CEQUENS collects a series of general information and data when you use our site. This general information and data are stored in our server log files. The information and data collected may include the following: the browser types and versions used, the operating system used by the accessing system, the website from which an accessing system reaches our website (so-called referrers), the sub-websites, the date and time of access to the Internet site, an Internet Protocol address (IP address), the Internet service provider of the accessing system, and any other similar information and data that may be used in the event of attacks on our information technology systems.
When using this general information and data, we will not draw any conclusions about you. Rather, this information is needed to ensure that the content of our website is being continuously optimized and correctly delivered.
The anonymous data of the server log files are stored separately from all personal data that you provide that is mentioned above.
If you have any inquiry regarding the collection or processing of your data, you can contact our Data Architect at any time through the following email:
Processing of Personal Data during Your Use of Our Website
Your visit to our website and/or use of our online services will be logged. The IP address currently used by your device, date and time of access, the browser type and operating system of your device, and the pages accessed may be recorded.
- http://cequens.com/ is developed using HubSpot, therefore the logs are supposedly stored at HubSpot as well.
This data is collected to optimize and improve our website as well as our online services. The controlling and processing are legally based on legitimate interest as it is in our legitimate interest to protect our website and improve the quality of our services. Additionally, your personal data is only stored if you provide it to us on your own account, e.g., as part of a registration, a survey, an online application, or for online purchases (performance of a contract). We have taken appropriate measures to ensure that the data provided to us during these processes is adequately protected. These measures include, but are not limited to, encryption, access control, segregation of duties, internal audit, etc.
- Data are encrypted only if they are transited using HTTPS.
- All data are stored in a private and secured way but may not be encrypted.
- Some data are stored in an unclear text as follows:
- password is hashed
- sensitive info is masked using # such as Message Text value in SMS
If you wish, you can subscribe to our newsletter on our website https://www.cequens.com/contact by filling out the registration form provided there. The personal data collected in the registration form will only be processed for sending newsletters to your e-mail address and only if you have given your consent to this data controlling. Your personal data will be kept until you unsubscribe from the newsletter by clicking the link “Unsubscribe” provided in each newsletter you receive from us. Please note that you will not receive any newsletters from us anymore after you unsubscribe.
You can use the contact form on our website to contact us for any request. The personal data that you filled out into the contact form will only be processed for answering your request. Filling in and submitting the contact form constitutes an affirmative action by which you have given your consent to the data collecting.
Registration for an Account or to Place an Order
- You request, consent, or authorize the release of your personal data.
- CEQUENS may disclose personal data to CEQUENS’s third-party service providers who have been appointed as data processors to perform functions and services on CEQUENS’s behalf and who will be provided only with personal data necessary to perform the services on CEQUENS’s behalf but are not authorized by CEQUENS to use such data for any other purposes (e.g. providers of services in respect of payment processing, information technology systems, marketing, auditing); who perform services for CEQUENS in connection with the Websites, or to complete or confirm a transaction or series of transactions that you conduct with CEQUENS.
We use this information to provide you with specific services that can only be provided to registered users. If you register your data, you are free to change or delete the data specified during the registration at any time.
Personal data you have given will only be used to purchase and/or deliver our services. Without your personal data, we will not be able to process your order. Your personal data will be stored for as long as needed for us to fulfill our obligations towards you, including but not limited to, delivery of the products or services, providing warranties, support, etc. except where we are legally obliged to further store your data to submit it to public authorities, for example to tax authorities. This storage and transfer of your personal data to public authorities are based on fulfilling a legal obligation.
If you create a customer account, you will not have to send us your personal data every time you access information/materials intended only for registered customers. The personal data that you provided in the registration form will only be processed for creating and maintaining your customer account. Your personal data will only be stored until you delete your account. If you delete your account, your personal data will be deleted without undue delay except where we are legally obliged by law to further store your data. Please note that you will not be able to use your customer account anymore after being deleted.
Subscribing to Our Mailing List
When you use our website, we allow you to subscribe to our mailing list. We will use our mailing list to provide you with the opportunity to learn about our new products and services, updates to our blog or website, and other promotional material. We will only add you to our mailing list if you choose to opt in.
During the registration for the mailing list, we also store the IP address of the computer system assigned by the Internet Service Provider (ISP) and used by you at the time of the registration and the date and time of the registration. The collection of this data is necessary to understand the (possible) misuse of the e-mail address of a data subject at a later date, and it, therefore, serves to protect both you and CEQUENS from potential legal ramifications.
The personal data collected as part of a registration for the mailing list will only be used to send our mailing list. We will not transfer the personal data you provide us with to any third parties at any time. You can terminate your subscription to our mailing list at any time. For revocation of consent, a corresponding link is found in each mailing list. It is also possible to unsubscribe from our mailing list at any time by contacting us through the contact information provided below.
You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You can do this through your browser settings. Since each browser is a little different, look at your browser's Help Menu to learn the correct way to modify your cookies. However, you should be aware that some features of the site may not function at full capacity if you turn cookies off.
CEQUENS hereby confirms that it does not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information unless we provide you with advance notice. This does not include website hosting partners and other parties who assist us in operating our website, conducting our business, or serving our users, so long as those parties agree to keep this information confidential. We may also release information when its release is required to comply with the law, enforce our site policies, or protect our or others' rights, property, or safety.
However, non-personally identifiable visitor information may be provided to other parties for marketing, advertising, or other uses.
We may use third-party service providers to process your personal data. These service providers may be located in countries within and outside the European Union (EU) and the European Economic Area (EEA). We ensure that these service providers process personal data under European data protection legislation to guarantee an adequate data protection level, even if personal data are transferred into a country outside the EEA. No adequate decision of the EU Commission exists. Transfers of personal data to other recipients are not performed except where we are obliged to do so by law. For more information about appropriate safeguards for the international data transfer or a copy of them, please contact our Data Protection Officer.
Data and Information Protection
Personal data provided to us via our website will only be stored until the purpose for which they were processed has been fulfilled.
Our website is scanned regularly for security holes and known vulnerabilities to make your visit to our site as safe as possible. Your data is encrypted and pseudonymized once it is added to our server. Only those who require access to your information for the provision of services to you through CEQUENS will be granted access to it and are further required to keep the information they are exposed to confidential. Furthermore, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology.
Rest assured, we implement various security measures when a user places an order to maintain the safety of your personal information.
You may request that we remove this information at any time by contacting the contact email below.
The criteria used to determine the period of storage of personal data is the respective statutory retention period. After the expiration of that period, the corresponding data is routinely deleted, as long as it is no longer necessary to fulfill the contract or the initiation of a contract.
We process and store your personal data only for the period necessary to achieve the purpose of storage, or as far as this is granted by the European legislator or other legislators in laws or regulations to which the controller is subject. So, if we have your email address because we provide certain services to you, we keep that email address throughout the time we provide those services to you.
If the storage purpose is not applicable, or if a storage period prescribed by the European legislator or another competent legislator expires, the personal data are routinely blocked or erased under legal requirements.
The security of your Personal Information is important to us. However, no method of transmission over the Internet, or method of electronic storage, is 100% secure. While we strive to use commercially acceptable means to protect your Personal Information, we cannot guarantee its absolute security.
In compliance with the various data protection laws, specifically the GDPR, if you are a citizen of an EU country or EEA territory, you have rights to what we can do with the data we collect from you. Your rights and what we do to protect those rights when we manage your data are listed below.
Right of Confirmation
You have the right granted by the European legislator to obtain from us the confirmation as to whether personal data concerning you is being processed. You can contact us at any time to claim this right.
Right of Access
You have the right to request the information that is currently being processed by us. You can also ask us for the purposes of the processing, the categories of personal data concerned, and the recipients or categories of recipients to whom the personal data have been or will be disclosed; in particular, recipients in third countries or international organizations, where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period, the existence of the right to request from the controller rectification or erasure of personal data, or restriction of processing of personal data concerning the data subject, or to object to such processing; the existence of the right to lodge a complaint with a supervisory authority; where the personal data are not collected from the data subject, any available information as to their source.
Furthermore, you have the right to know whether the personal data are transferred to a third country or an international organization. Where this is the case, you shall have the right to be informed of the appropriate safeguards relating to the transfer.
Right to Rectification
You have the right to let us know when your information changes and the information we have on file is no longer accurate. Considering the purposes of the processing, you shall have the right to have incomplete personal data completed, including providing a supplementary statement.
Right to Erasure (Right to be forgotten)
You have the right to request the erasure of personal data without undue delay. Then, we have an obligation to erase your personal data without undue delay where one of the following grounds applies, as long as the processing is not necessary:
- The personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed.
- The data subject withdraws consent to which the processing is based according to point (a) of Article 6(1) of the GDPR, or point (a) of Article 9(2) of the GDPR, and where there is no other legal ground for the processing.
- The data subject objects to the processing pursuant to Article 21(1) of the GDPR. There are no overriding legitimate grounds for the processing, or the data subject objects to the processing pursuant to Article 21(2) of the GDPR.
- The personal data have been unlawfully processed.
- The personal data must be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject.
- The personal data have been collected in relation to the offer of information society services referred to in Article 8(1) of the GDPR.
Right of Restriction of Processing
You shall have the right granted by the European legislator to obtain from the controller restriction of processing where one of the following applies:
- The accuracy of the personal data is contested by the data subject for a period enabling the controller to verify the accuracy of the personal data.
- The processing is unlawful, and the data subject opposes the erasure of the personal data and requests instead the restriction of their use instead.
- The controller no longer needs personal data for the purposes of the processing. Still, they are required by the data subject for the establishment, exercise, or defense of legal claims.
- The data subject has objected to processing pursuant to Article 21(1) of the GDPR pending the verification of whether the legitimate grounds of the controller override those of the data subject.
Right to Data Portability
You shall have the right granted by the European legislator to receive the personal data concerning you, which was provided to a controller, in a structured, commonly used, and machine-readable format. You shall have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, as long as the processing is based on consent pursuant to point (a) of Article 6(1) of the GDPR or point (a) of Article 9(2) of the GDPR, or on a contract pursuant to point (b) of Article 6(1) of the GDPR, and the processing is carried out by automated means, as long as the processing is not necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
Furthermore, in exercising your right to data portability pursuant to Article 20(1) of the GDPR, you shall have the right to have personal data transmitted directly from one controller to another, where technically feasible and when doing so does not adversely affect the rights and freedoms of others.
Right to Object
You shall have the right granted by the European legislator to object, on grounds relating to your situation at any time, to processing of personal data, which is based on point (e) or (f) of Article 6(1) of the GDPR. This also applies to profiling based on these provisions.
We shall no longer process the personal data in the event of the objection unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights, and freedoms of you or for the establishment, exercise, or defense of legal claims.
If we process personal data for direct marketing purposes, you shall have the right to object at any time to the processing of personal data for such marketing. This applies to profiling to the extent that it is related to such direct marketing. If you object to the processing for direct marketing purposes, we will no longer process the personal data for these purposes.
In addition, you have the right, on grounds relating to your situation, to object to the processing of personal data concerning you for scientific or historical research purposes, or for statistical purposes pursuant to Article 89(1) of the GDPR, unless the processing is necessary for the performance of a task conducted for reasons of public interest.
Right to Withdraw Data Protection Consent
You shall have the right granted by the European legislator to withdraw your consent to the processing of your personal data at any time.