Privacy Policy

PRIVACY POLICY FOR SUGRU.COM

We value your privacy. Therefore, we treat your personal data in accordance with the statutory data protection regulations at all times. 

Below we would like to inform you about the processing of personal data.


Navigate here to find the relevant privacy information suitable for your specific need

Here you find the information regarding the way we protect your data. In addition to the general Privacy Statement, there are further specific privacy policies. 

(You are here) Privacy Statement for general privacy information
Here you can find out the way we generally handle your personal data. In addition to our contact details and the ones of our data protection officer, you can find here the information regarding your rights.

Privacy Policy for our Social Media Pages
If you want to read more about the handling and processing of personal data in the context of using social media platforms, please click here.

Privacy Policy for Online Ordering on Online Marketplaces
When you purchase our products on online marketplaces, you can find here more information concerning the processing of your data. 

Privacy Policy Marketing
Read here how we use your data as part of our marketing, e.g. for newsletters, customer surveys or market research.

Data Protection notices for cookies and tool at tesa.com
For information on the third-party cookies and tools used on tesa.com, please read our cookie settings. Here you can also revoke or change your consent to cookies and tools at any time 


Person responsible

The controller with respect to the service on this website is

(In addition, other companies of the tesa Group [see overview tesa Group] may also be responsible on the basis of the tesa Group's internal data protection rules)

Global Headquarters - tesa SE

Hugo-Kirchberg-Straße 1
22848 Norderstedt
Germany

open map

Phone: +49 40 888 99 0

http://www.tesa.com


Data processing of business partners, customers, suppliers and interested parties


Data processing when using contact forms

For questions of any kind, we offer you the opportunity to contact us via a form provided on the website. In this case, the data marked as mandatory is required in order to be able to assign and answer the request. Further information may be provided voluntarily. In that case, your personal data is regularly processed based on your consent according to art. 6 para. 1 lit. a GDPR and/or according to art. 6 para. 1 lit. f GDPR based on our legitimate interests to respond to your request.


Data processing of business partners, customers, suppliers and interested parties

The processing of your personal data may arise on the one hand due to the implementation of pre-contractual measures that precede a contractually regulated business relationship or on the other hand in the fulfillment of obligations arising from a concluded contract with you. This may include, for example, the processing of purchase orders, deliveries or payments, or the preparation and response to quotation requests from individuals, to determine the establishment or terms of a contractual relationship (Art. 6 para. 1 sentence 1 lit. b DSGVO).

In addition, tesa is subject to various legal obligations that may require the processing of your personal data (Art. 6 para. p. 1 1 lit. c DSGVO). These legal obligations may arise, for example, from tax law, commercial law, foreign trade law, or sanctions law.

In addition, it may be necessary for the processing of your personal data to protect legitimate interests (Art. 6 para. 1 p. 1 lit. f DSGVO). The legitimate interests are in particular the conclusion or implementation of contracts and other business relationships with our business partners, suppliers or interested parties for whom you may be acting as a representative or as an employee. Furthermore, legitimate interests are internal administrative purposes (e.g. for accounting) or to ensure IT security and operation, as well as to conduct compliance investigations, to ensure building and facility security or to assert, exercise or defend legal claims.

In the context of our business relationship, you must provide those personal data that are necessary for the establishment, implementation and termination of a business relationship and for the fulfillment of the associated obligations, which we are required by law to collect or are entitled to collect on the basis of legitimate interests. Without this data, we will generally not be able to contact you and/or enter into a business relationship with you. If you have provided us with data voluntarily, we will indicate this accordingly when collecting the data.

If you consent (Art. 6 para. S. 1 lit. a GDPR) to the use of personal data for advertising and market research purposes, we will use your data also for the purposes for which the consent was granted (e. g. for newsletters) until you withdraw your consent. This means that we will contact you in the manner indicated in the declaration of consent (e.g. e-mail, telephone, post) and provide you with information and individualized advertising about our products and services based on the analysis of your purchase & clicking behavior on our websites. Finally, we use your data to analyze and improve the effectiveness of our websites. 


Disclosure of data

Your personal data will always be treated confidentially by us and will only be transmitted to the following recipients:

In some cases, it may be necessary for us to pass on your personal data to other global companies within our group for the above-mentioned purposes [see tesa Group overview]. We pass on the data collected as part of the contact form to the company responsible for processing your inquiry. Your personal data may therefore also be processed in countries outside the EU/EEA, insofar as this is necessary to respond.  

We share your data with service providers who support us in the operation of our websites and our IT systems. Our service providers are strictly bound by instructions to us and are contractually obligated accordingly. This includes in particular hosting providers for the websites and agencies for their support and maintenance, newsletter service providers and other IT service providers for hosting, support and maintenance of our other IT systems.

Personal data from customers and vendors may also be transferred to external service providers (e.g. tax consultants and legal advisors).

Our third-party business partners, including LexisNexis, may provide us with your personal information to enable us to perform background checks and screening activities, in order to meet our legal obligations, and for other purposes, as described in this privacy notice. LexisNexis is responsible for all personal information that LexisNexis collects and stores about you until we receive it. To learn more about how LexisNexis collects and uses your personal information, please read their privacy policy at https://www.lexisnexis.com/global/privacy/de/article-14-bis.page.

Furthermore, we sometimes use plug-ins from other providers on our website; for more information please have a look at the cookie settings.


Data processing in third countries

If we transfer personal data to recipients outside the European Economic Area (EEA), the transfer will only take place if the third country has been confirmed by the EU Commission as having an adequate level of data protection, if an adequate level of data protection has been agreed with the data recipient (for example, on the basis of existing adequacy decisions or by means of EU standard contractual clauses), or if you have given us your consent to do so in accordance with the requirements of Article 49 of the GDPR.


Cookies and third-party tools

This site uses cookies and other technologies like third-party tools. Cookies are text files or information that are stored on your computer and that allow for an analysis of website use and automatically recognize you on your next visit. You can prevent the installation of cookies by setting your browser accordingly. This may lead to you not being able to use all services to their full extent. To learn more about the utilization of cookies on our website, please have a look at our cookie settings.

If you wish to change the settings you have made in our Cookie Switch, you can do so in the cookie settings.


Logging

Each time you access the website, logs are created temporary and processed for statistical purposes and to improve the quality of our website.  These data logs consist the following data:

  • the name and address of the requested content,
  • the date and time of the request,
  • the amount of data transferred,
  • the access status (content transferred, content not found),
  • the description of the web browser and operating system used,
  • the referral link, which indicates the page from which you came to ours,
  • the IP address of the requesting computer, which is shortened so that a personal reference can no longer be established.

 

The named data logs are only processed anonymously.

In addition, we store the full IP address transmitted by your web browser device for a strictly specific purpose for a period of seven days, in the interest of being able to detect, limit and eliminate attacks on our websites. After this period, we delete or anonymize the IP address. The legal basis is Art. 6 para. 1 p. 1 lit. f DSGVO. We reserve the right to check this data retrospectively if we become aware of concrete indications of illegal use. The data will be deleted immediately if it is no longer necessary to achieve the purpose, but at the latest after 7 days.


Duration of data storage

Your data is stored by us for as long as is necessary for the above purpose or to comply with a legal retention period (e.g. retention obligations under tax and commercial law) and tesa has no legitimate interest anymore to store your data.


Rights of data subjects

When processing your personal data, the GDPR grants you certain rights as a data subject:

Right of access (Art. 15 GDPR)
You have the right to request confirmation as to whether personal data concerning you is being processed; if this is the case, you have a right to information about this personal data and to the information listed in detail in Art. 15 DSGVO.

Right to rectification (Art. 16 GDPR)
You have the right to request without undue delay the rectification of any inaccurate personal data concerning you and, where applicable, the completion of any incomplete data.

Right to erasure (Art. 17 GDPR)
You have the right to request that personal data concerning you be deleted without undue delay, provided that one of the reasons listed in detail in Art. 17 DSGVO applies.

Right to restriction of processing (Art. 18 GDPR)
You have the right to request the restriction of processing if one of the conditions listed in Art. 18 DSGVO applies, e.g. if you have objected to the processing, for the duration of the review by the controller.

Right to data portability (Art. 20 GDPR)
In certain cases, which are listed in detail in Art. 20 DSGVO, you have the right to receive the personal data concerning you in a structured, common and machine-readable format or to request the transfer of this data to a third party.

Right of withdrawal (Art. 7 GDPR)
If the processing of data is based on your consent, you are entitled to revoke your consent to the use of your personal data at any time in accordance with Art. 7 (3) DSGVO. Please note that the revocation is only effective for the future. Processing that took place before the revocation is not affected.

Right of objection (Art. 21 GDPR)
If data is collected on the basis of Art. 6 (1) sentence 1 lit. f DSGVO (data processing to safeguard legitimate interests) or on the basis of Art. 6 (1) sentence 1 lit. e DSGVO (data processing to safeguard public interest or in the exercise of official authority), you have the right to object to the processing at any time for reasons arising from your particular situation. We will then no longer process the personal data unless there are demonstrably compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)
Pursuant to Art. 77 DSGVO, you have the right to lodge a complaint with a supervisory authority if you are of the opinion that the processing of data concerning you violates data protection provisions. The right of complaint may be asserted in particular before a supervisory authority in the Member State of your habitual residence, your place of work or the place of the alleged infringement.


Changes to our Privacy Policy

We reserve the right to change this Privacy Policy from time to time to ensure that it complies with current legal requirements or to implement changes to our services in the Privacy Policy, such as when introducing new services. Your next visit will be subject to the new Privacy Policy.


Questions

If you have any questions regarding the processing of your personal data, you can contact our Data Protection Officer directly, who will be available with his team even in the case of requests for information, applications or complaints.


Contact the Data Protection Officer

External Data Protection Officer:

Jennifer Jähn-Nguyen
Sechslingspforte 2
22087 Hamburg, Germany

[email protected]