IPG Photonics Corporation Privacy Notice and Notice at Collection
Your Privacy Is Important
IPG Photonics Corporation (“IPG”, “us”, “we”, or “our”) is committed to protecting your privacy. We’ve prepared this Privacy Notice to inform you how IPG and its U.S. subsidiaries collect, use, disclose, transfer and store your information when you visit our website, purchase or supply products or services, apply for employment or provide personal information to us at events, trade shows or in connection with inquiries for our products or services (collectively, the “Services”).
Notice at Collection
This Privacy Notice includes the Notice at Collection to California residents of the categories of personal information IPG collects, the purposes for which such information is collected or used, whether such information is “sold” or “shared” and how to opt-out of such uses, and how long such information is retained. You can find this information in this Privacy Notice by scrolling below or clicking on the above links.
This Privacy Notice applies to natural persons who are residents in the United States. If you are a resident of the European Union, please see IPG’s Privacy Protection Policy for details on how IPG processes the personal data of website visitors from the EEA. IPG’s Privacy Protection Policy applies to the way we collect and process personal data that is covered by the EU General Data Protection Regulation. For EU residents, IPG’s Privacy Protection Policy will prevail to the extent of any inconsistency with this Privacy Notice.
The Information We Collect
IPG may collect your personal information from you when you browse or register on our website, order IPG products or services, sign up for our updates, request information from us or complete a form online or otherwise when you interact with us online or offline. The categories of information IPG collects depends on how you interact with us, and the requirements of applicable law, as described below.
- We may collect your business contact information, such as your first and last name, title, e-mail address, mailing address, company name, login credentials and/or phone number, as well as your product interests, information relating to your order, such as shipping address, and items purchased.
- When we contact you to participate in surveys and you decide to participate, we may ask you to provide certain information, which may include personal information.
- When you participate in any sweepstakes or contests that we offer, we may collect your personal information you provide us. In some jurisdictions, we are required to publicly share information of sweepstakes and contest winners.
- When we attend or host conferences, trade shows, and other events, we may collect personal information from individuals. We may also personal information from individuals and third parties to assess and pursue potential business opportunities.
- We may also collect certain information automatically about your visit to our websites. This information may include internet protocol (IP) addresses, user settings, MAC address, cookie identifiers, mobile carrier, mobile advertising and other unique identifiers, browser type and version used, internet service provider. We may automatically collect information regarding your use of our Services, such as referring/exit pages that you visit before, during and after using our Services, operating system, or device information, and date/time of access, duration of your visit, and which links you clicked on, the types of content you interact with, the frequency and duration of your activities, and other information about how you use our Services.
- If you order goods or services from us online, we may collect information relating to your order, such as items purchased, name, title, employer, shipping address, data regarding your preferences and account log-in information. Your payment-related information (including card number, expiration date and security code), is collected by IPG’s third-party payment processor when you make a purchase. Your credit-related financial information, if any, is collected and stored by IPG’s financing partner. IPG does not have access to either payment-related or financing-related information.
- We, as well as third parties that provide content, advertising, or other functionality on our Services, also use “cookies” as discussed further below.
- For job applicants to IPG, if you reply to one of IPG’s job openings and opportunities on our Services by submitting your application, CV and/or cover letter to us, we collect the information you voluntarily provide to us which, in addition to the types of information stated above, may include job history, education, gender, disability information, ethnic data, veteran information, contact information, address and citizenship. For California job applicants, please review IPG Applicant/Employee CCPA Notice.
- We may obtain information about you from other sources, including through third-party services and organizations. For example, if you access our Services through a third-party application, such as a third-party login service, or a social networking site, we may collect information about you from that third-party application that you have made available via your privacy settings.
IPG’s Use of Your Information
IPG’s use of your information is limited to our legitimate business purposes that may include:
- Facilitating IPG’s provision of our Services or information you have requested, including offers, quotes and repricing
- Processing and fulfilling orders for IPG’s goods or services
- Personalizing your experience to better respond to your individual needs
- Improving upgrading, or enhancing our Services to provide you with a better experience when you visit us online
- Improving customer service so we can respond to your customer service requests and support needs efficiently
- Improving the safety, functionality and operation of our products
- Administering a contest, promotion, survey or other site feature
- Sending periodic emails to provide you information with your consent, or to respond to your inquiries, requests or questions
- Sending marketing materials to you, provided that IPG has obtained your consent in any jurisdiction where such consent is required
- Direct marketing, research and development (including marketing research), network and information security protection
- Measuring your interest in and engagement with our Services
- Managing your online account and profile
- Facilitating your interactions with third parties
- For processing your job application or inquiry
- Complying with government, national security, public interest, law enforcement requirements, or other legal obligations
- Detecting security incidents, protecting against and preventing fraud, criminal and other illegal activity, and prosecuting those responsible for that activity
- Responding to an emergency where the health or security of an individual may be endangered
- Other purposes upon your request, or as disclosed at the time of collection or otherwise consistent with the above
- Authenticating and verifying individual identities, including requests to exercise your rights under this Privacy Notice; debugging to identify and repair errors with our Services; auditing relating to interactions, transactions, and other compliance activities
- Enforcing our agreements and policies
- Other purposes as requested by you or as permitted by applicable law, including:
- Creating de-identified and/or aggregated information, such as de-identified demographic information, information about the device from which you access our Services, or other analyses we create.
- Marketing and Advertising our Products and Services. We may use personal information to tailor and provide you with content and advertisements. We may provide you with these materials as permitted by applicable law. Some of the ways we market to you include email campaigns, custom audiences advertising, and “interest-based” or “personalized advertising,”. Under certain privacy laws, these advertising activities may be considered a “sale” of personal information, “sharing” of personal information for “cross-context behavioral advertising” and/or “targeted advertising”.
IPG Protects Your Information
IPG uses multiple security measures to maintain the security of your personal information when you place an order or enter, submit, or access your personal information or otherwise interacts with our Services. Unfortunately, no system is 100% secure, and we cannot ensure or warrant the security of any information you provide to us. To the fullest extent permitted by applicable law, we do not accept liability for unauthorized disclosure.
By using our Services or providing personal information to us, you agree that we may communicate with you electronically regarding security, privacy, and administrative issues relating to your use of our Services. If we learn of a security system’s breach, we may attempt to notify you electronically by posting a notice on our Services, by mail, or by sending an email to you.
Retention of Personal Information
IPG retains the personal information it collects as described in this Privacy Notice for as long as necessary to fulfill the legitimate business purposes for which we collected it, provide our Services, resolve disputes, establish legal defenses, conduct audits, pursue legitimate business purposes, enforce our agreements, and comply with applicable laws. Consistent with applicable privacy laws, IPG will delete personal information once we determine it is no longer needed for any of these business or legal purposes.
Cookies are small text files small text files placed in device browsers that store preferences and facilitate and enhance your experience. These files enables the sites’ or service providers’ systems to recognize your browser and capture and remember certain information.
Our uses of these Technologies fall into the following general categories:
- Operationally Necessary. This includes Technologies that allow you access to our Services, applications, and tools that are required to identify irregular website behavior, prevent fraudulent activity, improve security, or allow you to make use of our functionality;
- Functionality-Related Cookies. We may use Technologies that allow us to offer you enhanced functionality when accessing or using our Services. This may include identifying you when you sign into our Services or keeping track of your specified preferences, interests, or past items viewed. You may decline to provide IPG with your personal data or disable cookies at any time. If you do, IPG may not be able to provide you with certain web site functionality or deliver products and services to you. You may also adjust your communication preferences to opt out of any notification lists you are on. Additionally, you may unsubscribe to any email notifications by using the link at the bottom of the email. See “Your Privacy Choices and Rights” below to understand your choices regarding these Technologies.
How IPG Discloses Your Information To Third Parties
IPG does not sell your personal information collected on IPG’s websites to third parties as those terms commonly understood or defined by the California Consumer Privacy Act. IPG may share your personal information with our subsidiaries and affiliates for administrative purposes, including fulfilling our legitimate business purposes. These entities and individuals are bound by confidentiality obligations and are only permitted to use your information in compliance with this Privacy Notice.
IPG may share your information with third parties who provide services or products on IPG’s behalf, or who assist IPG with operating our website, conducting our business, or servicing you. As permitted by law and/or contract, IPG may also share your information in connection with corporate restructuring, mergers, acquisitions, financing due diligence, reorganization, bankruptcy, receivership, purchase, divestitures or other sale of IPG’s assets. IPG’s provision of your personal data to such third parties will, in each instance, be conditioned upon those parties agreeing to keep your information confidential.
We may share your personal information with business partners to provide you with a product or service you have requested. We may also share your personal information with business partners with whom we jointly offer products or services.
We may share your personal information with third-party advertising partners. These third-party advertising partners may set Technologies and other tracking tools on our Services to collect information regarding your activities and your device (e.g., your IP address, cookie identifiers, page(s) visited, location, time of day). These advertising partners may use this information (and similar information collected from other services) for purposes of streamlining your experience and delivering personalized advertisements to you when you visit digital properties within their networks. This practice is commonly referred to as “interest-based advertising” or “personalized advertising.”
We may use third-party application program interfaces (“APIs”) and software development kits (“SDKs”) as part of the functionality of our Services. For more information about our use of APIs and SDKs, please contact us as set forth in below.
IPG may share your information when reasonably required to comply with legal requirements, such as when requested for fraud detection or prevention or when required to satisfy obligations in a legal proceeding. IPG may also disclose your personal information with your consent.
Your Privacy Choices and Rights
The privacy choices you may have about your personal information are determined by applicable law and are described below.
- Email Communications. If you receive an unwanted email from us, you can use the unsubscribe link found at the bottom of the email to opt out of receiving future emails. Note that you will continue to receive transaction-related emails regarding products or Services you have requested. We may also send you certain non-promotional communications regarding us and our Services, and you will not be able to opt out of those communications (e.g., communications regarding our Services or updates to our Terms or this Privacy Notice).
- Text Messages. You may opt out of receiving text messages from us by following the instructions in the text message you have received from us or by otherwise contacting us.
- “Do Not Track.” Do Not Track (“DNT”) is a privacy preference that users can set in certain web browsers. Please note that we do not respond to or honor DNT signals or similar mechanisms transmitted by web browsers.
- Cookies and Interest-Based Advertising. You may stop or restrict the placement of Technologies on your device or remove them by adjusting your preferences as your browser or device permits. Please note that some functions of our website can only be offered if cookies are enabled, such as adopting language settings and remembering keywords. However, if you adjust your preferences, our Services may not work properly. Please note that cookie-based opt-outs are not effective on mobile applications. However, you may opt-out of personalized advertisements on some mobile applications by following the instructions for Android, iOS, and others.
The online advertising industry also provides websites from which you may opt out of receiving targeted ads from data partners and other advertising partners that participate in self-regulatory programs. You can access these and learn more about targeted advertising and consumer choice and privacy by visiting the Network Advertising Initiative, the Digital Advertising Alliance, the European Digital Advertising Alliance, and the Digital Advertising Alliance of Canada. We do not have any business affiliation with these entities and have no responsibility for the effectiveness of their programs or accuracy of their information, which we do not control.
Please note you must separately opt out in each browser and on each device.
Your Privacy Rights. In accordance with applicable law, you may have the right to:
- The Right to Know and Data Portability. You have the right to: know personal information we have collected about you; obtaining access to or a copy of your personal information in a structured, commonly used, and machine-readable format; and (iii) ask us to send that information to another company in a structured, commonly used, and machine-readable format.
- The Right to Delete of your personal information.
- The Right to correct your personal information where it is inaccurate or incomplete.
If you would like to exercise any of these rights, please contact us as set forth below. We will process such requests in accordance with applicable laws.
Your Personal Information Integrity And Access
IPG takes reasonable steps to ensure that personal information is accurate, complete and current.
IPG reserves the right to maintain any personal information that it is required to keep or maintain for compliance purposes or to protect itself or preserve its legal rights under pending, threatened or potential legal action. For more information, please see “Retention of Your Personal Information”.
IPG Does Not Collect Personal Information from Children
IPG does not knowingly collect any information from anyone under 13 years of age. Our website, products and services are all directed to people who are at least 13 years old or older. If you are a parent or guardian and believe your child has provided personal information to us site without your consent, you may contact us as described in below. If we become aware that a child has provided us with personal information, we will delete any personal information we have collected, unless we have a legal obligation to keep it.
IPG’s Supplemental Notice for California Residents
This Supplemental Notice for California Residents only applies to our processing of personal information that is subject to the California Consumer Privacy Act of 2018 (as amended from time to time) (“CCPA”). The CCPA provides California residents with the right to know what categories of personal information IPG has collected about them, whether IPG disclosed that personal information for a business purpose (e.g., to a service provider), whether IPG “sold” that personal information, and whether IPG “shared” that personal information for “cross-context behavioral advertising” in the preceding twelve months. Please note that IPG’s Supplemental Notice for California Job Applicants and Employees is available here.
In compliance with California law, IPG provides California residents with this additional information as described below.
Category of Personal Information Collected byIPG
Category of Third Parties Personal Information is Disclosed to for a Business Purpose
Is the Personal Information Shared with Any Third Parties for Cross-Context Behavioral Advertising?
· Service Providers
· Advertising Partners
Yes, Advertising Partners
Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e))
· Service Providers
· Service Providers
· Advertising Partners
Yes, Advertising Partners
Internet or other electronic network activity
· Service Providers
· Advertising Partners
Yes, Advertising Partners
· Service Providers
Inferences drawn from other personal information to create a profile about a consumer
· Service Providers
Yes, Advertising Partners
The categories of sources from which we collect personal information and our business and commercial purposes for using and disclosing personal information are set forth above in “The Information We Collect”, “IPG Uses of Your Information” and “How IPG discloses Your Information to Third Parties”, respectively. We will retain personal information in accordance with the time periods set forth above in “Retention of Personal Information”.
Your Additional Privacy Rights may include:
The Right to Opt-Out of “Sharing” for “Cross-Context Behavioral Advertising”. California residents have the right to opt-out of the “sale” of their personal information and the “sharing” of their personal information for “cross-context behavioral advertising.” You may opt-out of IPG’s sharing of your personal information for cross-context behavioral advertising by [clicking here].
The Right to Not be Discriminated Against. You have the right to not be discriminated against for exercising your rights under the CCPA.
Verification and Authorized Agents. California residents may exercise any of these rights by contacting IPG at email@example.com or toll free at 833-500-1423. Upon receiving your request and to protect your privacy, IPG will take reasonable steps to verify your identity in compliance with the CCPA before responding to a request. IPG’s verification measures may include, at a minimum, verifying your name, email address, and other account information. You are also permitted to designate an authorized agent to act on your behalf to make a verifiable consumer request related to your personal information. For IPG to verify an authorized agent, you must provide the authorized agent with signed (by you and your designated agent), written permission to make such requests or a power of attorney. We may also follow up with you to verify your identity before processing the authorized agent's request. We will process all requests in a timely manner, in accordance with the CCPA.
“Sales” of Personal Information under the CCPA. For purposes of the CCPA, IPG does not “sell” personal information, nor do we have actual knowledge of any “sale” of personal information of minors under 16 years of age.
Disclosure Regarding Individuals Under the Age of 16. IPG does not have actual knowledge of any “sale” of personal information of minors under 16 years of age. IPG does not have actual knowledge of any “sharing” of personal information of minors.
Accessibility. This Privacy Notice uses industry-standard technologies and was developed in line with the World Wide Web Consortium’s Web Content Accessibility Guidelines, version 2.1. If you wish to print this Privacy Notice, please do so from your web browser or by saving the page as a PDF.
California Shine the Light. The California “Shine the Light” law permits users who are California residents to request and obtain from us once a year, free of charge, a list of the third parties to whom we have disclosed their personal information (if any) for their direct marketing purposes in the prior calendar year, as well as the type of personal information disclosed to those parties.
IPG’s Privacy Contact for Inquiries
IPG is committed to resolving complaints about your privacy and our collection or use of your personal information. To make an inquiry or submit a request, please contact us at:
IPG Photonics Corporation
50 Old Webster Road
Oxford, Massachusetts 01540
Tel: (508) 373-1100
Fax: (508) 373- 1101
Changes to IPG’s Privacy Notice
IPG conducts periodic self-assessments in order to verify that this Privacy Notice is followed within the Company and that it complies with applicable law. If IPG materially updates our Privacy Notice, we will notify you as required by applicable law. You understand and agree that you will be deemed to have accepted the updated Privacy Notice if you continue to use our Services after the new Privacy Notice takes effect.
January 3, 2023
Privacy Protection Policy
IPG Photonics Corporation and its European subsidiaries and affiliates (collectively, “IPG” or “we”) is a corporation headquartered in, Oxford, Massachusetts, USA. IPG values your privacy and has prepared this Privacy Protection Policy to notify you of how we collect and process your personal data when you use our site at https://www.ipgphotonics.com and https://www.ipgphotonics.com/de.
I. Name and address of the responsible person for Europe
IPG Laser GmbH & Co. KG
Tel.: +49(0)2736 4420 - 8100
Fax: +49(0)2736 4420 – 8160
is the responsible person as defined in the EU General Data Protection Regulation (DSGVO) and the national data privacy laws.
Name and address of the responsible person outside of Europe
IPG Photonics Corporation 50 Old Webster Road
Oxford, Massachusetts 01540
Tele: (508) 373-1100
Fax: (508) 373- 1101
is the responsible person outside of Europe.
II. Name and address of the data protection officer
The data protection officer of the responsible person for Europe is:
Hanauer Landstr. 151-153
60314 Frankfurt am Main
Tel: +49 (0) 69 – 94 94 32 410
The data protection officer outside of Europe is:
Global Security Director
IPG Photonics Corporation
50 Old Webster Road
Oxford, MA 01540
III. General information about data processing
1. The extent personal data is processed
We collect and use the personal data of users of our web sites only to the extent that this is necessary for keeping our website, contents and services functioning properly.
Basically, we collect and use our users’ personal data only after they give their consent. An exception to this principle applies in cases where processing the data by statutory provisions is permitted or when obtaining prior consent for actual reasons is not possible.
2. Legal basis for processing personal data
The legal basis for processing personal data is basically based on:
- Art. 6 para. 1 lit. a GDPR upon obtaining the consent of the data subject.
- Art. 6 para. 1 lit. b GDPR for processing operations that serve to fulfill a contract to which the data subject is a party. Included here are processing operations that are necessary to carry out pre-contractual measures.
- Art. 6 para. 1 lit. c GDPR for processing required to fulfill a legal obligation.
- Art. 6 para. 1 lit. d GDPR, if vital interests of the data subject or another natural person require the processing of personal data.
- Art. 6 para. 1 lit. f GDPR, if the processing is necessary to safeguard the legitimate interests of our company or a third party, and the interests, fundamental rights and fundamental freedoms of the person concerned do not outweigh the former interest.
3. Data erasure and storage duration
The personal data of users will be deleted or blocked as soon as the purpose of the storage is no longer applicable. Additional storage may be provided for by European or national legislators through EU regulations, laws or other regulations to which the responsible is subject. Blocking or deleting the data also takes place when a storage period prescribed by the standards mentioned expires, unless there is a need for additional storage of the data for concluding a contract or fulfilling the contract.
IV. Use of our website, general information
1. Description and scope of data processing
Every time our website is accessed, our system automatically collects data and information from the user's computer system. The following information is collected:
(1) The user’s IP address
(2) anonymous geographical location (e.g. city)
(3) Information about the browser type and version used and operating system
(4) Date and time of access and duration of visiting our website
(5) Which links on our pages were clicked on by visitors
(6) Domains from which visitors come to our website
The described data are stored in the log files of our system. This data is not stored together with any other personal user data.
2. Purpose and legal basis for data processing
Our system has to temporarily store user IP addresses to allow us to deliver our website to the user's computer. To do this, the user's IP address must be stored for the duration of the session.
Storage in log files is done to ensure the functionality of the website. In addition, the data is used to optimize the website and to ensure the security of our information technology systems. This data is not evaluated for marketing purposes in this context.
The legal basis for the temporary storage of data and log files is Art. 6 para. 1 lit. f GDPR.
Collecting your personal data to ensure our web presence and storing this data in log files is essential for operating our website. A contradictory possibility of the user therefore does not exist.
3. Duration of storage
Your data will be deleted as soon as they are no longer necessary for purposes relating to your inquiry.
If your data is stored in log files, it will be deleted after no longer operationally necessary. Further storage is possible, whereby in this case, the IP addresses of the users are deleted or anonymized. This means that it is then no longer possible to identify the client who has accessed our website.
The following data is stored and transmitted:
(1) Language settings
(2) Log-in information
(3) Visited pages / topics on the website
The legal basis for processing personal data using cookies is defined in Article 6 (1) lit. f GDPR. The purpose for using technically required cookies is to simplify the use of our website.
We would like to point out that some functions of our website can only be offered if cookies are enabled. This applies to the following applications:
(1) Adopting language settings
(2) Remembering keywords
We do not leverage user data collected by technically required cookies to create user profiles.
See section IX for more information about non-essential cookies.
VI. Your rights/rights of the person concerned
According to the EU General Data Protection Regulation, as an affected party you have the following rights:
1. The right to receive information
You have the right to receive information from us as the person responsible are concerned regarding processing personal data involving you.
In addition, you may request information about the following:
(1) The purpose of data processing
(2) The categories of personal data that are processed
(3) The recipients or categories of recipients to whom the personal data relating to you have been disclosed or are still being disclosed
(4) The planned duration of the storage of your personal data or, if specific information is not available, the criteria for determining the duration of storage
(5) The existence of a right to rectification or erasure of personal data concerning you, a right to restriction of processing by the person responsible or concerned, or a right to object to such processing
(6) The existence of a right of appeal to a supervisory authority
(7) All available information on the source of the data if the personal data are not collected from the data subject
(8) The existence of automated decision-making, including profiling according to Art. 22 (1) and (4) GDPR and – at least in these cases – meaningful information about the logic involved as well as the scope and the intended effects of such processing on the data subject.
Finally, you also have the right to request information about whether your personal information is being transferred to a third country or to an international organization. In this case, you can obtain information about the appropriate guarantees in accordance with Art. 46 GDPR regarding such transfer.
You can claim your right to information in Europe under: IPGL-Datenschutz@ipgphotonics.com
You can claim your right to information outside of Europe under: firstname.lastname@example.org
2. The right to rectification
If we process your personal data incorrectly or in an incomplete manner, then you have a right for it to be corrected/completed. The correction will be made immediately.
3. Right to restriction
The right to limit the processing of your personal data may be invoked in the following cases:
(1) The accuracy of the personal data is contested for a period of time, enabling the person responsible to verify the accuracy of the personal data.
(2) The processing is unlawful and deleting the personal data is rejected, whereby the Restriction of the use of personal data is required.
(3) The person responsible no longer needs the personal data for purposes of processing, but the person concerned needs them to assert, exercise or defend legal claims, or
(4) the person concerned filed an objection to the processing pursuant to Art. 21 (1) GDPR and it is not yet clear whether the legitimate reasons of the person responsible outweighed those of the person concerned.
If processing personal data concerning you has been restricted, such data – viewed separately from your data storage – may be stored only with your consent or for the purposes of asserting, exercising or defending legal claims or protecting the rights of another natural or legal person or important public Interest of the Union or of a Member State.
If there is a processing restriction in accordance with the principles outlined, you will be informed by us before the restriction is lifted.
4. The right to delete
You can request that your personal data be deleted immediately if you can show the following reasons: The responsible person is obligated to delete this data immediately. These reasons include:
(1) Your personal data are no longer necessary for the purposes for which they were collected or otherwise processed.
(2) The processing is based on a consent according to Art. 6 para. 1 lit. a or Art. 9 para. 2 lit. a GDPR protected and you revoke the consent. Another condition is that there is no other legal basis for the processing.
(3) You object to the processing (Article 21 (1) GDPR) and there are no legitimate reasons for the processing. Another possibility is that you have a protest against the processing pursuant to Art. 21 para. 2 GDPR.
(4) The processing of your personal data is unlawful.
(5) Deleting personal data concerning you is required to fulfill a legal obligation under Union law or the law of the Member States to which those responsible are subject.
(6) The personal data concerning you were collected in relation to information society services offered pursuant to Art. 8 (1) GDPR.
If we have made personal data concerning you public and we are obligated to delete them according to Article 17 (1) of the GDPR, then we shall take appropriate measures, while also taking the available technology, implementation costs and the available technology into account, to inform data controllers who process the personal data that you, as the interested party, have requested the deletion of all links to such personal data or of copies or replications of such personal data.
We would like to point out that the right to delete does not exist, to the extent that processing is required:
(1) To exercise the right to freedom of expression and information.
(2) To fulfill a legal obligation required by the law of the Union or of the Member States to which the controller is subject, or to carry out a task of public interest or to exercise the official authority conferred on the controller.
(3) For reasons of public interest in the field of public health pursuant to Art. 9 (2) lit. h and i and Art. 9 (3) GDPR.
(4) For archival purposes of public interest, scientific or historical research purposes or for statistical purposes pursuant to Article 89 (1) GDPR, to the extent that the law referred to in subparagraph (a) is likely to render impossible or seriously affect the achievement of the objectives of that processing, or
(5) to assert, exercise or defend legal claims.
5. Right to information
If you have asserted the right to rectify, delete or restrict the processing, we are obligated to notify all recipients to whom your personal data have been disclosed of this correction or deletion of the data or restriction of processing, unless this proves to be impossible or is associated with a disproportionate amount of effort. You also have the right to be informed about these recipients.
6. Right to data portability
According to the GDPR, you also have the right to obtain the personal data provided to us and to receive it in a structured, understandable and machine-readable format. Furthermore, you have the right to transfer this data to another responsible without hindrance by the person responsible for providing the personal data, provided that
- the processing is based on consent as defined in Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR or on a contract acc. Art. 6 para. 1 lit. b GDPR
- and the processing is done using automated procedures.
Finally, where technically feasible and without harm to the freedoms and rights of others and as part of exercising the right of data transferability, you have the right to obtain that personal data relating to you that has been transmitted directly from one controller to another.
The right to data portability does not apply to processing that personal data necessary to perform a task in the public interest or to exercise the official authority that has been delegated to the controller.
7. Right to revoke the declaration of consent to data protection
You have the right to revoke your data protection declaration at any time. Please note that revoking consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation goes into effect.
8. Right to objection
Furthermore, for reasons based on your particular situation, you have the right at any time to file an objection to the processing of personal data relating to you, as it is defined in Art. 6 para. 1 lit. e or f GDPR. The right of objection also applies to profiling based on these provisions.
The controller will no longer process the personal data concerning you unless he can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is for the purpose of enforcing, exercising or defending legal claims.
If the personal data related to you are processed for advertising purposes, then you have the right to object at any time to your personal data being processed for the purpose of such advertising. This also applies to profiling, as far as it is associated with such direct marketing. Your personal data will no longer be processed for direct marketing purposes if you object to your data being used for such purposes.
You also have the option of discussing the use of information society services (in spite of Directive 2002/58/EC). Exercise your right to object by using automated procedures that use technical specifications.
9. Automated decision on an individual basis, including profiling
Under the EU General Data Protection Regulation, you remain entitled not to be subjected to a decision based solely on automated processing – including profiling – which would have legal effect or would affect you in a similar manner. An exception to this principle, however, is when the decision
(1) is required for the concluding or executing a contract between you and the controller,
(2) and is permissible based on Union or Member State legislation to which the controller is subject, and that legislation contains adequate measures to safeguard your rights and freedoms and your legitimate interests, or
(3) with your express consent.
If the processing is carried out in accordance with the cases mentioned in (1) and (3), the person responsible shall take appropriate measures to safeguard the rights and freedoms as well as your legitimate interests. This includes at least the right to obtain the intervention of a person on the part of the person responsible to state his own position and to contest the decision.
The ruling under (1) – (3) may not be based on special categories of personal data pursuant to Art. 9 (1) GDPR, unless Article 9 (2) lit. a or g and reasonable measures have been taken to protect the rights and freedoms and your legitimate interests.
10. Right to complain to a supervisory authority
Finally, if you believe that the processing of personal data concerning you is contrary to the GDPR, you have the right to complain to a supervisory authority, in particular in the Member State of its place of residence, employment or the location of the alleged infringement.
You can subscribe to a free newsletter on our web site that we use to inform you about our current interesting offers. The advertised goods and services are named in the declaration of consent. The data you enter in the online registration form will be sent to us.
We collect the following data based on the consent obtained during the registration process: the user’s email address. In addition, the following data will be collected:
The IP address of the invoking computer, Date and time registration.
Your data will not be forwarded as part of data processing involved in sending newsletters. The data will be used exclusively for sending the newsletter.
2. Double opt-in and logging
Registration for our newsletter takes place in a so-called double-opt-in procedure. After registration, you will receive an email asking you to confirm your registration. This confirmation is necessary so that nobody can register using external email addresses.
The registration for the newsletter will be logged in order to prove the registration process according to the legal requirements. This includes the storage of the login and the time of consent, as well as the IP address.
3. Legal basis
Legal basis for processing the data is once the consent of the user Art. 6 para. 1 lit. a GDPR has been submitted. Collecting the user's email address aids in delivering the newsletter.
4. Cancellation, revocation and opposition
Your data will be deleted as soon as they are no longer necessary for achieving the purpose of the inquiry. Your email address will therefore be saved as long as the subscription to the newsletter is active. You may terminate subscription to the newsletter at any time by revoking your consent. There is a corresponding link in each newsletter to do this.
We would like to further point out that at any time, you are free to cancel any future processing of your personal data in accordance with the statutory requirements, pursuant to Art. 21 GDPR. In particular, you are free to object to your data being processed for direct marketing purposes.
VIII. Electronic contact
You will find a contact form on our web site that you can use to contact us electronically. The data entered into the form are transmitted to us and stored. These data include [required data (*)]:
- Branch / Industry
- First name*
- Last name*
The following data is also stored once the message has been sent:
(1) The user’s IP address
(2) Date and time of registration
It is also possible to contact us via our provided email address. In this case, the user's personal data transmitted by email will be stored.
A transfer of your data to third parties will not take place in this context; this data will be used exclusively for processing the communication record.
The legal basis for processing the data is in submitting user consent as defined in Art. 6 para. 1 lit. a GDPR. The legal basis for processing the data transmitted in the course of sending an email is Article 6 (1) lit. f GDPR. If the email contact aims to conclude a contract, then additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR.
Processing personal data in this context is solely for processing the contact. In the case of contact via email, this also includes the required legitimate interest in processing the data.
If further personal data are processed during the sending process, then they serve only to prevent misuse of the contact form and to ensure the security of our information technology systems.
Your data will be deleted as soon as they are no longer necessary for purposes relating to the inquiry. Regarding the personal data from the input form on the contact form and those sent by email, this is the case when the respective conversation with the user has ended, unless you have expressed interest in receiving further communications from us. The conversation is ended when it can be inferred from the circumstances that the relevant facts have been finally clarified.
You will have the opportunity to revoke your consent to the processing of personal data at any time. Even when contacting us by email, you can object to the storage of your personal data at any time. However, we would like to point out that in such a case, the conversation cannot continue. As user from the European Union please contact: IPGL-Datenschutz@ipgphotonics.com and as user from outside the European Union please contact: email@example.com
All personal data stored in the course of contacting will be deleted in this case.
IX. Web analytics
1. Use of Google Analytics
This website uses Google Analytics, a web analytics service provided by Google Inc. (“Google”). Google Analytics uses so-called "cookies," text files that are stored on your computer and they allow how you use the website to be analyzed. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the US and is stored there. However, if IP anonymization is activated on this website, your IP address will be shortened by Google beforehand within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website and Internet usage to the website operator. The IP address provided by Google Analytics within the framework of Google Analytics will not be merged with other data provided by Google.
You can prevent the storage of cookies by enabling a corresponding setting in your browser software; however, please note that if you do this, you may not be able to use all the features of this website to the fullest extent possible. You may also prevent Google from collecting the data generated by the cookie and related to your use of the website (including your IP address) as well as prevent Google from processing this data by downloading and installing the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout?hl=de.
We use Google Analytics to analyze and regularly improve the use of our website. We use the statistics to improve our offer and make it more interesting for you as a user. Google has submitted to the EU-US Privacy Shield, Framework for those exceptional cases in which personal information is transferred to the US. The legal basis for using Google Analytics is Art. 6 Sec. 1 p. 1 lit. f GDPR.
Third-party information: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. User conditions: http://www.google.com/analytics/terms/de.html, Data privacy overview: http://www.google.com/intl/de/analytics/learn/privacy.html, data protection policy: http://www.google.de/intl/de/policies/privacy.
2. Yandex Metrica
Yandex data and GDPR policies can be found here:
The legal basis for using Yandex Metrica is Art. 6 Sec. 1 p. 1 lit. f GDPR.
X. Social Media
1. Social media presence
We maintain social media pages within various social networks and platforms for communicating with customers, prospects and users who are active there and for informing them about our services.
We would like to point out that your personal data may be processed outside the European Union, which may pose risks to you (e.g. in enforcing your rights under European/German law). Please note that some US providers are certified under the Privacy Shield and are committed to respecting EU privacy standards.
These users’ data are usually processed for market research and advertising purposes. Thus, e.g., user profiles are created based on the user’s behavior and interests. These usage profiles can in turn be used to do such things as place advertisements inside and outside the platforms that are allegedly in line with users' interests. For these purposes, cookies are usually stored on the user’s computer where the user’s behavior and the user’s interests are stored. Furthermore, in the usage profiles, data can also be stored independently of the devices that the users use (this is especially true if the users are members of the respective platforms and are logged in to them).
The processing of the personal data of users is based on our legitimate interests in an effective user information and communication with users in accordance with. Art. 6 para. 1 lit. f. GDPR. The legal basis for processing user info is Art. 6 para. a., Art. 7 GDPR, and this entails the respective providers asking users to consent to data processing (that is, that they declare their agreement, for example, by ticking a check box or clicking on a button to confirm).
Additional information about processing your personal data as well as your revocation options can be found under the links of the respective providers listed below. The assertion of information and further rights of the data subjects can likewise take place opposite the offerers, who then have only the direct access to the data of the users and have appropriate information. Of course, we are available for questions and support if you need help.
Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour,
Opt-Out: https://www.facebook.com/settings?tab=ads and http://www.youronlinechoices.com
Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active
Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA)
Data Protection Policy: https://policies.google.com/privacy
Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
XING AG, Dammtorstraße 29-32, 20354 Hamburg, Deutschland
Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA
LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Irland
2. Integrating with YouTube videos
We have included YouTube videos in our online offering; they are stored on http://www.YouTube.com and are directly playable from our website. These are all included in the "extended privacy mode,” meaning that no data about you as a user will be transferred to YouTube if you are not playing the videos. The data mentioned in paragraph 2 will be transmitted only if you play the videos.
We have no influence on the collected data and data processing operations, nor are we aware of the full extent of data collection, the purpose of the processing or the retention periods. Click the link below to receive additional information about your rights and setting options for protecting your privacy: https://www.google.de/intl/de/policies/privacy . Google also processes your personal data in the US and complies with the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework
XI. Online advertising
1. Using Google Adwords Conversion
(We use the offer of Google Adwords, with the help of advertising materials (Google Adwords) on external websites to attract attention to our attractive offers. We can determine how successful the individual advertising measures are in relation to the data from advertising campaigns. We are interested in showing you advertisements that are of interest to you in order to make our website more interesting to you and to achieve a fair calculation of advertising costs.
(These advertising materials are supplied by Google via so-called "ad servers”. To do this, we use ad server cookies which measure certain performance metrics such as ads or user clicks. If you reach our website via a Google ad, Google Adwords will save a cookie on your PC. These cookies usually lose their validity after 30 days and are not intended to identify you personally. This cookie will typically store the unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant to post-view conversions), and opt-out information (a flag that the user does not want to be addressed any more).
The legal basis for using Google Adwords is Art. 6 Sec. 1 p. 1 lit. f GDPR.
Last Updated August 7, 2019