The Endress+Hauser SE+Co. KG and its affiliated companies (“Endress+Hauser”, “we” or “us”) attribute great importance to the protection of your personal data. Therefore, we conduct our business in compliance with applicable laws on protection of personal data and data security.
By visiting our websites, you agree with the present Policy, otherwise you have to refrain from the use of our websites.
We reserve the right to adapt this Policy and we will announce such changes on this website. Return regularly to find out about the status of the Policy.
In addition to this Policy, Endress+Hauser can stipulate local privacy policies which can be found, where applicable, under the menu item “Legal / GTC” at the bottom of the page. Any translations of this Policy can be found at the same location. Such local privacy policies precede this Policy in case of conflict.
2. Collected data
Personal data such as name, address, telephone number, email address or other identifying in-formation, will only be collected by us if you provide us with such data voluntarily (e.g. by registration, survey) or if you have consented or the applicable laws on the protection of personal data allow us to do so. Accordingly, you can visit our websites without giving any personal data, provided that the use of the website does not require registration.
We reserve the right to anonymize the data you provided to store it in an aggregated form and to combine it with other data to create anonymous statistics as the case may be (e.g. the number of visitors).
3. Data security
Endress+Hauser will take appropriate technical, administrative and organizational security measures to protect your stored personal data from unauthorized access, improper use, disclosure, loss or destruction. To ensure the confidentiality of these data, we use state of the art IT security systems.
Please note that your data can be lost or can be accessed by unauthorized parties during trans-mission over the Internet or e-mail. We cannot assume any responsibility and expressly disclaim any liability for the security of your data during transmission. It is your own responsibility to ensure that the computer you are using is adequately secured and protected against malicious software and the like. If you cannot ensure this, we ask you to use other means of communication.
4. Use and editing of data
Endress+Hauser collects and uses your personal data primarily to fulfill your requests such as answering your inquiries, processing your orders, the preparation, negotiation, execution and fulfillment of your contracts and to give you access to certain information.
We also have the authority to use your personal data, notably due to legal obligations, govern-mental or judicial order, to establish or protect a legal claim, to defend against a legal claim, for operational testing or revision, in connection with the sale, assignment, or another transfer of the business or to prevent misuse and other illegal activities.
To maintain customer relationships, it may be necessary to store and process your personal data, in order to better respond to your needs or to improve our products and services. Also, we or a third party on our behalf, may use personal data to inform you about products and services from Endress+Hauser, that we believe could be of interest to you or to carry out online survey.
5. Distribution of data
Apart from the cases provided by this Policy, your personal data will not be sold, transmitted or otherwise distributed to third parties.
To the extent necessary for the purposes listed under clause 4, we pass your personal data to affiliated companies of the Endress+Hauser Group or to third parties instructed by us. In particular, your personal data may be viewed by external companies and representatives that are doing technological maintenance or working on our behalf to help fulfill business transactions. All these companies and agents are required to maintain strict confidentiality.
It may happen that certain personal data is stored or processed at computers located in jurisdictions that do not have the same privacy laws as your country of residence. Therefore, we take the highest privacy standards of the countries in which we do business as a basis for our data protection measures.
When accessing our websites data is automatically collected by one or more small file(s) – so-called Cookies – which are sent to your computer and saved automatically. This collected data cannot be assigned to a specific person. The data notably includes such as the Internet browser and the operating system used, the domain name of previously visited webpages, the number of visits to our websites, visited websites or the average residence.
For the storage of preferences and data that are needed during a visit to the website (session management and personalization), we use first-party Cookies, this means Cookies that belong to the domain that appears in the address bar of the browser. To keep track of user trends and patterns (tracking) we use third-party Cookies, this means Cookies that do not belong to the domain that appears in the address bar of the browser.
The data thus collected we use to continuously improve the quality of our services, to evaluate the attractiveness of our websites and to improve the performance and the content of our websites. Collected data from third-party Cookies are processed by third parties on our behalf. Third-party Cookies are exclusively used by our websites and the provider of web statistics and are not shared with other third parties.
Most browsers support Cookies and allow visitors their blocking. You can set your browser so that all Cookies will be rejected or that you will receive a message when a Cookie is being sent. However, some functions or services on our websites will not work properly or will not work at all without Cookies.
7. Links to other webpages
Our websites may contain links to other webpages, these webpages are not covered by this Policy. Although we strive to link only webpages that adhere to the same high privacy policies as Endress+Hauser, we are not responsible for the privacy policies or the content of such other webpages.
8. Right to information and contact
At your request, Endress+Hauser will inform you within a reasonable period of time in writing and in accordance with the applicable law, whether and which personal data of you is stored in our systems. If, despite our efforts to maintain data accuracy and timeliness, incorrect data should be stored in our systems, we will correct it at your request. As a registered user you have the opportunity to view, change or delete the personal data you provided.
For questions concerning your personal data, for information requests as well as suggestions and complaints, you can contact the Law Department of the Endress+Hauser Management SE+Co. KG. Endress+Hauser will respond to all adequate information requests and to all adequate requests to correct, amend or delete personal data.
Data Protection Notice pursuant to the
General Data Protection Regulation (GDPR)
The Endress+Hauser Group (“Endress+Hauser”, “we” or “us”) attaches great importance to the protection
of your personal data. We therefore conduct our business in compliance with applicable laws on
personal data protection and data security.
This Data Protection Notice applies to all affiliated companies of the Endress+Hauser Group in the
EU/EEA. It also applies in addition to the General Data Protection Policy, which has global validity and
takes precedence in case of conflict.
Details of the responsible Endress+Hauser company within the meaning of the GDPR and further information
about the competent supervisory authority can be found on our website.
The relevant company’s internal Data Protection Responsible, or Data Protection Officer if it has one,
can be contacted by post at the address indicated on the website, adding the title “Data Protection Responsible”,
or via email if an email address is given.
2. Purpose of processing, legal basis
We process personal data in accordance with the provisions of the EU General Data Protection Regulation
(GDPR) and national data protection regulations:
a. For fulfilment of contractual obligations (Art. 6 para. 1 b GDPR)
particularly in connection with customer orders, suppliers, service partners and employees
b. To safeguard legitimate interests within the context of a balance of interests (Art. 6 para.1 f GDPR)
To the extent necessary, we process your data beyond the actual fulfilment of the contract in
order to safeguard our legitimate interests or those of third parties. This concerns in particular:
Passing on data within the Endress+Hauser Group
Advertising or market research, unless you have objected to the use of your data
Reviewing and optimising procedures for needs assessment and for direct client discussions,
including client segmentations and calculation of closing probabilities
Asserting legal claims and defence in legal disputes
Guaranteeing IT security
Video surveillance to safeguard domiciliary rights and protect buildings and property from
vandalism and theft
Measures for building and site security (e.g. access control)
Measures to safeguard domiciliary rights
Measures for business management and further development of products and services
Risk management within the Group
c. Based on your consent (Art. 6 para. 1 a GDPR)
Where you have granted us consent to process your personal data for certain purposes (e.g.
filming and photographs, newsletters), such processing is lawful on the basis of your consent.
Consent given can be withdrawn at any time. This also applies to the withdrawal of declarations
of consent that were given to us before the GDPR came into force, i.e. before May 25, 2018.
Please note that the withdrawal is only valid for the future. Data processed prior to the withdrawal
is not affected.
d. Based on legal requirements (Art. 6 para. 1 c GDPR) or in the public interest (Art. 6 para.
We are also subject to various legal obligations, that is to say, statutory requirements (e.g.
checks against anti-terrorism lists, anti-money laundering legislation). Purposes of processing
include identity checking, fulfilment of verification and reporting obligations in relation to tax
and social security, fraud and money laundering prevention and measurement and management
of risks within the Endress+Hauser Group.
3. Who receives my data?
Within the responsible Endress+Hauser company, those units that require your data to fulfil our contractual
and legal obligations or to safeguard legitimate interests will have access to it.
Affiliated companies of the Endress+Hauser Group, our service providers and vicarious agents appointed
by us, public authorities or third parties may also receive data for such purposes.
In particular, the following recipients or recipients which offer the following activities and services may
Affiliated companies of the Endress+Hauser Group
Endress+Hauser InfoServe as the central data centre
Third party cloud and ASP service providers
Public bodies for compliance with statutory reporting requirements, e.g. financial authorities,
social security institutions, law enforcement agencies
Processing of bank information
Support/maintenance of computer/IT applications
Call centre services
Data screening for anti-money laundering purposes
Credit-checking service providers
Debt collection companies
Payment card processing (debit cards/credit cards) and payment transactions
4. Will data be transferred to a third country or an international organisation?
Data will only be transferred to countries outside the EU or EEA (“third countries”) where necessary to
execute your orders (e.g. production, logistics), where legally required (e.g. to meet tax reporting obligations),
where you have given us your consent, or for the purposes of contract data processing. Data
may also be exchanged with affiliated companies of the Endress+Hauser Group in third countries, including
Switzerland in particular.
Where use is made of service providers in third countries, besides written instructions they will also be
bound by EU standard contract clauses on compliance with the data protection levels applicable in the
EU. Appropriate contractual agreements have been concluded with affiliated companies of the Endress+Hauser Group.
5.How long will my data be stored?
We process and store your personal data for as long as necessary to fulfil our contractual and legal obligations.
We will delete your personal data once it is no longer needed for the above purposes. It is possible
that personal data may be stored for the period in which claims can be asserted against our companies
(statutory limitation periods range from three to thirty years). We will also store your personal
data for as long as we are legally obliged to do so. Commercial and tax legislation imposes corresponding
documentation and retention obligations.
6. What are my data protection rights?
Every data subject has the right of access to information pursuant to Article 15 GDPR. Subject to certain
conditions, every data subject has the right to rectification pursuant to Article 16 GDPR, the right to restrict
processing pursuant to Article 18 GDPR and the right to deletion pursuant to Article 17 GDPR.
Furthermore, every data subject has the right to receive the personal data which they have provided in
a structured, commonly used and machine-readable format (data portability) pursuant to Article 20
GDPR, provided the processing is carried out by automated means and is based on consent.
Concerning the right to information and the right of deletion, for responsible companies of the Endress+
Hauser Group with registered office in Germany, the limitations set out in Sections 34 and 35 of
the German Federal Data Protection Act (BDSG) are applicable.
Every data subject has the right to lodge a complaint with a supervisory authority, particularly in the
Member State of his or her habitual residence, place of work or place of the alleged breach of data protection
(Article 77 GDPR). Further information about the competent supervisory authority can be found
on our website.
You may revoke your consent to the processing of personal data at any time. This also applies to the
withdrawal of declarations of consent that were given to us before the GDPR came into force, i.e. before
May 25, 2018. Please note that the withdrawal is only valid for the future. Data processed prior to the
withdrawal is not affected.
7. Right of objection
In addition to the rights referred to above, you also have a right of objection as follows.
Information about your right of objection pursuant to Article 21 of the EU General Data Protection Regulation
(GDPR) 1. Right of objection in relation to a specific case
You have the right to object at any time, on grounds relating to your particular situation, to processing
of your personal data which is based on Art. 6 para. 1 e GDPR (data processing in the public interest)
and Art. 6 para. 1 f GDPR (data processing for the purposes of legitimate interests); this includes profiling
based on those provisions within the meaning of Art. 4 para. 4 GDPR. If you object, we will no
longer process your personal data, unless we are able to demonstrate compelling legitimate grounds for
the processing which override your interests, rights and freedoms, or show that the processing serves
for the establishment, exercise or defence of legal claims.
2. Right of objection against processing of data for marketing purposes
In individual cases, we may process your personal data for direct marketing purposes. You have the
right to object at any time to the processing of your personal data for such marketing; this also includes
profiling where related to such direct marketing. If you object to processing for direct marketing purposes,
we will no longer process your personal data for such purposes.
The objection may be submitted, without any requirements as to form, to the person indicated in Section 1.
8. Right of complaint
You have the right to lodge a complaint with the person indicated in Section 1 or with a supervisory authority,
particularly in the Member State of your habitual residence, place of work or place of the alleged
breach of data protection (Article 77 GDPR).
9. To what extent are decisions taken automatically?
In establishing and maintaining business relations, we generally refrain from fully automated decisionmaking
pursuant to Art. 22 DSGVO. If we use such methods in individual cases, we will inform you separately
insofar as we are legally required to do so.
10. Is profiling carried out?
We process some of your data automatically, with the aim of assessing certain personal aspects (profiling).
For example, we use profiling in the following cases:
– Due to legal requirements, we are obliged to compare data against anti-terrorism lists.
– We use assessment tools in order to specifically notify you and advise you about products.
These allow communications and marketing to be tailored according to need.