Privacy Policy

Festo Data Privacy Statement

Safeguarding your personal data is a serious matter for Festo. We want you to feel safe and secure when you visit our website. The protection of your privacy is an important objective for us when processing your personal data

Acquisition and Processing of Personal Data

Our web server stores the IP address allocated by the Internet provider, the URL from which you have accessed our website, the websites visited by yourself and the date and time of your visit on a routine basis. In some cases, Festo utilises so-called cookies in order to be able to place more individualised services at your disposal. Personal data are only stored if they are entered by yourself, for example when you fill in a registration form or a survey, participate in a raffle or enter into a contract.

Use and Forwarding of Personal Data and Earmarking for Specific Purposes

Your personal data are acquired, processed and utilised in accordance with applicable data privacy regulations, strictly for the purpose of contract execution and for the protection of our own legitimate business interests with regard to customer support and consultation, and for product development in accordance with actual market requirements.

Right to Obtain Information and Public Procedures Index

Upon request, and in accordance with The Data Protection Act, we will provide you with written notification indicating whether or not and which of your personal data we maintain.

Security

Festo makes use of technical and organisational security measures in order to safeguard personal data administered by ourselves against inadvertent or premeditated manipulation, loss, destruction or access by unauthorised persons. Our security measures are continuously enhanced in keeping with new technological developments.

If you have questions regarding the processing of your personal data, please contact us. We are happy to assist you with requests for information, suggestions and complaints.

(631) 435-0800 (631) 435-8026 customer.service@us.festo.com

Supplementary private policy for the use of the platform community.bionics4education.com:

Responsible Party

Festo Didactic SE Rechbergstr. 3 73770 Denkendorf Deutschland

1. General Information on Data Processing

We only process the users’ personal data in accordance with the relevant data protection provisions. That means that the users’ data will only be processed in the case of a statutory permission.

2. Purposes of Use of Processing

We retain, process and use collected personal data, registration data, as well as the posted contributions and contents for the operation of our community to be as comprehensive and smooth as possible, including the maintenance of your membership.

3. Security Measures

We undertake organizational, contractual and technical security measures in accordance with the state of tech-nology in order to ensure that the provisions of the data protection laws are complied with and in order to pro-tect the data processed by us from accidental or willful manipulations, loss, and destruction or from access by unauthorized persons. In particular, the security measures include the encrypted transfer of data between your browser and our server.

4. Deletion, or, as the case may be, Blocking of Data

We follow the principles of data avoidance and data economy. Thus, we only retain your personal data as long it is necessary to reach the purposes stated herein or as specified by the legislator in the numerous retention terms. Upon cessation of the respective purpose, or, as the case may be, expiration of these terms, the respec-tive data is routinely blocked or deleted according to the statutory provisions.

5. Passing on Data to Third Parties or Third Party Providers

Passing on data to third parties only occurs in the scope of the statutory requirements. We only pass on the users’ data to third parties if this is necessary in order to fulfill the purposes of the agreement or on the basis of justified interests. We utilize service providers to provide our services. In regards to this we employ the appropriate legal precau-tions, as well as the respective technical and organizational measures in order to ensure the protection of your data pursuant to the relevant statutory provisions. In order to ensure the usage of our community, we may trans-fer your data to the following partners:

  • ProfitBricks GmbH, Greifswalder Strasse 207,10450 Berlin

  • SaM Solutions GmbH & Co. KG, Am Bahnhof 4 A, 82205 Gilching

  • SaM Solutions Belarus, Filimonova Str. 15, 220037 Minsk, Belarus

  • Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen

6. Collection of Access Data and Log Files

We collect data about every access to the server on which this service is located (so-called server log files). The access data includes the name of the accessed website, file, date and time of the access, transferred data amount, report on successful access, browser type plus version, the user’s operating system, referrer URL (the previously visited page), IP address and the requesting provider. Log file information is retained for security reasons (e.g. to clarify abusive or fraudulent actions) for the duration of no more than 30 days, and then deleted. Data, the further retention of which is necessary for evidentiary purposes, is exempt from the deletion until the final clarification of the respective incident. Processing will occur pursuant to Art. 6 Subsec. 1 lit. f General Data Protection Regulation (“GDPR”) on the basis of our justified interests to improve the stability and functionality of our website. Passing on or a different use of the data will not occur. However, we retain the right to review the server log file subsequently if there are specific clues in regards to unlawful usage.

7. User Account

We process the username and email address, which are necessary to create an account. Furthermore, data which is entered independently by the user, but merely retained by us in order to be able to present the offers of the website, this includes all posts by the users, an avatar and header pictures, as well as address information or other information which the user provides voluntarily for the purpose of the fulfillment of our contractual obligations and services. We retain the IP address and the time of the respective user’s actions in the course of the registration, new logins, as well as the usage of our online services. The retention occurs on the basis of our justified interests, as well as of the users due to protection from abuse and other unauthorized usage. Passing on this data to third parties will generally not occur, unless it is necessary to pursue our claims or there is a statutory obligation in this regard pursuant to Art. 6 Abs. 1 lit. c GDPR. The following data may be processed by us under certain circumstances if you register as a user in our com-munity:

The following data is processed:

• user name

• email address

• address data:

o street

o building number

o postal code

o city

o country

• photo, avatar, profile header picture

• first name

• last name

• interests (user profile)

• third party service providers information

o provider name (e.g. social login, SSO)

o provider-specific identifier

o account URL

o provider-specific information

o member number / customer number

• password (Hash)

• company information (if applicable)

o name

o company name

o contact address (street, postal code, city, country)

• language / language setting

8. Comments and Posts

If users leave comments or other posts then this is only possible with an account, the data is all linked to the user profile and is presented publically viewable for all on the website. If a post shall be deleted then the user may contact us at any time at: team@bionics4education.com, the post will then be deleted as quickly as possi-ble if no legal reasons preclude this. After termination of the membership, your user name and, so long as this is technically possible, all data which could lead to an inference to your person will be deleted from the entry, unless the further processing is neces-sary for the fulfillment of a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims. In order to delete his/her account, the user clicks on the Delete the Account-button in the profile. Subsequently, the user will receive an email with a confirmation link (or code). After confirmation by clicking on the link (entry of the code), the account will be marked as deleted, the avatar and the header picture will be removed and all personal data will be pseudonymized, or as far as technically possible, deleted. The user name and the email address will be pseudonymized. A hash procedure will be employed in order to pseudonymize the username and the email. Furthermore, all contents saved as drafts will be deleted. The deletion of the account, or, as the case may be, the pseudonymization is in regards to all services provided by us in connection with the platform operation.

9. Cookies

We use so-called cookies on various pages in order to make the visit of our website attractive and to enable the usage of certain functions. These are small text files which are archived on your device. Some of the cookies we use are deleted again at the end of a browsing session, thus, upon closing your browser (so-called session cookies). Other cookies remain on your device and enable us or our partner companies (cookies from third party service providers) to recognize your browser at your next visit (persistent cookies). If cookies are placed, then in an individual scope they collect and process certain user information, such as browser and location data, as well as IP address values. Persistent cookies are deleted in an automated manner after a set time, which can vary from cookie to cookie. In part, cookies serve the purpose of simplifying the order process by way of retaining settings (e.g. remember-ing contents of a virtual shopping basket for a later visit on the web page). If personal data is also processed by individual cookies implemented by us, then the processing will occur pursuant to Art. 6 Subsec. 1 lit. b GDPR either for the execution of the agreement or pursuant to Art. 6 Subsec. 1 lit. f GDPR to preserve our justified interests in the best possible functionality of the website, as well as a customer-friendly and effective set-up of the visit to the site.

9.1. Session Cookies

We use “session cookies” which are only stored for the term of the current visit of our online presence (e.g. for the retention of your login status and, thus, to even make the use of our online offer possible). In a session cookie, a randomly generated distinct identification number is stored, a so-called Session-ID. Furthermore, a cookie contains the information on its origin and the term of retention. These cookies cannot retain other data. Session cookies are deleted if you have terminated the usage of our online offer and, for example, have logged out or in accordance with the browser settings.

9.2. Cookies to Measure Reach and Website Improvement

We use the following cookies to measure reach and for usage analysis for website improvement on the basis of our justified interests (i.e. interests in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 Subsec. 1 lit. f. GDPR): Google Analytics We employ Google Analytics, a web analyzing service of Google Inc. (“Google”). Google uses Cookies. The information on the usage of the online offer by the user created by the cookie is generally transferred to a Google server in the USA and retained there. Google is certified pursuant to the Privacy Shield Agreement and, thus, offers a guaranty to uphold the Europe-an data protection laws (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active). Google will use this information on our behalf in order to assess the usage of our online offer by the users, in order to compile reports on the activities within this online offer and in order to provide for us other services connected to the usage of this online offer and the Internet usage. In this, pseudonymous usage profiles of the users can be compiled from the processed data. We only employ Google Analytics with activated IP anonymization. That means that the user’s IP address is shortened by Google within the Member States of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases is the complete IP address transferred to a Google server in the USA and shortened there. The IP address transferred from the user’s browser is not merged with other Google data. The users can pre-vent the retention of the cookies by way of a respective setting in their browser software; furthermore, the users can prevent the collection of the data created by the cookie and their data in regards to their usage of the online offer to Google, as well as the processing of this data by Google by downloading and installing the browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de. You can receive further information on data usage by Google, settings and the possibilities to object on Google’s websites: https://www.google.com/intl/de/policies/privacy/partners (“data usage by Google in regards to your usage of websites or our partner’s apps”), http://www.google.com/policies/technologies/ads (“data us-age for advertisement purposes”), http://www.google.de/settings/ads (“manage information which Google uses in order to display advertisement for you”). Analysis of Reach with Matomo (formerly PIWIK) We use Matomo, an open source software, for the statistical analysis of user access. The users’ IP address is shortened prior to being saved. However, Matomo uses Cookies, which are saved on the user’s computer and which enable an analysis of the usage of this online offer by the user. In this, pseudonymized usage profiles of the users can be compiled through the processed data. The information generated by the cookie on your usage of this online offer is saved on our server and not passed on to third parties.

New Relic

Data is collected and retained on this website by New Relic, a web analysis service of the provider New Relic Inc., from which user profiles are created while using pseudonyms. These profiles serve the purpose of the adherence to the technical service level agreement between the provider of the platform and the technical service provider, in particular, the applications monitoring and alerting necessary for it. Additionally, these also aid in the analysis of visitor behavior and are assessed for the improvement and adequate design of our offer. Cookies can be used for this. The pseudonymized usage profiles are not merged with personal data of the bearer of the pseudonym without the affected person granting a separate explicit consent. You can object to the collection and retention of data for the purpose of web analysis at any time with effect for the future by deac-tivating the cookies in your browser settings. You can get additional information on the possibility of an opt-out here: https://newrelic.com/privacy

You do not want to participate in measuring reach and analyses? You can object to the usage of cookies which serve the purpose of measuring reach and for advertisement purposes, furthermore, via the deactivation site of the network advertisement initiative (http://optout.networkadvertising.org/), and, additionally, the US-American website (http://www.aboutads.info/choices) or the European website (http://www.youronlinechoices.com/uk/your-ad-choices/). Here: https://metric.der.com/optout.html?locale=en_US&popup=true https://metrics.der.com/optout.html?locale=en_US&popup=true You can also prevent the retention of the cookies used for the establishment of the profiles by way of a respec-tive setting in your browser software. You can find information on this in the help function of your browser.

9.3. Advertisement Cookies

On the basis of our justified interests (i.e. interests in the analysis, optimization and the economic operation of our online offer within the meaning of Art. 6 Subsec. 1 lit. f. GDPR) we use the following tools: Google Conversion Tracking The Google-Marketing-Services we employ include, among others, the online advertisement program “Google AdWords”. In the case of Google AdWords, every AdWords customer receives a different “conversion cookie”. Cookies can thus not be traced via the websites from AdWords customers. The information gathered with the help of the cookies serve the compilation of conversion statistics for AdWords customers who have decided in favor of conversion tracking. The AdWords customers learn the total number of users who have clicked on their advertisement and were re-routed to another page which has a conversion tracking tag. However, they do not receive any information with which the users can be personally identified. With the help of the Google-Marketing-Service “DoubleClick”, we can include our own advertisement or third party advertisements. DoubleClick uses cookies, which enables Google and its partner websites to insert adver-tisements on the basis of the visits by users on this website, or, as the case may be, other websites on the Inter-net. Further information on data usage for marketing purposes by Google can be found on the overview page: https://www.google.com/policies/technologies/ads, Google’s data protection declaration can be found at https://www.google.com/policies/privacy. If you would like to object to interest-related advertisement by Google-Marketing-Services then you can use the settings and opt-out possibilities provided by Google: http://www.google.com/ads/preferences.

10. Protection from Abuse

Google reCAPTCHA We also use the reCAPTCHA function from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). This function primarily serves the purpose of differentiating whether an entry is under-taken by a natural person or improperly by machines and automated processing. We employ the service based on our justified interests pursuant to Art. 6 Abs. 1 lit. f. GDPR in security and preventing abuse of our offers. The service includes the sending of the IP address and, possibly, further data necessary for the reCAPTCHA service to Google and occurs pursuant to Art. 6 Abs. 1 lit. f GDPR on the basis of our justified interests in determining the individual intention of actions on the Internet and the avoidance of abuse and spam. Google LLC with seat in USA is certified for the US-European data protection agreement “Privacy Shield”, which ensures the adherence to the data protection level applicable in the EU. Further information on Google reCAPTCHA, as well as Google’s data protection declaration can be viewed at: https://www.google.com/intl/de/policies/privacy/

11. Social-Media-Plugins

On our website we offer you the possibility of using so-called “social-media-buttons”. We employ the “Shariff” solution in order to protect your data. In so doing, the buttons on the website are merely included as graphics, which is linked to the corresponding website of the button provider. By clicking on the graphic, you are thus re-routed to the services of the respective provider. Only then will your data be sent to the respective provider. If you do not click on the graphic, there is no exchange between yourself and the providers of the social media buttons. Information on the gathering and usage of your data in the social networks can be found in the respec-tive terms of service of the respective providers. Additional information on the Shariff solution can be found here: http://www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html We have included social media buttons from the following companies on our website:

Facebook Inc. (1601 S. California Ave - Palo Alto - CA 94304 - USA)

Twitter Inc. (795 Folsom St. - Suite 600 - San Francisco - CA 94107 - USA)

Google Plus/Google Inc. (1600 Amphitheatre Parkway - Mountain View - CA 94043 - USA)

WhatsApp Ireland Limited (4 Grand Canal Square- Grand Canal Harbour - Dublin 2 – Ireland)

Pinterest Europe Ltd. (Palmerston House - 2nd Floor - Fenian Street - Dublin 2 – Ireland)

XING AG (Gaensemarkt 43 - 20354 Hamburg - Germany)

LinkedIn Corporation (2029 Stierlin Court - Mountain View - CA 94043 - USA)

Tumblr Inc. (770 Broadway - New York - NY 10003 – USA)

Reddit (520 - 3rd Street - San Francisco - CA 94107- USA)

StumbleUpon, Inc. (660 4th Street - #558 - San Francisco - CA 94107 – USA)

12. Social Login

12.1. Janrain

The community uses a tool from Janrain Inc. (hereinafter referred to as “Janrain”), so you can log into the community with your Facebook login and Google+ login, as well as with other possible other social logins. If you have a Janrain account then you can register in the community with it. In so doing you permit us to access your Janrain data in order to register you in the community. A use of Janrain is voluntary and not compulsory for the registration in the community. The purpose and scope of the data collection, and the further processing and usage of the data by Janrain, as well as your rights in this regard and possible settings for the protection of your privacy can be found in Jan-rain’s data protection notes: http://trust.janrain.com/

12.2. Facebook Account

The offer supports the possibility to register with Facebook. Users registered on Facebook can, thus, use their local registration information via the function “Login/Registration” via Facebook on our website to reg-ister on our website without having to register with us, i.e. without having to input the information necessary for registration on our website. In order to enable this function, the terms of use and the data protection provisions must be accepted at the time of registration, or, as the case may be, every login. If the Facebook log-in function is used on our website, then Facebook provides us with information about the user. This providing of information is initiated after using the Facebook login function on our page, the user is re-routed to facebook.com and there is asked by Facebook for permission to access certain information (pub-lic profile, email address, photos); the public profile and the email address are necessary for registration, other information can, if requested, also be deselected. If the user grants permission then Facebook will transfer such information to us. Then a comparison of data is undertaken by us, i.e. we only retain such da-ta, which we would regularly collect in the scope of registration on our page from you for the performance of our tele media service. Additionally, we also retain the Like-Status and Facebook ID which Facebook transmits to us. Of course the links can be reversed at any time. For this, the user needs to revoke the re-spective access rights with Facebook. Retention and processing of all afore-mentioned data, which is transmitted by Facebook to the platform to link the user account with each Facebook user account, can be rejected at any time with effect for the fu-ture, e.g. via email to team@bionics4education.com. Further information on the possible settings regarding data protection on Facebook and the rights pertain-ing hereto for the protection of privacy can be viewed on Facebook at https://www.facebook.com/about/privacy.

12.3. Google+

The offer supports the possibility of registering with a Google+ account. Users registered with Google+ can, thus, use their sign-in details via the function „Sign-in with Google“ on our website to sign-in on our website without having to register with us, i.e. without having to enter the details necessary for a registration on our website. In order to enable this function the terms of use and the data protection provisions must be ac-cepted at the time of registration, or, as the case may be, every login. If the function “Sign-in with Google” is used on our website, then Google will provide us with information on the user. This providing of information is initiated after using the Google login function on our page, the user is re-routed to google.com and there is asked by Google for permission to access certain information (request email address and request general profile information); the public profile and the email address are nec-essary for registration, other information can thus also be requested or deselected. If the user grants per-mission then Google will transfer such information to us. Then, a comparison of data is undertaken by us, i.e. we only retain such data, which we would regularly collect in the scope of registration on our page from the user for the performance of our tele media services. Of course the links can be reversed at any time. For this the user needs to revoke the respective access rights with Google+. Retention and processing of all afore-mentioned data, which is transmitted by Google+ to the platform to link the user account with the Google+ user account can be rejected at any time with effect for the future, e.g. via email to team@bionics4education.com.

13. Newsletter

With the following notes we will inform you of the contents of our newsletter, as well as the sign-in, sending and statistical assessment procedure, as well as your rights to object. Content of the newsletter: We only send newsletters, emails and further electronic notifications with advertise-ment information (hereinafter “newsletter”) with the recipients’ consent. Double-Opt-In and Logging: The registration for our newsletter occurs via a so-called double-opt-in procedure. I.e. you will receive an email after registration in which you are asked to confirm your registration. This confir-mation is necessary so no one can register with others’ email addresses. The registrations for the newsletter are logged in order to prove the registration procedure according to the legal requirements. This includes the retention of the time of registration and confirmation, as well as the IP address.

Sending the Email Newsletter to Existing Customers If you have provided us with your email address at the time of purchase of goods, or, as the case may be, ser-vices, then we receive the right to regularly provide you with offers via email from our stock for similar goods, or, as the case may be, services, as those already purchased. Pursuant to Sec. 7 Subsec. 3 Act against Unfair Competition (“Gesetz gegen den unlauteren Wettbewerb”), we do not need to obtain a separate consent for this. The processing of data will thus solely occur on the basis of our justified interests in personalized direct advertisement pursuant to Art. 6 Abs. 1 lit. f DGDPR. If you have objected to the use of your email address for this purpose at the beginning, we will not send out emails. You are authorized to object to the use of your email address for the aforementioned advertisement purposes with effect for the future by way of notification to the person responsible mentioned at the beginning. For this you will only bear transmitting costs pursuant to the base rate. The use of your email address for advertisement purposes will be discontinued immediately upon receipt of the objection.

Shipping Service Provider

Objection / Termination of the Newsletter You can terminate the receipt of our newsletter at any time, i.e. revoke your consent. By so doing your consent for the sending-out by the shipping service provider, and the statistical analyses also expires. Unfortunately, a separate revocation of the shipping by the shipping service provider or the statistical analysis is not possible. You will find a link for the termination of the newsletter at the end of every newsletter. Furthermore, you can view the notifications in your profile settings and accordingly also de-register from the newsletter here.

14. Inclusion of Services and Contents of Third Parties

In order to make our offer attractive it is possible that - pursuant to our terms of use - we, or users, include third party contents (e.g. videos) in posts. These contents are possibly imbedded via so-called plugins, iframes or other similar technical means. It can occur that upon execution of the respective contents, data, such as your IP address, can be transferred to the respective service. The following services can be included on our platform:

Google Maps

When using Google Maps, data on the use of the map functions by the visitor are collected, processed and used by Google. Further information on the processing of data by Google can be found in Google’s data protec-tion notices (https://policies.google.com/privacy?hl=de). You can also change your personal data protection settings in the data protection center there.

YouTube-Videos

The operator of the plugins for imbedded YouTube videos is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. If you visit a page with the YouTube plugin then a connection is established to the YouTube serv-ers. In this, YouTube is informed which pages you are visiting. If you are logged in to your YouTube account, then YouTube can match your surf behavior to you personally. You can prevent this by first logging out of your YouTube account. If a YouTube video is started then the provider uses cookies which collect information on the user’s behavior. Whoever has deactivated the retention of cookies for the Google-Ad program will also not need to contend with such cookies when viewing YouTube videos. However, YouTube also places non-personal user information in other cookies. In order to prevent this you must block the retention of cookies in the browser. Further information on data protection at “YouTube” can be found in the provider’s data protection declaration at: https://www.google.de/intl/de/policies/privacy/

Vimeo

Our websites have imbedded plugins from the video portal Vimeo of Vimeo, LLC, 555 West 18th Street, New York, New York 10011, USA. Upon every viewing of a page which offers one or more Vimeo video clips, a di-rect connection between your browser and a server of Vimeo in the USA is established. Here, information re-garding your visit and your IP address are saved. This information is also transferred to and retained by Vimeo when interacting with the Vimeo plugins (e.g. clicking on the start button). If you have a Vimeo user account and do not want Vimeo to collect information on you via this website and links it to your retained Vimeo membership data, then you have to log out of Vimeo prior to visiting this website. Vimeo’s data protection declaration with further information on the collection and usage of your data by Vimeo can be found at https://vimeo.com/privacy. Furthermore, Vimeo starts up the tracker Google Analytics via an iFrame, in which the video is viewed. This is a proprietary tracking by Vimeo, which we cannot access. You can prohibit the tracking by Google Analytics by utilizing the deactivation tools which Google offers for several Internet browsers. Furthermore, the users can prevent the collection of the data created by Google Analytics in regards to your usage of the website (incl. your IP address) by Google, as well as the processing of such data by Google by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout

15. Your Rights to Information, Correction, Blocking, Deletion and Objection

You have the right to receive information on your personal data retained by us at any time. Additionally, you have the right to correction, blocking, or, except for the prescribed data retention for the conducting of business, the deletion of your personal data. Please refer to our data protection officer or service team for this. You can find the contact details at the very bottom. In order for a blocking of data to be considered at any time, this data must be retained for control purposes in a lock file. You can also demand the deletion of the data if no statutory archiving obligation exists. If such an obli-gation exists, we will block your data upon request. You can undertake changes or a revocation of the consent by way of a corresponding note to us with effect for the future.

16. Changes to our Data Protection Provisions

We reserve the right to adjust this data protection declaration from time to time so that it may correspond with the current legal requirements or in order to implement changes to our services in the data protection declara-tion, e.g. upon the introduction of new services. At the time of a new visit, the new data protection declaration will be applicable. Questions to the Data Protection Officer If you have questions regarding data protection, please write us an email or contact our data protection officer directly:

Jürgen Lang

Telefon: +49 (0) 711 347 2796

datenschutz-didactic@festo.com