Privacy Policy
Duty to provide information pursuant to §5 TMG & Art. 13/14 of the GDPR
For us, Orano NCS GmbH, the protection of personal data is far more than just complying with legislation. We are therefore very pleased about your interest in how we handle personal data.
The processing of personal data, for example a person’s name, address, e-mail address or telephone number, always occurs in accordance with applicable data protection laws.
Through this privacy policy, we wish to inform the public about the type, scope and purpose of the personal data we collect. In addition, we wish to inform data subjects about their rights.
Orano NCS GmbH has taken numerous technical and organizational measures to ensure the greatest possible protection of the personal data processed via this website.
Despite the care we take, security gaps can occur in internet-based data transmission, so that absolute protection cannot be guaranteed. For this reason, you are of course free to transmit your personal data to us by alternative means, such as by telephone or postal mail.
Name and address of the data controller and means of contact
Orano NCS GmbH
Olaf Oldiges
Margarete-von-Wrangell-Straße 7
63457 Hanau
Germany
Tel.: +49 (0) 6181 – 501-100
E-Mail: info.ncs@orano-ncs.com
Website: www.orano-ncs.com
DPO contact details
The data protection officer for the data controller is:
DDI – Deutsches Datenschutz Institut GmbH (German Data Protection Institute Ltd.)
www.deutsches-datenschutz-institut.de
You can contact our data protection officer by post at the above-mentioned company address, marked for the attention of the data protection officer – or by e-mail at: datenschutz@orano-ncs.com
Purpose of and legal basis for data processing
Purpose of and legal basis for data processing – in general when visiting the website
If you use our website for purely informational purposes, do not register or otherwise transmit information to us (e.g. by e-mail), we will only collect such data as your browser transmits to our server (so-called “server log files”). These data are processed pursuant to Art. 6 (1)(f) of the General Data Protection Regulation (GDPR) on the basis of our legitimate interest in improving the stability and functionality of our home page. These data will not be used for any other purpose; nor will they be disclosed to third parties. However, we reserve the right to subsequently analyse the log files should there be any indications of illegal use.
Purpose of and legal basis for data processing – contact form
When you make contact with us (e.g. using the contact form or by e-mail), personal data will be collected. These data will be saved and used exclusively for the purpose of responding to your request and the associated technical administration. The legal basis for processing the data is our legitimate interest in responding to your request pursuant to Art. 6 (1) (f) of the GDPR. If your purpose of making contact is the conclusion of a contract, then Art. 6 (1) (b) of the GDPR forms a further legal basis for the processing. Your data will be deleted after final processing of your enquiry; this is the case if it can be inferred that the relevant facts have been conclusively clarified and if no legal storage obligations prohibit us from deleting them.
Purpose of and legal basis for data processing – Comments function
When you use the Comments function on this website, in addition to your comment, details of the time the comment was created and the commentator’s name you selected will be saved and published on the website. In addition, your IP address will be logged and stored.
Your IP address is stored for security reasons in case a comment that has been made infringes the rights of third parties or illegal content is posted.
The legal bases for the storage of your data are Art. 6 (1) (b) and (f) of the GDPR. We reserve the right to delete comments if they are claimed by third parties to be unlawful or offensive.
Purpose of and legal basis for data processing – Newsletter function
When you register for our e-mail newsletter, we will regularly send you information on our company and what we have to offer. The only mandatory information required for a subscription to our newsletter is your e-mail address.
The provision of further data is voluntary and these will be used in order to contact you personally. For sending the newsletter, we use the so-called double-opt-in procedure. This means that we will not send you an e-mail newsletter until you have expressly confirmed to us that you agree to receive newsletters.
We will then send you a confirmatory e-mail asking you to click on a corresponding link to confirm that you wish to receive newsletters in future.
By clicking on the confirmation link, you consent to our using your personal data pursuant to Art. 6 (1)(a) of the GDPR. When you register for our newsletter we will store your IP address as registered by your ISP and the date and time of registration in order to be able to track any possible misuse of your e-mail address at a later point in time.
The data we collect when you register for the newsletter will be used exclusively for the purposes of advertising by way of the newsletter. You can cancel the subscription at any time via the link provided in the newsletter. Once you have unsubscribed, your e-mail address will be deleted immediately from our newsletter distribution list unless you have expressly consented to the further use of your data or we reserve the right to make further use of your data that is permitted by law and which we inform you about in this policy.
Recipients or categories of recipients
Depending on type and purpose of use, personal data will be passed on to the following external parties:
Operators of IT infrastructure systems, service providers maintaining the website, Google, USA.
Transmission to non-EU countries
Within the framework of Google Maps and Google WEB FONT, we pass data to Google, USA, who process on the basis of the “Privacy Shield” and thus guarantee the corresponding EU data protection level.
Time limits for erasure
The data controller will process and store the data subject’s personal data only for the period required to achieve the purpose of such storage or where provided for by the European Directive and Regulation Body or any other legislature in laws or regulations to which the data controller is subject.
If the purpose of storage no longer applies or if a storage period prescribed by the European Directive and Regulation Body or another competent legislator expires, the personal data will be blocked or erased routinely and in accordance with such legislation.
Advice on right of withdrawal where consent was selected as the legal basis
You have the right to withdraw at any time your consent given once to the processing of data. In the event of withdrawal, we will erase the data concerned immediately, where further processing cannot be supported by a legal basis for processing. The withdrawal of consent does not affect the lawfulness of the processing carried out on the basis of such consent prior to withdrawal.
Right to lodge a complaint with a supervisory authority
If, in your opinion, the processing of your personal data contravenes the GDRP, you have the possibility pursuant to Art. 77 of the GDRP to lodge a complaint with the aforementioned data protection officer or with a supervisory authority. The competent supervisory authority for us is:
The Hessian Commissioner for Data Protection and Freedom of Information
PO Box 3163
D-65021 Wiesbaden
Advice on profiling and scoring
As a responsible company, we do not use automatic decision making, scoring or profiling.
The data subject’s rights
a) Right of confirmation
Every data subject has the right, granted by the European Directive and Regulation Body, to obtain from the data controller confirmation as to whether personal data relating to him or her are being processed. If a data subject wishes to exercise this right of confirmation, he or she may at any time contact an employee of the data controller.
b) Right to information
Any data subject affected by the processing of his or her personal data has the right, granted by the European Directive and Regulation Body, to obtain from the data controller, at any time and free of charge, information on the personal data relating to him or her that have been stored, as well as a copy of this information. In addition, the European Directive and Regulation Body has granted the data subject access to the following information:
- the purposes of processing
- the categories of personal data that are processed
- the recipients or categories of recipient to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisations
- where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period
the existence of the right to request from the controller rectification or erasure of personal data or restriction of
processing of personal data concerning the data subject or to object to such processing - the existence of the right to lodge a complaint with a supervisory authority
- where the personal data are not collected from the data subject, any available information as to their source
- the existence of automated decision-making, including profiling, referred to in Article 22(1) and (4) and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject
- Furthermore, where personal data are transferred to a third country or to an international organisation, the data subject has the right to be informed of the appropriate safeguards relating to the transfer.
If a data subject wishes to exercise this right to information, he or she may at any time contact an employee of the data controller.
c) Right to rectification
The data subject has the right, granted by the European Directive and Regulation Body, to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her. Furthermore, taking into account the purposes of the processing, the data subject has the right to have incomplete personal data completed, including by means of providing a supplementary statement.
If a data subject wishes to exercise this right to information, he or she may at any time contact an employee of the data controller.
d) Right to erasure (right to be forgotten)
The data subject has the right to obtain from the controller the erasure of personal data concerning him or her without undue delay and the controller shall have the obligation to erase personal data without undue delay where one of the following grounds applies and to the extent that the processing is not necessary:
- the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed.
- the data subject withdraws consent on which the processing is based according to point (a) of Article 6(1), or point (a) of Article 9(2) of the GDPR, and where there is no other legal ground for the processing.
- the data subject objects to the processing pursuant to Article 21(1) and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing pursuant to Article 21(2) of the GDPR.
- the personal data have been unlawfully processed.
- the personal data have to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject.
- the personal data have been collected in relation to the offer of information society services referred to in Article 8(1) of the GDPR.
If one of the above grounds applies and a data subject wishes to request the erasure of personal data that is stored by Orano NCS GmbH, he or she may at any time contact an employee of the data controller. The employee of Orano NCS GmbH will arrange for the request for erasure to be complied with without delay.
If the personal data have been made public by Orano NCS GmbH and if our company is obliged to erase the personal data pursuant to Art. 17 (1) of the GDPR, Orano NCS GmbH will take
reasonable steps, including technical measures, to inform data controllers which are processing the personal data that the data subject has requested the erasure by such data controllers of any links to, or copy or replication of, those personal data, insofar as the processing is not required. The employee of Orano NCS GmbH will take the necessary steps in individual cases.
e) Right to restriction of processing
The data subject has the right, granted by the European Directive and Regulation Body, to obtain from the controller restriction of processing where one of the following applies:
- the accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data.
- the processing is unlawful and the data subject opposes the erasure of the personal data and requests the restriction of their use instead.
- the controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise or defence of legal claims.
- the data subject has objected to processing pursuant to Article 21(1) of the GDPR pending the verification whether the legitimate grounds of the controller override those of the data subject
If one of the above-mentioned conditions is met and a data subject wishes to request the restriction of personal data that is stored byOrano NCS GmbH, he or she may at any time contact an employee of the data controller. The employee of Orano NCS GmbH will arrange for the restriction of processing.
f) Right to data portability
Every data subject affected by the processing of personal data has the right granted by the European Directive and Regulation Body to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format. The data subject also has the right, to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, where: the processing is based on consent pursuant to point (a) of Article 6(1) of the GDPR or point (a) of Article 9(2) of the GDPR or on a contract
pursuant to point (b) of Article 6(1) of the GDPR; the processing is carried out by automated means, insofar as the processing is not required for the performance of a task that lies in the public interest or in the exercise of public authority vested in the data controller.
Furthermore, in exercising his or her right to data portability pursuant to Art. 20 (1) of the GDPR, the data subject has the right, to have the personal data transmitted directly from one controller to another, where technically feasible and insofar as this does not diversely affect the rights and freedoms of others.
In order to assert the right to portability, the data subject may at any time contact an employee of Orano NCS GmbH.
g) Right to object
Every data subject whose personal data is processed has the right, granted by the European Directive and Regulation Body, for reasons arising from his or her particular situation, to raise an objection at any time to the processing of personal data relating to him or her that is based on Art. 6 (1) (e) or (f) of the GDPR. This also applies to any profiling that is based on these Regulations.
In the event of an objection, Orano NCS GmbH will no longer process the personal data, unless we can prove that there are compelling legitimate reasons for the processing, which override the interests, rights and freedoms of the data subject, or the data processing is for the establishment, exercise or defence of legal claims.
If Orano NCS GmbH processes personal data for direct marketing purposes, the data subject has the right to object at any time to the processing of his or her data for the purposes of. This also includes profiling to the extent that it is related to such direct marketing. If the data subject objects to processing by Orano NCS GmbH for purposes of direct marketing, Orano NCS GmbH/strong> will no longer process the personal data for such .
In addition, the data subject has the right, on grounds relating to his or her particular situation, to raise an objection to the processing of personal data concerning him or her, where data is processed by Orano NCS GmbH for scientific or historical research purposes or statistical purposes pursuant to Article 89(1) of the GDPR, unless the processing is necessary for the performance of a task carried out for reasons of public interest.
Cookies
The Orano NCS GmbH website uses cookies. Cookies are text files, which are saved and stored on a computer system via an Internet browser.
Many websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is unique identifier of the cookie. It consists of a string of characters through which Internet pages and servers can be assigned to the specific Internet browser in which the cookie was stored. This enables the visited Internet pages and servers to distinguish the individual browser of the person concerned from other Internet browsers that contain other cookies. A particular Internet browser can be recognised and identified by its unique cookie-ID.
By using cookies, Orano NCS GmbH can provide the users of this website with more user-friendly services, which would not be possible without the setting of cookies.
By means of a cookie, the information and offers on our website can be optimised in the interest of the user. Cookies enable us, as already mentioned, to recognise the users of our website. The purpose of this recognition is to make it easier for users to use our website. For example, the user of a website that uses cookies does not have to re-enter his access data each time he visits the website because this is undertaken by the website and the cookie stored on the user’s computer. Another example is the cookie of a shopping basket in the online shop. The online shop remembers the items that a customer has placed in the virtual shopping basket via a cookie.
The person concerned can prevent the setting of cookies by our website at any time by means of an appropriate setting of the Internet browser used and thus permanently object to the setting of cookies. Furthermore, cookies that have already been set can be deleted at any time via an Internet browser or other software program. This is possible in all common Internet browsers. If the person concerned deactivates the setting of cookies in the Internet browser used, not all functions of our website may be usable under certain circumstances.
Edit your Cookie Settings for this website:
Cookie-SettingsYour Cookie Session Details:
| Date | Version | Consents |
|---|
Essential
Essential cookies enable basic functions and are necessary for the proper function of the website.
Borlabs Cookie
| Name | Borlabs Cookie |
|---|---|
| Provider | Owner of this website, Imprint |
| Purpose | Saves the visitors preferences selected in the Cookie Box of Borlabs Cookie. |
| Cookie Name | borlabs-cookie |
| Cookie Expiry | 1 Year |
External Media
Content from video platforms and social media platforms is blocked by default. If External Media cookies are accepted, access to those contents no longer requires manual consent.
Google Maps
| Name | Google Maps |
|---|---|
| Provider | Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland |
| Purpose | Used to unblock Google Maps content. |
| Privacy Policy | https://policies.google.com/privacy?hl=en&gl=en |
| Host(s) | .google.com |
| Cookie Name | NID |
| Cookie Expiry | 6 Month |
YouTube
| Name | YouTube |
|---|---|
| Provider | Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland |
| Purpose | Used to unblock YouTube content. |
| Privacy Policy | https://policies.google.com/privacy?hl=en&gl=en |
| Host(s) | google.com |
| Cookie Name | NID |
| Cookie Expiry | 6 Month |
Privacy policy regarding the deployment and use of Google-Maps
The data controller has integrated Google Maps into this website.
Google Maps (API) is a web service provided by Google LLC., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”) for displaying interactive (land) maps to visually display geographic information. By using this service, website visitors can see the company location and it makes it easier to reach the site.
When you call up web pages in which a Google Maps map is integrated, information about the use of the respective website (such as the IP address) is already transferred to Google’s servers in the USA and stored there. This takes place regardless of whether Google provides a user account that the user is logged in to or whether no user account exists. If the person concerned is logged in to Google, his or her data will be assigned directly to his or her account. If this assignment is not desired, the person concerned must log out before activating the button. Google stores the data (even for users who are not logged in) as usage profiles and evaluates them. In particular, such evaluation will be carried out pursuant to Art. 6 (1) (f) of the GDPR on the basis of Google’s legitimate interests in the display of personalised advertising, market research and/or the design of its website in line with requirements. You have the right to object to the creation of these user profiles and must contact Google to exercise these rights.
Google LLC, with its headquarters in the USA is certified for the US-European privacy agreement “Privacy Shield”, which ensures compliance with the data protection level applicable in the EU.
If the person concerned does not agree with the future transfer of his or her data to Google as part of the use of Google Maps, it is also possible to completely deactivate the Google Maps web service by switching off JavaScript in the browser. Google Maps and thus also the map display on this website can then not be used.
The Google Terms of Use can be found at http://www.google.de/intl/de/policies/terms/regional.html; The Additional Terms of Use for Google Maps can be found at https://www.google.com/intl/de_US/help/terms_maps.html
Detailed information on data protection in connection with the use of Google Maps can be found on the Google website (“Google Privacy Policy”): http://www.google.de/intl/de/policies/privacy/
Privacy policy regarding the deployment and use of Google fonts
The data controller has integrated Google fonts into this website. Google provides free fonts that can be used in the design of websites.
This page uses so-called web fonts provided by Google LLC., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA („Google“) for the uniform display of fonts. When a person accesses a page, the browser loads the required web fonts into the browser cache, in order to display texts and fonts correctly.
For this purpose, the browser used by an individual must connect with Google’s servers. This will enable Google to know that the relevant website has been accessed via the IP address of the person concerned. The use of Google Web Fonts is in the interest of a uniform and appealing presentation of the online offerings. This constitutes a legitimate interest within the meaning of Art. 6 (1) (f) of the GDPR. If the browser of the person concerned does not support web fonts, a standard font is used by the computer of the person concerned.
Google LLC., with its headquarters in the USA, is certified for the US-European privacy agreement “Privacy Shield”, which ensures compliance with the data protection level applicable in the EU.
Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google’s Privacy Policy: https://www.google.com/policies/privacy/
Privacy policy regarding the deployment and use of YouTube
The data controller has integrated YouTube components into this website. YouTube is an Internet video portal that enables video publishers to post video clips and other users to view, rate and comment on them free of charge. YouTube allows the publication of all types of videos, which is why complete films and television programmes, but also music videos, trailers and videos made by users themselves can be accessed via the Internet portal.
The operating company of YouTube is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.
Each time one of the individual pages of this website, which is operated by the data controller, and into which a YouTube component (YouTube video) has been integrated, is accessed, the Internet browser on the IT system of the person concerned is automatically prompted by the YouTube component to download a representation of the corresponding YouTube component from YouTube. Further information about YouTube can be found at https://www.youtube.com/yt/about/de/. As part of this technical process, YouTube and Google obtain information about which specific subpage of our website is being visited by the person concerned.
If the person concerned is logged into YouTube at the same time, YouTube recognizes which specific subpage of our website the person is visiting by calling up a subpage containing a YouTube video. This information is collected by YouTube and Google and assigned to the respective YouTube account of the person concerned.
YouTube and Google will receive information through the YouTube component that the person concerned has visited our website whenever that person is logged into YouTube at the same time as accessing our website, regardless of whether that person clicks on a YouTube video or not. If the person concerned does not want YouTube and Google to receive such information, they may prevent the transmission by logging out of their YouTube account before visiting our website.
The Privacy Policy published by YouTube, which is available at https://www.google.de/intl/de/policies/privacy/, provides information about the collection, processing and use of personal data by YouTube and Google.