. In case your browser does not support Web Fonts, your computer will use a standard font.
The data protection policy is accessible here: https://policies.google.com/privacy
If you do not want this, you can reach the opt-out here: https://adssettings.google.com/authenticated.
12. Use of Google reCAPTCHA
In order to protect input forms on our site, we use the “reCAPTCHA” service of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter “Google.”
reCAPTCHA is used to check whether the data entered on our website (such as on a contact form) has been entered by a human or by an automated program. To do this, reCAPTCHA analyses the behavior of the website visitor based on various characteristics. This analysis starts automatically as soon as the website visitor enters the website. For the analysis, reCAPTCHA evaluates various information (e.g. IP address, how long the visitor has been on the website, or mouse movements made by the user). The data collected during the analysis will be forwarded to Google.
Data processing is based on Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in protecting its site from abusive automated crawling and spam.
https://policies.google.com/privacy and https://www.google.com/recaptcha
13. Use of Use of Usercentrics Consent Management Platform
– Compliance with legal obligations
– Storage of consent
– Local storage
– Consent "Yes" or "No"
– Log file data (IP (anonymised)
This list represents all (personal) data that is collected by or through the use of this service.
– Date and time of visit
– Device information
– Browser Information
– Anonymized IP address
– Opt-in and opt-out data
In the following the legal basis for the processing of personal data required by Art. 6 para. 1 s. 1 GDPR is listed.
– Art. 6 (1) (c) GDPR
Location of Processing
Duration to store the data
The revocation certificate of a previously given consent will be kept for a period of three years. On the one hand, storage is based on our accountability according to Art. 5 para. 2 GDPR. This obliges the compliance with the processing of personal data according to the General Data Protection Regulation. On the other hand, storage in the regular limitation period according to § 195 BGB of three years. This limitation period begins with the end of the year in which the claim arose (§ 199 BGB). Consequently, the three-year limitation starts at the end of 31.12. and ends three years later on 31.12., 24.00.
Data Protection Officer
The e-mail address of the data protection officer of the processing company is email@example.com
Further Information and Opt-Out