Thank you for visiting our website and your interest in our services. The protection of your privacy is very important to us. We place great emphasis on the protection of your personal data and your right to informational self-determination. We collect, process and use personal data solely in compliance with the General Data Protection Regulation (hereinafter referred to as "GDPR") and the applicable country-specific data protection regulations.
Below we will inform you, as the data subject, as well as the public about the nature, scope and purpose of the personal data we collect, use and process. In addition, your legal rights will be explained to you, as the data subject, by means of this privacy statement. If you are not in agreement with these regulations, we ask that you do not access or use this website in any other way. Should you have questions or other concerns, please do not hesitate to contact us. Contact information can be found under point I.
The responsible entity according to the General Data Protection Regulation and other applicable data protection regulations is:
95100 Selb, Germany
Tel.: +49 9287 75-0
Fax: +49 9287 75208
When you visit our website for information purposes only, it is basically not required to provide personal data. In this case, we collect and use only the data that your internet browser automatically transmits to us, such as your browser type (including version) and the browser settings, the operating system used by the accessing system, date and time of your visit to our website, the name of your internet service provider, your IP address and the website from which you visited us. We draw no conclusions about the data subject when collecting and processing these data. The data are stored separately from all other personal data provided by a data subject. Collection and processing are carried out solely to enable the use of the websites you have accessed, for statistical purposes and to improve our website.
To make our websites more attractive and to enable the use of certain functions, we use so-called cookies on various pages. These are text files which are stored on your device. Cookies help us determine the frequency of use and the number of users of our websites, and to make our offerings as convenient and efficient for you as possible.
On the one hand, we use so-called "session cookies," which are cached only during the time you are using one of our websites. On the other hand, we use "permanent cookies" (including "flash cookies"), to capture information about computers that repeatedly access our websites. In this way, we can offer an optimal user interface and also "recognize" you when you return so that we can present maximum variety and new content.
In your browser under Extras/Internet Options, you can disable cookies, limit them to certain websites or set your browser to notify you when a cookie is sent. You also have the option to remove existing cookies with your browser. More detailed information about these functions can be found in the documentation or in your browser's help file.
Our websites also use Google Analytics, a web analytics service provided by Google, Inc. ("Google"). Google Analytics uses so-called "cookies," which are text files placed on your computer to enable the website analyze how visitors use the site. The information generated by the cookie about your use of our websites will generally be transmitted to a Google server in the United States and stored there. However, because IP anonymization has been activated on our websites, within the Member States of the European Union or other states that are party to the Agreement on the European Economic Area, your IP address will first be truncated. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there. Google will use this information on our behalf for the purpose of evaluating your use of our websites, compiling reports on website activity and providing us with other services related to website and internet usage. The IP address transmitted from your browser as part of Google Analytics will not be merged with other Google data.
You can prevent the storage of cookies using the appropriate settings in your browser; however, please note that by doing so, you may lose some of the functionality of the websites. In addition, you can prevent the collection and processing by Google of the data generated by the cookie and related to your use of our websites (including your IP address) by downloading and installing the browser plug-in available under: tools.google.com/dlpage/gaoptout
You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie will be set to prevent your data from being collected on future visits to this site: Disable Google Analytics.
Additional information can be found at tools.google.com/dlpage/gaoptout or Google Privacy (general information on Google Analytics and data protection). Please note that our websites use Google Analytics with the extension "gat._anonymizeIp();" to ensure anonymized collection of IP addresses (so-called IP masking).
In our newsletter we inform you about our services and products also described on our Website.
When registering for the newsletter, you have to provide an email address. This email address will be transmitted to and stored by us (or a provider as specified below). After registration, the user will receive an email to confirm the registration ("double opt-in"). By clicking the registration link you have given your consent to the processing of your personal data for receiving our newsletter and we may process such data accordingly. In case of registration for the newsletter we (or our provider as specified below) also store the IP address, the device name, the mail provider as well as the user's first and last name and the date of registration.
We use the mail provider "Mailchimp" by Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA who receives and processes on our behalf the data necessary for the mailing, in particular email address, IP address, device name. These data are processed on servers in the USA. Mailchimp is a service with which the dispatch of emails can be organized and analyzed. With the help of Mailchimp we can analyze our emails. When you open an email sent with Mailchimp, a file contained in the email (so-called web beacon) connects to the Mailchimp servers in the USA. This allows you to determine whether a message has been opened and which links have been clicked on. In addition, technical information is recorded (e.g. time of registration, IP address, browser type and operating system). This information cannot be assigned to the respective email recipient. They are used exclusively for statistical analysis of our emails. The results of these analyses can be used to better adapt future emails to the interests of the recipients.
MailChimp’s purpose and function is further explained under the following Link https://mailchimp.com/.
Mailchimp is certified according to "privacy shield". The "privacy shield" is an agreement between the European Union (EU) and the USA to ensure compliance with European data protection standards in the USA. For more information please refer to https://mailchimp.com/legal/privacy/.
The data processing for sending and analyzing our newsletters as described above is based on your consent (Art. 6 (1) lit. a GDPR) and/or on Art. 6 (1) f. GDPR with our legitimate interest of quality assurance and marketing.
Completion of a data processing agreement: We have entered into a data processing agreement with MailChimp, in which we require MailChimp to protect the data of our customers and not to disclose said data to third parties. This agreement may be viewed at the following link: https://mailchimp.com/legal/forms/data-processing-agreement/sample-agreement/.
OPT-OUT: If you do not want to receive any newsletters by us in the future and/or wish to object to the analysis of your data through such newsletters please use the "unsubscribe" link contained in each newsletter or send us an email to firstname.lastname@example.org.
NEX uses the Amazon Web Services (“AWS”) service of Amazon Web Services, Inc., P.O. Box 81226, Seattle, WA 98108-1226, USA, for hosting the database and web content. The data are stored exclusively in a German data center (Frankfurt / Main), which is certified to ISO 27001, 27017 and 2018 as well as PCI DSS Level 1. Of course, we have strict access rights and the data are automatically encrypted. AWS has joined the so-called Privacy Shield Agreement as a company. For more information about AWS and privacy, visit https://aws.amazon.com/en/compliance/eu-data-protection/ and https://aws.amazon.com/privacy/
Additional data are collected and processed when visiting these websites only if you provide these data yourself in connection with the use of services offered separately on our websites. Please note that, in this context, there is fundamentally no legal or contractual obligation to provide your personal data. However, if you choose not to provide personal data, the use of our services may be restricted or excluded.
Due to legal requirements, our website contains information that enables quick electronic contact with our company as well as direct communication with us, which also includes a general, so-called electronic mail (e-mail) address. If a data subject contacts the data controller by e-mail or through a contact form, the personal data provided by the data subject will be saved automatically. Such personal data transmitted voluntarily by a data subject to the controller will be stored for purposes of processing or for contacting the data subject.
When personalized services are utilized, we process the personal data you share with us for the purpose of providing the service you have requested. We use the personal data collected in connection with the communication initiated via our contact form solely for purposes of processing or for contacting the data subject. Legal basis for this is the legitimate interest (see Art. 6 Para. 1 lit. f GDPR).
The legislature has issued a variety of retention requirements and retention periods. Typically, these are also the basis for the storage period for personal data. Upon expiry of these periods, the corresponding data are routinely deleted or their processing is restricted. If data are not affected, they will be deleted as soon as the respective uses no longer apply.
We save the personal data that you provide us within the context of the contact, subject to further processing purposes (for example, inquiry via the contact form) only until such time that your inquiry has been processed or pursuant to the in-house deletion period.
According to the General Data Protection Regulation, you, as the data subject, have various rights in connection with the collection and processing of your personal data, which we would like to explain below.
Fundamentally, these rights can be asserted by the data subject at any time. To assert these rights, and for questions in this regard, we ask that the data subject contact our person in charge (see point I). He will be happy to answer your questions and, in individual cases, take necessary measures to implement the rights asserted by the data subject without delay.
Every data subject has the right to request from the controller a confirmation of whether personal data about him/her have been processed. If that is the case, the data subject also has the right to receive, free of charge, information about his/her personal data that has been stored as well as a copy of that information.
Every data subject has the right to request immediate rectification of personal data about him/her that is incorrect. Further, he has the right to request the completion of incomplete personal data — including by means of a supplementary statement — taking into account the purposes of the processing.
Every data subject has the right to request that the controller immediately remove personal data about him/her, if any of the following applies and if processing is not required:
Insofar as we, the controller, have made the personal data public and are required to delete them, we will take the appropriate steps, under consideration of the available technology and the costs of implementation, to inform other controllers who process the published personal data that the data subject has requested deletion. In addition, we will inform these other controllers that the data subject has requested the deletion of all links to these personal data, along with any copies or replications, to the extent that processing is not required.
Every data subject has the right to request that the controller restrict processing if one of the following conditions is met:
In principle, every data subject has the right to receive the personal data he has made available to a controller in a structured, common and machine-readable format. He also has the right to transmit these data to another controller without obstruction by the controller to whom the personal data were originally provided, insofar as the processing is based on consent or a contract and the processing takes place using an automated process. In addition, the data subject has the right to have the personal data transmitted directly from one controller to another, provided that it is technically possible and does not compromise the rights and freedoms of others.
Every data subject has the right, for reasons that arise from his particular situation, to object to the processing of his personal data, insofar as the processing is carried out to safeguard the legitimate interests of the controller or third parties. In the case of an objection, we will no longer process the personal data, unless we can demonstrate compelling legitimate grounds for processing that outweigh the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims. If personal data are processed for the purpose of direct advertising, the data subject has the right to object at any time to the processing of his personal data for the purpose of such advertising. If the data subject objects to processing for direct advertising purposes, the personal data will no longer be processed for these purposes.
Independent of the above-stated rights and independent of other remedies, every data subject has the right to appeal to a supervisory authority, if he believes that the processing of his personal data violates the data protection regulations.
Please note that data transmission via the internet is essentially unsecured. There is a possibility that transmitted data can be read and perhaps even falsified by unauthorized persons. For secure communication, we offer, by default, encrypted communication over the SSL protocol, which we use to transfer your personal data. In addition, we employ current technical and organizational measures to secure our website and other systems against loss, destruction, access, modification or dissemination of your data by unauthorized persons. These are always consistent with the current state of the art.
A transfer of data to offices in countries outside the European Union or the European Economic Area (so-called third countries) shall not take place.
Our service providers and agents can also receive data for the stated processing purposes, if they, in particular, uphold their obligation to confidentiality. These are companies providing IT services, logistics and printing services.