Data Protection Declaration
Pursuant to GDPR

AN OVERVIEW OF DATA PROTECTION

General

 

Data collection on our website

Who is responsible for the data collection on this website?

The data collected on this website are processed by the website operator. The operator’s contact details can be found in the website’s required legal notice.

How do we collect your data?

Some data are collected when you provide it to us. This could, for example, be data you enter on a contact form.
Other data are collected automatically by our IT systems when you visit the website. These data are primarily technical data such as the browser and operating system you are using or when you accessed the page. These data are collected automatically as soon as you enter our website.

What do we use your data for?

Part of the data is collected to ensure the proper functioning of the website. Other data can be used to analyze how visitors use the site.

What rights do you have regarding your data?

You always have the right to request information about your stored data, its origin, its recipients, and the purpose of its collection at no charge. You also have the right to request that it be corrected, blocked, or deleted. You can contact us at any time using the address given in the legal notice if you have further questions about the issue of privacy and data protection. You may also, of course, file a complaint with the competent regulatory authorities.

Analytics and third-party tools

When visiting our website, statistical analyses may be made of your surfing behavior. This happens primarily using cookies and analytics. The analysis of your surfing behavior is usually anonymous, i.e. we will not be able to identify you from this data. You can object to this analysis or prevent it by not using certain tools. Detailed information can be found in the following privacy policy.

You can object to this analysis. We will inform you below about how to exercise your options in this regard.

GENERAL INFORMATION AND MANDATORY INFORMATION

Data protection

The operators of this website take the protection of your personal data very seriously. We treat your personal data as confidential and in accordance with the statutory data protection regulations and this privacy policy.

If you use this website, various pieces of personal data will be collected. Personal information is any data with which you could be personally identified. This privacy policy explains what information we collect and what we use it for. It also explains how and for what purpose this happens.

Please note that data transmitted via the internet (e.g. via email communication) may be subject to security breaches. Complete protection of your data from third-party access is not possible.

Notice concerning the party responsible for this website

The party responsible for processing data on this website within the meaning of the General Data Protection Regulation and other national data protection laws of the Member States as well as other provisions of data protection law is:

Sugatsune Europe GmbH
Heerdter Lohweg 87-89
D-40549 Düsseldorf
Tel.: +49 (0) 211-53812-900
E-Mail: sales@sugatsune.eu
Website: https://shop.sugatsune.eu/

The responsible party is the natural or legal person who alone or jointly with others decides on the purposes and means of processing personal data (names, email addresses, etc.).

Revocation of your consent to the processing of your data

Many data processing operations are only possible with your express consent. You may revoke your consent at any time with future effect. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.

Right to file complaints with regulatory authorities

If there has been a breach of data protection legislation, the person affected may file a complaint with the competent regulatory authorities. The competent regulatory authority for matters related to data protection legislation is the data protection officer of the German state in which our company is headquartered. A list of data protection officers and their contact details can be found at the following link: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html.

Right to data portability

You have the right to have data which we process based on your consent or in fulfillment of a contract automatically delivered to yourself or to a third party in a standard, machine-readable format. If you require the direct transfer of data to another responsible party, this will only be done to the extent technically feasible.

SSL or TLS encryption

This site uses SSL or TLS encryption for security reasons and for the protection of the transmission of confidential content, such as the inquiries you send to us as the site operator. You can recognize an encrypted connection in your browser’s address line when it changes from “http://” to “https://” and the lock icon is displayed in your browser’s address bar.

If SSL or TLS encryption is activated, the data you transfer to us cannot be read by third parties.

Encrypted payments on this website

If you enter into a contract which requires you to send us your payment information (e.g. account number for direct debits), we will require this data to process your payment.

Payment transactions using common means of payment (Visa/MasterCard, direct debit) are only made via encrypted SSL or TLS connections. You can recognize an encrypted connection in your browser’s address line when it changes from “http://” to “https://” and the lock icon in your browser line is visible.

In the case of encrypted communication, any payment details you submit to us cannot be read by third parties.

Information, blocking, deletion

As permitted by law, you have the right to be provided at any time with information free of charge about any of your personal data that is stored as well as its origin, the recipient and the purpose for which it has been processed. You also have the right to have this data corrected, blocked or deleted. You can contact us at any time using the address given in our legal notice if you have further questions on the topic of personal data.

Opposition to promotional emails

We hereby expressly prohibit the use of contact data published in the context of website legal notice requirements with regard to sending promotional and informational materials not expressly requested. The website operator reserves the right to take specific legal action if unsolicited advertising material, such as email spam, is received.

 

Name and Address of the Data Protection Officer

The data protection officer of the responsible party is:

Sugatsune Europe GmbH
Heerdter Lohweg 87-89
D-40549 Düsseldorf
Tel.: +49 (0) 211-53812-900
E-Mail: datenschutz@sugatsune.eu
Website: https://shop.sugatsune.eu/

 

General Information on Data Processing

1. Scope of Personal Data Processing

We only process the personal data of our users if this is necessary in order to provide a functional website as well as our contents and services. As a rule processing of the personal data of our users takes place only after consent has been given by the user. An exception applies in those cases in which prior consent cannot be obtained for practical reasons and the processing of data is permitted by statutory provisions.

2. Legal Basis for the Processing of Personal Data

Article 6 Paragraph 1 lit. a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis insofar as we obtain the consent of the data subject for the processing of personal data.

In the processing of personal data required for the performance of a contract to which the data subject is a party, the legal basis is provided by Article 6 Paragraph 1 lit. b) GDPR. This also applies to processing operations required in order to carry out pre-contractual measures.

Article 6 Paragraph 1 lit. c) of the EU General Data Protection Regulation (GDPR) provides the legal basis insofar as the processing of personal data is required to comply with a legal obligation to which our company is subject.

In the event that the vital interests of the data subject or another natural person require the processing of personal data, then Article 6 Paragraph 1 lit. d) of the EU General Data Protection Regulation (GDPR) serves as the legal basis.

If processing is necessary to safeguard a legitimate interest on the part of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh this interest, then Article 6 Paragraph 1 lit. f) of the EU General Data Protection Regulation (GDPR) shall provide the legal basis for such processing.

 

3. Data Deletion and Storage Period

The personal data of the data subject will be deleted or blocked as soon as the purpose of storage ceases to apply. However, data may continue to be stored if this has been provided for by European or national legislators in EU regulations, laws or other provisions to which the responsible party is subject. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for conclusion or fulfilment of a contract.

Provision of the Website and Creation of Log Files

1. Description and Scope of Data Processing

Each time you visit our website our system automatically collects data and information from the computer system of the invoking computer.

The following data is collected:

• Information about the browser type and version used
• The user‘s operating system
• Referrer URL
• Host name of the accessing computer
• The IP address of the user
• Date and time of access
• Websites accessed by the user’s system via our website

The data is also stored in the log files of our system. This data is not stored together with other personal data of the user.

2. Legal Basis for Data Processing

The legal basis for the temporary storage of data and log files is Article 6 Paragraph 1 lit. f) of the EU General Data Protection Regulation (GDPR).

3. Purpose of Data Processing

Temporary storage of the IP address by the system is required in order to enable the website to be delivered to the user’s computer. For this purpose the user’s IP address must remain stored for the duration of the session.

The data is stored in log files to ensure the functionality of the website. In addition, the data serves us in order to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.

These purposes also constitute our legitimate interest in data processing in accordance with Article 6 Paragraph 1 lit. f) of the EU General Data Protection Regulation (GDPR).

 

4. Duration of Storage

The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. In the case of the collection of data for the provision of the website, this is the case when the respective session is terminated.

If the data is stored in log files, then this is the case after seven days at the latest. Further storage is possible. In this case the IP addresses of the users are deleted or anonymized so that assignment of the invoking client is no longer possible.

 

5. Possibility of Objection and Removal

The collection of data for provision of the website and the storage of data in log files is absolutely necessary for operation of the website. Consequently, there is no possibility of objection on the part of the user.

DATA COLLECTION ON OUR WEBSITE

Description and Scope of Data Processing

1. Use of Cookies

Our website uses cookies. Cookies do not harm your computer and do not contain any viruses. Cookies help make our website more user-friendly, efficient, and secure. Cookies are small text files that are stored on your computer and saved by your browser. If a user visits a website, then a cookie may be stored on the user’s operating system. This cookie contains a characteristic string that uniquely identifies the browser when the website is reloaded.

Most of the cookies we use are so-called “session cookies.” They are automatically deleted after your visit. Other cookies remain in your device’s memory until you delete them. These cookies make it possible to recognize your browser when you next visit the site.

You can configure your browser to inform you about the use of cookies so that you can decide on a case-by-case basis whether to accept or reject a cookie. Alternatively, your browser can be configured to automatically accept cookies under certain conditions or to always reject them, or to automatically delete cookies when closing your browser. Disabling cookies may limit the functionality of this website.

Cookies which are necessary to allow electronic communications or to provide certain functions you wish to use (such as the shopping cart) are stored pursuant to Art. 6 paragraph 1, letter f of GDPR. The website operator has a legitimate interest in the storage of cookies to ensure an optimized service provided free of technical errors. If other cookies (such as those used to analyze your surfing behavior) are also stored, they will be treated separately in this privacy policy.

We use cookies to make our website more user-friendly. Some elements of our website require that the invoking browser can also be identified after a page change.

The following data is stored and transmitted in the cookies:
– Session number

Legal Basis for Data Processing

The legal basis for the processing of personal data using cookies is Article 6 Paragraph 1 lit. f) of the EU General Data Protection Regulation (GDPR).

Purpose of Data Processing

The purpose of using technically required cookies is to simplify the use of websites for users. Some of the functions of our website cannot be offered without using cookies. For these it is necessary that the browser is also recognized after a page change.

We require cookies for the following applications:

• Session number

The user data collected by technically required cookies are not used to create user profiles.

These purposes also constitute our legitimate interest in data processing in accordance with Article 6 Paragraph 1 lit. f) of the EU General Data Protection Regulation (GDPR).

Duration of Storage, Possibility of Objection and Removal

Cookies are stored on the user’s computer and transmitted to our site. Therefore, you as a user also have complete control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your Internet browser. Cookies that have already been stored can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, then it may no longer be possible to use all of the functions of the website in full.

2. Server log files

The website provider automatically collects and stores information that your browser automatically transmits to us in “server log files”. These are:

• Browser type and browser version
• Operating system used
• Referrer URL
• Host name of the accessing computer
• Time of the server request
• IP address

These data will not be combined with data from other sources.

The basis for data processing is Art. 6 (1) (f) GDPR, which allows the processing of data to fulfill a contract or for measures preliminary to a contract.

3. Registration on this website

You can register on our website in order to access additional functions offered here. The input data will only be used for the purpose of using the respective site or service for which you have registered. The mandatory information requested during registration must be provided in full. Otherwise, we will reject your registration.

To inform you about important changes such as those within the scope of our site or technical changes, we will use the email address specified during registration.

We will process the data provided during registration only based on your consent per Art. 6 (1)(a) GDPR. You may revoke your consent at any time with future effect. An informal email making this request is sufficient. The data processed before we receive your request may still be legally processed.

We will continue to store the data collected during registration for as long as you remain registered on our website. Statutory retention periods remain unaffected.

 

4. Newsletter

If you would like to receive our newsletter, we require a valid email address as well as information that allows us to verify that you are the owner of the specified email address and that you agree to receive this newsletter. No additional data is collected or is only collected on a voluntary basis. We only use this data to send the requested information and do not pass it on to third parties.

We will, therefore, process any data you enter onto the contact form only with your consent per Art. 6 (1) (a) GDPR. You can revoke consent to the storage of your data and email address as well as their use for sending the newsletter at any time, e.g. through the “unsubscribe” link in the newsletter. The data processed before we receive your request may still be legally processed.

The data provided when registering for the newsletter will be used to distribute the newsletter until you cancel your subscription when said data will be deleted. Data we have stored for other purposes (e.g. email addresses for the members area) remain unaffected.


Description and Scope of Data Processing

You can subscribe to a free newsletter on our website. When registering for the newsletter, the data from the input mask are transmitted to us.

The following data may be collected:

• E-mail address
• Language selection
• Country selection
• Industry
• Your role / occupation

In addition, the following data is collected during registration:

(1) IP address of the invoking computer

(2) Date and time of registration

Within the scope of the registration process your consent is obtained for processing of the data and reference is made to this data protection declaration. No data is passed on to third parties in connection with data processing for the dispatch of newsletters. The data will only be used for sending the newsletter.

Legal Basis for Data Processing

The legal basis for the processing of data after registration for the newsletter by the user and given the user’s consent is Article 6 Paragraph 1 lit. a) of the EU General Data Protection Regulation (GDPR).


Purpose of Data Processing

Collection of the user’s e-mail address serves to send the newsletter.

The collection of other personal data within the scope of the registration process serves to prevent misuse of the services or the e-mail address used.


Duration of Storage

The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. The user’s e-mail address will therefore be stored for as long as the subscription to the newsletter is active.

Other personal data collected within the scope of the registration process will generally be deleted after a period of seven days.


Possibility of Objection and Removal

The subscription to the newsletter can be cancelled by the user concerned at any time. For this purpose, there is a corresponding link in every newsletter.

This also makes it possible to revoke consent to the storage of personal data collected during the registration process.

 

5. Contact Form and E-mail Contact

Description and Scope of Data Processing

There is a contact form on our website that can be used for electronic contact. If a user takes advantage of this possibility, then the data entered in the input mask will be transmitted to us and stored. This data includes:

The following data may be collected:

• E-mail address
• Name
• First name
• Phone number
• Country
• Company name
• Your role in the company

In addition, the following data is collected during registration:

(1) IP address of the invoking computer

(2) Date and time of registration

Your consent is obtained for the processing of the data within the scope of the sending process and reference is made to this data protection declaration.

Alternatively, you can contact us via the e-mail address provided. In this case the user’s personal data transmitted via e-mail will be stored.

In this context the data will not be passed on to third parties. The data is used exclusively for processing the conversation.


Legal Basis for Data Processing

The legal basis for the processing of data if the user has given consent is Article 6 Paragraph 1 lit. a) of the EU General Data Protection Regulation (GDPR).

The legal basis for the processing of data transmitted in the course of sending an e-mail is Article 6 Paragraph 1 lit. f) of the EU General Data Protection Regulation (GDPR). If the e-mail contact is aimed at conclusion of a contract, then the additional legal basis for the processing is Article 6 Paragraph 1 lit. b) of the EU General Data Protection Regulation (GDPR).


Purpose of Data Processing

We process personal data from the input mask only in order to establish contact. In the event of contact by e-mail, this also constitutes the necessary legitimate interest in the processing of the respective data.

The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.


Duration of Storage

The data will be deleted as soon as they are no longer required in order to achieve the purpose for which they were collected. For the personal data from the input mask of the contact form and data sent by e-mail, this is the case when the respective conversation with the user has ended. The conversation is terminated when it can be inferred from the respective circumstances that the matter in question has finally been settled.

The additional personal data collected during the sending process will be deleted at the latest after a period of seven days.


Possibility of Objection and Removal

The user has the possibility to revoke consent to the processing of personal data at any time. If the user contacts us by e-mail, then the user may object to the storage of his or her personal data at any time. In this case the conversation cannot be continued.

A description follows on how revocation of consent and objection to storage is made possible

In this case any personal data stored in the course of contacting us will be deleted.

6) Processing of data (customer and contract data)

We collect, process, and use personal data only insofar as it is necessary to establish, or modify legal relationships with us (master data). This is done based on Art. 6 (1) (b) GDPR, which allows the processing of data to fulfill a contract or for measures preliminary to a contract. We collect, process and use your personal data when accessing our website (usage data) only to the extent required to enable you to access our service or to bill you for the same.

Collected customer data shall be deleted after completion of the order or termination of the business relationship. Legal retention periods remain unaffected.

 

7) Data transmitted when entering into a contract with online shops, retailers, and mail order

We transmit personally identifiable data to third parties only to the extent required to fulfill the terms of your contract, for example, to companies entrusted to deliver goods to your location or banks entrusted to process your payments. Your data will not be transmitted for any other purpose unless you have given your express permission to do so. Your data will not be disclosed to third parties for advertising purposes without your express consent.

The basis for data processing is Art. 6 (1) (b) GDPR, which allows the processing of data to fulfill a contract or for measures preliminary to a contract.

SOCIAL MEDIA

Facebook plugins (Like & Share buttons)

Our website includes plugins for the social network Facebook, Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA. The Facebook plugins can be recognized by the Facebook logo or the Like button on our site. For an overview of Facebook plugins, see https://developers.facebook.com/docs/plugins/.

When you visit our site, a direct connection between your browser and the Facebook server is established via the plugin. This enables Facebook to receive information that you have visited our site from your IP address. If you click on the Facebook “Like button” while you are logged into your Facebook account, you can link the content of our site to your Facebook profile. This allows Facebook to associate visits to our site with your user account. Please note that, as the operator of this site, we have no knowledge of the content of the data transmitted to Facebook or of how Facebook uses these data. For more information, please see Facebook’s privacy policy at https://de-de.facebook.com/policy.php.

If you do not want Facebook to associate your visit to our site with your Facebook account, please log out of your Facebook account.

LinkedIn plugin

Our website uses features provided by the LinkedIn service. The provider is LinkedIn Corporation, 1000 W Maude Sunnyvale, CA 94085, US. Each time one of our pages containing LinkedIn features is accessed, your browser establishes a direct connection to the LinkedIn servers. To the best of our knowledge, no personal data is stored in the process. We would like to point out that, as the provider of these pages, we have no knowledge of the content of the data transmitted or how it will be used by LinkedIn. For more information on LinkedIn’s privacy policy, please go to https://www.linkedin.com/legal/privacy-policy.

 

 YouTube

Our website uses plugins from YouTube, which is operated by Google. The operator of the pages is YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. If you visit one of our pages featuring a YouTube plugin, a connection to the YouTube servers is established. Here the YouTube server is informed about which of our pages you have visited.

If you’re logged in to your YouTube account, YouTube allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.

YouTube is used to help make our website appealing. This constitutes a justified interest pursuant to Art. 6 (1) (f) GDPR.

Further information about handling user data, can be found in the data protection declaration of YouTube under https://www.google.de/intl/de/policies/privacy.

Google Maps

This site uses the Google Maps map service via an API. It is operated by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Irland.

To use Google Maps, it is necessary to save your IP address. This information is generally transmitted to a Google server in the USA and stored there. The provider of this site has no influence on this data transfer.

The use of Google Maps is in the interest of making our website appealing and to facilitate the location of places specified by us on the website. This constitutes a justified interest pursuant to Art. 6 (1) (f) GDPR.

Further information about handling user data, can be found in the data protection declaration of Google at https://www.google.de/intl/de/policies/privacy/.

 

ANALYTICS AND ADVERTISING

Google Analytics

This website uses Google Analytics, a web analytics service. It is operated by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics uses so-called “cookies”. These are text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.

Google Analytics cookies are stored based on Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in analyzing user behavior to optimize both its website and its advertising.

IP anonymization

We have activated the IP anonymization feature on this website. Your IP address will be shortened by Google within the European Union or other parties to the Agreement on the European Economic Area prior to transmission to the United States. Only in exceptional cases is the full IP address sent to a Google server in the US and shortened there. Google will use this information on behalf of the operator of this website to evaluate your use of the website, to compile reports on website activity, and to provide other services regarding website activity and Internet usage for the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with any other data held by Google.

Browser plugin

You can prevent these cookies being stored by selecting the appropriate settings in your browser. However, we wish to point out that doing so may mean you will not be able to enjoy the full functionality of this website. You can also prevent the data generated by cookies about your use of the website (incl. your IP address) from being passed to Google, and the processing of these data by Google, by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en.

Objecting to the collection of data

You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie will be set to prevent your data from being collected on future visits to this site: Disable Google Analytics.

For more information about how Google Analytics handles user data, see Google’s privacy policy: https://support.google.com/analytics/answer/6004245?hl=en.

Outsourced data processing

We have entered into an agreement with Google for the outsourcing of our data processing and fully implement the strict requirements of the German data protection authorities when using Google Analytics.

Google Analytics Remarketing

Our websites use the features of Google Analytics Remarketing combined with the cross-device capabilities of Google AdWords and DoubleClick. This service is provided by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

This feature makes it possible to link target audiences for promotional marketing created with Google Analytics Remarketing to the cross-device capabilities of Google AdWords and Google DoubleClick. This allows advertising to be displayed based on your personal interests, identified based on your previous usage and surfing behavior on one device (e.g. your mobile phone), on other devices (such as a tablet or computer).

Once you have given your consent, Google will associate your web and app browsing history with your Google Account for this purpose. That way, any device that signs in to your Google Account can use the same personalized promotional messaging.

To support this feature, Google Analytics collects Google-authenticated IDs of users that are temporarily linked to our Google Analytics data to define and create audiences for cross-device ad promotion.

You can permanently opt out of cross-device remarketing/targeting by turning off personalized advertising in your Google Account; follow this link: https://www.google.com/settings/ads/onweb/.

The aggregation of the data collected in your Google Account data is based solely on your consent, which you may give or withdraw from Google per Art. 6 (1) (a) GDPR. For data collection operations not merged into your Google Account (for example, because you do not have a Google Account or have objected to the merge), the collection of data is based on Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in analyzing anonymous user behavior for promotional purposes.

For more information and the Google Privacy Policy, go to: https://www.google.com/policies/technologies/ads/.

Google AdWords and Google Conversion Tracking

This website uses Google AdWords. AdWords is an online advertising program from Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Irland.

As part of Google AdWords, we use so-called conversion tracking. When you click on an ad served by Google, a conversion tracking cookie is set. Cookies are small text files that your internet browser stores on your computer. These cookies expire after 30 days and are not used for personal identification of the user. Should the user visit certain pages of the website and the cookie has not yet expired, Google and the website can tell that the user clicked on the ad and proceeded to that page.

Each Google AdWords advertiser has a different cookie. Thus, cookies cannot be tracked using the website of an AdWords advertiser. The information obtained using the conversion cookie is used to create conversion statistics for the AdWords advertisers who have opted for conversion tracking. Customers are told the total number of users who clicked on their ad and were redirected to a conversion tracking tag page. However, advertisers do not obtain any information that can be used to personally identify users. If you do not want to participate in tracking, you can opt-out of this by easily disabling the Google Conversion Tracking cookie by changing your browser settings. In doing so, you will not be included in the conversion tracking statistics.

Conversion cookies are stored based on Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in analyzing user behavior to optimize both its website and its advertising.

For more information about Google AdWords and Google Conversion Tracking, see the Google Privacy Policy: https://www.google.de/policies/privacy/.

You can configure your browser to inform you about the use of cookies so that you can decide on a case-by-case basis whether to accept or reject a cookie. Alternatively, your browser can be configured to automatically accept cookies under certain conditions or to always reject them, or to automatically delete cookies when closing your browser. Disabling cookies may limit the functionality of this website.

Google reCAPTCHA

We use “Google reCAPTCHA” (hereinafter “reCAPTCHA”) on our websites. This service is provided by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Irland.

reCAPTCHA is used to check whether the data entered on our website (such as on a contact form) has been entered by a human or by an automated program. To do this, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This analysis starts automatically as soon as the website visitor enters the website. For the analysis, reCAPTCHA evaluates various information (e.g. IP address, how long the visitor has been on the website, or mouse movements made by the user). The data collected during the analysis will be forwarded to Google.

The reCAPTCHA analyses take place completely in the background. Website visitors are not advised that such an analysis is taking place.

Data processing is based on Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in protecting its site from abusive automated crawling and spam.

For more information about Google reCAPTCHA and Google’s privacy policy, please visit the following links: https://www.google.com/intl/de/policies/privacy/ and https://www.google.com/recaptcha/intro/android.html.

 

RIGHTS OF THE DATA SUBJECTS

The following list includes all of the rights of the data subjects in accordance with GDPR. Rights which are not relevant for the company’s own website need not be specified. In this respect, the list can be shortened.

If your personal data are processed, then you are the data subject within the meaning of GDPR and you have the following rights vis-à-vis the party responsible:


1. Right to Access

You can request that the responsible party confirms whether or not personal data related to you will be processed by us.

If such processing has taken place, then you may request the following information from the party responsible:

(1) the purposes for which the personal data are processed;

(2) the categories of personal data being processed;

(3) the recipients or categories of recipients to whom the personal data related to you have been or are still being disclosed;

(4) the planned duration of storage of the personal data related to you or, if specific information is not possible in this regard, criteria for determining the storage period;

(5) the existence of a right to rectification or deletion of personal data related to you, a right to restriction of processing by the controller or a right to object to such processing;

(6) the existence of a right to lodge a complaint with a supervisory authority;

(7) any available information on the origin of the data if the personal data are not collected from the data subject;

(8) the existence of automated decision-making, including profiling in accordance with Article 22 Paragraphs 1 and 4 of the EU General Data Protection Regulation (GDPR) and – at least in these cases – sound information on the logic involved and the scope and intended effects of such processing for the data subject.

You have the right to request information as to whether the personal data related to you is transferred to a third country or to an international organisation. In this context you may request that you be informed of the appropriate safeguards in accordance with Article 46 of the EU General Data Protection Regulation (GDPR) in connection with such transfer.


2. Right to Rectification

You have a right to rectification and/or completion vis-à-vis the data controller if the processed personal data related to you are inaccurate or incomplete. The controller shall make the correction without delay.


3. Right to Restriction of Processing

You can request restriction of the processing of personal data related to you under the following conditions:

(1) if you dispute the accuracy of the personal data related to you for a period enabling the controller to verify the accuracy of the personal data;

(2) the processing is unlawful and you oppose erasure of the personal data and instead request that use of the personal data be restricted;

(3) the controller no longer needs the personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defence of legal claims, or

(4) if you have objected to processing pursuant to Article 21 Paragraph 1 GDPR pending verification whether the legitimate grounds of the controller override your own.

If the processing of personal data related to you has been restricted, then such data may only be processed – apart from being stored – with your consent or for the purpose of establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.

If the processing restriction has been constrained in accordance with the above prerequisites, then you will be informed by the controller before the restriction is lifted.

4. Right to Erasure

a) Erasure Obligation

You may request that the controller immediately erases the personal data related to you and the controller shall have the obligation to erase personal data without undue delay where one of the following grounds applies:

(1) The personal data related to you are no longer necessary for the purposes for which they were collected or otherwise processed.

(2) You revoke your consent on which the processing is based in accordance with Article 6 Paragraph 1 lit. a) or Article 9 Paragraph 2 lit. a) of the EU General Data Protection Regulation (GDPR), and where there is no other legal ground for the processing.

(3) You object to the processing pursuant to Article 21 Paragraph 1 GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Article 21 Paragraph 2 GDPR.

(4) The personal data related to you have been unlawfully processed.

(5) The deletion of personal data related to you have to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject.

(6) The personal data related to you have been collected in relation to the offer of information society services referred to in accordance with Article 8 Paragraph 1 of the EU General Data Protection Regulation (GDPR).

b) Information to third parties

If the data controller has made the personal data related to you public and is obliged to delete such in accordance with Article 17 Paragraph 1 of the EU General Data Protection Regulation (GDPR), then the controller, taking into account the available technology and the cost of implementation, shall take reasonable steps, including technical measures to inform data processors who process the personal data, that you as the data subject have requested the deletion of all links to this personal data or of copies or replications of this personal data.

c) Exceptions

The right to erasure shall not apply insofar as processing is necessary

(1) for exercising the freedom of expression and information;

(2) for compliance with a legal obligation which requires processing by Union or Member State law to which the controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;

(3) for reasons of public interest in the area of public health in accordance with Article 9 Paragraph 2 lit. h) and i) as well as Article 9 Paragraph 3 of the EU General Data Protection Regulation (GDPR);

(4) for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes in accordance with Article 89 Paragraph 1 GDPR in so far as the right referred to in Section a is likely to render impossible or seriously impair the achievement of the objectives of that processing; or

(5) for the establishment, exercise or defence of legal claims.

 

5. Right to be Informed

If you have exercised your right to have the processing corrected, deleted or restricted, then the controller is obliged to inform all recipients to whom the personal data related to you have been disclosed of this correction or deletion of the data or restriction on processing, unless this proves impossible or involves disproportionate effort.

You have the right vis-à-vis the party responsible to be informed of these recipients.


6. Right to Data Portability

You have the right to receive the personal data related to you that you have provided to the party responsible in a structured, commonly used and machine-readable format. In addition, you have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, where

(1) the processing is based on consent in accordance with Article 6 Paragraph 1 lit. a) of the EU General Data Protection Regulation (GDPR) or Article 9 Paragraph 2 lit. a) GDPR or on a contract pursuant to Article 6 Paragraph 1 lit. b) and

(2) the processing is carried out by automated means.

In exercising this right, you also have the right to request that the personal data related to you be transmitted directly from one controller to another, where technically feasible. The freedoms and rights of other persons may not be affected by this.

The right to portability shall not apply to the processing of personal data necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.


7. Right to Object

You have the right to object at any time, for reasons arising out of your particular situation, to the processing of personal data related to you under Article 6 Paragraph 1 lit. e) or f) of the EU General Data Protection Regulation (GDPR); this also applies to profiling based on these provisions.

The data controller shall no longer processes the personal data related to you, unless the controller demonstrates compelling legitimate grounds for the processing which override your interests, rights and freedoms or the processing serves to establish, exercise or defend legal claims.

If the personal data related to you are processed for direct marketing purposes, then you have the right to object at any time to the processing of the personal data related to you for the purpose of such advertising; this also applies to profiling, insofar as it is associated with such direct marketing.

If you object to the processing for direct marketing purposes, then the personal data related to you will no longer be processed for these purposes.

In the context of the use of information society services, and notwithstanding Directive 2002/58/EC, you have the possibility to exercise your right to object by automated means using technical specifications.


8. Right to Revoke the Data Protection Declaration of Consent

You have the right to revoke your data protection declaration of consent at any time. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until revocation.


9. Automated Individual Decision-making, Including Profiling

You have the right not to be subject to a decision based solely on automated processing – including profiling – which produces legal effects concerning you or significantly affects you in a similar manner. This does not apply if the decision

(1) is necessary for entering into or performance of a contract between you and the party responsible,

(2) is authorised by Union or Member State law to which the controller is subject and which also lays down suitable measures to safeguard your rights and freedoms and legitimate interests, or

(3) is based on your express consent.

However, these decisions may not be based on special categories of personal data pursuant to Article 9 Paragraph 1 of the EU General Data Protection Regulation (GDPR), unless Article 9 Paragraph 2 lit. a) or g) GDPR applies and appropriate measures have been taken to protect your rights and freedoms and your legitimate interests.

In the cases referred to in (1) and (3) the controller shall implement suitable measures to safeguard your rights and freedoms and legitimate interests, which include at least the right to obtain human intervention on the part of the controller, to express your point of view and to contest the decision.


10. Right to Lodge a Complaint with a Supervisory Authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relate to you violates the EU General Data Protection Regulation (GDPR).

The supervisory authority with which the complaint has been lodged shall inform the complainant on the progress and the outcome of the complaint including the possibility of a judicial remedy pursuant to Article 78 of the EU General Data Protection Regulation (GDPR).

PRIVACY STATEMENT

We are committed to protecting your privacy. We strictly limit access to customer information to staff who have a business purpose to learn about individual customers who are in their specific territory. Information is protected by industry standard security measures. We constantly review our systems and data to ensure the best possible service to our customers that upholds their right to privacy and security.

We will not sell, share, or rent your personal information to any third party or use your e-mail address for unsolicited mail. Any emails sent by Sugatsune Europe will only be in connection with the provision of agreed services and products or to any e-mail marketing which you have actively agreed to be a part of.