You should therefore take note of the following information:
1. Protecting your data is important to us
2. Personal data
3. Specific use
4. Data Transfer
5. Data Retention
6. Data that is collected automatically
7. The use of cookies
8. Tracking services
9. Security
10. General information on external links
11. Changes to the data protection regulations
12. Your rights regarding your personal data
13. Contact Information
1. Protecting your data is important to us
We want you to know that the security of your personal data is important to us and for you to feel secure about how your data is being protected while browsing our internet sites.
The security of your personal data is important to us and as part of our commitment to the protection of any such data held the Company has established a Privacy Programme Governance Team (PPGT), the purpose of which is to provide structure and on-going guidance for compliance consistently across the group.
We want you to be fully informed about the personal data we are collecting and when, and how we use it and to assure you that we have taken technical and organisational measures to ensure that data protection provisions are upheld by both us and also any of our external service providers.
We intend to follow the European Union’s General Data Protection Regulation (“GDPR”). While the GDPR is a data privacy law implemented across all EU member states, which we will fully comply with where applicable, the Company has taken the decision to apply many of the principles of the regulation across the whole global business as a standard of best practice.
2. Personal Data
Generally user information is collected in two ways; information given to us by a user in order to permit the use of services offered by our Sites, and information collected through the use of services offered through our Sites.
Under GDPR, personal data includes the information relating to your identity. You do not have to disclose personal data in order to use all of our internet sites. However, in certain circumstances we will need your name and address, as well as other details, in order to be able to provide you with the services you require.
Details required to provide services may occur, for example when a user wants to access or benefit from the services offered through a Site. Use of services, such as CAD downloads, product configuration, or sample requests requires registration by the user which requires personally-identifying information to complete the registration. Users who do not log on to the Site or choose not to register will be identified by their IP address.
Details required to provide services may occur, for example if you want us to send you information and goods you have ordered, or in order to answer individual queries. Where this is necessary, we will draw your attention to this accordingly. In addition, we only store and process data that you have voluntarily or automatically made available to us and it will be used only for specific purposes which we will inform you of.
In as far as you request services from us, as a rule we will only collect data such as is needed to supply the service. Any information provided by you is done voluntarily. Processing of personal data will only be carried out for the purpose of providing the service you have asked for, and for the maintenance of our own legitimate business interests.
3. Specific use
In accordance with the provisions of the GDPR, we will only collect, process and use the data you make available to us for the purposes communicated to you. Information about children is not knowingly solicited, collected, or used by the organisation. We will not sell or lease your data to third parties with whom we have no service relationship with under any circumstances but the Company may be required to disclose your personal information to third parties in the event that an administrative or court order exists, if it is required for contractual performance or credit protection, if you have given your express consent, and/or to enforce the Terms of Use of this Site.
Both our own employees and the service providers working on our behalf are bound by a duty of confidentiality and to comply with the provisions of the GDPR where applicable. We will not share or sell personal data to any service provider for their use; however, third parties who provide us with services, may use the information in marketing, product development or other business purposes solely for the benefit of us. Additionally, product inquiries may be passed on to third parties with whom we have contractual relationships in order to best respond to a user's product or service inquiry.
In order to access certain areas of some of our websites, and/or request materials, we may ask you to register by providing such information. When you register, you will select a USERNAME and PASSWORD, which we recommend you keep private to ensure that no one can use them in your place. Upon occasion, we may contact you to inquire about your satisfaction with our products and services.
4. Data transfer
Personal data may be stored and processed in other countries within the EU and outside of the EU (including the United States) for specific business purposes.
If you are located in the European Economic Area (EEA): Some non-EEA countries are recognised by the European Commission as providing an adequate level of data protection according to EEA standards.
We implement technical and organisational measures in order to protect any unlawful access or use of your data for any data transfers from the EEA to countries not considered adequate by the European Commission. This also applies to any vendor with whom we share personal data in order to fulfil your request for data and/or services.
5. Data Retention
We will retain Personal Data for as long as needed or permitted in light of the purpose(s) for which it was obtained. The criteria used to determine our retention periods include: (i) the length of time we have an on-going relationship with our customer and provide the Services; (ii) whether there is a legal obligation to which we are subject; or (iii) whether retention is advisable in light of our legal position (such as in regard to applicable statutes of limitations, litigation or regulatory investigations).
6. Data that is collected automatically
The following data will be collected for organisational and technical reasons when you use our internet sites: the names of the pages called up, of the browser being used and of the operating system, date and time of access, the search engines used, the names of downloaded files and your IP address.
We analyse this technical data anonymously and only for statistical purposes, in order to continually optimise our internet presence and to make our online services even more attractive. We will not use any automatically collected information for identification purposes.
7. The use of cookies
When you visit one of our websites, information may be saved on your computer as a "cookie". If you are accessing any of our sites from an EU IP address you will see a message informing you that we use cookies and will be able to see more information by clicking on “show details”.
Cookies are small text files which are sent to your browser by a web server and are saved on your computer’s hard disk. This information means you will be automatically recognised next time you visit our website, so you will find our site easier to navigate. Cookies allow us, for example, to adapt a web site to your interests. Some cookies serve essential functions required for the proper function of the website and others collect aggregate and non-personal information, unrelated to a single, personally identifiable user. Information collected in this way is used by the Company in order to understand the number of users accessing our Site and what information about our services and products is of interest to Site visitors. Information provided by users will be used solely to permit the Company to assess use of its Site, to provide service and user support and otherwise enhance customer service.
Of course, you can visit our website without the use of cookies. If you don’t want us to be able to recognise your computer, you can prevent cookies from being stored on your hard disk by choosing "Do not accept cookies" in your browser settings. To find out how this works, please read the instructions given for your browser. If, however, you do not accept cookies, you may not be able to use all the available functions of our website.
8. Tracking services
Some of our websites use Google Analytics, a web analysis service from Google Inc. (“Google”). Google Analytics uses cookies, text files which are stored on your computer and, which allow an analysis of your use of the website. The information the cookie generates about your use of this website is transferred to and stored on a server operated by Google in the USA. IP anonymisation is enabled for this website, so that the IP addresses of Google users within the Member States of the European Union, or in other Contracting States to the Agreement on the European Economic Area are shortened beforehand. A full IP address will only be sent to a Google server in the USA and shortened there in exceptional cases. Google will use this information on behalf of the operators of this website; to evaluate the use of the website by its users, so as to create reports about website activity and to be able to offer additional services to the website operator relating to website and internet use. The IP address obtained from your browser as part of Google Analytics will not be merged with any other data from Google. You can avoid the installation of cookies by appropriately adjusting your browser software, however, we would like to make you aware of the fact that in this case it is possible you will not be able to use all the functions of this website. You may also install a browser plug-in via Google Analytics.
We may also use other tracking services, such as (but not limited to) Marketo and GeoLocator. These work in a similar way to Google Analytics. If you have any concerns then further information about these can be obtained by e-mailing FOI@touchpointinc.com.
9. Security
We implement technical and organisational measures in order to protect any unlawful access or use of your data.
All our employees and all third parties involved with data processing are bound by an undertaking to handle personal data confidentially.
In the event of personal data being collected and processed, the information shall be transferred in encrypted form, to prevent misuse of the data by third parties. Our security measures are being continually revised in line with technological developments.
All third party contracts in which personal data is shared are properly reviewed to ensure safeguarding of data.
10. General information on external links
Where appropriate, you will find links on our websites to third party internet sites for your information. We have no influence on the content or the design of external pages that are operated by third parties. The content of this privacy statement will not be effective for third party pages. We will only work with third parties that can guarantee GDPR standards. For this reason, please contact the relevant provider for information about their provided data privacy statement.
11. Changes to the data protection regulations
We reserve the right to change these security and data protection measures. In this case, we will also adjust our data privacy notice accordingly. The date at the top of this document indicates when this privacy notice was last revised. Any changes will become effective when we post the revised privacy notice on the Services. Use of the Services following these changes signifies acceptance of the revised privacy notice. If our notice changes we will notify you the next time you visit our website or via email.
12. Your rights regarding your personal data
Depending on your citizenship and/or any local laws, you may have the right to request access to the personal data held on you.
We recognise the rights granted to EU data subjects under GDPR. Those rights include:
- The right to be informed about the collection and use of your personal data;
- The right to access your personal data and if technically possible to have this transferred to another controller;
- The right to have inaccurate personal data rectified, or completed if it is incomplete;
- The right to restrict, or object to processing
- The right to request erasure of your personal data (in certain circumstances);
- The right to lodge a complaint with any supervisory authority.
If you wish to request access/exercise your right of access you will be required to complete a “subject access request form” which can be downloaded by clicking here or if you prefer requested by emailing FOI@touchpointinc.com.
Furthermore, if you are an existing recipient of any marketing information, you can revoke your consent to the collection and storage of your personal data by us at any time by clicking here.
13. Contact Information
If you have any further questions about this policy, your rights or about the processing of your personal details, you can contact our data privacy specialists directly at FOI@touchpointinc.com.
For your protection, we request that all inquiries or complaints be submitted via email to the address listed above. Where necessary, we may ask for additional information to verify your identity before carrying out a request.”