DATA PROTECTION

1. Data protection information

System Logistics GmbH (hereinafter referred to as “we” or “us”) appreciates your visit to our website (also referred to as “online offering”) and your interest in our company and our products.

The protection of your privacy when processing personal data and the security of all business data is an important concern for us, which we take into account in our business processes. We process personal data collected during your visit to our online offerings confidentially and only in accordance with the statutory provisions.

Data protection and information security are an integral part of our company policy.

2. Responsible

System Logistics GmbH is responsible for processing your data.

Our contact details are as follows:

System Logistics GmbH
Oskar-von-Miller-Straße 6b
92442 Wackersdorf
office@systemlogistics.de
Tel: +49 9431 79857-1857

You can reach our data protection officer at the following contact details:
data.protection@krones.com

3. Processing of personal data

3.1 Principles

Personal data is any information relating to an identified or identifiable natural person, such as names, addresses, telephone numbers, email addresses, contract, booking and billing data that express a person’s identity.

We only process personal data (including IP addresses) if there is a legal basis for doing so or if you have given us your consent, e.g. as part of a registration process.

Which specific data is processed and how it is used depends largely on the agreed services and your use of our website. Therefore, not all parts of this information will apply to you.

3.2 Categories of data processed

The following data categories are processed:

  • Communication data (e.g. name, telephone number, email address, postal address, IP address)
  • Contract master data (contractual relationship, product or contract interest)
  • HTTP data that is generated for technical reasons when you visit the website. This includes, for example, IP addresses, the type and version of your internet browser, the pages you visit, the page you visited previously, and the date and time of your visit
  • Search function data that you enter as search terms in the respective search form on the website
  • Cookie setting data that we use to manage your cookie settings. This includes your consent (if given), your objections and, if applicable, your individual selection for the use of cookies and other tracking tools.
  • Depending on your individual cookie selection, further movement data about your visit to our website for reach measurement and market research

We and our service providers process your personal data for the following processing purposes and on the following legal bases:

  • Official or court order
  • Tax and commercial law regulations
3.3.2 Our legitimate interest
  • Enabling the use of our online services
  • Direct marketing
  • Improvement of products and services
  • Online surveys (note: if we engage a market research institute to conduct surveys, it will act exclusively on our behalf and in accordance with our instructions)
  • Establishment or protection of legal claims or defence against legal action
  • Image and sound recordings of events we hold for press and public relations purposes
  • Prevention and detection of misuse, attacks on our IT infrastructure or other illegal activities
  • Ensuring data security
  • Product and customer surveys by email and/or telephone
  • Contact form
  • Use of cookies for marketing or statistical purposes

3.4 Log files

Each time you use our website, your internet browser automatically transmits certain information, which we store in log files (e.g. internet browser and operating system used; domain name of the website you came from; number of visits; average time spent on the site; pages viewed). This information is not assigned to a specific person.

The log files are stored by us and our worldwide subsidiaries for a short period of time for the purpose of investigating malfunctions and security reasons (e.g. to investigate attempted attacks) and are then deleted. Log files that need to be retained for evidence purposes are excluded from deletion until the respective incident has been finally clarified and may be passed on to investigating authorities in individual cases.

Log files are also used for analysis purposes (without or without the full IP address); see the section on web analysis for more information.

4. Obligation to provide personal data

If a contract exists between us and you, you must provide the personal data that is necessary for the establishment, execution and termination of the contractual relationship and for the fulfilment of the associated contractual obligations, or which we are legally obliged to collect. Without the provision of this data, we will generally not be able to conclude, execute and terminate a contract with you.

The transmission of certain personal data (e.g. IP address) is necessary to establish a connection to our website and to display the content of the website. Any further data processing in connection with the use of this website that is not necessary for the establishment, execution and termination of a contractual relationship or for the fulfilment of contractual obligations and is also not required by law is voluntary. Please note that certain functions of the website or services cannot be used if the necessary data is not provided.

5. Use of cookies

Our website uses cookies. Cookies are small text files that are stored on your computer when you visit our website. We use cookies in particular for the purposes of ensuring the use of our online offering, for marketing, for individual website optimisation and for ensuring IT security.

When you visit our website, we display a so-called “cookie banner” in which you can declare your consent to the use of cookies on this website by clicking a button and make an individual selection of the cookies used on the website. Your selection will also be saved for future visits.

To manage your cookie settings, we use Borlabs Cookie for consent management, which sets a technically necessary cookie (borlabs-cookie) to store your cookie consents. Borlabs Cookie does not process any personal data. The tool allows you to conveniently manage your consent to the setting of technically non-essential cookies and to make changes in this regard – such as revoking consent or objecting – via the tool. Furthermore, you can find the information required under Art. 13 GDPR regarding the processing of your personal data and technically unnecessary cookies in the tool. You can access the cookie settings by clicking on the fingerprint icon in the lower left-hand corner of the website.

Alternatively, you can also adjust the cookie management settings in your internet browser. In particular, you can delete cookies that have already been set or prevent cookies from being set in the future. Please note that the settings vary depending on the browser you use.

Depending on their function and purpose, the use of certain cookies requires the user’s consent.

Cookies that are absolutely necessary for the use of our online services or to ensure IT security do not require consent. The setting of these cookies and related processing activities are permitted under Article 6(1)(f) GDPR. According to Section 25(2) TDDDG, no consent is required for the use of such cookies.

Cookies for all other purposes, such as for individual website optimisation, for marketing or for statistical analysis of your activities on the website, require your consent in accordance with Art. 7 GDPR or Section 25 (1) TDDDG, which we request in the cookie banner.

5.1 Web analysis

We require statistical information about the use of our online offering in order to make it more user-friendly, measure its reach and conduct market research. For this purpose, we use the web analysis tools/cookies described in this section.

The usage profiles created by these tools using analysis cookies or by evaluating log files are not merged with personal data. The tools either do not use users’ IP addresses at all or shorten them immediately after collection. The providers of the tools only process data as processors in accordance with our instructions and not for their own purposes.

For tools that work with opt-out cookies, please note that the opt-out function is device- or browser-specific and generally only applies to the device or browser currently in use. If you use multiple devices or browsers, you must set the opt-out on each individual device and in each browser used.

In addition, you can also prevent the creation of usage profiles altogether by generally deactivating the use of cookies.

5.2 YouTube

This online service uses the YouTube video platform, which is operated by YouTube, LLC, 901 Cherry Ave. San Bruno, CA 94066, USA (“YouTube”). YouTube is a platform that enables the playback of audio and video files.

When you visit a corresponding page on our website, the embedded YouTube player establishes a connection to YouTube so that the video or audio file can be transmitted and played back. In doing so, data is also transferred to YouTube as the responsible party. We are not responsible for the processing of this data by YouTube.

For more information on the scope and purpose of the data collected, the further processing and use of the data by YouTube, your rights and the data protection options available to you, please refer to YouTube’s privacy policy.

6. Transfer of data

6.1 Transfer of data to other controllers

We will only transfer your personal data to other controllers if this is necessary for the performance of a contract, if we or the third party have a legitimate interest in the transfer, or if you have given your consent. Third parties may also be sister companies of System Logistics GmbH. If data is transferred to third parties on the basis of a legitimate interest, this will be explained in this privacy policy.

In addition, data may be transferred to other controllers if we are obliged to do so by law or by an enforceable official or court order.

Under these circumstances, recipients of personal data may include:

  • Public authorities and institutions (e.g. tax authorities, law enforcement authorities, family courts, land registries) in the event of a legal or official obligation
  • Credit and financial institutions or comparable institutions to which we transfer personal data in the course of conducting our business relationship (e.g. banks, credit agencies)
  • Other affiliated companies for risk management based on legal or regulatory obligations
  • Creditors or insolvency administrators who make enquiries in the context of enforcement proceedings
  • Auditors

6.2 Service providers

We commission external service providers with tasks such as sales and marketing services, contract management, payment processing, programming, data hosting and hotline services. We have carefully selected these service providers and monitor them regularly, in particular with regard to their careful handling and protection of the data stored with them. All service providers are obliged by us to maintain confidentiality and comply with legal requirements.

7. Transfer to recipients outside the EEA

We may also transfer personal data to recipients located outside the European Economic Area (EEA) in so-called third countries. Such data transfers take place if:

  • it is necessary for the execution of your orders (e.g. delivery orders)
  • it is required by law (e.g. tax reporting obligations) or
  • you have given us your consent

Furthermore, transfer to entities in third countries cannot be ruled out in the following cases:

  • to maintain and ensure the company’s IT operations and IT security, and
  • to combat money laundering, terrorist financing and other criminal offences

In these cases, before disclosing the data, we ensure that the recipient either has an adequate level of data protection (e.g. based on an adequacy decision by the European Commission for the respective country or the agreement of so-called EU standard contractual clauses with the recipient) or that you have given your consent to the disclosure.

The current version of the EU standard contractual clauses adopted by the European Commission on 4 June 2021 is available at: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?uri=CELEX:32021D0914&locale=en. For data transfers since 27 September 2021, we exclusively use the version of the EU standard contractual clauses available at the link provided. By 27 December 2022, we will adapt all our existing data transfers to this current version in accordance with the obligation specified in this regard.

If data is transferred to the USA in the circumstances described above, we exclusively use EU standard contractual clauses, as there is no adequacy decision by the European Commission in this regard.

8. Duration of storage; retention periods

We generally store your data for as long as is necessary to provide our online offering and the associated services, or for as long as we have a legitimate interest in further storage (e.g. we may still have a legitimate interest in postal marketing even after a contract has been fulfilled). In all other cases, we delete your personal data with the exception of data that we must continue to store in order to comply with legal obligations (e.g. tax or commercial law).

Our online offering may contain links to third-party websites (e.g. Facebook, Instagram, XING, Twitter, etc.). Once you click on the link, we no longer have any influence on the collection, processing and use of any personal data (such as the IP address or the URL of the page on which the link is located) on the linked website, as the behaviour of third parties is naturally beyond our control. We accept no responsibility for the processing of such personal data by third parties.

10. Security

Our employees and the service providers we commission are obliged to maintain confidentiality and comply with the provisions of the applicable data protection laws.
We take all necessary technical and organisational measures to ensure an appropriate level of protection and to protect your data managed by us, in particular against the risks of accidental or unlawful destruction, manipulation, loss, alteration or unauthorised disclosure or access. Our security measures are constantly being improved in line with technological developments.

11. Your rights as a user

To assert your rights, please use the information provided in the “Responsible party” section. Please
ensure that we are able to clearly identify you.

You have the right to receive information from us about the processing of your personal data. To this end, you can assert your right to information regarding the personal information we process about you. In addition, you can request that we correct incorrect data and – provided the legal requirements are met – complete or delete your data. However, this does not apply to data that is required for billing and accounting purposes or that is subject to statutory retention obligations. If access to such data is not required, its processing will be restricted. You may also request that we restrict the processing of your data, provided that the legal requirements are met.

Objection to direct marketing:

You can also object to the processing of your personal data for advertising purposes at any time (“advertising objection”). Your personal data will then no longer be used for marketing purposes. Please note that for organisational reasons, there may be an overlap between your revocation and the use of your data in the context of an ongoing campaign.

Objection to data processing on the legal basis of “legitimate interest”:

In addition, you have the right to object to our processing of your data at any time, provided that this is based on the legal basis of legitimate interest (Art. 6(1)(f) GDPR). We will then cease processing your data unless we can demonstrate compelling legitimate grounds for further processing in accordance with the legal requirements that override your rights.

Withdrawal of consent:

If you have given us your consent to process your data, you can revoke this consent at any time with effect for the future. The lawfulness of the processing of your data until revocation remains unaffected.

11.1 Data portability

You also have the right to receive data that you have provided to us in a structured, commonly used and machine-readable format or, where technically feasible, to request that the data be transferred to a third party.

11.2 Right to lodge a complaint with the supervisory authority:

You have the right to lodge a complaint with a data protection authority. To do so, you can contact the data protection authority responsible for your place of residence or federal state, or the data protection authority responsible for us. This is the Bavarian State Office for Data Protection Supervision, based in Ansbach.

11.3 Fully automated decision-making:

You also have the right under Art. 22 GDPR not to be subject to fully automated decision-making. We do not use fully automated decision-making to establish and terminate business relationships. If we use this procedure in individual cases (e.g. to improve our products and services), we will inform you separately about this and your rights in this regard, provided this is required by law.

12. Changes to the privacy policy

We reserve the right to change our security and data protection measures if this is necessary due to technical developments. In such cases, we will also amend our data protection information accordingly. Please therefore refer to the current version of our data protection notice.

Status: 04.02.2026