We are committed to safeguarding the privacy of our platform users, namely employees. The protection and security of personal data has the highest priority for us. Castolin Eutectic Group, Gutenbergstrasse 10, 65830 Kriftel, Germany ( E-Mail: [email protected] hereinafter referred to as "we" or "us") therefore strictly complies with the rules of the General Data Protection Regulation (GDPR) and with those of the German Federal Data Protection Act (BDSG). As controllers, in accordance with Art. 4 No. 7 GDPR, with this privacy statement we inform you below as to how we handle your personal data, i.e. which type of data are collected by us and for what purpose they are processed.
What are personal data?
The GDPR sets forth the definition of personal data. As such, it involves any information relating to an identified or identifiable natural person. This includes, amongst others, your real name, telephone number or your date of birth.
Data logging
In general, it is not necessary to provide personal data to use our website. When visiting our website the web server does, however, automatically register so-called log files. The data saved in these files contain, for example, the browser type and version, the operating system used, URL referrer (the site visited previously), IP address of the inquiring computer including the geographical location, access date and time of the server query, duration of your visit and the client’s file request (file name and URL). These data are only collected for statistical purposes. There is no transfer to third parties, for commercial or non-commercial purposes. We undertake no combination of these data with other data from other sources. The collection and processing of these data take place to enable the actual use of the website on the basis of Art. 6 Para. 1 P.1 lit. f) GDPR. Our legitimate interest is the provision and administration of our website with all functionalities.
The data saved in server log files are only stored for a limited period and are automatically deleted at regular intervals after 60 days.
We reserve the right to verify these data at a later date if specific indications regarding an unlawful use have become known to us. This verification only takes place for the disclosure and prevention of an unlawful use of our website on the basis of Art. 6 Para. 1 P. 1 lit. f) GDPR. Our legitimate interest is to guarantee the security of our offer and to prevent any abusive use.
Further collection, processing and use of personal data
We collect or process personal data needed for the creation of your account: name, email address, last login access, member for 'x' months. You can anytime request the deletion of your account. We also track data related to the viewed FARs & TeroLinks, the translated applications, the downloaded PDFs, the most active contributors, the best-rated applications. The purpose of collecting this data is facilitating knowledge-sharing and knowledge-transfer between our subsidiaries, encouraging missing countries to submit their best applications, as well as rewarding the most active service engineers. These statistics about your activity on the website are visible to the Drupal system administrators (corporate Marketing, IT and website development company) and may be shared with the Castolin Eutectic management.
User personal data tracked | Purpose of data tracking |
employee names / user name | User management |
status | To check whether the user is still with the company |
roles | Standard user, Coordinator, Super coordinator, Admin |
country | Needed for statistics |
Application ID | Needed for allocation |
date | How many applications does a user create over a certain time? |
Email-address | For user management and SSO login |
last access | For user management, no activity means we need to check whether they are still employed by the company |
member for x time | Needed for the Hall of Fame (Engineers with most approved FARs for the last 5 years) – for competition and reward Time perspective important |
No of visited FAR's | No per page report to determine popular FARs. These statistics highlight which FARs are most popular in order to replicate and promote best practice solutions to other countries |
visited TeroLinks | No per page report to determine popular TeroLink. These statistics highlight which TeroLink apps are most popular in order to replicate and promote best practice solutions to other countries |
Translated FAR’s | To determine whether more cross-language functionalities must be implemented to make the platform more user-friendly |
Translated Terolinks | To determine whether more cross-language functionalities must be implemented to make the platform more user-friendly |
exported PDF's | Initially limited to 5 documents per user, not anymore |
submitted FAR’s & TeroLinks | For Hall of Fame, gamification and Team Building activity, internal challenges |
Date of revision for FAR | To follow up and see if the repair worked, reminding users to update |
Distributor[1] data tracked are the same as user data | Using the platform as training opportunity Submit FAR’s and TeroLinks applying our products |
[1] Distributors = Licensees (sell and apply Castolin products)
Subscription to notifications
We need a valid email address from you if you subscribe to receive notifications of new applications/repairs, for the approval of a submitted FAR / TeroLink application or comments. You can anytime choose to deactivate these notifications from your user profile.
Cookies
This website uses only technical / necessary cookies and no marketing or statistics cookies. Cookies are small text files that can be used by websites to make a user's experience more efficient. Necessary cookies help make a website usable by enabling basic functions like page navigation and access to secure areas of the website. The website cannot function properly without these cookies.
The law states that we can store cookies on your device if they are strictly necessary for the operation of this site. For all other types of cookies we need your permission.
Data transmissions to third parties
We do not disclose your personal data to third parties without your express consent, provided this is not required for the provision of the service or for the execution of the contract. Accordingly, your data are only transmitted to third parties on the basis of your consent according to Art. 6 Para. 1 P. 1 lit. a) GDPR or for the purposes of contract fulfilment according to Art. 6 Para. 1 P. 1 lit. b) GDPR. Any disclosure to government agencies and authorities with the right to information only takes place within the framework of legal information obligations or if obligated to do so by a legal decision for information. In such a case, the disclosure of your data is required by Art. 6 Para. 1 P. 1 lit. c) GDPR for the fulfilment of a legal obligation to which we are subject.
Insofar as service providers come into contact with your personal data, we have ensured by virtue of legal, technical and organisational measures, as well as regular controls, that the regulations of data protection legislation are complied with.
General duration of storage and removal
We store your personal data as long as required for the fulfilment of the intended purpose (e.g. contract fulfilment, answer to your request) or justified reasons in accordance with Art. 17 Para. 3 GDPR such as legal retention periods with a storage requirement. Insofar as legal retention obligations such as legal tax and trade regulations impede the removal of your personal data, we restrict the processing of your data; you data will then be deleted according to legal regulations.
Security of your personal data
We adopt technical and organisational prevention measures to prevent a loss, misuse or an unauthorised change to your personal data. We save all personal data provided to us on our secure (password and firewall protected) servers. All electronic transactions which you perform with us or which you receive from us are encrypted. Please take into account that data transmission via the internet is not, in itself, completely secure and we are unable to guarantee the security of the data transmitted via the internet. You are responsible for the secrecy of your password and user identification. We will not ask you for the password you used to register with our website services.
Your rights as the data subject
You are given information on the data saved on you by us free of charge at any time without having to justify your reasons. Moreover, you have the right to rectify incorrect data (Art. 16 GDPR), as well as to erase your personal data (Art. 17 GDPR) or to restrict data processing (Art. 18 GDPR). Insofar as the basis for data processing is Art. 6 Para. 1 P. 1 lit. f) GDPR (compliance with legitimate interests), you have the right, according to Art. 21 GDPR, to oppose the processing of your personal data at any time provided that reasons exist which arise from your special situation or if the opposition to data processing is intended for the purposes of direct advertising. In the last case referred to above, you are granted a general right of objection which, without providing reasons, as a result of your special situation, will be implemented by us (Art. 21 Para. 2 GDPR). If you lodge an objection for reasons arising from your special situation, we will cease to process your personal data unless we can provide obligatory reasons worthy of protection for the processing, which prevail over your interests, rights and freedoms, or the processing is used to enforce, exercise or defend legal claims (Art. 21 Para. 1 GDPR).
You can also freely revoke your consent given to us for data collection and use without providing reasons with effect in the future.
Insofar as your provide data, related to you, and we process these data as the result of your consent or for contract performance, you can demand that these data are obtained by you from us in a structured, conventional and machine-readable format or that we transfer these data to another controller provided this is technically possible (so-called right to data portability). Moreover, you have the right to complain to a supervisory authority if you believe that data processing by us violates legal regulations.
For the enforcement of the above listed rights, please refer to our contact address given above or send an email to us, or to our data protection officer.
Our data protection officer
In our company we have appointed internal data protection coordinators and an external data protection officer. They perform organisational and technical measures and ensure that your personal data are properly protected. Please contact the data protection officer at Castolin Eutectic Group for queries on data protection at [email protected].
For postal contact details please use the postal address featured at the top in the introduction.
Changes to this privacy statement
We reserve the right to change the existing privacy statement within the framework of the current legal regulations and to publish an updated version on our website provided this is indicated, e.g. due to new technical developments or changes to the jurisdiction or to our business operation. Therefore, you should check this site from time to time to ensure that you are familiar with our current privacy statement.