Privacy Policy

Thank you for visiting the Sulzer GmbH website and for your interest in our company. We take the protection of your personal data seriously and want you to feel safe and comfortable when visiting our internet pages.

Responsible entity

The data controller of this website is:

Sulzer GmbH
Frankfurter Ring 162
80807 Munich, Germany

Phone: +49 89 31858 0
E-mail: zentrale@sulzer.de

The controller decides alone or jointly with others on the purposes and means of the processing of personal data.

Data Protection Officer

Sulzer GmbH has appointed a data protection officer.

Contact details:
Frankfurter Ring 162
80807 Munich

Phone: +49 89 31858 336
E-mail: datenschutz@sulzer.de

Your rights

As a user of our website, you have various rights under the GDPR, which arise in particular from Art. 15 to 18, 21 GDPR:

1) Right of access by the data subject
You can request information pursuant to Art. 15 GDPR about your personal data processed by us.

2) Right to rectification
If the information concerning you is not (or no longer) accurate, you can request a correction in accordance with Art. 16 GDPR. If your data is incomplete, you can request that it be completed.

3) Right to erasure
You can request the deletion of your personal data under the conditions of Art. 17 GDPR. Your right to erasure depends, among other things, on whether the data concerning you is still needed by us to fulfill our legal duties.

4) Right to restriction of processing
Within the framework of the requirements of Art. 18 GDPR, you have the right to request a restriction of the processing of the data concerning you.

5) Right to object
According to Art. 21 GDPR, you have the right to object to the processing of data relating to you at any time for reasons arising from your particular situation. However, we cannot always comply with this, e.g. if legal provisions oblige us to process data within the scope of our task fulfillment.

6) Right to Complain
If you believe that we have not complied with data protection regulations when processing your data, you can lodge a complaint with the supervisory authorities:

https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html

SSL or TLS encryption

For security reasons and to protect the transmission of confidential content that you send to us as site operator, our website uses SSL or TLS encryption. This means that data that you transmit via this website cannot be read by third parties. You can recognize an encrypted connection by the “https://” address line of your browser and the lock symbol in the browser line.

Server log files

In server log files, the provider of the website automatically collects and stores information that your browser automatically transmits to us. These are:

• IP address
• Date and time of the request
• Request content
• Access status/HTTP status code
• Browser type
• Language and version of the browser software
• Operating system

There is no merging of this data with other data sources. The data processing is based on Art. 6 para. 1 lit. b GDPR, which permits the processing of data for the fulfillment of a contract or pre-contractual measures.

Contact form

Data transmitted via contact form will be stored, including your contact data, in order to process your request or to be available for follow-up questions. This data will not be passed on without your consent.

The processing of the data entered in the contact form is based exclusively on your consent (Art. 6 para. 1 lit. a GDPR). A revocation of your already given consent is possible at any time. An informal communication by e-mail is sufficient for the revocation. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.

Data transmitted via the contact form will remain with us until you request us to delete it, revoke your consent to store it, or there is no longer any need to store the data. Mandatory legal provisions – in particular retention periods – remain unaffected.

Application possibility

You can apply on our website. When you apply, we collect and store the data you enter in the input mask. We process your data only for the purpose of processing your application. It will not be passed on to third parties. The legal basis for processing is Section 26 (1) BDSG and Art. 6 (1) lit. b GDPR. If we are unable to offer you a position, we will store your data for a maximum of 6 months after the end of the application process.

Cookies

The Sulzer GmbH website uses HTTP cookies to store user-specific data. Cookies store certain user data from you, such as language or personal page settings. When you return to our site, your browser transmits the “user-related” information back to our site. Thanks to the cookies, our site knows who you are and offers you your usual default setting.

Essential-cookies

These cookies are necessary to ensure basic functions of the website.

Functional-cookies

These cookies collect information about user behavior and whether the user receives any error messages. In addition, these cookies are also used to measure the loading time and the behavior of the website with different browsers. In addition, these cookies provide a better user experience. For example, entered locations, font sizes or form data are saved.
Sulzer GmbH uses cookies to the following providers:

• Google Tag Manager
• Google Analytics
• Google Maps
• YouTube video
• Usercentrics Consent Management Platform
• StackPath LLC

Detailed information is available in the privacy settings. These include:

• Processing company
• Data processing purposes
• Technologies used
• Data collected
• Legal basis
• Place of processing
• Retention period
• Data recipient
• Data protection officer of the processing company
• Transfer to third countries

Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyze how users use the site. You can find out more about how Google uses this data here:

https://policies.google.com/technologies/partner-sites?hl=de

The transfer of data to the USA takes place on the basis of the standard contractual clauses that we have concluded with Google. See also the legal framework for data transfers from Google at https://policies.google.com/privacy/frameworks?hl=de. Google Analytics is only used if you have given your consent to this. The legal basis is Art. 6 para. 1 p. 1 lit. a GDPR.

Google Maps

This website uses the map service Google Maps via an API. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. To use the functions of Google Maps, it is necessary to store your IP address. This information is usually transferred to a Google server in the USA and stored there. The provider of this site has no influence on this data transmission.

The transfer of data to the USA takes place on the basis of the standard contractual clauses that we have concluded with Google. You can find out more about how Google uses this data here: https://policies.google.com/technologies/partner-sites?hl=de

Google Maps is only used if you consent to the use of Google Maps. The legal basis is your consent according to Art. 6 para. 1 p. 1 lit. a GDPR.
More information on the handling of user data can be found in Google’s privacy policy:

https://www.google.de/intl/de/policies/privacy/

Social media plug-ins

The internet presence of Sulzer GmbH uses plug-ins and functions of the social networks Instagram (Facebook), Twitter, Xing, LinkedIn, Youtube (Google). These services are provided by:

• Twitter Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA
• LinkedIn Ireland Limited Company, Wilton Place, Dublin 2, Irland
• Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland (Instagram)
• Xing SE, Dammtorstraße 30, 20354 Hamburg, Germany,
• Google Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA

Instagram (Facebook)

Sulzer GmbH has a profile on Instagram. The legal basis for the processing is Art. 6 para. 1 p. 1 lit. f GDPR. The target group-specific design of the posts is a legitimate interest. Facebook Ireland assumes primary responsibility under GDPR for the processing of Insights data. You can view this agreement at the following link:
https://www.facebook.com/legal/terms/page_controller_addendum

You can adjust your advertising settings independently in your user account. To do so, click on the following link and log in:
https://www.facebook.com/settings?tab=ads

For details, please refer to Facebook’s privacy policy:
https://www.facebook.com/about/privacy/

Twitter

Sulzer GmbH uses a Twitter account of the operator Twitter International Company. To adjust your settings in your profile on Twitter, please use this link:
https://twitter.com/personalization

You can find Twitter’s privacy policy here:
https://twitter.com/de/privacy

Xing

Sulzer GmbH uses a Xing account of the operator XING SE. The privacy policy of Xing can be found here:
https://privacy.xing.com/de/datenschutzerklaerung

LinkedIn

Sulzer GmbH uses a LinkedIn account of the operator LinkedIn Ireland Unlimited Company. To adjust your settings in your profile on LinkedIn, please use this link:

https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

You can find LinkedIn’s privacy policy here:

https://www.linkedin.com/legal/privacy-policy

Youtube (Google)

Sulzer GmbH uses a Youtube of the operator Google Ireland Limited. For more information on YouTube’s official privacy policy, click here:

https://www.youtube.com/t/privacy_at_youtube

Newsletter

If you subscribe to our company’s newsletter, the data in the respective input mask will be transmitted to the controller. The registration for our newsletter takes place in a so-called double opt-in procedure. This means that after registration, you will receive an e-mail in which you are asked to confirm your registration. This confirmation is necessary so that no one can register with foreign e-mail addresses. When registering for the newsletter, the user’s IP address and the date and time of registration are stored. This serves to prevent misuse of the services or the e-mail address of the person concerned. The data is not passed on to third parties. An exception exists if there is a legal obligation to pass on the data. The data is used exclusively for sending the newsletter. The subscription to the newsletter can be cancelled by the data subject at any time. Likewise, consent to the storage of personal data can be revoked at any time. For this purpose, a corresponding link can be found in each newsletter. The legal basis for the processing of the data after registration for the newsletter by the user is, if the user has given his consent, Art. 6 para. 1 lit. a) DSGVO. The legal basis for sending the newsletter as a result of the sale of goods or services is Section 7 (3) UWG.

Use of rapidmail

Description and purpose: We use rapidmail for sending newsletters. The provider is rapidmail GmbH, Wentzingerstraße, 21, 79106 Freiburg, Germany. Among other things, rapidmail is used to organize and analyze the dispatch of newsletters. The data you enter for the purpose of receiving the newsletter is stored on rapidmail’s servers in Germany. If you do not want any analysis by rapidmail, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in every newsletter message. Furthermore, you can also unsubscribe from the newsletter directly on the website. For the purpose of analysis, the e-mails sent with rapidmail contain a so-called tracking pixel, which connects to the servers of rapidmail when the e-mail is opened. In this way, it can be determined whether a newsletter message has been opened. Furthermore, with the help of rapidmail, we can determine whether and which links in the newsletter message are clicked. All links in the e-mail are so-called tracking links, with which your clicks can be counted. Depending on the font with which the respective newsletter is designed, a connection to external servers such as Google Fonts takes place.

Legal basis: The legal basis for data processing is Art. 6 para. 1 lit. a) DSGVO.

Recipient: The recipient of the data is rapidmail GmbH.

Transmission to third countries: There is no transmission of data to third countries.

Duration: The data stored by us as part of your consent for the purpose of the newsletter will be stored by us until you unsubscribe from the newsletter and deleted from both our servers and the servers of rapidmail after you unsubscribe from the newsletter. Data stored by us for other purposes (e.g. e-mail addresses for the member area) remain unaffected by this.

Possibility of revocation: You have the possibility to revoke your consent to data processing with effect for the future at any time. The legality of the data processing operations already carried out remains unaffected by the revocation.

Further data protection information: For more details, please refer to the data security notices of rapidmail at: https://www.rapidmail.de/datensicherheit. For more details on the analysis functions of rapidmail, please refer to the following link: https://www.rapidmail.de/wissen-und-hilfe

Salesforce and Newsletter

If you would like to receive the newsletter offered on the website with regular information about our offers and products, we require your e-mail address as mandatory information. Additional data is provided in order to be able to address you personally in the newsletter and/or to identify you if you wish to exercise your rights as a data subject.

We use the so-called double opt-in procedure to send the newsletter. This means that we will only send you our newsletter by email if you have expressly confirmed to us that you consent to the sending of newsletters. In the first step, you will receive an e-mail with a link that you can use to confirm that you, as the owner of the corresponding e-mail address, wish to receive future newsletters. By confirming, you give us your consent in accordance with Art. 6 para. 1 lit. a GDPR that we may use your personal data for the purpose of sending the desired newsletter.

When you register for the newsletter, in addition to the e-mail address required for sending the newsletter, we store the IP address you used to register for the newsletter as well as the date and time of registration and confirmation in order to be able to trace possible misuse at a later date.

You can unsubscribe from the newsletter at any time via the link included in every newsletter or by sending an email to the controller named above. Once you have unsubscribed, your e-mail address will be deleted from our newsletter distribution list immediately, unless you have expressly consented to the continued use of the data collected or the continued processing is otherwise permitted by law.

Our e-mail newsletters are sent via the technical service provider Inc, 415 Mission St, 94105, San Francisco (“salesforce.com”), to whom we pass on the data you provided when registering for the newsletter. This transfer takes place in accordance with Art. 6 para. 1 lit. f GDPR and serves our legitimate interest in using an effective, secure and user-friendly newsletter system. The data you enter for the purpose of subscribing to the newsletter (e.g. email address) is stored on salesforce.com’s servers in the USA.

Salesforce.com uses this information to send and statistically analyze the newsletter on our behalf. For evaluation purposes, the emails sent contain so-called web beacons or tracking pixels, which are one-pixel image files stored on our website. This makes it possible to determine whether a newsletter message has been opened and which links have been clicked on. Conversion tracking can also be used to analyze whether a predefined action (e.g. purchase of a product on our website) has taken place after clicking on the link in the newsletter. Technical information is also collected (e.g. time of access, IP address, browser type and operating system). The data is collected exclusively in pseudonymized form and is not linked to your other personal data; direct personal reference is excluded. This data is used exclusively for the statistical analysis of newsletter campaigns. The results of these analyses can be used to better tailor future newsletters to the interests of recipients.

If you wish to object to data analysis for statistical evaluation purposes, you must unsubscribe from the newsletter.

We have concluded an order processing contract with salesforce.com in which we oblige salesforce.com to protect our customers’ data and not to pass it on to third parties.

At Salesforce, trust is #1 value. Nothing is more important than the success of our customers and the privacy of our customers’ data. We have a robust privacy program that meets the highest standards in the industry and, as part of that program, we offer various transfer tools and frameworks to facilitate the free flow of personal data around the globe. These include: (i) EU and UK Binding Corporate Rules (“BCRs”) for processors; (ii) Standard Contractual Clauses; (iii) certification to the Data Privacy Frameworks (EU-US, Swiss-US, and UK Extension), and (iv) the APEC Privacy Framework (CBPRs and PRPs), together with robust supplementary measures where required. If you have questions specifically relating to our data processing addendum (“DPA”), please see our DPA FAQ.

Modification of the privacy policy

We reserve the right to adapt the content of this privacy policy at any time in order to comply with current legal requirements, as well as to implement changes to our services.

The new privacy policy will then automatically apply each time you visit our website again.