Login

PERI data protection statement

Data protection statement as well as information for data subjects in accordance with art.13 and art.14 EU-General Data Protection Regulation (GDPR)

 

General information

The responsible party in terms of the GDPR and other national data protection laws of the Member States and other data protection provisions is:

PERI BeNeLux B.V.
Bekistingen Steigers Engineering
Van Leeuwenhoekweg 23
5482 TK Schijndel
The Netherlands
Tel.: +31 (73) 5 47 91 00
info@peri.nl
www.peri.nl

Contact data of the data protection officer

Our data protection officer can be reached as follows: datenschutz@peri.de

General data processing information
Affected data:
Personal data will only be collected if you inform us of this yourself. In addition, no personal data is collected. Any processing of your personal data that goes beyond the scope of statutory authorisations is only possible on the basis of your express consent.

Affected data: Data communicated in order to execute the contract; if necessary, additional data for processing on the basis of your express consent.

Purpose of processing: Execution of the contract, incl. among other things, quotations, orders, sales and invoicing, quality assurance. In addition, we use the data to improve the application.

Categories of recipients: Public authorities in the case of priority legislation 

External service providers or other contractors, subsidiaries, etc. for data processing and hosting, for shipping, transport and logistics, service providers for printing and sending information and call centres. In addition, for creating personalised quotations.

Other external bodies insofar as the data subject has given his consent or transmission is permitted due to an predominant interest, incl. among other things, a credit check in the case of purchase on account, for sending information electronically, for quality assurance purposes.

Third country transfers: Within the scope of carrying out the contract, order processors can also be used outside the European Union, including: e-mail providers.

 

Specific information concerning this application
Description and scope of data processing

Each time the application is accessed, our system automatically collects data and information from the computer system of the accessing computer.

In connection with this, the following data is collected:

  1. Information about the browser type and the version which is used
  2. The operating system of the user
  3. The Internet service provider of the user
  4. The IP address of the user
  5. Date, time and duration of access
  6. Websites from which the system of the user came to our website
  7. Websites that are accessed by the user's system through our website
  8. Domain name of your Internet access provider
  9. Number of cycles sent to the regulations service per project
  10. Data size of enquiries
  11. Called commands
  12. Response time of the called services

The data is also stored in the log files of our system. Storage of this data together with other personal data of the user does not take place.
The legal basis for the temporary storage of data and log files is art. 6 para. 1f GDPR.

 

Purpose of data processing

The temporary storage of the IP address by the system is necessary in order to allow delivery of the website to the user's computer. In order to do this, the user's IP address must be kept for the duration of the session.
Storage is done in log files in order to ensure the functionality of the application. In addition, the data is used to optimise the app and to ensure the security of our information technology systems. In this context, an evaluation of the data for marketing purposes does not take place. For these purposes, our legitimate interest lies in the processing of data in accordance with art.6 para. 1f GDPR.

Duration of storage

The data will be deleted as soon as it is no longer necessary to achieve the purpose of its collection. In the case of collecting the data for providing the website, this is the case when the respective session is completed.
In the case of storing the data in log files, this is the case after seven days at the latest. Additional storage is possible. In this case, the IP addresses of the users are deleted or made anonymous, so that an assignment of the calling client is no longer possible.

Possibility to oppose the storage of date and to eliminate data

The collection of the data for the provision of the website and the storage of the data in log files is essential for the operation of the application. As a result, there is no possibility to oppose on the part of the user.

Registration of the application

Within the application and in order to use further personalised functions of the application (e.g. the assignment of your specialist adviser), it is possible to register. In connection with this, the following information will be sent to us:
* Mandatory field
Title*
First name and surname*
Full address*
E-mail address*
Password*
Company*;
Street,*
Postcode,*
City;*
Country;*
Customer number *

There is the student/pupil flag for further distinction, which then appears instead of company, school or college.
In addition, the following data will be collected upon registration:

  1. Date and time of registration
  2. Credentials

Your consent to the processing of the data will be obtained as part of the registration process and reference will be made to this data protection statement. We use this data exclusively for the assignment of your specialist adviser. The data that you enter during the registration for the newsletter will remain with us until you approach us with an appropriate message. With the de-registration process, you object to the use of your e-mail address for publicity by e-mail.

The passing on of your data to third parties only takes place if you have consented to this (art. 6 para. 1a GDPR), if this is required within the context of our legal obligations (art. 6 para. 1c GDPR) or insofar as this is necessary to safeguard our legitimate interests or the legitimate interests of a company affiliated with us as defined by sect. 15 of the German Companies Act (AktG) (art. 6 para. 1f GDPR). A list of the companies in our Group is available here. Our legitimate interest lies in the Group-wide management of customer data and the data of prospective customers.

Transfer of data to third parties

We work with various service providers to implement the PERI website. They are obliged to process data strictly in accordance with instructions as processors in accordance with Art. 26 GDPR. Any further disclosure of your data to third parties will only take place if you have consented to this (Art. 6 para. 1 letter a) GDPR), if this is necessary within the scope of our legal obligations (Art. 6 para. 1 letter c) GDPR) or if this is necessary to protect our legitimate interests or the legitimate interests of a company affiliated with us within the meaning of § 15 of the German Stock Corporation Act (AktG) (Art. 6 para. 1 letter f) GDPR). A list of our group companies is available here: https://www.peri.com/en/company/sales-contacts-worldwide.html Our legitimate interest lies in the uniform administration of customer and prospective customer data throughout the group. Please note that our affiliates may be located outside the EU, and therefore in a country that does not provide an adequate level of protection in accordance with EU data protection requirements. We undertake to take all reasonable steps to ensure that users' personal data are adequately protected when transferred to a country other than the one in which they are located and that this protection complies with the criteria set out in this privacy statement.

 

Contact form and e-mail contact
Description and scope of data processing

There is a contact form on our application that can be used for making contact electronically. If a user takes advantage of this option, the data entered in the input mask will be transmitted to us and stored. These data are:
* Required field
Email *

E-mail dispatch via Twilio SendGrid

As a user of myPERI, you will be informed by e-mail about various topics. In doing so, we access the following information:
• E-mail address
• Company Information
• Project information

For this purpose, the communication platform SendGrid is connected to myPERI as a processor. The purpose is to inform users about the following topics:
• Setting up your accounts
• Password changes
• Technical drawing notifications
• Notifications of changes to the portal

For the processing of the data, your consent is obtained as part of the registration process and reference is made to the terms of use and privacy policy. The legal basis for the processing of the data is Art. 6 para. 1 lit. a GDPR if the user has given his consent. Your entered data will remain stored with us until you contact us by means of a corresponding notification. The following data is processed:
• Validation of the e-mail address
• When the email was opened
• Click on links

The data is used to improve and optimize the means of communication to ensure the best possible experience for you. After seven days, these are automatically anonymized.

An objection to the use of your above-mentioned personal data by sending an e-mail is possible at any time at: mailto:portal@peri.com. Since the myPERI platform is technically dependent on the sending of these mails, a contradiction means that the platform can no longer be used by the person concerned.

 

Google Analytics

Use of Google Analytics

This application uses Google Analytics, a web analytics service provided by Google Inc. ("Google"). Google Analytics uses so-called "cookies". These are text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, if IP anonymization is activated on this website, your IP address will be truncated by Google beforehand within member states of the European Union or other parties to the Agreement on the European Economic Area. The full IP address will only be sent to a Google server in the US and truncated there in exceptional cases. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

You can prevent the storage of cookies by correspondingly setting your browser software; however, we would like to point out that in this case, you may not be able to use all the functions of this application in full.

You may also prevent the collection of the data generated by the cookie and related to your use of the website (including your IP address) by Google as well as the processing of this data by Google by downloading and installing the browser plug-in available at the following link [http://tools.google.com/dlpage/gaoptout?hl=en].

In view of the discussion about the use of analysis tools with full IP addresses, we would like to point out that this website uses Google Analytics with the "_anonymizeIp()" extension. As such, IP addresses are only truncated in order to exclude a direct personal reference. Especially in the case of browsers on mobile devices, please click this link in order to prevent the anonymous collection by Google Analytics on this website for your browser in the future, by means of a so-called "opt-out cookie".

Application Insights

We use Application Insights in some of our services and apps. This is a service of the Microsoft Azure cloud platform, One Microsoft Way, Redmond, WA 98052-6399, USA ("Microsoft").
This service collects telemetry data relating to the application that is used. These data are anonymous statistical data. It is not possible to produce a personal reference on the basis of this data.
On the following page, Microsoft describes in detail what Application Insights does, what data is processed, and how long they are stored: https://docs.microsoft.com/de-de/azure/application-insights/app-insights-data-retention-privacy

Application Insights places a cookie in the browser of the website visitor. This allows an analysis of the visitor's use of the website. The information generated by the cookie about your use of our website is usually transmitted to a Microsoft server within the EU and stored there. In exceptional circumstances, Microsoft may also transfer the data for maintaining the service to servers outside the EU.

For more information from Microsoft concerning data protection and Azure, visit: http://azure.microsoft.com/en-us/support/trust-center/privacy

Use of own "Cookies"

This application uses its own "Cookies" in order to enhance user-friendliness ("Cookies" are sets of data sent by the web server to the user's browser for later retrieval). No personal data is stored in our own "Cookies". You can generally prevent the use of "Cookies" if you prohibit the storage of "Cookies" in your browser.

Further information and contacts

In addition, you may invoke your claims for access, rectification or cancellation at any time. You can also limit the processing of data or exercise your right to object to the processing of data. You may also exercise the right to data portability. This is where you will find the opportunity to contact us by e-mail or letter [Datenschutz@peri.de]. In the event of complaints, you also have the right to contact the data protection supervisory authority.

Rights of the data subject
Right to information, correction, deletion, restriction and transfer

If the legal requirements are met, you have the right to request information from us about personal data or data processing concerning you (Art. 15 GDPR), correction, deletion and restriction of personal data or data processing concerning you (Art. 16 to 18 GDPR), and the transfer of personal data concerning you (Art. 20 GDPR).

Right of revocation

In addition, you have the right to object to data processing based on a "legitimate interest" of the controller pursuant to Art. 6 para. 1 letter f) GDPR if the legal requirements of Art. 21 GDPR are met.
You have the right to revoke your data privacy declaration of consent at any time. The revocation of consent shall not affect the legality of the processing carried out on the basis of the consent until revocation.

Automated decision in individual cases including profiling

You have the right not to be subject to a decision based exclusively on automated processing – including profiling – that has legal effect against you or significantly impairs you in a similar manner. This does not apply if the decision

(1) is necessary for the conclusion or performance of a contract between you and the controller,
(2) is admissible under the laws of the Union or the Member States to which the controller is subject, and where such laws contain appropriate measures to safeguard your rights and freedoms and your legitimate interests, or
(3) is taken with your express consent.

However, these decisions may not be based on special categories of personal data pursuant to Art. 9 para. 1 GDPR, unless Art. 9 para. 2 letter a or g applies and appropriate measures have been taken to protect your rights and freedoms and your legitimate interests.
In the cases referred to in (1) and (3), the controller shall take reasonable measures to safeguard your rights, freedoms and legitimate interests, including at least the right to seek the intervention of a person by the controller, to state your position and to challenge the decision.
To exercise all these rights, please contact us at the e-mail address data.protection@peri.com or the postal address of our data protection officer: Dr. Sebastian Kraska, Marienplatz 3, 80331 Munich.

 

Right of appeal to a supervisory authority

Pursuant to Art. 77 para. 1 GDPR, you have the right to complain to the supervisory authority if you believe that the processing of your personal data is not carried out lawfully, and in particular if it violates the GDPR.

The address of the supervisory authority with jurisdiction over us is:

Autoriteit Persoonsgegevens
[Dutch Data Protection Authority]
Postbus 93374
2509 AJ Den Haag
The Netherlands
Tel.: +31 (0) 88 180 5250
Fax: +31 (0) 88 071 2140
Website: https://www.autoriteitpersoonsgegevens.nl/