The VisioNize Incidents App is based on a cloud solution that is intended for the connection and management of IoT-enabled lab equipment (hereinafter called "VisioNize Lab Suite" or "Application").
With the following Privacy Statement, we would like to inform you what personal data concerning you (hereinafter called "data") will be processed, and for what purposes, in connection with the use of the Application and what are your rights pursuant to the European General Data Protection Regulation (GDPR).
To our business contacts, our Privacy Statement for Business Contacts will apply in addition. It can be found here.
Unless otherwise stated in this Privacy Statement, the joint controllers within the meaning of Art. 26.1, Sentence 1, GDPR (i.e. parties jointly responsible for data processing) for all data processing procedures in connection with your use of the Application which are mentioned below are:
|
Eppendorf SE |
Eppendorf Instrumente GmbH |
If you have any questions about the processing of your data in this context, do not hesitate to contact us at the above contact information or by email at datenschutz@eppendorf.de. You can also use this contact channel if you wish to receive a copy of the main excerpts of the joint controllers' agreement between Eppendorf SE and Eppendorf Instrumente GmbH.
Should you have any questions or suggestions on data protection or this Privacy Statement in general, you may also contact us at the above contact information or by email at datenschutz@eppendorf.de.
Please note that we are only responsible for the data processing procedures described below. For all other data processing procedures in connection with the Application, the company that makes the Application available to you for use (which is usually your employer) is responsible. For information on the data processing procedures which are the responsibility of the company that makes the Application available to you for use, please read the privacy statement provided to you by the company concerned.
You can contact our Data Protection Officer at datenschutzbeauftragter@eppendorf.de.
When downloading the Application, individual data is automatically processed by the operator of the App Store (Apple App Store or Google Play). We have no control over this collection of data and are not responsible for it. More detailed information on this data processing is available in the Privacy Policy of the respective App Store operator:
When using the Application, the following data is automatically transferred to our servers and temporarily stored in a "log file"
We will save the above data from the log file for the following purposes:
The data is processed on the basis of our above-mentioned legitimate interests (Art. 6.1 (f) GDPR). The date will be automatically deleted after XX days.
In addition, together with above mentioned saved IP address the following data is automatically transferred to our servers and temporarily stored in a "log file" after you have logged into the Application:
We will save the above data for the purpose of ensuring the correct operation of the Application. This information will enable us to determine when exactly and under what circumstances any errors occurred. The information will help us to find the cause of the errors efficiently.
The legal basis of the processing is Article 6.1 (f) GDPR. The processing of the above data is necessary for the correct operation of the Application. This is also what our legitimate interest lies in.
The data will be stored for a period of up to 60 days and then deleted automatically.
If you submit a technical support inquiry to us at the indicated support email address, e.g. to ask for an invitation to use the Application to be sent again, we will process your email address, your first and last name, the subject of your inquiry, the time and date of your inquiry, any other data which you may provide to us in your inquiry, and possibly other data (depending on the support inquiry).
The legal basis of the processing is Art. 6.1 (f) GDPR. The processing is necessary for the performance of the contractual relationship with the company which makes this Application available to you for use. This is also what our legitimate interest lies in.
Depending on your support inquiry, we may transmit your inquiry to other companies of the Eppendorf Group for further handling. The legal basis of the transmission of your data is Art. 6.1 (f) GDPR. We have a legitimate interest in enabling your request to be handled properly.
In connection with the Application, we use cookies and/or similar technologies (hereinafter collectively referred to as "cookies") to save information on your end device or to read information already stored there. "Cookies" are text files that contain information. They are saved on your end devices (e.g., cell phone or tablet) when you use the Application. Similar technologies may, for example, include information stored as key-value pairs in a dictionary structure, as well as "local storage" or other similar technologies on your end device or reading information which has already been stored on it.
Cookies may originate from us (first-party cookies) or from third-party companies (so-called third-party cookies). Third-party cookies enable the inclusion of certain services of third-party companies (e.g. the performance of analyses).
We use the following categories of cookies in connection with the Application:
This category includes cookies which are necessary for the operation and the functionalities of the Application (so-called "essential" cookies) and are already activated in the basic settings of the Application. A purpose of these cookies is to make the Application technically accessible and usable and to provide essential and basic functionalities, which includes guaranteeing the security of the Application or managing your preferences for cookies and for the related data processing.
To obtain, manage and document your consent in conformity with the law, we use the "OneTrust Consent Manager". This service is operated by OneTrust, Paseo de la Castellana 77, 28046 Madrid, Spain ("OneTrust"). OneTrust processes your personal data on our behalf and in accordance with our instructions (see Art. 4 no. 8 and Art. 28 GDPR). OneTrust processes your IP address for the technical delivery of consent management, as well as your chosen cookie preferences, including your given, refused or revoked consent, for the purpose of legally compliant consent management. In order to store your cookie preferences, including the status of your consent, OneTrust will store the cookies that are essential for this purpose on your terminal device.
IP address; chosen cookie preferences (including any given, refused or revoked consent); time of any given consent.
Technical delivery of consent management; legally compliant consent management (i.e. obtaining, managing, and documenting consent)
We will delete information that we have stored in order to prove your consent after the end of the period of limitation, i.e. after three years from the end of the year in which we have received your revocation.
By using analytical cookies, we are able to track and analyze your use of the Application and, based on the obtained findings, to better understand the needs of the Application users and to improve our Application accordingly. In this context, your user behavior can be traced back even across different browsers, sessions or terminal devices on the basis of a unique user ID.
We use the analytics service “Pendo” provided by Pendo.io Inc., 150 Fayetteville St 1400 Raleigh, NC 27601, USA (“Pendo”) in connection with your use of the VNIL. We make use of that service in order to analyze your use of the Application, to determine customer preferences and needs as a result, and to optimize the VNLS Application on the basis of the obtained findings. For this purpose, when you use the Application, Pendo uses analytical cookies to set and save user interactions with the Application. Your user ID and email that you use for your VisioNize account are stored alongside these interactions similarly to cookies in a web browser.
Those interactions tell us when you accessed the Application, when and for how long the app is used, which pages of the app are accessed, which functions are clicked, and which content is displayed. Pendo uses this information to analyze your use of our Application and to compile reports on your activities in the Application for us.
In doing so, Pendo also processes data for its own purposes and is therefore a controller itself. More information on Pendo's handling of your data can be found on the following website: https://www.pendo.io/legal/privacy-policy/.
In connection with our cooperation with Pendo, personal data are transmitted to the USA. Therefore, we have agreed the standard data protection clauses approved by the EU commission (pursuant to Art. 46.2 (c) GDPR) with Pendo and taken additional measures in accordance with the criteria of the European Court of Justice (Schrems II judgment). The current standard date protection clauses of the European Commission can be found at the following URL:https://commission.europa.eu/publications/standard-contractual-clauses-international-transfers_en. You can also request a copy of those standard contractual clauses via any of the contact channels mentioned in Section 2.
Usage and connection data; device data, technical app data, analysis data and information on your preferences and needs; email address; Application user ID.
Needs-based optimization of the Application
24 months
You can withdraw your consent for the use of analytical cookies and the associated processing of your data for the purposes described above with effect for the future at any time by:
Essential cookies are always active; storing and accessing such information via these cookies does not require your consent. Analytical cookies (or cookie-like technologies and collectively also referred to as "cookies" in this Privacy Statement, see Section 7) can only be used based on your consent.
You can withdraw your consent for the use of analytical cookies and the associated processing of your data for the purposes described above with effect for the future at any time by:
The withdrawal of your consent does not affect the lawfulness of the processing performed based on your consent prior to its withdrawal.
We will process the data which we have collected for the above-mentioned purposes also for the following purposes:
The processing takes place on the basis of our legitimate interest in keeping up our business activities, performing our tasks and asserting, exercising or defending claims (Art. 6.1 (f) GDPR) or on the basis of a legal obligation pursuant to Art. 6.1 (c) GDPR.
You are neither contractually nor legally obligated to provide your data. However, the provision of your data is necessary to a certain extent so that you can access the Application and use it as intended.
Furthermore, the processing of your data is necessary so that we can guarantee the security and functionality of the Application and so that we can accept and handle your (support) inquiries.
To the extent that the provision of your data is necessary and you provide them yourself, we indicate this to you by marking the appropriate fields as required. The provision of further data is optional. If data which are necessary are not provided, this will result in us being unable to provide the above-mentioned functions and services of the Application to you. In particular, without you providing your data, we will be unable, for practical reasons, to accept your (support) inquiries.
In other cases, the result of you not providing your data may be that we will be unable to provide the relevant functions or services – or to provide them to the usual extent – or that we will not be able to answer your (support) inquiries completely and properly.
In addition to the cases described in this Privacy Statement, your personal data will be disclosed without your prior consent in the following cases only:
If it is necessary for clearing up any unlawful use of our Application or for prosecution, personal data will be forwarded to external consultants (e.g. lawyers), to the prosecuting authorities or, if applicable, to aggrieved third parties. However, this will only be done if actual indications of unlawful or abusive conduct exist.
A disclosure may also take place if it serves the purpose of asserting, exercising or defending claims. In addition, we are legally obligated to provide information to certain public authorities on request. These are prosecuting authorities, authorities prosecuting infractions penalized with a fine, and the fiscal authorities. Furthermore, a disclosure of your personal data may also occur if we are exposed to other claims of third parties that may include the provision of information about your data. In particular, this may be claims of data subjects in connection with the exercise of your rights pursuant to Chapter III GDPR. The disclosure of the above data takes place on the basis of our legitimate interest in combating abuse, prosecuting crimes and asserting, exercising or defending claims (Art. 6.1 (f) GDPR) or on the basis of a legal obligations pursuant to Art. 6.1 (c) GDPR.
In connection with administrative processes, the organization of our business, financial accounting and the compliance with legal obligations (such as archiving), we will disclose and transmit your data to the fiscal authorities and to consultants such as tax consultants or auditors.
The disclosure of these data takes place on the basis of our legitimate interest in keeping up our business activities, performing our tasks and asserting, exercising or defending claims (Art. 6.1 (f) GDPR) or on the basis of a legal obligation pursuant to Art. 6.1 (c) GDPR.
The disclosure of personal data is justified by the fact that we have a legitimate interest in adjusting our corporate structure to the economic and legal situation (Art. 6.1 (f) GDPR).
Some of the recipients of your data who are mentioned in this Privacy Statement are based in countries outside the European Union and the European Economic Area (so-called third countries). In those cases, we guarantee that one of the following conditions are fulfilled:
Further information, including a copy of the standard contractual clauses, can be requested at the contact information mentioned in Section 2.
Unless otherwise stated in this Privacy Statement, we will delete or anonymize your data as soon as they are no longer necessary for the purposes for which they were collected or further processed in accordance with this Privacy Statement. As a rule, we will store your data for the duration of the contractual relationship with the company which makes the Application available to you. In the case of any processing which we perform on the basis of your consent, we will store your data until you revoke your consent. If the purpose of the processing ceases to exist before any revocation, we will store your data until that date.
A storage beyond that date will only take place:
To the extent that data must be retained for legal reasons, their processing will be restricted. The data will then no longer be available for further use.
With regard to the processing of your personal data, you are entitled to the rights described below. In addition to the possibilities already mentioned in this Privacy Statement, you may claim your rights by sending a request by mail or email at the contact information mentioned in Section 2 above.
You have the right to access the personal data concerning you that we process at any time upon request within the scope of Art. 15 GDPR as well as Section 34 of the German Federal Data Protection Act (BDSG).
As stipulated in Art. 16 GDPR, you have the right to request that we rectify personal data about you where this data is inaccurate. Furthermore, you have the right to request the completion of incomplete personal data by us.
In the circumstances described in Art. 17 GDPR and Section 35 BDSG, you have the right to request that we erase personal data concerning you..
You have the right to request that we restrict processing as per Art. 18 GDPR.
You have the right to receive your personal data that you have provided to us in a structured, commonly used and machine-readable format pursuant to Art. 20 GDPR.
According to Art. 21 GDPR, you have the right to object to the processing of personal data concerning you based on Art. 6. 1 (f) GDPR at any time on grounds relating to your particular situation. We will cease processing your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights and freedoms, or the processing is for asserting, exercising or defending legal claims..
If we process your personal data for direct marketing purposes, you have the right to object to the processing of your personal data for these purposes, including any profiling, at any time. Following your objection, we will no longer process your personal data.
You have the right to withdraw your consent at any time in accordance with Art. 7.3, sentence 1 GDPR. Withdrawal of your consent does not affect the lawfulness of the processing performed on the basis of your consent prior to its withdrawal.
You have the right to lodge a complaint with a supervisory authority of your choice if you believe that the processing of your data breaches applicable data protection law.
Finally, we point to the fact that when you exercise your rights pursuant to Art. 7.3, Sentence 1, GDPR and Art. 15 to 22 GDPR, we will process personal data provided by you in order to implement these requests and keep evidence of it, and in order to defend legal positions in the case of disputes. In connection with this, we will store your data until the end of the period of limitation running from the complete fulfillment of your request to exercise your data subject rights, i.e. for three years from the end of the year in which you made your request.
The legal basis of this processing for the purposes of implementing your request and proving the implementation of your request to exercise your data subject rights in conformity with the law is Art. 6.1 (c) GDPR in connection with Art. 7.3, Sentence 1, GDPR and Art. 15 to 22 GDPR as well as Section 34.2 BDSG. To the extent that we process the personal data for purposes of legal defense, this is also what our legitimate interest lies in (Art. 6.1 (f) GDPR). You are neither contractually nor legally obligated to provide your personal data; however, we may refuse the fulfillment of your request to exercise your data subject rights pursuant to Art. 12.2, Sentence 2, GDPR if you do not provide us, on request if applicable, with the data required for your clear identification.
The current version of this Privacy Statement is available at https://visionize.com/privacypolicy-mobile.html at any time.