Data Privacy Notice - General
1 Scope
RMIG has a responsibility to protect the rights and privacy of the persons we are involved with, including customers, suppliers, trading partners and other business contacts, website visitors and people who are invited to and register for our events, webinars and electronic newsletters with consent.
The scope of this Privacy Notice is to provide mandatory information and to summarise how personal data are processed on the following individuals ("Data Subjects") in the RMIG Group as divided into the following categories below:
A. Customers, suppliers, trading partners and other business contacts and their employees
B. Visitors of our websites, social media and users of other marketing activities.
2 Data controllers
This notice applies to each of the below RMIG Group companies (each “RMIG” and combined the "RMIG Group") as data controllers for the processing of personal data:
Within the EU/EAA |
||
Denmark | RMIG A/S, Industriparken 40, 2750 Ballerup | |
Austria | RMIG Lochbleche GmbH, Aumühlweg 21/114, 2544 Leobersdorf | |
MEVACO GmbH, Aredstrasse 7/309, 2544 Leobersdorf | ||
Belgium | RMIG NV/SA, Ninovesteenweg 198, 9320 Aalst | |
France | RMIG S.A.S., 8 rue Joseph Niepce, 69740 Genas | |
MEVACO S.a.r.l., 6, allée Brancas, 44000 Nantes | ||
Germany | RMIG GmbH, Hallesche Straße 39, 06779 Raguhn-Jeßnitz | |
RMIG Nold GmbH, Am Katzloch 1, 64589 Stockstadt/Rhein | ||
MEVACO GmbH, Vordere Karlstraße 12, 73033 Göppingen | ||
Hungary | MEVACO Kft., Találka tér 5-1, 7100 Szekszárd | |
Italy | MEVACO S.r.l., Bahnhofstr. 1 // 39044 Neumarkt (BZ) | |
Netherlands | RMIG BV, Archimedesstraat 12, 3316 AB Dordrecht | |
Norway | RMIG AS, Lillevarskogen 14, 3160 Stokke | |
Poland | RMIG Sp.z.o.o, Pokrzywno 4A, 61-315 Poznań | |
MEVACO Sp. z o.o, ul. Wielicka 250, 30-663 Kraków | ||
Spain | RMIG Solutions SL., Calle Ercilla, 18 - 2 48009, Bilbao, Bizkaia | |
Sweden | RMIG Sweden AB, Västerängsvägen 1, 542 22 Mariestad | |
Outside the EU/EAA |
||
Switzerland | MEVACO AG, Mühlemattstrasse 54, 5000 Aarau | |
UK | RMIG Ltd., 1-7 Adlington Court, Risley Road, Birchwood, Warrington, Cheshire, WA3 6PL |
Contact details.
If at any time you wish to contact us if you have any questions to this Privacy Notice, or if you wish to exercise your data subject rights, you may reach out to our Data Privacy Manager at DPM@RMIG.com.
A Customers, suppliers, trading partners and other business contacts
RMIG processes data about contact persons employed with or otherwise representing former, current and potential customers, suppliers, trading partners and other business partners. As a contact person at a customer, supplier, trading partner or other business partner, RMIG processes your personal data as a Data Subject when you communicate with RMIG, e.g., via e-mails in connection with RMIG's existing contractual relationship with the company you are employed with or in connection with the conclusion or termination of a contract.
The information we process may include:
Ordinary personal data
- Identification information, such as name, work, work telephone number, and e-mail address.
- Other information such as job position and place of work
1 Purposes
RMIG processes personal data for the following purposes:
- To offer a professional service towards our customers, suppliers, trading partners, etc. The registered personal data is therefore used for providing services to sales, purchase, manufacturing, delivery, market research, product development, business development and statistics.
2 Information sources
RMIG processes the personal data you have provided us.
Additionally, RMIG collects personal data from third parties, e.g., your employer.
3 Legal basis
Below, we have inserted the legal basis for each country/region for the processing of personal data.
- Ordinary personal data: We process ordinary personal data, including identification details (such as name, work e-mail address, work telephone number), and other information (such as job position, workplace etc.) for being able to offer a professional service towards our customers, suppliers, trading partners, etc.
EU/EEA:
- Article 6(1)(b) of the GDPR on contractual relationships with consumers and personally owned companies,
- Article 6(1)(c) of the GDPR on legal requirements combined with national laws on for instance in relation to the obligation on the preservation of accounting records pursuant to the Danish Bookkeeping Act, and
- Article 6(1)(f) (legitimate interests) of the GDPR, where the legitimate interests are to be able to offer a professional service towards our customers, suppliers and trading partners and fulfilment of our contractual obligations, maintaining and enhancing customer relationships and other partnerships, invoicing for the services your company provides to RMIG and/or vice versa, communicating with you if you have any questions related to our services or vice versa, and for documentation purposes. It is assessed that RMIG’s interest in being able to process personal data for the listed purposes override the Data Subject’s interest in the personal data not being processed by RMIG. In particular, the personal data is a very limited dataset and primarily related to business-related contact details.
4 Recipients
If deemed necessary, RMIG may disclose personal information about you to certain third-party recipients, such as intra-group companies, business partners of RMIG or advisors of RMIG, e.g. if the disclosure of your personal data is necessary for the establishment, exercise or defence of RMIG's legal claims and authorities if we are required to do so by law.
RMIG also uses data processors to provide certain functions. This applies, for example, to suppliers of IT systems. RMIG has concluded data processing agreements with the suppliers, and such suppliers will only process personal data about you on behalf of and in accordance with the instructions given by RMIG.
5 Transfer of personal data to a country outside the EU/EEA, UK and Switzerland
Personal data may be transferred to countries outside the EU/EEA, UK and Switzerland in which case RMIG ensures that such transfers will be carried out in accordance with the applicable data protection laws. This means that any party outside the EU/EEA that receives your personal data will ensure an adequate level of protection, e.g. by entering into the EU's standard contract clauses with RMIG. RMIG will adopt supplemental measures if necessary for the specific transfers. You can receive a copy of the legal basis for transfers upon request. Please contact DPM@RMIG.com.
6 Storage of personal data
If you are a contact person at a customer, supplier, trading partner or other business partner, RMIG will store personal data about you as long as RMIG communicates with you because you are RMIG's point of contact and keep the data for as long as it is relevant for our commercial interests, contractual obligations, warranty obligations, etc.
RMIG does not delete information in which your contact details has been used for order processing or customer satisfaction purposes as we consider this documentation is primarily related to your employer and not attributed to you personally.
RMIG will store your personal data to the extent necessary for bookkeeping purposes such as personal data related to invoicing. This period may vary depending on local legislation in the countries where RMIG operates.
In Denmark, such personal data will be stored for a period of 5 years from the end of the financial year to which the accounting records relate, cf. the Danish Bookkeeping Act and Article 6(1)(c) of the GDPR.
There may be legal obligations that require personal data to be stored for a longer or specific period – in such cases, the data will be stored in accordance with applicable law.
B Visitors of our website, social media and users of other marketing activities
RMIG processes personal data about visitors of RMIG's websites ("Website"), social media and users of other marketing activities.
RMIG processes personal data about you via cookies when you visit our Website. Our Website uses so-called social media plug-ins ("Plug-ins") from the social media sites. In this regard personal data is also processed. Further, we also process personal data through our social media sites which you have integrated with.
Personal data about people who are invited to and register for our events, webinars and electronic newsletters with consent are also processed. We also process personal data about presenters and participants in webinars and other events.
The personal data we process may include:
For visitors of Website and social media
- Ordinary personal data
- Name and contact information such as e-mail
- Browser type, browser version and IP-address
- Content of the message you may choose to share with us
- Information concerning your visit to our website and website visitors' activities
- Statistical information about our website visitors' activities, for example which pages are visited and from which sources, how much time is spent on each website and which pages are most popular
Upon consent to marketing cookies, we use the information that you have visited our site to present you with advertisements about the RMIG Group products and services on social media platforms.
RMIG is joint data controller with our social media providers for personal data collected and processed in connection with your visit to our social media sites and our Website. It means, among other things, that you may contact both RMIG and the social media providers to exercise your rights under the GDPR.
RMIG has entered into a joint data controller agreement with each social media provider. The joint data controller agreements for the social media providers are available here:
You can find information about the types of personal data the social media platforms process about you, the purpose for processing, the legal basis, and how long they store your personal data via the links below:
- Facebook - Privacy Policy
- LinkedIn - Privacy Policy
- Instagram - Privacy Policy
- Google - Privacy Policy
For users of other marketing activities
Ordinary personal data
- Identification data such as name, telephone number and e-mail address
- Other information such as job position, areas of professional interest and workplace
In relation to recipients of our newsletters, we also process information about whether the recipient has interacted with the content of the newsletter.
In relation to webinars and other events, we process information about which events the participants have registered for.
1 Purposes
For visitors of Website and social media:
The purpose with RMIG's websites is to market our premium perforated solutions and services towards customers. Our Website also contains information and technical data to help customers in connection with the use of products in general.
Our Website uses cookies, and processing of personal data is therefore taking place. The purpose of using these cookies (and processing personal data) is, i.a.:
- To improve your user experience on our Website
- To provide functionality
- To generate statistics
- To target the marketing of our products to your needs
To remember your preferences - Upon consent to functional cookies, we process personal data to optimizing the functionality of our website
- Upon consent to statistical cookies, we process personal data to generate statistics
- Upon consent to marketing cookies, we process personal data to analyse user behaviour, personalize content and ads and improve user experience across our digital platforms
As mentioned, our Website also uses Plug-ins from the social media sites. In this regard personal data are processed. Further, we also process personal data through our social media sites which you have integrated with.
The purpose of using Plug-ins is:
- To promote RMIG and its offerings and engage with our visitors. We aim to provide relevant content for our visitors across all our channels.
For users of other marketing activities (including newsletters, webinars, onsite events etc.):
RMIG processes personal data for the following purposes:
- To prepare participant lists, conduct meetings, facilitate networks, courses and events, share material from events, evaluate our initiatives and send out invitations to new events.
- To improve our services in order to provide our customers and other interested parties with relevant information.
- Our newsletters contain a tracking pixel embedded in the newsletter. With this pixel, information is collected when recipients of the newsletter interact with the content of the newsletter. We use this information to see how many recipients actually interact with the newsletter and to see what content is of interest to the recipients.
2 Information sources
RMIG processes the personal data provided from you.
Additionally, RMIG processes personal data collected from third parties, e.g., cookies, social media platforms, from your employer, publicly available sources and from our IT systems, provided you have consented to the marketing activities etc.
3 Legal basis
Below, we have inserted the legal basis for each country/region for the processing of personal data.
For visitors of Website and social media
Ordinary personal data: We process ordinary personal data to improve your user experience on our Website, to provide functionality, to generate statistics, to target the marketing of our products to your needs, to remember your preferences and promote RMIG as well as engage with visitors through social media Plug-ins.
EU/EEA:
- Article 6(1)(f) (legitimate interests) of the GDPR, where the legitimate interests are to provide you with a website that works optimally and making content available on social media to users who follow RMIG Group companies in branding and marketing RMIG Group. It is RMIG's assessment that RMIG’s interest override the Data Subject’s interest in the personal data not being processed by RMIG.
- Article 6(1)(a) of the GDPR, consent is obtained for the processing of personal data for functional, statistical and marketing cookies which you will be asked to give when you visit the Website. A special popup for this purpose designed by Cookie Information is used in which the consents are obtained.
Consent is also obtained for the processing of personal data related to tracking mechanisms and direct marketing purposes by email.
For users of other marketing activities (including newsletters, webinars, onsite events etc.):
Ordinary personal data: Personal data is processed for the purpose of promoting the company and engaging with the visitors.
EU/EEA:
- Article 6(1)(f) (legitimate interests), where the legitimate interests are marketing our businesses, carrying out the events we offer and targeting our communications.
- Article 6(1)(a), consent is obtained for the processing of personal data when electronic marketing is sent and when tracking is carried out
4 Recipients
RMIG may disclose personal information about you to certain third-party recipients, such as intra-group companies and other third parties. This for instance includes sharing of personal data in the form of attendee lists with presenters and attendees from our events.
In order to further develop and improve the Website, we use cookies from certain third parties. The purposes are preparation of statistics and analyses of online behaviour. The third parties place the cookies on your computer on our behalf and prepare the statistics, etc. Third parties used are listed in the cookie declaration available in the consent popup shown to you when you visit the Website.
If you only give consent to “necessary” we only receive your opt-out and process this using Google Tag Manager to respect your decision.
If you give consent to one or multiple other categories, we transfer your personal data as described in the Cookie Information popup to the relevant recipients listed in the Cookie Information popup. Certain of these third-party recipients are data controllers using the personal data to pursue own purposes whilst certain others are data processors only processing the personal data on behalf of and as instructed by RMIG.
RMIG will also disclose your personal data to authorities if we are required to do so by law.
RMIG also uses data processors to provide certain functions. This applies, for example, to suppliers of IT systems.
RMIG has concluded data processing agreements with the suppliers, and such suppliers will only process personal data about you on behalf of and in accordance with the instructions given by RMIG.
When you visit our social media sites on e.g. Facebook, Instagram and LinkedIn, or our Website where social media Plug-ins have been installed, our social media service providers collect and process your personal data using cookies, subject to your consent to the service provider, as applicable. Such collection and processing take place even if you have no account on the social media.
5 Transfer of personal data to a country outside the EU/EEA, UK and Switzerland
Personal data may be transferred to countries outside the EU/EEA, UK and Switzerland in which case RMIG ensures that such transfers will be carried out in accordance with the applicable data protection laws. This means that any party outside the EU/EEA that receives your personal data will ensure an adequate level of protection, e.g. by entering into the EU's standard contract clauses with RMIG. RMIG will adopt supplemental measures if necessary for the specific transfers. You can receive a copy of the legal basis for transfers upon request. Please contact DPM@RMIG.com.
You can find information about the social media platform providers' transfers to third countries, and the measures they have implemented to ensure that your data is adequately protected via the links to the privacy notices linked to above.
6 Storage of personal data
We store personal data as long as they are necessary for our processing.
In relation to our events, we store personal data as long as you are registered for our events. We delete participant lists after one year.
There may be legal obligations that require personal data to be stored for a longer or specific period – in such cases, the data will be stored in accordance with applicable law.
For instance, RMIG will store your personal data to the extent necessary for bookkeeping purposes such as personal data related to invoicing. This period may vary depending on local legislation in the countries where RMIG operates.
When the Danish Bookkeeping Act applies, we are obliged to store information about participation in courses and events for five years, cf. Article 6(1)(c) of the GDPR.
Regarding marketing permissions and other consents, they are stored for two years from the last marketing activity based on the statutory limitation of liability under the legislation.
In relation to cookies, there are different expiry dates for each cookie depending on the type and purpose of the cookie in question and they are updated automatically when you visit the Website again. The cookies are all listed in the consent popup along with the description of the data recipient, etc.
Personal data collected in relation to the use of social media will be erased when the content is deleted or when you withdraw your response to our content (likes, sharing, etc.).
RMIG has no influence on the social media's retention period; please see the privacy policies for the social media platforms lined to above.
7 Rights of the data subjects
RMIG has implemented a number of measures to protect your personal data and ensure your rights. As a Data Subject, you have certain rights which RMIG is obliged to fulfil unless otherwise exceptionally provided by the data protection legislation. These rights include the right to be informed, the right of access, the right to rectification, the right to erasure ("the right to be forgotten"), the right to restriction of processing, the right to data portability, the right to object, and the right not to be subject to a decision based solely on automated processing, including profiling. Please note that certain limitations may apply to your ability to exercise these rights, for example, when your right to obtain the information is found to be overwritten by essential considerations of private interests.
If RMIG is processing personal data based on your consent, you also have the right to withdraw this consent at any time. Please note that withdrawal of consent does not affect the lawfulness of the processing prior to the withdrawal of the consent.
To exercise any of your rights, you may contact RMIG Data Protection Manager by e-mail at DPM@RMIG.com.
If you disagree with the way in which RMIG processes your personal data, you may file a complaint with the relevant data protection supervisory authority in the country which is data controller.
Contact details of the supervisory authorities overseeing the processing in the RMIG Group:
Within the EU/EAA |
|
Denmark | www.datatilsynet.dk |
Austria | www.dsb.gv.at |
Belgium | |
France | www.cnil.fr |
Germany | www.bfdi.bund.de |
Hungary | www.naih.hu |
Italy | www.garanteprivacy.it |
Netherlands | www.autoriteitpersoonsgegevens.nl |
Norway | www.datatilsynet.no |
Poland | www.uodo.gov.pl |
Spain | www.aepd.es |
Sweden | www.imy.se |
Outside the EU/EEA |
|
Switzerland | www.edoeb.admin.ch |
UK | www.edoeb.admin.ch |
However, we encourage you to contact us first at DPM@RMIG.com for a closer dialogue and mutual agreement.
Version: November 2024