PRIVACY POLICY
1. General Information
The purpose of this privacy policy is to provide you with information concerning the processing of personal data when using our website and related services.
1.1 Processing of Personal Data.
Personal data within the meaning of Art. 4 of the EU General Data Protection Regulation (GDPR) are all information relating to an identified or identifiable natural person, e.g. name, address, email address, etc.
1.2 Controller
Responsible for the processing of personal data within the meaning of Art. 4 (7) GDPR is: Beiersdorf AG, Corporate Communications, Beiersdorfstrasse 1-9, 22529 Hamburg, Germany (see imprint).
Contact details of the data protection officer: Dataprotection@Beiersdorf.com or under the postal address of the controller for the attention of the "data protection officer".
Specific data processing activities might occur under the responsibility of other controllers. It is indicated in the respective description of those activities below, where this is the case.
1.3 Rights of the Data Subject
As data subject affected by the data processing activity, you have the following rights with regard to your personal data according to Art. 15 et seqq. GDPR:
- Right of access,
- Right to rectification and to erasure,
- Right to restriction of processing,
- Right to data portability and
- Right to object.
Furthermore, you have the right to lodge a complaint with a supervisory authority concerning the processing of your personal data.
When processing your rights, we may ask you to provide proof of your identity. Further information on how we process your data can be found under 3.1.
1.4 Recipients (General Information)
In the event of a legal obligation, we reserve the right to disclose information about you if we are required to surrender it to competent authorities or law enforcement bodies.
Additionally to the recipients that are listed within the recipients paragraph of each section below, we transfer the collected data to the relevant internal departments for processing and to other affiliated companies within the Beiersdorf Group or to external service providers, contract processors in accordance with the purposes required. We also forward the data to the following recipients:
- Platform / Hosting providers will have access to personal data from a third country (countries outside the European Economic Area). As an appropriate safeguard standard contractual clauses pursuant to Art. 46 GDPR were concluded. For third countries/companies which fall under an adequacy decision, the adequacy decision also applies. For more information (such as a copy of the guarantees), you can contact us as mentioned under 1.2.
- IT support service providers will have access to personal data from a third country (countries outside the European Economic Area). As an appropriate safeguard standard contractual clauses pursuant to Art. 46 GDPR were concluded. For third countries/companies which fall under an adequacy decision, the adequacy decision also applies. For more information (such as a copy of the guarantees), you can contact us as mentioned under 1.2.
- Authorities: In the event of a legal obligation, we reserve the right to disclose information about you if we are required to surrender it to competent authorities or law enforcement bodies acc. to: Art. 6 (1) c GDPR (legal obligation).
Further information can be found within the recipients paragraph of each section.
2. Collection & Processing of Personal Data when visiting our website
When visiting and using our website for information purposes only, i.e. if you do not register or otherwise provide us with information, we only collect the personal data (such as log data) that your browser transmits to our server, which are technically necessary for us to display our website to you and to guarantee stability and security.
We transfer the collected data to the relevant internal departments for processing and to other affiliated companies within the Beiersdorf Group or to external service providers, contractors (e.g. hosting, content management system) in accordance with the purposes required (for displaying the website and setting up its content).
Legal basis: Art. 6 (1) b GDPR
2.1 Cookies
In addition to the aforementioned data, cookies or other technologies like pixels (hereinafter referred to as "Cookies") are used on your computer when visiting and using our website. Cookies are small text files that are stored by your browser on your device to save certain information or image files, such as pixels. The next time you visit our website on the same device, the information saved in the cookies will subsequently be transmitted either to our website ("First Party Cookie") or to another website to which the cookie belongs ("Third Party Cookie").
Through the information saved and returned, the respective website recognizes that you have already accessed and visited it with the browser you use on that device. We use this information to be able to design and display the website in an optimum way in line with your preferences. In that respect, only the cookie itself is identified on your device. Beyond this extent, your personal data will only be saved upon your express consent or if it is strictly necessary to be able to use the service offered to and accessed by you accordingly.
This website uses the following types of cookies, the scope and functionality of which are explained below:
- Strictly necessary cookies (Type A)
- Functionality, Performance and Marketing Cookies (Type B)
You can find more information on the cookie types set and used in the description of the tools implemented on our websites in this privacy policy.
2.1.1 Strictly necessary Cookies (Type A)
Strictly necessary cookies guarantee functions without which you cannot use our web pages as intended. These cookies are used exclusively by us and are therefore first party cookies. This means that all information stored in the cookies will be returned to our website.
Strictly necessary cookies serve, for example, to ensure that you as a registered user always remain logged in when accessing various subpages of our website and thus do not have to re-enter your login data every time you access a new page.
The use of strictly necessary cookies on our website is possible without your consent. For this reason, strictly necessary cookies cannot be activated or deactivated individually. However, you can deactivate cookies in your browser at any time (see below).
Legal basis: Art. 6 (1) b GDPR
2.1.2 Functionality, Performance and Marketing Cookies (Type B)
Functionality cookies enable our website to store information already provided (such as registered name or language selection) and to offer you improved and more personalized functions based on this information. These cookies collect and store only anonymous information so that they cannot track your movements on other websites.
Performance cookies collect information about how our websites are used in order to improve their attractiveness, content and functionality. These cookies help us, for example, to determine whether and which subpages of our website are visited and in which content users are particularly interested. In particular, we record the number of visits to a page, the number of subpages accessed, the time spent on our website, the order of the pages visited, which search terms led you to us, the country, region and, if applicable, the city from which access is made, and the proportion of mobile devices accessing our websites. We also capture movement, clicks and scrolling with the computer mouse to understand which areas of our website are of particular interest to users. As a result, we can tailor the content of our website more specifically to the needs of our users and optimize our offering. The IP address of your computer transmitted for technical reasons is automatically made anonymous and does not allow us to draw any conclusions about the individual user.
You can object to the use of Functional and Performance Cookies at any time by following the instructions within each tool description.
Legal basis: Art. 6 (1) f DSGVO
2.1.3 Administration and deletion of all Cookies
You can set your web browser in such a way that cookies are generally prevented from being saved to your device and/or that you are asked each time whether you are in agreement with cookies being enabled. You can also at any time delete cookies that have been enabled again. You can find out how all this works in detail from your browser’s help function.
Please note that generally deactivating cookies may lead to functional restrictions of our website.
3. Further Services offered (on- and offline)
In addition to the online use of our website, we offer various other services, for which we process your personal data also in an offline context.
Contrary to 1.2, in some cases a Beiersdorf Company is Controller for the services offered below, which has already been named to you as part of the communication. If reference is therefore made to sections of this privacy policy, e.g. by link, and a Controller has already been named, e.g. in the footer/signature of an email or campaign card, this person is the Controller in accordance with Art. 4 No. 7 GDPR.
3.1 Contacting / Communication / Collaboration
When contacting or communicating with us, e.g. by email or via contact form on our website, the data you provide (your email address, your name and your telephone number, company / agency, Beiersdorf contact, user name and password or personal data submitted during the conversation) will be stored and processed by us in order to answer your questions, requests or for the purpose of business related correspondence. We delete the data arising in this context once storage is no longer necessary, unless statutory retention obligations exist or periods of limitation must be observed.
We transfer the collected data to the relevant internal departments for processing and to other affiliated companies within the Beiersdorf Group or to external service providers, contract processors (e.g. hosting, call center service providers) in accordance with the purposes required (e.g. for establishing contacts, business related correspondence and customer care).
Legal basis: Art. 6 (1) b GDPR
3.2 Login Profile
By registering we provide you the opportunity to view and / or download selected media material in accordance to our Terms of Use.
We transfer the collected data to the relevant internal departments for processing and to other affiliated companies within the Beiersdorf Group or to external service providers, contract processors (e.g. hosting services) in accordance with the required purposes (identification to enable view and download).
4. Objection or Withdrawal of your consent to the processing of Personal Data
If you have given your consent (Art. 6 (1) a GDPR) to the processing of your data, you can withdraw your consent at any time. Such a withdrawal influences the permissibility of processing your personal data after you have given it to us.
If we base the processing of your personal data on the weighing of interests (Art. 6 (1) f GDPR), you may object to the processing. This is the case if processing is not necessary in particular to fulfil a contract with you, which is described by us in the following description of the functions. When exercising such objection, we ask you to explain the reasons why we should not process your personal data as we have done. In the event of your justified objection, we will examine the situation and either stop or adjust data processing or point out to you our compelling reasons worthy of protection, on the basis of which we will continue processing.
Of course, you can object to the processing of your personal data for purposes of advertising and data analysis at any time. You can inform us about your objection under the above-mentioned contact details for the controller.