General data protection declaration

The controller within the meaning of the General Data Protection Regulation (GDPR) and other national data protection laws and regulations is:

SAURER INTELLIGENT TECHNOLOGY AG

Textilstrasse 9
9320 Arbon
Switzerland
info@saurer.com

 The data protection officer for Germany is:
Mr Markus Strauss
tacticx GmbH
Walbecker Strasse 53
47608 Geldern
Germany
privacy@saurer.com

No differentiation has been made between the male and female form for ease of reading.

1.     General information on data processing

1.1.   Processing of personal data and its purpose

SAURER AG, Schweiz, and all other companies in the Saurer Group (hereinafter: “SAURER” or “we”) are committed to protecting your privacy.

SAURER processes personal user data solely to the extent required for providing a functioning website, our content and services. The following data is processed when visiting our website:

-       User IP address

-       Browser (type, version, language)

-       Operating system

-       Internet service provider of the user

-       Time and date of access to our website

-       Files accessed on our website

-       Website from which the user has arrived on our website

-       Website which the user accesses from our website.

The IP address has to be processed and stored temporarily to make it possible to display the website on the user’s computer. The user IP address has to be stored for the duration of the session for this purpose. The log files contain IP addresses or other data that makes it possible to allocate the user. The log files are stored to ensure the functionality of the website. The data also serves to optimise our website and ensures the security of our IT systems. The personal data is solely processed for the purposes stated within the scope required for achieving them.

The company responsible for your data (the “data controller”) depends on your relationship with us. If you are a user of our website, the data controller is SAURER AG, Textilstrasse 2, 9320 Arbon, Switzerland. If you have a business relationship with us (an existing or potential customer, a supplier, an external advisor, etc.), the data controller is the company with which you signed the contract.

1.2.   Legal bases for the processing of personal data

The personal data of our users is usually processed with the users’ consent. Cases in which it is impossible to obtain consent in advance for genuine reasons and we are permitted by law to process the data are an exception. The data and log files are stored in accordance with Art. 6 (1) lit.f GDPR.

1.3.   Data deletion and storage period

We delete or block the personal data of the affected persons once the purpose for its storage ceases to exist. Data processed for the purpose of displaying the website is deleted once the session has expired. Personal data stored in log files is deleted after no more than 30 days. Longer storage periods are possible if the user’s IP address has previously been deleted or defaced so that it can no longer be allocated to the accessing client.

2.     Cookies

We use cookies on our website. Cookies are stored on your computer and transferred from there to our website. A cookie usually contains a characteristic string of characters for unambiguously identifying your browser when you re-visit our website.

We differentiate between necessary cookies (point 2.1) and audience measurement cookies (point 2.2).

Your browser lets you configure how cookies are dealt with. By changing your browser’s settings, you can deactivate or limit the transfer of cookies. You can delete previously stored cookies at any time. This process can also be automated. Deactivating cookies for our website may result in reduced functionality. You can find more information on your browser provider’s own website:

2.1 Necessary cookies

Necessary cookies are required for the technical functions of our website to function properly. Some necessary cookies ensure that our website is technically stable and provide security functions. Certain functions such as our shopping basket or contact form may only be used with necessary cookies enabled. Without this form of data processing, our website cannot be used. In other words, you cannot object to this data processing.

We use this type of cookie to increase security and enhance the functionality of our website and the web applications we offer. Necessary cookies do not contain any personal data, i.e. they do not record any IP addresses or other information that could be traced back to you. We use the following necessary cookies:

The basis for processing personal data while using necessary cookies is Art. 6(1)(f) GDPR.

Our use of technically necessary cookies is aimed at streamlining your use of our website. Some of our website’s functions cannot be provided unless cookies are used since they need to recognise your browser even when you visit a new page. These aims represent our legitimate interest.

The user data we collect through technically necessary cookies is not used for profiling.

2.2 Audience measurement cookies

Audience measurement cookies provide us with anonymous statistical information on how our website is used so that we can understand how users interact with it. Using these cookies, for instance, we can establish how many people have visited our website and optimise our website content. We use the following audience measurement cookies:

The legal basis for processing personal data while using audience measurement cookies is your consent under Art. 6(1)(a) GDPR.

2.2.1 Google Tag Manager

On our website we use Google Tag Manager, which is provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google Tag Manager implements tags and deploys other tags. When deploying tags, Google may process your personal data. In the process, Google may also send the personal data to a server in the USA. You can find more information at https://policies.google.com/privacy/frameworks?gl=de&hl=en.

Specifically, Google Tag Manager processes the following personal data:

• Online IDs (including cookie identifiers)
• IP addresses

You can find more information on how Google uses data from websites with embedded Google services at https://policies.google.com/technologies/partner-sites?hl=de.

Google Tag Manager is designed to embed various codes and services more simply and neatly and to optimise loading times for various services. If you have deactivated certain tracking services, the deactivation remains active for all affected tracking tags embedded by Google Tag Manager.

You can find more information on data processing by Google and your associated rights and settings options for protecting your privacy by consulting Google’s privacy notices at https://policies.google.com/privacy?hl=en. You can find information about your privacy controls at https://safety.google/privacy/privacy-controls/.

The legal basis for the data processing is Art. 6(1)(a) GDPR.

You are under no obligation to provide your personal data; you are not required to do so under any law or contract, nor is it a prerequisite for entering into a contract. However, not providing your data may mean that you are unable to use our website or lose access to its full functionality.

2.3 Analytical cookies

Analytical cookies let us analyse how your use our website. With these cookies, we can test the effectiveness of our website and spot any faults. They also give us information that we can use to optimise our services or for web analytics. We use the following analytical cookies:

The legal basis for processing personal data while using analytical cookies is your consent under Art. 6(1)(a) GDPR.

2.3.1 Google Analytics

Our website uses Google Analytics, which is provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google Analytics uses cookies that let us analyse your use of our website (including your IP address). The information generated by the cookies is sent to and stored on a Google server, which may be located in the USA or in another non-EU country. You can find more information at https://policies.google.com/privacy/frameworks?gl=de&hl=en.

We have activated the IP anonymisation function on our website. With this function, Google shortens your IP address before sending it to the USA (which may occur if this is where the server is located), so it cannot be traced back to anyone.

The legal basis for the data processing is Art. 6(1)(a) GDPR.

You can find further information on data protection at Google at https://policies.google.com/?hl=en&gl=de.

You are under no obligation to provide your personal data; you are not required to do so under any law or contract, nor is it a prerequisite for entering into a contract. However, not providing your data may mean that you are unable to use our website or lose access to its full functionality.

3.     Google Analytics

3. Embedding third-party services

3.1 Embedding Google services

On our website we have embedded the following services from the provider Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. Google may process your personal data as part of these services. In the process, Google may also send the information to a server in the USA. You can find more information at https://policies.google.com/privacy/frameworks?gl=de&hl=en.

We have no control over which personal data of yours is processed and how. According to Google’s privacy policy, depending on the Google service in question the following personal data is processed (https://policies.google.com/privacy?gl=de&hl=en#infocollect):

-       data on the apps, browsers and devices you use to access Google services

-       unique identifiers, your browser type and settings, your device type and settings, 
the operating system, information on the mobile network (name of the network provider, phone number, app version number)

-       data on how your apps, browsers and devices interact with Google services (e.g. IP address, crash reports, system activities and the date, time and URL reference of your query)

-       activity data (e.g. search terms your use, videos you view, content and ads that you view and interact with)

You can find more information on how Google uses data from websites with embedded Google services at https://policies.google.com/technologies/partner-sites?hl=en.

You can find out about the purpose and extent of Google’s data processing and on your associated rights and settings options for protecting your privacy by consulting Google’s privacy notices at https://policies.google.com/privacy?hl=en. You can find information about your privacy controls at https://safety.google/privacy/privacy-controls/.

3.1.1 Google Maps

We use Google Maps. Google Maps is a map service intended to make it easy to locate the places we mention on our website. When Google Maps is used, Google may process data on your use of the Maps functions on our website.

The legal basis for the data processing is Art. 6(1)(a) GDPR.

You can find information and further notes on data protection at Google for the use of Google services in section 3.1 of this privacy policy “Embedding Google services”.

You are under no obligation to provide your personal data; you are not required to do so under any law or contract, nor is it a prerequisite for entering into a contract. However, not providing your data may mean that you are unable to use our website or lose access to its full functionality.

4.              Social media
We use social media plug-ins (“plug-ins”) of the social networks LinkedIn, YouTube, WhatsApp and Facebook on our website. They create a link to the respective service provider. Data on the user’s browsing activities is transferred. When users click on one of the plug-ins, the personal data (user’s IP address and URL of the page recently visited by the user, including time and location) is transferred to and processed by the respective service provider. For further information on data processing, please read the data protection policies of the respective service providers:

 

-       LinkedIn is a service provided by LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA: https://www.linkedin.com/legal/privacy-policy

-       XING is a service provided by XING AG, Dammtorstraße 29-32, 20354 Hamburg. You can find more information on how XING processes your data and your associated rights and data protection options at https://www.xing.com/app/share?op=data_protection

-       YouTube is a service provided by YouTube LLC (“YouTube”), 901 Cherry Ave., San Bruno, CA 94066, USA. YouTube LLC is a subsidiary of Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. For YouTube videos embedded on our website, the enhanced data protection setting is activated. This means that your personal data is not processed by YouTube unless you play a YouTube video provided on our website: https://policies.google.com/privacy

-       WhatsApp is a service provided by WhatsApp Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, “WhatsApp”). WhatsApp belongs to Facebook Inc.: https://www.whatsapp.com/legal/#privacy-policy

-       Facebook is an online service provided by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA. In the EU, this service is run by Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. You can find more information on the plugin display options and the functions of the various plugins at https://developers.facebook.com/docs/plugins/. Facebook may store your IP address even if you are not a registered member. You can find more information on how Facebook processes your data and on your associated rights and data protection options at https://www.facebook.com/policy.php or https://de-de.facebook.com/policy.php

Users who are members of the above social networks and who do not wish for user data to be collected by the respective social network via our website must log out of their respective social media accounts before visiting our website. We display YouTube videos on our website. These videos are embedded in our website by integrating the URL with iframes in extended data protection mode. The domain is replaced with the official YouTube nocookie domain in this case. According to the current information provided by YouTube, information on visits to our website is only stored if the video is played, and not when the page with the embedded video is accessed only, when using this variant. For further information on the collection and use of the data by YouTube and the rights of the users regarding the protection of their privacy, please read the data protection policy at https://policies.google.com/privacy.

5.     Contact by e-mail

We state various e-mail addresses on our website that can be used for contacting us electronically. In this case, we store the personal user data transferred in the e-mail. The legal basis for the processing of the data is Art. 6 (1) lit. f GDPR. The data is used for the sole purpose of processing the query and subsequent communications. It is not transferred to third parties in this respect. We always obtain the user’s consent prior to using the data for any other purpose. The personal data entered in the input mask of the contact form and personal data sent via e-mail is deleted once the respective communication with the user has ended, i.e. as soon as the circumstances give reason to believe that the matter at hand has been concluded in full and final. The additional personal data collected during the sending process is deleted no later than 30 days from its collection.

6.     Newsletter

Our website provides the option of subscribing to our free newsletter. We process the following personal data when users subscribe to our newsletter:

 

-       Company (voluntary)

-       First name (voluntary)

-       Surname (voluntary)

-       Phone number (voluntary)

-       E-mail address

-       Language (voluntary)

-       Interest (voluntary)

Consent is obtained from the user for the processing of the data and reference is made to this data protection declaration during the subscription process.

Our newsletter is sent by Sendinblue, a service provided by Sendinblue, Köpenicker Str. 126, 10179 Berlin, Germany. Sendinblue is a service that can be used, for example, for organising and analysing the sending of newsletters. We use Sendinblue to analyse our newsletter campaigns. It allows us to see whether a newsletter message was opened and which links were clicked. For instance, we can determine which links have been clicked more often than others. We can also see whether certain pre-defined actions were taken after opening/clicking (conversion rate). Sendinblue allows us to divide newsletter recipients into different categories (“clusters”), for example according to interests and languages. This allows us to better adapt newsletters to different target audiences. Sendinblue does not use your data for purposes other than sending the newsletter, nor does it sell your data. The data entered by users for the purpose of receiving the newsletter is stored on Sendinblue’s servers in Europe. You can find detailed information at https://de.sendinblue.com/datenschutz-uebersicht/ or https://de.sendinblue.com/legal/impressum/.

The legal basis for the processing of the personal data in this respect is Art. 6 (1) lit. a GDPR. We store the user’s personal data for as long as the newsletter subscription is active. Users can withdraw their consent by clicking on the corresponding link contained in the newsletter. The personal data will then be deleted immediately.

7. Secos customer portal

You can also use our website to access our Secos customer portal. Once you have completed the registration form, you can use Secos to order our original components. The legal basis for the personal data processing is Art. 6(1)(b) GDPR.

8. Downloading documents and software

We provide you with information on our company, product range and software on the basis of your voluntary supply of your personal data. When you submit your registration, we process the data you supply (email address and other voluntary information) and use it for our own advertising purposes. The registration process is part of the use of our downloads.

To prevent misuse, once you have submitted your registration we will send you an email to request confirmation (double opt-in procedure). To ensure the registration process is traceable in accordance with the law, your registration is logged. The registration and confirmation time and your IP address are the information affected.

The legal basis for the download and for sending the relevant information regarding the manual is your consent under Art. 6(1)(a) GDPR. The processing of data in relation to our sending of your registration confirmation email and the associated data logging is in accordance with Art. 6(1)(f) GDPR, on the basis of our legitimate interest in demonstrating that your registration was handled properly.

9. E-mail marketing without subscription to newsletter and your right to object

We reserve the right to e-mail you offers for products in our product range that are similar to those you have already purchased, provided that we received your e-mail address in connection with the sale of a product or service and you do not object to this under Section 7 (3) of the German Unfair Competition Act (UWG). This serves to protect our legitimate interests, which override other interests when the balance of interests is considered, in contacting our customers for advertising purposes.

You can object to the use of your e-mail address at any time by sending a message to the contact details below or following a link contained in the advertising e-mail, without incurring any costs other than the basic costs of transmission.

10. Compliance – reporting form

Our website contains a form that can be used for reporting improper conduct, such as unjust and illegal practices, to the SAURER Compliance department. When users avail themselves of this option, the data entered by the users in the input mask is transferred to and stored by us:

-       Name (voluntary)

-       E-mail (voluntary)

-       Phone number (voluntary)

-       Empty field for individual messages 

 

The legal basis for the processing of the data is Art. 6 (1) lit. f GDPR. The data is used exclusively for processing the report. The personal data entered in the input mask of the reporting form is deleted by us once the respective communication with the user has ended, i.e. as soon as the circumstances give reason to believe that the matter at hand has been concluded in full and final. The additional personal data collected during the sending process is deleted no later than 30 days from its collection.

11. Application form

Applicants can apply for jobs on our website. To do so, they have to enter personal data. The data is entered in an input mask, transferred to us and stored. The following data is collected:

 

-       Form of address

-       Title (voluntary)

-       First name

-       Last name

-       Country

-       E-mail address

-       Telephone number

-       Availability (voluntary)

-       Vocational training

-       Higher-level study

-       Last job

-       Requested location of employment

-       Requested salary (voluntary)

-       Empty field for individual messages (voluntary)

-       Application documents (covering letter, CV, certificates)

-       Application photo

-       Sending date

We use the personal data disclosed during the application process for the sole purpose of selecting applicants. We restrict our application processing activities to the information directly provided by the applicant. This may include information that applicants have uploaded to professional online networks or job sites. We may ask about the gender of applicants by asking about their preferred form of address during the application process for the sole reason of wishing to address applicants in the correct manner. The personal data is processed in accordance with Art. 6 (1) lit.a GDPR and Art. 88 (1) GDPR in conjunction with the respective relevant national data protection laws, such as Section 26 of the Federal Data Protection Act (Bundesdatenschutzgesetz – BDSG). We delete the data six months from the rejection of an application, unless applicants have given their consent to include their personal data in our applicant pool.

We offer applicants who applied for a specific position and whose application we were unable to consider for the specific position to include their application in our applicant pool and make it available to other areas within SAURER in the search for suitable applicants. We shall contact applicants in advance so that they can decide if they are interested in such inclusion. The personal data is processed within the scope of the applicant pool in accordance with Art. 6 (1) lit.a GDPR and Art. 88 (1) GDPR in conjunction with the respective relevant national data protection laws, such as Section 26 of the Federal Data Protection Act (Bundesdatenschutzgesetz – BDSG).

Applicants under the age of 16 must send us a declaration by their parents or legal guardians in the post in which the latter approve the inclusion of the underaged applicant in our applicant pool and the processing of their personal data in accordance with this data protection declaration and the approvals issued.

12. Security

SAURER uses technical and organisational security measures to protect users’ personal data against accidental or malicious manipulation, loss, destruction and unauthorised access. We continuously improve our security measures to reflect the latest technological developments.

13. Rights of the affected person

In the event of SAURER processing your personal data, you are an affected person in accordance with Art. 4 no. 1 GDPR and have the following rights:

13.1  Right to information

In accordance with Art. 15 GDPR, you may request that we provide you with confirmation if we process your personal data. If we process your personal data, you may request for us to provide you with the following information:

 

-       Processing purpose;

-       Categories of your personal data that we process;

-       Recipients and/or categories of recipients to whom we have, or are going to, disclosed your personal data;

-       Planned storage period (if possible) of your personal data or, if this is impossible, criteria for determining the storage period;

-       Existence of the right to correction or deletion of your personal data, the right to limitation of processing by us or objection to such processing;

-       Existence of the right to complain to a supervisory authority;

-       All available information on the origin of the data, unless the personal data has been collected from you;

-       Existence of an automatic decision-making process, including profiling (Art. 22 (1) and (4) GDPR) and, at least in such cases, pertinent information on the logic involved as well as the scope and planned effects of such processing on you.

You may request information if your personal data is transferred to a third country or international organisation. In this respect, you may request information on suitable guarantees in accordance with Art. 46 GDPR with regard to the transfer.

13.2 Right to correction
In accordance with Art. 16 GDPR, you may request that we correct and/or complete your incorrect personal data.

13.3 Right to deletion

In accordance with Art. 17 GDPR, you may request that we delete your personal data immediately. We must delete your data immediately if one of the following reasons applies:

 

-       Your personal data is no longer required for the purposes for which it was collected or processed in any other form.

-       You withdraw your consent on which we have based our processing activities in accordance with Art. 6 (1) lit. a GDPR or Art. 9 (2) lit. a GDPR and there is no other legal basis for such processing.

-       You object to the processing in accordance with Art. 21 (1) GDPR and there are no superordinated justified reasons for the processing activities or you object against the processing in accordance with Art. 21 (2) GDPR.

-       Your personal data has been illegally processed.

-       Your personal data must be deleted to meet a legal obligation in accordance with EU law or the laws of the member states to which we are subject.

-       Your personal data was collected with regard to services offered by the information company in accordance with Art. 8 (1) GDPR.

If we have published your personal data and are obliged to delete it in accordance with Art. 17 (1) GDPR, we shall implement suitable measures, including technical measures, to inform those persons responsible for processing the data that you, as the affected person, have requested the deletion of all links to your personal data or copies or duplicates thereof, taking into consideration the available technology and implementation costs.

The right to deletion does not exist if the processing activities are required

 

-       To exercise the right to freedom of speech and information;

-       To meet a legal obligation to which we are subject or fulfil a task that we have been assigned that is within the interest of the general public or is performed due to a public authority exercising its force;

-       For reasons of public interest in terms of public health (Art. 9 (2) lit. h and i and Art. 9 (3) GDPR);

-       For archiving purposes, scientific or historical research purposes or statistical purposes in accordance with Art. 89 (1) GDPR that are in the public interest if the stated right is likely to make it impossible to achieve the purposes of such processing or would severely impede it; or

-       To raise, enforce and defend legal claims.

 

13.4 Right to limitation of processing

In accordance with Art. 18 GDPR, you can request for the processing of your personal data to be limited under following conditions:

 

-       If you dispute the accuracy of your personal data in such a way that enables us to check the accuracy of your personal data;

-       If the processing activities are illegal and you reject the deletion of your personal data and request for the use of your personal data to be limited instead;

-       If we no longer require your personal data for processing purposes, but you require it for raising, enforcing or defending legal claims; or

-       If you have objected to the processing in accordance with Art. 21 (1) GDPR and it has not yet been established if our justified reasons outweigh your reasons.

If the processing of your personal data has been limited, such data may only be processed with your consent or to raise, enforce or defend legal claims or to protect the rights of another natural person or legal entity or to maintain important public interests of the EU or one of its member states, with the exception of data storage. If the limitation of processing is based on the above conditions, we shall inform you prior to repealing such limitation.

13.5 Right to be informed

In accordance with Art. 19 GDPR, if you have enforced the right to correction, deletion or limitation of processing against us, we must inform all of the recipients to whom we disclosed your personal data of such fact, unless this proves to be impossible or would cause unreasonable effort and expense. You may request for us to disclose to you these recipients.

13.6 Right to data transferability

In accordance with Art. 20 GDPR, you have the right to receive your personal data that you have provided to us in a structured, standard and machine-readable format. You also have the right to transfer this data to another controller without any obstruction by us if

 

-       The processing activities are based on consent (Art. 6 (1) lit. a GDPR and/or Art. 9 (2) lit. a GDPR) or a contract in accordance with Art. 6 (1) lit. b GDPR and

-       The data is processed using automated methods.

If executing this right, you may further request for us to transfer your personal data directly to another controller if this is technically possible. Such transfer must not impair the freedoms and rights of other persons. The right to data transferability does not apply to the processing of personal data that is required for fulfilling a task that we have been assigned that is within the interest of the general public or is performed due to a public authority exercising its force.

13.7 Right to objection

In accordance with Art. 21 GDPR, you may object to the processing of your personal data on the basis of Art. 6 (1) lit. e or f GDPR at any time for reasons arising from your specific situation. This also applies to any profiling based on these regulations. If you object, we shall no longer process your personal data, unless we can provide evidence of urgent reasons for our processing activities that are worth protecting and that outweigh your interests, rights and freedoms, or the data is processed to raise, enforce or defend legal claims.

13.8  Right to withdraw the declaration of consent regarding data protection

You may withdraw your declaration of consent regarding data protection at any time by sending us a notice to the effect, for example in the form of an e-mail to [privacy@saurer.com]. Your withdrawal of the declaration of consent does not affect the legality of the processing activities performed on the basis of the declaration of consent until receipt of your notice of withdrawal.

13.9 Automatic individual decision, including profiling

In accordance with Art. 22 GDPR, you have the right not to be subjected to decisions solely based on automatic processing, including profiling, that have legal consequences for you or otherwise significantly impair you. This does not apply if the decision 

 

-       Is required for concluding or fulfilling a contract between you and us,

-       Is permissible in accordance with legal provisions of the EU or its member states to which we are subject and these legal provisions contain appropriate measures for maintaining your rights, freedoms and justified interests, or

-       Is made with your explicit consent.

13.10 Right to complain to a supervisory authority

Notwithstanding any other legal remedies under administration law or before the courts, you have the right to complain to a supervisory authority, particularly in the member state in which you reside, work or where the alleged violation has taken place, if you believe that our processing of your personal data violates the General Data Protection Declaration.

14. Responsibility for contents and information

Our website contains links to third-party websites. When linking these third-party websites, we checked their contents to ensure that they do not violate civil or criminal laws. However, it cannot be ruled out that these contents could be changed at a later date by the respective providers. Please notify us if you believe that linked third-party websites violate applicable laws or contain other inappropriate contents. We shall investigate your concerns and remove the external link, if necessary. SAURER is not responsible for the contents and availability of the linked external websites.

15. Inclusion and validity of the data protection declaration

By using this website, you agree to the data processing activities described above. This data protection declaration only applies to the contents of our website. Other data protection and security regulations apply to the linked external contents. You can find out the controllers of these contents in the respective legal disclaimers of the websites.

The further development of our website or implementation of new technologies may make it necessary to amend this data protection declaration. We therefore reserve the right to amend this data protection declaration at any time with future effect. The respective version that can be accessed at the time of your website visit shall apply at all times.

Version: November 2020