Blaser Swisslube Logo

Data protection and cookies (privacy policy)

We hereby inform you about the processing of your personal data and the use of cookies within our online offer at https://blaser.com/ as well as data processing in the context of business relationships.

TABLE OF CONTENTS
1. Responsible companies (Controller) and data protection officer
2. Types of data and processing purposes
3. Categories of affected persons
4. Legal basis
5. Rights of the data subjects
6. Deletion of data
7. Disclosure of your personal data to third parties
8. Transfers of personal data to other countries
9. Data security
10. Provision of the website, log files, e-mail dispatch
11. Contact requests
12. Newsletter subscription and newsletter tracking
13. Data processing in the context of customer relationships and business partners
14. Audio and video conferencing
15. Analysis service/tracking
16. Presence in social networks
17. Cookies

1. Responsible companies (Controller) and data protection officer

Responsible companies (Controller):
https://blaser.com/contacts/

Responsible for data protection / data protection advisor:
Blaser Swisslube AG
Winterseistrasse 22
3415 Hasle-Rüegsau, Switzerland
privacy (at) blaser.com
Phone: +41 34 460 01 01

2. Types of data and processing purposes
We process
– Personal and master data (e.g. names, addresses);
– Contact details (e.g., e-mail, telephone numbers);
– Content data (e.g. messages by e-mail);
– Usage and browsing oriented data (e.g., websites visited, interest in content, access times);
– Meta/communication data (e.g., device information, IP addresses);
– Contractual data (e.g. order data, purchases);
– Payment data (e.g. bank details, invoices, payment history)

for the purpose
– the use of our online offering (including functions and content);
– pre-contractual measures ,contract processing, and logistics
– maintaining business contacts and business relationships;
– answering contact requests and communicating with you as an user;
– direct marketing (e.g. sending newsletters);
– the implementation of security measures.

3. Categories of data subjects:
– Business and contractual partners;
– Employees (internal and external) and former employees;
– Communication partner;
– Members Associations/Organizations;
– Users and interested parties/persons.

4. Legal basis:
Unless otherwise specified in detail, we process your personal data
– on the basis of your voluntary and explicit consent;
– to fulfill our services and carry out contractual obligations as well as to carry out pre-contractual measures, e.g. answering inquiries;
– to fulfill our legal obligations;
– to exercise and protect our legitimate interests.

5. Data subject rights – What rights do you have as a data subject?
(1) You can revoke the consent you have given us at any time. As a result, we will no longer continue the data processing that was based on this consent in the future and will cease immediately.

(2) You can at any time
– request information about your personal data processed by us;
– request the correction of incorrect or incomplete personal data stored by us;
– request the deletion of your personal data stored by us;
– request the restriction of the processing of your personal data;
– receive your personal data in a structured, commonly used and machine-readable format or request that it be transmitted to another controller;
– lodge a complaint to a supervisory authority.

(3) If we process your personal data on the basis of our legitimate interests, you have the right to object to the processing of your personal data if there are reasons for this arising from your particular situation or if the objection is directed against direct advertising. In the latter case, you have a general right to object, which will be implemented by us without specifying a particular situation. If you wish to exercise your right of revocation or objection, simply send an e-mail to privacy (at) blaser.com.

6. Deletion of data
(1) The data processed by us will be deleted in accordance with the legal requirements or as soon as the consent for processing are revoked or other permissions cease to apply, in particular if the purpose for data processing no longer applies or it is not required for the purpose. We regularly check that the data we process is up to date and carry out any required deletions at least once a year.

(2) If the data is not deleted because it is required for other and legally permissible purposes, their processing will be restricted to these purposes. In this case, the data will be locked and not processed for other purposes. This applies, for example, to data that must be retained for reasons of commercial or tax law or whose storage is necessary for the enforcement, exercise or defense of legal claims and/or for the protection of the rights of another natural or legal person.

(3) Our data protection information may also contain further information on the storage and deletion of data, which prevails to the respective processing.

7. Disclosure of your personal data to third parties
(1) Insofar of the transfer of personal data to third parties as part of our processing, discloser to third parties, or grant third parties access to the data, this is done on the basis of a legal permission (e.g. transfer of data to payment service providers for contract fulfillment, to delivery services or forwarding agents for the purpose of goods delivery and shipment tracking), your consent, a legal obligation incumbent on us or on the basis of our legitimate interests (e.g. when using agents or web hosts).

(2) If we commission third parties for the processing of data, this will be done on the basis of a data processing agreement. If we are jointly responsible for data processing with third parties, this will be done on the basis of a joint controllership agreement.

(3) If you have given us your consent, we may pass on your personal data to the companies of Blaser Swisslube worldwide. Our companies, with which we have concluded an agreement on internal and joint data processing, will use your personal data for the same purposes as we. Disclosure may be for internal group administration or to support the group companies, for example if we support the personalization of marketing activities, the development and improvement of products and services, the performance of credit checks or efforts to prevent theft, fraud and misappropriation. The personal data received may also be matched and linked to existing personal data by the group-companies. Any personal data that you provide to us in connection with your use of this website may be transferred to and stored in geographic regions where different data protection regulations apply than in your country of residence. This means that your personal data may be transferred to a country whose data protection laws are less stringent than those in your own country. All such data transfers will be made in compliance with applicable law.

8. Transfers of personal data to third countries
Some of your data is also processed in countries outside the European Union («EU») or the European Economic Area («EEA»), where the level of data protection may generally be lower than in Europe. In these cases, we ensure that an adequate level of data protection is guaranteed for your data, e.g. through contractual agreements with our contractual partners, or we will otherwise ask for your explicit consent.

9. Data security
(1) We use the widespread SSL (Secure Socket Layer) method in conjunction with the appropriate and possible encryption level supported by your browser when you visit our website. You can see whether an individual page of our website is transmitted in encrypted form by the closed display of the key or lock symbol in the lower status bar of your browser.

(2) We also use suitable technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, deletion or unauthorized access by third parties. Our security measures will be continuously improved in line with technological developments.

10. Provision of the website, log files, e-mail dispatch
(1) In order to provide our online offering securely and efficiently, we use the services of a web host from whose servers and server management can be accessed online. These services include infrastructure and platform services, computing capacity, storage space and database services as well as security services and technical maintenance services.

(2) Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer. The following data is collected for security purposes and for the purpose of optimizing the website:
– Information about the browser type and version used;
– Operating system of the user;
– Internet service provider of the user;
– IP address of the user;
– Date and time of access;
– Websites from which the user’s system accesses our website;
– Websites that are accessed by the user’s system via our website.

(3) The data is also stored in the log files of our system. This data is not stored together with other personal data of the user.

(4) Temporary storage of the IP address by the system is necessary to enable delivery of the website to the user’s computer. For this purpose, the user’s IP address must remain stored for the duration of the session. The server log files are also used for security purposes, e.g. to avoid overloading the servers (especially in the event of abusive attacks, so-called DDoS attacks) or to ensure the servers utilization and their stability.

(5) The collection of data for the provision of the website and the storage of data in log files is mandatory for the operation of the website. Consequently, the user has no option to object.

(6) The legal basis for the temporary storage of the data is based on our legitimate interest in a functional website for the external presentation of our company.

(7) The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.

(8) The web hosting services we use also include the sending, receipt and storage of emails. For these purposes, the addresses of the recipients and senders as well as other information relating to the sending of e-mails (e.g. the providers involved) and the content of the respective e-mails are processed. The aforementioned data may also be processed for the purpose of detecting SPAM. Please note that e-mails on the Internet are generally not sent in encrypted form. As a rule, emails are encrypted in transit, but not on the servers from which they are sent and received (unless an end-to-end encryption method is used). We can therefore accept no responsibility for the transmission path of e-mails between the sender and receipt on our server.

11. Contact requests
(1) You can contact us electronically via the e-mail addresses provided or via our contact forms. This is usually done to initiate a contractual relationship or to prepare for it. If you make use of this option, the personal data you provide will be processed, stored and used to communicate with you. The processing of personal data serves solely to process the contact.

(2) If you contact us by e-mail, we only require your e-mail address and your name for the purpose of addressing you directly. You provide us with your content data and any other personal data voluntarily. We need your data in order to be able to answer your inquiry.

(3) If you use the contact form to communicate with us, we process your first and last name and email address, IP address and, if applicable, the company name, your position and department, postal address and telephone number in order to be able to answer your contact request as specifically and effectively as possible.

(4) No data will be passed on to third parties in this context. The data is used exclusively for processing the conversation with you or in the context of the contractual relationship that is being established.

(5) The legal basis for the processing is our legitimate interest in responding to your request and providing you with the best possible advice, or the communication takes place in a pre-contractual environment, or is aimed to conclude a contract.

(6) The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. This is the case when the respective interaction with you has ended. The interaction is ended when it can be inferred from the circumstances that the matter in question has been conclusively clarified. If the data was processed for contract processing, the data will be deleted after expiry of the statutory retention obligations. If necessary, further data processing may take place for future contact if you have consented to this, e.g. with regard to information on new products and services or their enhancements, for invitations to events or trade fairs, and/or for sending newsletters.

12. Newsletter subscription and newsletter tracking
(1) We send newsletters, e-mails and other electronic notifications with regard to information on new products and services or their enhancements, for invitations to events or trade fairs (hereinafter collectively referred to as «newsletter») only with the consent of the recipient or legal permission. As part of the registration for the newsletter or consent to receive the newsletter, its content is specifically described and is decisive for the scope of the consent.

(2) If consent is not required, we send our newsletter on the basis of our legitimate interests in direct marketing, if and to the extent that this is permitted by law, e.g. in the case of advertising to existing customers. We point this out separately when the contract is concluded.

(3) To subscribe to the newsletter, it is generally sufficient to provide your e-mail address and your first and last name. We need your name to address you personally and politely, and the e-mail address for sending the newsletter. Alternatively, you can give your consent to receive the newsletter as part of a contact request. In this case, we will also use any other information you provide voluntarily to inform you about our products and events.

(4) The newsletter registration takes place in a so-called «double opt-in» process. This means that after registering, you will receive an e-mail asking you to confirm your registration. This confirmation is necessary so that no-one can register with other people’s e-mail addresses. Subscriptions to the newsletter are logged in order to be able to prove the registration process in accordance with legal requirements. This includes storing the time of registration and confirmation, as well as the IP address. Changes to your data stored with the mailing service provider are also logged. The registration process is logged on the basis of our legitimate interests for the purpose of verifying that it has been carried out correctly. If we commission a service provider to send e-mails, this is done on the basis of our legitimate interests in an efficient and secure sending system.

(5) Newsletter tracking:
We use Microsoft 365 Dynamics for our newsletter tracking. You can find more information at https://privacy.microsoft.com/de-DE/data-collection-d365. Our newsletters contain so-called tracking pixels. A tracking pixel is a graphic that is embedded in emails that are sent in HTML format to enable log file recording and log file analysis. This allows a statistical evaluation of the success or failure of online marketing campaigns to be carried out. Using the embedded tracking pixel, we can recognize whether and when an email was opened and which links in the email were accessed. The data is not assigned to a specific person and is processed anonymously. We carry out this type of data processing in order to optimize our newsletter dispatch and to adapt the content of future newsletters to better align with the interests of our subscribers. Data is not passed on to third parties. We will also inform you about this when you register for the newsletter or when we obtain your consent to receive the newsletter.

(6) Possibility of revocation and objection (opt-out):
You can cancel the receipt of our newsletter at any time and without giving reasons, i.e. revoke your consent or object to further receipt. You will find a link to unsubscribe from the newsletter at the end of each newsletter. Alternatively, you can send us an email to to unsubscribe. We will then stop sending you the newsletter immediately and remove you from the mailing list. Unsubscribing from the newsletter is automatically interpreted as a revocation of previously given consent.

(7) We may store the unsubscribed e-mail addresses for up to three years on the basis of our legitimate interests before we delete them in order to be able to prove that consent was previously given. The processing of this data is limited to the purpose of a possible defense against claims. An individual request for erasure is possible at any time, provided that the former existence of consent is confirmed at the same time. In the event of obligations to permanently observe objections, we reserve the right to store the e-mail address in a “block list” solely for this purpose.

13. Data processing in the context of customer relationships and business partners
(1) We process data of our contractual and business partners, e.g. customers and interested parties (we usually inventory data such as names, addresses, payment data such as bank details, invoices, payment history, contact data such as e-mail address and telephone numbers, contract data such as subject matter of the contract) within the framework of contractual and comparable legal relationships as well as associated measures and within the framework of communication with the contractual partners (or pre-contractual), e.g. to answer inquiries.

(2) We process this data in order to fulfill our contractual obligations. In addition, we process the data to safeguard our rights and for the purpose of the administrative tasks associated with these obligations and the company organization. In addition, we process the data on the basis of our legitimate interests in proper and efficient business management and in security measures to protect our contractual partners and our business operations from threats and misuse of their data, secrets, information and rights (e.g. for the involvement of telecommunications, transport and other auxiliary services as well as subcontractors, banks, tax and legal advisors, payment service providers and/or tax authorities).

(3) Within the framework of applicable law, we only pass on the data of contractual partners to third parties to the extent that this is necessary for the aforementioned purposes or to fulfill legal obligations.

(4) We delete the data after the expiry of legal warranty obligations and after the expiry of legal retention periods and in accordance with contractual agreements.

(5) The legal basis for our data processing arises from our obligations to fulfill the contract, the authorization to process pre-contractual inquiries, our legal obligations and our legitimate interests.

14.Audio and video conferencing
(1) We also use online conferencing tools to communicate with our customers. The individual tools we use are listed at the end of this section. If you communicate with us by video or audio conference via the internet, your personal data will be collected and processed by us and the provider of the respective conference tool.

(2) The conference tools collect all data that you provide to use the tools (in particular your e-mail address and/or your telephone number). Furthermore, the conference tools process the duration of the conference, the start and end (time) of participation in the conference, the number of participants and other «context information» in connection with the communication process (metadata). Furthermore, the provider of the tool processes all technical data that is required to process the online communication. This includes, in particular, IP addresses, MAC addresses, device IDs, device type, operating system type and version, client version, camera type, microphone or loudspeaker and the type of connection.

(3) If content is exchanged, uploaded or provided in any other way within the tool, this content is also stored on the tool provider’s servers. Such content includes, but is not limited to, cloud recordings, chat/instant messages, voicemails, uploaded photos and videos, files, whiteboards and other information shared while using the service.

(4) Please note that we do not have full control over the data processing procedures of the tools used. Our options are largely determined by the company policy of the respective provider. Further information on data processing by the conference tools can be found in the data protection declarations of the tools used, which we have listed below this text.

(5) The conference tools are used to communicate with prospective and/or existing contractual partners, or to offer certain services to our customers. The legal basis is our existing or prospective contractual relationship with our partners. In addition, the use of the tools serves our legitimate interest in the general simplification and acceleration of communication with our company. If consent has been requested, the tools in question are used on the basis of this consent; consent can be withdrawn at any time with effect for the future.

(6) The data collected directly by us via the video and conference tools will be deleted from our systems as soon as the purpose for data storage no longer applies, you request us to delete it, or revoke your consent to storage. We do not record the communication processes ourselves.

(7) We have no influence on the storage period of your data that is stored by the operators of the conference tools for their own purposes. For details, please contact the operators of the conference tools directly.

(8) Conference tools used:
Microsoft Teams; further information and the provider’s privacy policy at: https://privacy.microsoft.com/de-de/privacystatement
Icona; further information and the provider’s privacy policy at: https://www.icona.it/en/privacy-policy/

15 Google Analytics
(1) If you have given your consent, Google Analytics, a web analysis service of Google LLC, is used on this website. The controller for users in the EU/EEA and Switzerland is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland («Google»).

(2) Google Analytics uses cookies that enable your use of our website to be analyzed. The information collected by the cookies about your use of this website is generally transmitted to a Google server in the USA and stored there.

(3) In Google Analytics, the anonymization of IP addresses is activated by default. Due to IP anonymization, your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. According to Google, the IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

(4) During your visit to the website, your user behavior is recorded in the form of «events». Events may include: page views, first visit to the website, start of the session, web pages visited, your «click path», interaction with the website, scrolls, clicks on external links, internal search queries, interaction with videos, file downloads, ads viewed/clicked on, language setting. Also recorded: Your approximate location (region), date and time of the visit, your IP address (in abbreviated form), technical information about your browser and the end devices you use (e.g. language setting, screen resolution), your internet provider, the referral URL (via which website / via which advertising medium you came to this website).

(5) Google will use this information on our behalf to evaluate your anonymous use of the website and to compile reports on website activity. The reports provided by Google Analytics are used to analyze the performance of our online offering and to improve our marketing activities.

(6) Recipients of the data may be
• Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (as processor pursuant to Art. 28 GDPR)
• Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA
• Alphabet Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA

(7) For the USA, the European Commission adopted its adequacy decision on July 10, 2023. Google LLC is certified under the EU-US Privacy Framework. Since Google servers are distributed worldwide and a transfer to third countries (for example to Singapore) cannot be completely ruled out, we have also concluded the EU standard contractual clauses with the provider.

(8) The data sent by us and linked to cookies is automatically deleted after 14 months. The maximum lifespan of Google Analytics cookies is 2 years. Data whose retention period has been reached is automatically deleted once a month.

(9) The legal basis for this data processing is your consent given to us.

(10) You can withdraw your consent at any time with effect for the future by adjusting the cookie settings in the pop-up that appears or by accessing and changing your selection there. This does not affect the lawfulness of the processing carried out on the basis of your consent until you withdraw it.

(11) You can also prevent the storage of cookies from the outset by setting your browser software accordingly. However, if you configure your browser to reject all cookies, this may limit the functionality of this and other websites. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google, by not giving your consent to the setting of the cookie, or by downloading and installing the browser add-on to deactivate Google Analytics HERE.

(12) You can find more information on the terms of use of Google Analytics and on data protection at Google at https://marketingplatform.google.com/about/analytics/terms/de/ and at https://policies.google.com/?hl=de/.

16. Presence in social networks
(1) We maintain online presences within social networks and process user data in this context in order to communicate with the users active there, or to offer information about us. We link to our online presences within social networks in our online offering.

(2) To the best of our knowledge, social network providers also process user data outside the European Union and use it for market research and advertising purposes. For a detailed description of the respective forms of processing and the opt-out options, please refer to the data protection declarations of the social network providers.

(3) In the case of requests for information and the assertion of data subject rights, we would like to point out that these can be asserted most effectively with the providers. Only the providers have access to the user’s data and can take appropriate measures and provide information directly.

(4) Blaser Swisslube is active on various social networks. The data protection provisions and further information (e.g. opt-out options, information on processors, standard contractual clauses) of the social media providers used can be found below on the linked pages or further links on the website or in the provider’s privacy policy:
LinkedIn:
Service provider: LinkedIn Ireland Unlimited Company, Wilton Plaza Wilton Place, Dublin 2, Ireland;
Website &Privacy Policy:
https://www.linkedin.com; https://www.linkedin.com/legal/privacy-policy

Instagram:
Service provider: Instagram Inc, 1601 Willow Road, Menlo Park, CA, 94025, USA;
Website & Privacy Policy:
https://www.instagram.com; https://instagram.com/about/legal/privacy

Facebook:
Service provider: Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland,
Website & privacy policy:
https://www.facebook.com https://www.facebook.com/about/privacy

YouTube:
Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Website & privacy policy: https://www.youtube.com: https://policies.google.com/privacy

TikTok:
Service provider: TikTok Technology Limited, 10 Earlsfort Terrace, Dublin, D02 T380, Ireland
Website & privacy policy:https://www.tiktok.com/; https://www.tiktok.com/legal/privacy-policy-eea?lang=de

17. Cookies
(1) This website uses so-called cookies. These are text files that are stored on your computer by the server. They contain information about your browser, your IP address, your operating system and your Internet connection. We do not pass this data on to third parties or link it to personal data without your consent.

(2) Cookies have two main functions. They help us to make it easier for you to navigate through our website and to ensure that our website is displayed correctly. They are not used to place viruses or start programs.

(3) You can also view our website without cookies. To do this, you must change the corresponding settings in your browser. Please refer to the help function of your browser to find out how you can deactivate cookies. However, we would like to point out that this may impair some of the website’s functions and limit its user-friendliness. The websites http://www.aboutads.info/choices/ (USA) and https://www.youronlinechoices.com/uk/your-ad-choices/ (Europe) will help you to manage cookies for online viewing.

(4) This Cookie Policy explains what cookies are and how we use them. You should read this policy to understand what cookies are, how we use them, the types of cookies we use, i.e. the information we collect using cookies and how that information is used and how you can control cookie settings. For more information on how we use, store and keep your personal data secure, please see this Privacy Policy. You can change the cookie statement or withdraw your consent to data processing at any time on our website. Your consent applies to the following domain: blaser.com

(5) What are cookies?
Cookies are small text files that are used to store small pieces of information. The cookies are stored on your device when the website is loaded in your browser. These cookies help us make the website work properly, make the website more secure, provide a better user experience and understand how the website performs and analyze what works and where it needs improvement.

(6) How do we use cookies?
Like most online services, our website uses its own and third-party cookies for a number of purposes. The first-party cookies are mostly necessary for the website to function properly and do not collect any of your personal data.

(7) We use cookies to keep the website functional and secure, to improve your user experience and to enable us to better understand your interests and provide content more quickly in the future.

(8) What types of cookies do we use?

 

(9) How can I control the cookie settings?
You can manage your cookie settings by clicking on the «Cookie Settings» button and activating or deactivating the cookie categories in the pop-up according to your wishes.

Should you decide to change your settings later during your browsing session, you can click on the «Cookie Settings» tab on your screen. This will display the consent notice again so that you can change your settings or withdraw your consent completely.

In addition, different browsers offer different methods for blocking and deleting cookies used by websites. You can change your browser settings to block/delete cookies. To find out more about how to manage and delete cookies, visit wikipedia.org; allaboutcookies.org.