I. Who is responsible and how can I contact the data protection officer?
The responsible person in the sense of the GDPR is
KYOCERA Europe GmbH
Tel.: +49 (0)711 - 93 93 firstname.lastname@example.org
Fax: +49 (0)711 - 93 93 4-950
Trade Register: HRB 210 334
Managing Directors: Rafael Schroeer, Kunihiko Ueki, Katsuyuki Waki
If you have any questions about the processing of your personal data by us or about data protection in general, please contact the data protection officer, who can be reached at the address given above or in the imprint or at the following e-mail address: email@example.com.
II. Your Rights
Every data subject has the following rights:
- Right of access (Article 15 GDPR)
- Right to rectification of inaccurate data (Article 16 GDPR)
- Right to erasure aka. right to be "forgotten" (Article 17 GDPR)
- Right to restrict the processing of personal data (Article 18 GDPR)
- Right to data portability (Article 20 GDPR)
Data subjects may object to the processing of personal data for advertising purposes, including an analysis of customer data for advertising purposes, at any time without giving reasons.
In addition, data subjects also have a general right to object (cf. Article 21 para. 1 GDPR). In this case, the objection to data processing must be substantiated. If the data processing is based on consent, your consent can be revoked at any time with effect for the future.
The easiest way to exercise your data subject rights is to contact firstname.lastname@example.org. In addition, you have the right to lodge a complaint with the data protection supervisory authority responsible for you.
III. Processing of personal data by KYOCERA
Below, we would like to give you an overview of how we ensure the protection of your personal data when accessing our website and which types of personal data we process for which purposes and to what extent.
Personal data is any information relating to an identified or identifiable natural person. This includes, e.g., your name, (business) contact details, telephone number or email address, as well as your connection to a company and your interaction/activities with us. When using our website, personal data, i.e. information about your use of our website (such as connection data or sources you have accessed), may be processed.
1. Processing of data when accessing our website - log files
When you access our website, automatic information of a general nature are collected. These information (server logfiles) includes e.g. the type of web browser, the operating system used, the domain name of your internet service provider and similar. In addition, the IP address is transmitted and used to enable you to use the service you have requested. This information is technologically necessary in order to correctly deliver the content of web pages requested by you and is mandatory when using the Internet. Legal basis for data processing Article 6 para. 1 sentence 1 letter f GDPR.
We also use contracted, carefully selected and controlled service providers (usually for website hosting) outside the EU. To ensure the adequacy of the level of data protection, we have agreed the standard data protection clauses of the EU Commission with these service providers, unless the Commission has determined by adequacy decision the equivalence of the level of data protection in the recipient country or the exemptions of Article 49 GDPR are applicable.
2. Processing of data when using the website - your requests
If you send us an enquiry by e-mail or via the contact form, we collect the data you provide for the purpose of processing and responding to your request. We store your request for a period of up to two years for documentary purposes. Depending on the nature of your request, a longer storage period may result, we inform about this in the respective purposes of processing. Legal basis for data processing Article 6 para. 1 sentence 1 letter f GDPR.
3. Information to ensure data security
We take technical and organizational security precautions on our pages in order to protect the personal data stored with us from access by third parties, loss or misuse and to enable secure data transfer.
We would like to point out that, due to the structure of the Internet and the sending of e-mails, unauthorized access by third parties can occur during the transmission of information. It is therefore also within your responsibility to protect your data against misuse by encryption or in any other way.
According to our IT security concept, in order to detect and analyze any attacks against our website, the resulting logfile data is generally stored for a period of four weeks and then anonymized or deleted. The legal basis for the data processing is Article 6 para. 1 sentence 1 letter f GDPR.
4. Use of external links
5. Kyocera profiles in social networks
Kyocera continues to use various other presences in so-called social media platforms. We currently operate the presences with the following providers:
- Instagram, c/o Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland; privacy information available at https://help.instagram.com/519522125107875; URL of accounts:
LinkedIn, LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland; privacy information available at https://www.linkedin.com/legal/privacy-policy; URL of accounts:
- Facebook, Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland; privacy information available at https://www.facebook.com/policy.php; URL of accounts:
- YouTube, c/o Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, privacy information available at https://policies.google.com/privacy?hl=de; URL of account:
We use the technical platform and services of the providers for these information services. We would like to point out that you use our appearances on social media platforms and their functions on your own responsibility. This applies in particular to the use of interactive functions (e.g. Comment, Share, Rate).
When you visit our social media presences, the providers of the social media platforms collect, among other things, your IP address and other information that is available in form of cookies on your terminal device. This information is used to provide us as the operator of the accounts with statistical information about the interaction with us (so-called Facebook "Insights"). Facebook provides more detailed information on this at the following link: http://de-de.facebook.com/help/pages/insights.
The data collected about you in this context will be processed by Facebook Ltd. and may be transferred to countries outside the European Union, in particular the USA. Your data may be transferred to the USA, where Facebook has stated that it complies with an adequate level of data protection equivalent to that of the former EU-US Privacy Shield (www.privacyshield.gov).
We do not know how the social media platforms use the data from your visit to our account and interaction with our posts for their own purposes, how long this data will be stored and whether data is passed on to third parties. The data processing by the social network may differ depending on whether you are registered and logged in to the social network or are visiting the site as a non-registered and/or non-logged-in user. When accessing a post or the account, the IP address assigned to your terminal device and other information are processed by the provider of the social media platform. If you are currently logged in as a user, a cookie on your end device can be used to track your activity on the network. If you wish to avoid this, you should log out, delete the cookies present on your device and restart your browser. You can find more information in the privacy statements of the providers, which are linked above.
To exercise your data subject rights, you can contact either us or the provider of the social media platform. To the extent that one party is not responsible for responding or needs to obtain the information from the other party, we or the provider will then forward your request to the respective partner. Please contact the operator of the social media platform directly for questions about profiling or processing of your data when using the website. For questions about the processing of your interaction with us on our site, you can reach us at the contact details above.
Which information the social media platform receives and how it is used is described by the providers in their data protection declarations (see link in the table). There you will also find information on contact options as well as on the settings options for advertisements. Further information on social networks and how you can protect your data can also be found at www.youngdata.de.
1. Information on the use of facilities (in particular cookies)
Our website uses technical utilities for various functions, in particular so-called cookies. Cookies are small text files that are stored on your terminal device and saved by your browser. They serve to make our offers more user-friendly, effective and secure. We use both so-called temporary cookies, which are automatically deleted when you close your browser ("session cookies"), and persistent (permanent) cookies.
When you access our website and at any later time, you have the choice of whether you want to allow the setting of cookies or individual additional functions. You can make changes in your browser settings or via our Consent Manager. If you reject functions or cookies, it is possible that you will not be able to use our offer completely. You can also obtain additional information on the technical details of the cookies at the bottom of this website in the "Cookie list".
2. Mandatory functions and cookies when using the website
We use various functions on our websites that are absolutely necessary for the usage of our websites. These include so-called session cookies, which enable us to recognize you while you are visiting the site as part of a single session. These session cookies contribute to the secure use of our offer by enabling the secure processing of the order or payment process. These functions can be seen in the cookie consent tool. The legal basis of the processing is Article 6 para. 1 sentence 1 letter f GDPR.
a. Use of functions to record usage behaviour (tracking)
The use of tracking functions, which collect information primarily by means of cookies, enables us to analyze the use of our website and thereby improve it. To do this, we can either employ usage statistics (anonymous results) or use functions with which we recognize users when they access our website repeatedly and thereby assign usage processes to an internally assigned identification number (pseudonym). This way, we can record and coherently analyze access to our website.
Specifically, we use the following tracking functions:
Tracking through Google Analytics/Google Tag Manager
This website uses Google Analytics 4, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). We use Google Tag Manager for easier administration of the tool. The purpose of our utilization of the tool is to enable the analysis of your user interactions on websites and in apps and to improve our offer through the statistics and reports obtained, to make it more interesting for you as a user.
We record the interactions between you as a user of the website and our website primarily with the help of cookies, data on the device or browser, IP addresses and website or app activities.
When collecting data, Google Analytics 4 does not log or store IP addresses. Analytics does provide coarse geo-location data by deriving the following metadata from IP addresses: City (and the derived latitude, and longitude of the city), Continent, Country, Region, Subcontinent (and ID-based counterparts). For EU-based traffic, IP-address data is used solely for geo-location data derivation before being immediately discarded. It is not logged, accessible, or used for any additional use cases (for further information: https://support.google.com/analytics/answer/12017362?hl=en).
Google Analytics automatically enriches the collected data by bringing Google machine-learning expertise to bear on the dataset to predict the future behavior of you.
Google acts as processor and we have concluded a corresponding contract with Google. The information generated by the cookie and the anonymized IP addresses about your use of this website are usually transferred to a Google server in the USA and processed there. For these cases, Google has, according to its own statements, imposed a standard on itself that corresponds to the former EU-US Privacy Shield and has promised to comply with applicable data protection laws in the international transfer of data. We have also agreed so-called standard data protection clauses with Google, the purpose of which is to ensure compliance with an appropriate level of data protection in the third country.
The legal basis for the collection and further processing of the information (which takes place for a maximum of 26 months) is your given consent (Article 6 para. 1 sentence 1 letter a GDPR). The revocation of your consent is possible at any time without affecting the permissibility of the processing until the revocation. The easiest way to revoke your consent is to use our Cookie Manager or to install the Google browser add-on, which you may access via the following link: http://tools.google.com/dlpage/gaoptout?hl=de.
b. Use of functions for marketing purposes
Integration of YouTube videos on our website
On individual websites, we have integrated YouTube videos that are stored on http://www.youtube.com and can be played directly from our website. Legal basis for data processing Article 6 para. 1 sentence 1 letter f GDPR. We integrated these videos in the so-called "extended data protection mode", i.e. no data about you as a user is transmitted to YouTube if you do not play the videos. Only when you play the videos, the data mentioned below will be transmitted.
If you decide to play an embedded video, the data described below will be passed on to YouTube, over which we have no control. By playing an embedded video, YouTube receives the information that you have accessed the corresponding page of our website and further data described below, but we have no knowledge of the extent of it. This occurs regardless of whether YouTube provides a user account through which you are logged in or whether no user account exists. If you are logged in to YouTube, your data will be directly assigned to your account. If you do not wish to have your data associated with your YouTube profile, you must log out before activating the button. YouTube stores your data as usage profiles and uses them for the purposes of advertising, market research and/or demand-oriented design of its website. In particular, such an evaluation may be carried out (even for users who are not logged in) to provide needs-based advertising and to inform other YouTube users about your activities on our website. You have the right to object to the creation of these user profiles, and we recommend that you contact YouTube directly to exercise this right.
Data Privacy Guidelines in Business Relationships
Data Privacy Guidelines of KYOCERA Europe Group
This document explains which of your personal data we process if you contact us or if a business relationship exists between your company and us (e.g. as customer or supplier). With this information - applicable as of 25 May 2018 - we want to fulfil our obligations pursuant to the EU General Data Protection Regulation (GDPR) and inform you in a transparent way about our data processing.
This document describes the data processing for the following KYOCERA Europe Group entities (hereinafter: KEG Group). The controller pursuant to Art. 4 no.7 GDPR is stated in the imprint.
- KYOCERA Europe GmbH
- Address: Fritz-Mueller-Strasse 27, 73730 Esslingen, Germany
- KYOCERA Fineceramics Italy S.r.l.
- Address: Viale delle Industrie 20/5, 20044 Arese (MI), Italy
- KYOCERA Fineceramics S.A.S.
- Address: Parc Icade Orly - Rungis, 21 rue de Villeneuve, 94150 Rungis, France
- KYOCERA Fineceramics Ltd.
- Address: Prospect House, Archipelago, Lyon Way, Frimley, Surrey GU16, 7ER, England
- KYOCERA Automotive and Industrial Solutions GmbH
- Address: Waldstrasse 41, 63128 Dietzenbach, Germany
- KYOCERA Fineceramics Europe GmbH
- Address: Steinzeugstrasse 92, 68229 Mannheim, Germany
For questions regarding the processing of your personal data by us or data protection in general, please contact us via an email to email@example.com. If you want to contact KYOCERA Automotive and Industrial Solutions GmbH, please use firstname.lastname@example.org, and for KYOCERA Fineceramics Europe GmbH email@example.com.
I. Your personal data processed by us
Personal data means any information relating to an identified or identifiable natural person. This includes, e.g., your name, your (professional) contact details, company affiliation, and your interactions/activities with us.
We will process the data you provide to us in connection with requests or within the scope of existing contractual relationships. In addition to your professional contact details, this includes in particular all information exchanged, like emails, orders, requests regarding our products, or payment data. In case of a current business relationship, you have to provide the personal data required for the preparation and performance of contracts or data which we are obliged to process pursuant to statutory provisions; otherwise we cannot fulfil the contracts.
II. Scope and purposes of the data processing
1. Contractual performance
KEG Group will process the data provided in connection with the placing of orders for the purpose of the performance of the contracts concluded with you or in the preparation thereof. In this context, we may also engage specialized and carefully chosen and supervised service providers (e.g. for Financial Services, Data Hosting, Service/Maintenance). The processing of data for contractual performance comprises the use of the data for rendering contractually agreed services, including processing of payments via our payment service providers/banks, the provision of services within the framework of service contracts or the processing of warranty claims. This is the case both if you are our customer and if you are our supplier. In connection with financing enquiries, KEG Group may use the data required for preparing an offer and, to the extent required, forward it to the contractual partners. Further details on the purposes are included in the respective contract documents. The legal basis for this data processing is Art. 6 para.1, sentence 1, letter b GDPR.
The data collected by KEG Group regarding product purchases or the use of services may also be transferred to external auditors and/or tax consultants of KEG Group for purposes of auditing and consulting. The data collected by KEG Group for the purpose of contractual performance will remain stored in its operating systems as long as any warranty claims or other purposes under these data privacy guidelines continue to exist. Thereafter, such personal data subject to retention obligations applicable in the concerning country of the KEG Group entity will be archived and deleted upon expiry of the respective retention periods. All other data will be deleted immediately, unless further purposes exist pursuant to these data privacy guidelines. The legal bases for this data processing are Art. 6 para. 1, sentence 1, letter b GDPR with respect to warranty claims and Art. 6 para. 1, sentence 1, letter c GDPR with respect to compliance with legal obligations.
2. Verification of address and credit rating
To verify your address and creditworthiness, KEG Group may access data that is stored in databases by credit agencies and credit insurances regarding your company's address and credit rating, including data ascertained on the basis of mathematical statistical techniques (scoring). This will be the case if the conclusion of a contract involves an economical risk for KEG Group and it wants to hedge itself by checking your credit rating. With the help of this information, KEG Group will be able to grant credits for the delivery of goods or services.
We rely on different companies to provide addresses and credit rating data to KEG Group. We will inform you, of course, which credit agencies and credit insurances we used for your company on request. To get more information, please contact us at the contact details named above.
The information provided by credit agencies and credit insurances and your payment history with us will be evaluated by KEG Group to establish a separate internal rating as a basis for the granting of a credit line. The credit rating data will be deleted 5 years after the last delivery of goods. For these described purposes, the credit rating data may be forwarded to KYOCERA Corporation, 6 Takeda, Tobadono-cho, Fushimi-ku, Kyoto 612-8501, Japan. Japan ensures an adequate level of protection, according to the EU Commission's decisions. This data processing is carried out on the basis of Art. 6, para. 1, sentence 1 letter f GDPR, with the purpose of providing you with a credit for the delivery of goods or services.
3. Use of data by KEG Group for marketing purposes
KEG Group and carefully chosen and supervised service providers engaged and controlled by it (printers, letter shops, etc.) may use your name and address to contact you for marketing purposes within the framework of a current business relationship or as a prospective customer. Likewise, data provided within the scope of a current business relationship (e.g. contact details, purchased products, services ordered, etc.) will be used for marketing purposes. KEG Group will provide further information about products and services of KEG Group and carry out analyses for marketing purposes (so-called marketing scoring). In addition, data obtained by KEG Group on the basis of your consent may be used for data analyses for marketing purposes. With this marketing approach we want to ensure that you are always informed about recent developments and that we can provide you with the services you need, and thus establish a long-lasting business relationship. Finally, we would like to stay in touch with you for special occasions and e.g. send you Christmas greetings.
KEG Group may use your telephone number for marketing purposes, provided we have obtained your consent or the requirements for presumed consent are fulfilled - e.g. current business relationship or prior contact. Moreover, KEG Group may use the email addresses collected upon the conclusion of contract for the promotion of similar offers. You may, of course, object to such marketing communications, see our contact information described above for the easiest way to contact us, and such right will be pointed out in each individual case.
To achieve the goals associated with the use for marketing purposes, we will process the respective data as long as you continue to be our customer, except where we obtain your consent for a use beyond such period or data are subject to statutory retention obligations. In the latter case, the data will be deleted upon expiry of the respective retention period. If you exert your right to object - for more detailed information please see clause IV. below - this may result in a shorter processing period.
The legal basis for the use of data for marketing purposes is Art. 6, para. 1, sentence 1, letter f GDPR or, if we have obtained your consent, Art. 6, para. 1, sentence 1, letter a GDPR. Further information regarding the use for marketing purposes and in particular your right to object is provided below.
4. Data processing for press work
If you work as a journalist and contact us (e.g. by telephone or in writing), we will store your data for the purpose of communication and traceability of the history. We can send you e-mails or post with information on the Kyocera companies, products and services if you are included in our press distribution list. The data may also be passed on to supervised and controlled agencies with whom we cooperate.
You can, of course, object to the receipt of our press releases or revoke your request at any time - simply inform us about your wish, using the contact details given above or in the e-mails. The data processing described for press work purposes is carried out on the basis of your consent in accordance with Art. 6 para. 1 sentence 1 letter a GDPR or, in particular in the case of advertising by post, in accordance with Art. 6 para. 1 sentence 1 letter f GDPR.
5. Processing of personal data for compliance with legal obligations
Like every company in Europe, KEG Group is subject to various legal obligations to verify the data of its customers and business partners. In this context, we will only process your personal data to the extent required by statutory provisions. In order to comply with legal obligations, it may be necessary to process your data partially automatically to evaluate personal aspects (profiling). Unless you are expressly informed, automated individual decisions are made. The legal basis is Article 6, paragraph 1, sentence 1, letter c GDPR in conjunction with respectively applicable legal provisions.
The respective legal requirements relate in particular to:
- prevention of fraud and money laundering
- monitoring and reporting obligations under tax law
- assessment and management of risks within the Group
- sanction lists
- export control, customs requirements
- auditing, especially by tax and auditors.
III. Transfer of data within KEG Group and to distributors
KEG Group may transfer your core data (e.g. company name, contact person, address, contact details like phone number and email address) to other companies within KEG Group, to KYOCERA Corporation (Address: 6 Takeda, Tobadono-cho, Fushimi-ku, Kyoto 612-8501, Japan, Tel. +81 75 604 3500; fax +81 75 604 3501) (hereinafter: KC) and to KYOCERA International Inc. (Address: 8611 Balboa Avenue, San Diego, Ca. 92123 Tel. +1 858-576-2626) (hereinafter: KII) and/or update such data to ensure that uniform core data are available to all KEG Group companies, KC or KII if involved in a transaction with you (e.g. processing of a contract). This simplifies our internal processes and will save you the trouble of having to provide your core data again when contacting another Kyocera Group company. The legal basis for this data processing is Art. 6, para. 1, sentence 1, letter b or f GDPR. Your rights are protected by regulations that guarantee high data protection standards.
In addition to core data, we may also transfer data to a specific order (order data) or for preparation of such an order in the event of your enquiry to other KEG Group companies, KC or KII if this is required to process your order. The products of KEG Group are manufactured by different Kyocera companies (mostly KC), in which case your data may be transferred to simplify order processing and delivery. You will be informed about any transfers upon conclusion of the contract. The legal basis for this processing is Art. 6 para. 1, sentence 1, letter b GDPR.
A transfer of the data given by you can also take place with the contract initiation: In some cases it may happen that the products/services you request are not distributed by our company, but by other companies within the KEG Group or by external companies (independent from Kyocera; especially distributors). In such cases, we may forward your request directly to the appropriate company so that the company may contact you directly with its expertise and provide you with the best possible support. It is possible that the responsible companies have their registered office outside the EU, in particular, the registered office may be located in Japan. Japan ensures an adequate level of protection, according to the EU Commission's decisions. You can obtain further information directly from the companies to which we have forwarded your data, or from us under the contact data mentioned above. The legal basis for this procedure is either Art. 6 para. 1, sentence 1, letter b or (if the forwarding is not part of your request) letter f GDPR.
As a result of the data processing operations described above, your core data may also be processed by other entities of KEG group or other external partners in countries outside the European Union (EU) or the European Economic Area (EEA). Japan ensures an adequate level of protection, according to the EU Commission's decisions. To the extent the respective country is not recognized by the EU Commission as providing an adequate level of data protection, we have implemented contractual safeguards - by the conclusion of EU model clauses - and by examining the country's level of data protection in more detail.
IV. Your Rights
The easiest way to exercise your legitimate rights is to contact the above-stated address. Every data subject has the following rights:
- right of access (Art. 15 GDPR)
- right to rectification of inaccurate data (Art. 16 GDPR)
- right to erasure (Art. 17 GDPR)
- right to restriction of processing of personal data (Art. 18 GDPR)
- right to data portability (Art. 20 GDPR)
- right to lodge a complaint with a data protection authority (Art. 77 GDPR).
You may object to the processing of personal data for marketing purposes, including the analysis of customer data or the transfer of data to third parties for marketing purposes, at any time without stating reasons.
Moreover, every data subject has a general right to object (cf. Art. 21, para. 1 GDPR). In such cases, respective reasons must be stated for the objection to the data processing. To the extent the data processing is carried out on the basis of consent, your consent can be revoked at any time with future effect. The revocation of consent shall not affect the lawfulness of the processing carried out on the basis of the consent until revocation.
Last revision: December 2022