Privacy and Cookie Policy

Global data protection declaration

The CODESYS Group is committed to adhering to uniform data protection principles worldwide when handling customer data, which are in accordance with the laws of each country.

Data privacy
We, the CODESYS Corporation, are responsible for this online offer at https://us.store.codesys.com and, as the provider of a teleservice, have to inform you at the beginning of your visit to our online offer about the type, scope and purposes of the collection and use of personal data in precise, transparent, understandable and easily accessible form in a clear and simple language. The content of the information must be available to you at all times. We are therefore obliged to inform you which personal data is collected or used. Personal data is all information that refers to an identified or identifiable natural person.

We attach great importance to the security of your data and compliance with data protection regulations. The collection, processing and use of personal data is subject to the provisions of the currently applicable US, European and national laws.  

With the following data protection declaration we would like to show you how we handle your personal data and how you can contact us:


CODESYS Corporation

900 Cummings Center, Suite 403-T
Beverly, MA 01915, USA


The CODESYS Corporation is a member of the CODESYS Group. All data submitted to the CODESYS Corporation via the CODESYS Store are processed in the network of the CODESYS Group and can be displayed to any employee of the CODESYS Group, if needed to fulfil the requested service.


A.    General
General Equal Treatment Act (Germany, AGG): To make it easier to understand, our data protection declaration does without gender-specific differentiation. For the purposes of equal treatment, corresponding terms apply to both sexes. 

Article 4 of the EU Data Protection Ordinance (Germany, DSGVO) sets out what the terms used, e.g. "personal data" or "processing", mean. 

"Users" includes all categories of persons more affected by data processing. This includes, for example, our business partners, customers, interested parties and other visitors to our online offering. 

The personal data of "users" processed in the context of this online offer include inventory data (e.g. names and addresses of customers), contract data (e.g. services used, names of agents, payment information), usage data (e.g. websites visited on our online offer, interest in our products) and content data (e.g. entries in the contact form). 

B.    Specific
Data protection declaration
We guarantee that we will only collect, process, store and use your data in connection with the processing of your enquiries and for internal purposes and to provide services or content requested by you. 

Purpose and basics of data processing
We process personal data of users only in compliance with the relevant data protection regulations. The user's data will only be processed in the following cases of legal permission:  

  • To provide our contractual services (e.g. processing of orders) and online services
  • Processing is required by law
  • If you have given your consent
  • Due to our legitimate interests (i.e. optimization, economic operation and security of our online offer within the meaning of Art. 6 para. 1 lit. f. DSGVO, especially when creating profiles for advertising and marketing purposes)


We would like to show you where the above legal bases are regulated in the DSGVO:

Acquiescence     Art. 6 Abs. 1 lit. a. und Art. 7 DSGVO
Processing for the performance of our services and implementation of contractual measures Art. 6 Abs. 1 lit. b. DSGVO
Processing for the fulfilment of our legal obligations  Art. 6 Abs. 1 lit. c. DSGVO
Processing to protect our legitimate interests Art. 6 Abs. 1 lit. f. DSGVO


We use software for the maintenance of customer data (ERP system) or comparable software based on our legitimate interests (efficient and fast processing of user enquiries). 

The system is operated by us at the CODESYS Group. Data will not be passed on to third parties.

Data transmission to third parties
Data will only be passed on to third parties within the framework of legal requirements. We only pass on user data to third parties if this is necessary, for example, for contractual purposes or on the basis of justified interests in the economic and effective operation of our business, for example when purchasing a CODESYS Store North America product from a third party supplier.

If we use subcontractors to provide our services, we take appropriate legal precautions as well as appropriate technical and organizational measures to ensure the protection of personal data in accordance with the relevant legal regulations.

We would like to point out that due to the use of Google Analytics, data is transmitted when using our online offer.

Transfer of data to a third country or international organisation
Third countries are countries in which the DSGVO is not directly applicable law. In principle, this includes all countries outside the EU and the European Economic Area.

Data is transmitted to a third country or an international organisation. It is taken into account that appropriate/adequate guarantees are available and that you have enforceable rights and effective remedies at your disposal.

You can obtain a copy of the appropriate guarantees by clicking on the links below:

Privacy Shield: https://www.privacyshield.gov/list

standard contractual clauses:
https://eur-lex.europa.eu/LexUriServ/LexUriServ.do?uri=OJ:L:2010:039:0005:0018:EN:PDF 

Duration of storage of your personal data
We adhere to the principles of data economy and data avoidance. This means that we only store the data you provide us for as long as necessary to fulfil the aforementioned purposes or as long as the various storage periods stipulated by the legislator. If the respective purpose expires or after the expiry of the corresponding periods, your data will be blocked or deleted routinely and in accordance with the statutory provisions.

Contacting
If you contact us via e-mail or contact form, you agree to the electronic communication. In the context of contacting us, personal data is collected. Which data is collected in the case of a contact form can be clearly seen in the respective contact form. Your data will be transmitted SSL-encrypted. The information you provide will only be stored for the purpose of processing your inquiry and for possible follow-up questions. 

We would like to give you the legal basis for this:

Processing for the performance of our services and implementation of contractual measures Art. 6 Abs. 1 lit. b. DSGVO
Processing to protect our legitimate interests Art. 6 Abs. 1 lit. f. DSGVO


We would like to point out that e-mails can be read or changed during transmission without authorization and unnoticed. Furthermore, we would like to point out that we use a software for filtering unsolicited e-mails (spam filter). The spam filter can reject emails that have been falsely identified as spam by certain features.

What rights do you have?
a) Right to information
You have the right to obtain information about your stored data free of charge. Upon request, we will inform you in writing what personal data we have stored about you in accordance with applicable law. This also includes the origin and recipients of your data as well as the purpose of data processing.

b) Right to correction
You have the right to have your data stored with us corrected if it is incorrect. You can request a restriction of the processing, e.g. if you dispute the accuracy of your personal data.

c) Right to block 
You can also have your data blocked. To ensure that your data can be blocked at any time, this data must be kept in a lock file for control purposes.

d) Right to cancellation
You can also request the deletion of your personal data, as far as no legal storage obligations exist. If such an obligation exists, we will block your data on request. If the relevant legal requirements are met, we will delete your personal data even if you do not request it.

e) Right to data transferability
You are entitled to require us to provide the personal data transmitted to us in a format that permits the transmission to another location.

f) Right of appeal to a supervisory authority
You have the opportunity to contact one of the data protection supervisory authorities with a complaint to turn it around.

g) Right of objection
You have the possibility to revoke the use of your data for internal purposes at any time with effect for the future. All you need to do is send an e-mail to datenschutz@codesys.com However, such revocation does not affect the legality of the processing procedures carried out by us up to that point. This does not affect data processing with regard to all other legal bases, such as the initiation of contracts (see above).

Protection of your personal data 
All data of the CODESYS Store North America are stored physically on a server located in the European Union, hosted by the company maxcluster GmbH(Technologiepark 8, 33100 Paderborn, Tel.: +49 (0)5251-414130, E-Mail: datenschutz@maxcluster.de).

We take contractual, organizational and technical security measures in accordance with the state of the art in order to ensure that the provisions of data protection laws are observed and thus to protect the data processed by us against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons.

The security measures include in particular the encrypted transmission of data between your browser and our server. A 256-bit SSL (AES 256) encryption technique is used for this. This includes your IP address.

Your personal data is protected in the context of the following points (excerpt): 
a) Protecting the confidentiality of your personal data 
In order to protect the confidentiality of your personal data stored with us, we have taken various measures for access, access and access control. 

b) Protecting the integrity of your personal data
In order to maintain the integrity of your personal data stored with us, we have taken various measures for passing on and input control.

c) Maintaining the availability of your personal data
In order to maintain the availability of your personal data stored with us, we have taken various measures for order and availability control.

The security measures in use are continuously improved in line with technological developments. Despite these precautions, due to the uncertain nature of the Internet, we cannot guarantee the security of your data transmission to our online offer. Therefore, any data transmission from you to our online offer is at your own risk.

Protection of minors
Persons under 16 years of age may not transmit any personal data to us without the consent of their legal guardians. Personal information may only be made available to us by persons under the age of 16 with the express consent of their legal guardians.

Cookies 
We use cookies. Cookies are small text files that are stored locally in the cache of your Internet browser. Cookies enable the recognition of the Internet browser. The files are used to help the browser to navigate through the online offer and to be able to use all functions fully.

Our online offer: Browser Cookies 

Control of cookies by the user
Browser cookies: You can set all browsers to accept cookies only on request. Also, only cookies whose pages are currently being visited can be accepted. All browsers offer functions that enable the selective deletion of cookies. The acceptance of cookies can also be generally switched off, however, if restrictions in the user-friendliness of this online offer have to be accepted.

Use of first-party cookies (Google Analytics cookie)
Log Google Analytics cookies:

  • Unique users - Google Analytics cookies collect and group your data. All activities during a visit are summarized. By setting Google Analytics cookies, a distinction is made between users and unique users. 
  • User activities - Google Analytics cookies also store data about the start and end time of a visit to the online offer and how many pages you have viewed. When the browser is closed or the user is inactive for a long time (default 30 minutes), the user session is terminated and the cookie records the visit as finished. The date and time of the first visit are also recorded. The total number of visits per unique user is also logged. External link: http://www.google.com/analytics/terms/de.html

You can prevent Google from collecting the data generated by the cookie and relating to the use of the online offer (including your IP address) and from processing this data by Google by downloading and installing the following link in the browser plug-in:
External link: http://tools.google.com/dlpage/gaoptout?hl=en

Further information can be found under "Web analysis service Google Analytics / Universal Analytics".

Lifetime of the used cookies
Cookies are managed by the web server of our online offer. This online offer uses:
Persistent cookie (permanent browser identification) 
Lifetime: 1 hour

Disable or remove cookies (opt-out)
Every web browser offers possibilities to restrict and delete cookies. For more information, please visit the following websites:


Web analysis service Google Analytics / Universal Analytics
We use Google Analytics, a web analysis service of Google Inc. "("Google"). Google Analytics uses "cookies", which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about the use of this online offer is usually transferred to a Google server in the USA and stored there. Data is therefore transferred to a third country. It is taken into account that appropriate/adequate guarantees are available and that you have enforceable rights and effective remedies at your disposal.

You can obtain a copy of the appropriate guarantees by clicking on the links below:

However, in the event that IP anonymisation is activated in our online offer, Google will reduce your IP address within member states of the European Union or in other signatory states to the Agreement on the European Economic Area beforehand. 

Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On our behalf, Google will use this information to evaluate the use of the online offer, to compile reports on the activities of the online offer and to provide us with further services associated with the use of the online offer and the use of the Internet. The IP address transmitted by your browser in the context of Google Analytics is not merged with other Google data. You may refuse the use of cookies by selecting the appropriate settings in your browser software.

Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On our behalf, Google will use this information to evaluate the use of the online offer, to compile reports on the activities of the online offer and to provide us with further services associated with the use of the online offer and the use of the Internet. The IP address transmitted by your browser in the Google Analytics framework will not be merged with other Google data. You may refuse the use of cookies by selecting the appropriate settings on your browser. However, we would like to point out that in this case not all functions of this online offer can be used in full. 

We point out that this online offer uses Google Analytics with the extension "_anonymizeIp()" and therefore IP addresses are only processed further in abbreviated form in order to exclude direct personal reference.

We also use Google Analytics reports to track demographic characteristics and interests.

The data sent by us and linked with cookies, user IDs (e.g. user ID) or advertising IDs are automatically deleted after 14 months. Data whose retention period has been reached is automatically deleted once a month. For further information on terms of use and data protection, please visit https://www.google.com/analytics/terms/de.html or https://policies.google.com/?hl=en  

You can also prevent Google from collecting the data generated by the cookie and relating to the use of the online offer (including your IP address) and from processing this data by Google by downloading and installing a browser plug-in via the following link: http://tools.google.com/dlpage/gaoptout?hl=en.

As an alternative to the browser plug-in or within browsers on mobile devices, the following link applies to set an opt-out cookie that will prevent Google Analytics from collecting data within this online offer in the future. This opt-out cookie only works in this browser and only for this domain. To delete the cookies in this browser, click the link again: Opt-out from Google Analytics for this site.

Use of the Google Tag Manager
We use the Google Tag Manager. This service allows website tags to be managed through an interface. The Google Tag Manager only implements tags. No cookies are set and no personal data is collected. The Google Tool Manager triggers other tags that may collect data. The Google Tag Manager does not access this data. If deactivation has been carried out at domain or cookie level, it remains valid for all tracking tags, provided that they are implemented with the Google Tag Manager. More information about the Google Tag Manager can be found under the following link: http://www.google.de/tagmanager/use-policy.html

You have the option to disable the sending of all tags of the Google Tag Manager. To do this, click on the opt-out link below to place the Google Tag Manager opt-out cookie in your browser.
Opt-out from Google Tag Manager for this site.

Use of SmarterStats
At CODESYS Group, we use the SmarterStats tool from Smarter Tools Incorporated for the purpose of using our CODESYS Store for statistical purposes, in particular to optimize our online offering, system security and technical administration. Data is transferred to a third country. 

The following access data is stored for the aforementioned purposes: IP address, time of the visit of our online offer, the amount of data transferred, the referrer URL (=website from which you came to our online offer) as well as the product information and the version information of the browser used.

We use this data to evaluate the use of our website. The IP address sent by your browser in SmarterStats is not merged with other data. There is no personal identification of you through the access data collected for statistical purposes. It is only possible for us to obtain general information, in particular: Frequency of visits to our online offer, time and duration of use of our online offer, which subpages of our online offer are called up particularly frequently or whether errors occur. 

Use of Google reCaptcha
To protect your contact via internet form we use the service reCAP-TCHA of the company Google Inc. (Google). The query serves to differentiate whether the input is made by a person or abusively by automated, automated processing. The query includes sending the IP address and any other data required by Google for the reCAPTCHA service to Google. For this purpose your input will be transmitted to Google and used there. By using reCap-tcha you agree that the recognition you have made will be incorporated into the digitisation of old works. 

However, if IP anonymisation is activated on this website, Google will reduce your IP address within Member States of the European Union or in other countries party to the Agreement on the European Economic Area beforehand. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On our behalf, Google will use this information to evaluate your use of this service. The IP address transmitted by your browser within the scope of reCaptcha will not be merged with other Google data. The deviating data protection regulations of the company Google apply to this data. 

For more information about Google's privacy policy, please visit: 
https://www.google.com/intl/de/policies/privacy/ 

Passing on of personal data for order processing
The personal data collected by us will be passed on to the transport company commissioned with the delivery within the scope of contract processing, insofar as this is necessary for the delivery of the goods. We pass on payment data to the commissioned credit institution as part of the processing of payments.

If you choose PayPal or credit card payment, payment is processed via the payment service provider Stripe, 510 Townsend Street, San Francisco, CA 94103, USA. Stripe complies with the requirements of the "Payment Card Industry (PCI) Data Security Standards". Please note the data protection declaration of Stripe (https://stripe.com/de/privacy).

We use Magento, a product of Magento Incorporated, 345 Park Ave, San Jose, California 95110, US, in our online offer. In the context of order processing, the information provided by you together with information about the order (name, address, account number, bank code, possibly credit card number, invoice amount, currency and transaction number) is recorded and processed by the Magento extension of the company Stripe.

The CODESYS Group has no knowledge of the account or card information entered at any time.

Newsletter
When you register for our e-mail newsletter, personal data (e-mail, first name, last name) is collected. This data is used by us for our own advertising purposes in the form of an e-mail newsletter, provided that you have expressly consented to it. The Newsletter is maintained in the CleverReach GmbH & Co. KG (Schafjueckenweg 2, 26180 Rastede, Germany) webservice.

You can unsubscribe from the newsletter at any time via the link provided in the newsletter or by sending an e-mail to datenschutz@codesys.com. After cancellation your e-mail address will be immediately deleted from our newsletter distribution list and included in a file to ensure revocation.

Newsletter tracking: If you have expressly consented before, a newsletter tracking (also called web beacons or tracking pixels) is used. When the newsletter is delivered, the external server can then record certain recipient data, e.g. the time of retrieval, the IP address or information on the e-mail program (client) used. The name of the image file is individualized for each mail recipient by appending a unique ID. The mail sender remembers which ID belongs to which e-mail address and can thus determine which newsletter recipient has just opened the e-mail when retrieving the image.


Changes to our data protection regulations
We reserve the right to amend our privacy policy from time to time so that it always complies with current legal requirements or to implement changes to our services in the privacy policy. This could concern, for example, the introduction of new services. The new data protection declaration will then apply for your next visit. 

Trademark protection
Each company or trademark mentioned here is the property of the respective company. Trademarks and names are mentioned for information purposes only.

Version

US-May-2020