Privacy Policy

INFICON (“we” or “us”) welcomes your visit to our website (the “Site”) and your interest in our Company and our products and services. We take the protection of your personal data seriously, and we would like you to feel secure during your visit to our Site. The protection of your privacy during the processing of personal data is a key concern for us, which we consider in our business processes.

We process personal data which is collected during a user’s visit to our Site in accordance with the privacy and data protection regulations of the country in which the site responsible for the data processing is located.  The name and contact details of the data controller (hereafter referred to as "INFICON") can be found at the end of this document.

INFICON’s website may contain links to the websites of other providers, which are not covered by this Privacy Policy. When you link to other websites from our Site, INFICON’s privacy practices no longer apply, and we do not warrant, represent or assume any responsibility or liability for the accuracy, security, completeness or operation of any linked site or any site contained in a linked site. 

The purpose of this Privacy Policy is to inform you about the types of information we might collect about you when you visit our Site, how we may use that information and whether we disclose that information to anyone. By using our Site, you acknowledge and agree to be bound to the terms hereof. Periodically, we may update this Privacy Policy and encourage you to check this section for any changes.

 

1. Terms of Use

The contents of this Site are provided by INFICON solely for personal and non-commercial purposes. The use of the INFICON Site for public and commercial purposes (including but not limited to usage on another website or in a computer network) is strictly prohibited.

As a service provider, INFICON is responsible for its own content on the INFICON websites according to the general laws in accordance with § 7 (1) of the German Telemedia Act (TMG). According to §§ 8 to 10 TMG, however, INFICON as a service provider is not obliged to monitor transmitted or stored external information or to investigate circumstances that indicate illegal activity. Obligations to remove or block the use of information under general law remain unaffected. Liability in this regard, however, is only possible from the date of the awareness of a specific legal violation. Upon notification of such violations INFICON will remove this content immediately.

INFICON websites may contain direct or indirect references to other websites (hereinafter referred to as the "links") outside INFICON's area of responsibility. This Privacy Statement does not extend to such contents of other providers. INFICON declares that at the time the links were established, no illegal content was detected on the linked pages. INFICON has no influence on the current and future design, contents or authorship of the linked pages. For illegal, incorrect or incomplete contents and in particular for damages resulting from the use or non-use of such information presented, only the provider of the website referred to is liable, not the party which refers to its particular publication via links.

Our Site contains material and contents associated with INFICON products and services. These contents include texts, data, graphics, logos, button icons, illustrations, audio and video clips, hyperlinks, digital downloads, software downloads and data compilations. All contents on our Site are owned by INFICON and are protected by copyright, trademark or other intellectual property rights. If you reproduce contents contained on our Site with our prior permission, the corresponding copyrights or property rights of the source materials must be indicated on all copies. You are not permitted to alter, publicly display, publicly perform or disseminate these contents. The unauthorized use of contents contained in our Site may infringe copyrights, trademark rights and violate data protection regulations. INFICON and the INFICON logo are registered trademarks of INFICON Holding AG and may not be used without the written permission of INFICON. You may obtain a complete list of the trademarks held by INFICON upon inquiry. All other trademarks on our Site are the property of their respective owners.

INFICON does not guarantee the timeliness, correctness, completeness or quality of the information provided. Liability claims against INFICON, which relate to material or immaterial damages caused by the use or non-use of the information presented, are excluded, unless INFICON has proven to be intentionally or grossly negligent.

INFICON expressly reserves the right to change, supplement or delete parts of the web pages or the entire website without a separate notice or to cease publication temporarily or permanently.

 

2. Collection and Processing of General Data and Information

When you visit our Site, our web server stores a range of general data and information in the log files of our server that is not of a personal nature, but is collected about your visit, including, for example, the pages you view, the features you use, the links you click and other actions you take in connection with our Site. The purpose of the foregoing is so that we can enhance the delivery of the contents of our Site in a manner that optimizes its utility and helps us deliver information to you. It also helps us to determine the effectiveness of our advertising, in addition to other internal business purposes. In addition, we use such general data to ensure the lasting functionality of our information technology system and the technology of our Site, and in the event of a cyber attack, to provide the regulatory authorities with the information needed for prosecution. 

All such general data and information is collected on an anonymous basis without identification to a particular user. Examples of such general data and information may include your (1) browser type and versions used, (2) your operating system, (3) the identity of the websites you visit immediately before coming to our Site, (4) the sub-websites which are controlled by a system accessing our Site, (5) the date and time of your access to our Site and (6) your computer’s Internet Protocol address (IP address) assigned to you by your Internet service provider.

With the exception of your IP address, we do not require anyone to share any of their personal information with us in order to enjoy our Site. Personal data is only collected if you specifically and voluntarily provide it to us on our Site (e.g., as part of a registration, a survey, a prize competition, an information inquiry or the implementation of a contract).Storage of these data together with other personal data of the user does not take place.

The legal basis for data processing is Art. 6 (1) (1) ( f) GDPR. INFICON's legitimate interest in data processing follows from the purposes listed above. In no case do we use the collected data for the purpose of drawing conclusions about you.

Furthermore, we use cookies and analysis services during visits to our website. Further details can be found in paragraphs 3, 10 and 11 of this Data Protection Statement.

 

3. Use of Cookies

Our Site uses “cookies.” Cookies are small text files written by an Internet server that are stored in an Internet browser or by the Internet browser on a user’s computer system where information is exchanged between them. They are used by us in providing a more customized website experience. It is INFICON’s policy to use cookies to make navigation of our Site easier for our visitors and to facilitate easier registration procedures.

Some elements of our webpage require that the accessing browser can still be identified, even after changing pages. In the cookies (1) the language setting, (2) the items in a basket and (3) the log-in information are collected and transmitted.

Furthermore, we use cookies on our website to allow analysis of the users’ surfing patterns. This covers, for example, (1) the entered search terms, (2) the frequency of page views and (3) the use of website functions.

The legal basis for the processing of the personal data collected by cookies is in Art. 6 (1) (1) (b) GDPR (processing for the execution of a contract or pre-contractual measures), insofar as this relates to possible orders or other contractual relationships with INFICON (shopping cart, log-in), otherwise in Art. 6 (1) (1) (f) GDPR. The legitimate interest results from the purposes mentioned in the first paragraph above.

The user data collected this way are pseudonymized by means of technical precautions. Therefore, assignment of the data to the user is no longer possible. When stored, the data are not aggregated with other users’ personal data.

When visiting our Site, an information banner will inform you about our use of cookies for analytical purposes.

If you are concerned about cookies and do not want them placed on your computer, you can disable cookies on your browser before using our Site. You can find details in your browser instructions. Your use of our Site may be limited without the aid of cookies. 

 

4. Registration on Our Internet Website

On our Site, we offer you the option to register with us by giving certain kinds of personal information. Registration in the input masks provided on our Site is required to keep specific contents and services available for use on our Site. If you choose to register with us, we collect only personally identifiable information that you voluntarily provide to us. Such personally identifiable information may include your name, company name, address, email address, and telephone and fax numbers that are needed to administer our business, allow you to utilize the full capabilities of our Site and to permit us to communicate information to you relative to our products and services that we believe may be of interest to you and our website visitors. By registering on our Site (1) your IP address, (2) the date, (3) the time of your registration and (4) the country from which you are registering are also stored.

The legal basis of this data processing is Art. 6 (1) (1) (a) GDPR. Registered individuals have the option to change the personal data provided or to have it deleted completely from the database at any time.

As part of the registration process, a user’s permission is obtained to process such data. Registered individuals have the option to change their personal data provided or to have it deleted completely from our database at any time.

 

5. Use of Personal Information and Purpose Limitation

We use your personal information for a number of purposes, including, technical administration of our Site, customer and prospective customer administration, for providing you with surveys and company information, as well as for marketing purposes to communicate with you.

We would like to inform you in the best possible way about our products and services and to request your opinion, where applicable. Of course, participation in such campaigns is voluntary.

 

6. Newsletter

You may also subscribe to a newsletter on our Site free of charge. The personal data that will be transmitted when ordering our newsletter can be found in the corresponding input masks on our Site. Your permission is obtained to process the data as part of the enrollment process. The legal basis for the relevant data processing is Art. 6 (1) (1) (a) GDPR.

Signing up for our newsletter takes place in a so-called double opt-in procedure (i.e., after the enrollment, you will receive an e-mail in which you are asked to confirm the enrollment). This confirmation is necessary so that no one with unknown e-mail addresses can enroll.

During the enrollment process (1) your IP address, (2) the date, (3) the time of your registration and (4) the country from which you accessing our Site are again stored by us. Such data that you provide will be used only for sending you our newsletter, unless and until you choose to unsubscribe. 

You can unsubscribe at any time through our Site by following the “unsubscribe” instructions that are available on our Site or by contacting us, as provided below.

You are entitled to revoke the consent statement provided through double opt-in procedure at any time. After a revocation, these personal data will be deleted by us. INFICON interprets a cancellation of the receipt of the newsletter as a revocation of the consent.

We use HubSpot, a digital marketing tool, on our website. The service provider is the American company HubSpot, Inc, 25 First St 2nd Floor Cambridge, MA, USA. The company also has a registered office in Ireland, among other places, with the address 1 Sir John Rogerson's Quay, Dublin 2, Ireland.

HubSpot also processes data from you in the USA, among other places. We would like to point out that according to the opinion of the European Court of Justice, there is currently no adequate level of protection for the transfer of data to the USA. This may be associated with various risks to the legality and security of data processing.

As a basis for data processing with recipients located in third countries (outside the European Union, Iceland, Liechtenstein, Norway, i.e. in particular in the USA) or a data transfer there, HubSpot uses so-called standard contractual clauses (= Art. 46. para. 2 and 3 DSGVO). Standard Contractual Clauses (SCC) are templates provided by the EU Commission and are intended to ensure that your data complies with European data protection standards even if it is transferred to third countries (such as the USA) and stored there. Through these clauses, HubSpot undertakes to comply with the European level of data protection when processing your relevant data, even if the data is stored, processed and managed in the US. These clauses are based on an implementing decision of the EU Commission. You can find the decision and the corresponding standard contractual clauses here, among other places: https://eur-lex.europa.eu/eli/dec_impl/2021/914/oj?locale=en 

 

7. Newsletter Tracking

INFICON newsletters contain analytical methods, (e.g., tracking pixels). As a result, a statistical analysis of the success or lack of success of online marketing campaigns can be conducted. Using these analytical methods, INFICON can detect whether and when an e-mail of a data subject was opened and which links in the e-mail of the data subject were activated.

Such personal data can be stored and analyzed to optimize our newsletter distribution and to adapt more effectively the content of future newsletters. The legal basis for the relevant data processing is Art. 6 (1) (1) ( f) GDPR. Such personal data is not disclosed by INFICON to third parties except as otherwise expressly permitted herein.

 

8. Contact Option via the Website

A contact form is available on our Site, which can be used for making contact with us electronically. By means of the input mask, personal data including (1) your IP address, (2) the date and (3) time are transmitted to us on a voluntary basis and stored automatically for purposes of processing or making contact.

Alternatively, contact is possible via any e-mail address provided by you to INFICON. In this case, any personal data transmitted with the e-mail is stored. The data is then used exclusively for processing any contacts between us. The legal basis in this respect is Art. 6 (1) (1) (b) GDPR.

Again, INFICON does not disclose any such personal data to third parties except as expressly permitted herein.

 

9. Disclosure of Personal Data

On rare occasions, we may be required to disclose your information as is required by law pursuant to lawful requests such as subpoenas, court orders or as we may reasonably determine to be necessary to protect our rights or the rights of others, to avert harm to persons or property, or to enforce this Privacy Policy. The legal basis in this respect is Art. 6 (1) (1) (c) GDPR. Disclosures of personal data may also be required to be made to state institutions and officials within the scope of mandatory national regulations. We require our employees, agencies and dealers to maintain confidentiality.

Aside from the foregoing, your personal data is not passed on, sold or otherwise transmitted to third parties unless it is deemed reasonably necessary for business purposes or for the purposes of executing a contract or you have explicitly consented to such activities. Thus, for example, when products or services are ordered, it may be necessary for us to pass on your address and order data to our contractual partners or as part of the hiring of special service providers that support us during our activities. The legal basis for the processing of your personal data is Art. 6 (1) (1) (a) GDPR, insofar as you have given your consent, otherwise Art. 6 (1) (1) (b) GDPR.

When executing a contract through our Web Shop, by executing, you hereby consent to our sending of your personal data to process the payment transactions via a credit card, direct debit or other payment methods to service providers, which may process and store your personal data, send your personal data to such sites necessary to process the transaction, such as participating credit institutions, banks and credit card institutions. The legal basis of the data processing is insofar Art. 6 (1) (1) (a) GDPR.

 

10. Social Plug-ins

From time to time, we use so-called social plug-ins (hereafter, “buttons”) of social networks such as Facebook, Twitter,  YouTube, Instagram and LinkedIn.

During your visit to our Site, these buttons are normally deactivated (i.e., they send no data to the respective social networks without your assistance). Before you can use the buttons, you must activate them by clicking on them. The buttons remain active until you deactivate them again or delete your cookies. After activation, a direct connection with the server of the applicable social network is established. The contents of the button are then transferred by the social networks directly to your browser and embedded by it in the website. If you are logged into a social network, it can allocate your visit to this website to your user account. If you are a member of a social network and would not like it to link the data collected during your visit to our website to your stored member data, you must log out of the respective social network before using our website.

We have no impact on the scope of the data collected by the social networks with the buttons. Please find the purpose and extent of the data collection and the further processing and use of the data by the respective social networks as well as your rights in this regard and setting options for protecting your privacy in the data protection information of the respective social networks. 
(Facebook and Instagram: https://www.facebook.com/policy.php. Twitter: https://twitter.com/privacy; YouTube: https://policies.google.com/privacy; LinkedIn: https://www.linkedin.com/legal/privacy-policy). 

 

11. Analysis of Usage Data

We would like to continually update our offering of products and services to you and improve our online services. That is why we use the following technologies to identify the preferences of visitors and especially popular areas of our Internet offering. This way we can tailor the contents of our Internet website more closely to your needs and - if necessary – eliminate any errors more quickly.

Matomo: 

Web analytics (also referred to as "reach measurement") is used to evaluate the flow of visitors to our online offering and may include behavior, interests or demographic information about visitors, such as age or gender, as pseudonymous values. With the help of reach analysis, we can recognize, for example, at what time our online offer or its functions or content are most frequently used or invite re-use. Likewise, we can understand which areas need optimization.
In addition to web analytics, we may also use testing procedures, for example, to test and optimize different versions of our online offering or its components.
Unless otherwise stated below, profiles, i.e. data summarized for a usage process, may be created for these purposes and information may be stored in a browser, or in a terminal device, and read from it. The information collected includes, in particular, websites visited and elements used there, as well as technical information such as the browser used, the computer system used, and information on usage times. If users have agreed to the collection of their location data from us or from the providers of the services we use, location data may also be processed.
The IP addresses of the users are also stored. However, we use an IP masking procedure (i.e., pseudonymization by shortening the IP address) to protect users. Generally, in the context of web analysis, A/B testing and optimization, no clear data of the users (such as e-mail addresses or names) are stored, but pseudonyms. That is, we as well as the providers of the software used do not know the actual identity of the users, but only the information stored in their profiles for the purposes of the respective procedures.

  • Types of data processed: Usage data (e.g. websites visited, interest in content, access times); meta/communication data (e.g. device information, IP addresses).
  • Data subjects: Users (e.g., website visitors, users of online services).
  • Purposes of processing: reach measurement (e.g. access statistics, recognition of returning visitors); profiles with user-related information (creation of user profiles).
  • Security measures: IP masking (pseudonymization of the IP address).
  • Legal basis: Consent (Art. 6 para. 1 p. 1 lit. a. DSGVO); Legitimate interests (Art. 6 para. 1 p. 1 lit. f. DSGVO).

Further notes on processing processes, procedures and services:

  • Matomo is a software that is used for web analysis and reach measurement purposes. As part of the use of Matomo, cookies are generated and stored on the user's terminal device. The user data collected as part of the use of Matomo is only processed by us and is not shared with third parties. The cookies are stored for a maximum period of 13 months: https://matomo.org/faq/general/faq_146/; Legal basis: Consent (Art. 6 para. 1 p. 1 lit. a. DSGVO); Deletion of data: Cookies have a maximum storage period of 13 months.
    A transfer of collected and pseudonymized data to Matomo does not take place. Instead, they are stored on our own server at a certified hosting provider in Germany (Hetzner).
     

Leadfeeder:

Together with Matomo we use Leadfeeder, a web analytics service and evaluation tool provided by Liidio Oy / Leadfeeder (Mikonkatu 17 C, 00100 Helsinki). Leadfeeder collects the IP address of visitors and links it with information about the companies that can be found on the Internet.

You can prevent Leadfeeder from storing a user profile or data about your use of our website by means of an opt-out, please see: https://yourdata.leadfeeder.com. For more information about Leadfeeder and the data collected, please see: https://www.leadfeeder.com/privacy/. For information on Leadfeeder and compliance with the GDPR, please visit: https://help.leadfeeder.com/en/articles/3561400-gdpr-privacy-and-security-summary

Hotjar:

We use Hotjar Technology "Testing and Optimization", a service provided by Hotjar Ltd, 3 Lyons Range, 20 Bisazza Street, Sliema SLM 1640, Malta. For more information about Hotjar, please refer to the website https://www.hotjar.com as well as the privacy policy https://www.hotjar.com/legal/policies/privacy and the cookie policy: https://help.hotjar.com/hc/en-us/articles/115011789248-Cookies-on-hotjar-com. 

Mouseflow:

This website uses Mouseflow: a website analytics tool that provides session replay, heatmaps, funnels, form analytics, feedback surveys, and similar features/functionality. Mouseflow may record your clicks, mouse movements, scrolling, form fills (keystrokes) in non-excluded fields, pages visited and content, time on site, browser, operating system, device type (desktop/tablet/phone), screen resolution, visitor type (first time/returning), referrer, anonymized IP address, location (city/country), language, and similar meta data. Mouseflow does not collect any information on pages where it is not installed, nor does it track or collect information outside your web browser. If you'd like to opt-out, you can do so at Opt out of Mouseflow - Mouseflow. If you'd like to obtain a copy of your data, make a correction, or have it erased, please contact us first or, as a secondary option, contact Mouseflow at _privacy@mouseflow.com_. For more information, see Mouseflow’s Privacy Policy at Customer Privacy Policy - Mouseflow Legal. For more information on Mouseflow and GDPR, visit 100% GDPR Compliant - Mouseflow.

 

12. SmartRecruiters

For the provision of the Applicant Portal, we make use of the service provider: SmartRecruiters Inc, 166 Geary St, San Francisco CA 94108 US (hereinafter "SmartRecruiters"). 

SmartRecruiters offers an applicant platform as a service (hereinafter "Applicant Portal"). The use of SmartRecruiters is made pursuant to Art. 6 (1) p. 1 lit. f) GDPR based on our legitimate economic interest to evaluate and manage applications in an applicant management system and to conduct an efficient application process.

In connection with the provision of the applicant portal, SmartRecruiters processes personal data on our behalf, which is generated during the following actions of the user:

  • when visiting the applicant portal
  • when creating a candidate profile
  • during an application
  • during communication

We have concluded a commissioned data processing contract with SmartRecruiters for the use of the Applicant Portal. Through this contract, SmartRecruiters assures that they process the data in accordance with the General Data Protection Regulation and ensure the protection of the rights of the data subject. In this context, the forwarding of personal data to SmartRecruiters takes place on the basis of standard data protection clauses of the European Commission in accordance with Art. 46 (2) lit. c) GDPR.

For more information on data protection in connection with the applicant portal of SmartRecruiters, please see their data protection notices here und here.

a.) When visiting the applicant portal

When calling up the applicant portal, information is automatically sent to the SmartRecruiters server by the browser used on your end device. This information is temporarily stored in a so-called log file. The following information is collected and stored without your intervention and completely deleted after an appropriate period of time:

  • IP address of the requesting computer
  • Date and time of access
  • Name and URL of the accessed file
  • Website from which the access was made (referrer URL)
  • Browser type and version, as well as other information transmitted by the browser (such as the operating system of your computer).

The aforementioned data is processed for the following purposes:

  • To ensure a smooth connection setup of the applicant portal,
  • to ensure comfortable use of our applicant portal,
  • to evaluate system security and stability,
  • to detect and prevent attacks on the applicant portal,
  • for the continuous improvement of the applicant portal as well as
  • for other statistical and administrative purposes.

The legal basis for the data processing is Art. 6 para. 1 p. 1 lit. f GDPR. The legitimate interest follows from the purposes of data processing listed above. In principle, we do not use the data collected in this way to draw direct conclusions about your person. However, in the event of an attack on the network infrastructure, your collected IP address will be evaluated in order to assert or defend legal claims.

In addition, SmartRecruiters uses cookies and analysis services when you visit the applicant portal. You can find more detailed explanations of this under section IV of this data protection declaration.

b.) Applicant management

Data processing is used to carry out the applicant management process for initiating and establishing an employment relationship.
After submitting your application, we will check your documents. You will then receive feedback from us. For feedback, we use the contact data you have provided. This could be an invitation to a face-to-face or video interview, or the sending of an offer or rejection letter. We manage all digitally submitted documents via the SmartRecruiters applicant management tool.

Applications sent by post are digitized and also entered and managed in SmartRecruiters. You will receive an e-mail with which you can activate your manually entered application. If you do not activate your data, your data will be deleted from our applicant management system after a reasonable period of 30 days.

The following data may be processed as part of the applicant management system:

  • Master data (e.g. name, date of birth, nationality, place of residence).
  • Documents (e.g. certificates, attestations, curriculum vitae)
  • Education history (e.g. data on (higher) school education, professional qualifications)
  • Accounting data, e.g. bank data for reimbursement of application costs
  • Organizational data in the case of internal applications (e.g. personnel number, cost center, department)
  • Communication data (e.g. e-mail, (mobile) phone,
  • Log data, which is generated by the use of IT systems
  • Comments, possibly left by persons involved in the application process
  • Your access data (e-mail address and encrypted password for your candidate profile.

This may also include special categories of personal data pursuant to Art.9(1) GDPR, such as data relating to health, religious or trade union affiliation.

The data processing serves to carry out the applicant management process for the initiation and establishment of an employment relationship with INFICON GmbH. The legal basis for this is Article 6 paragraph I sentence 1 lit. a and lit. b GDPR. You provide us with the data voluntarily on the basis of your consent as well as your application request for the implementation of pre-contractual measures. Furthermore, the legal basis is Art. 6 (1) lit. f GDPR, whereby our legitimate interest results from the examination of the information with regard to the hiring decision as well as from our interests in the organization of our company. For Germany, Section 26 BDSG (2018) additionally applies as the legal basis.

Insofar as special categories of personal data are processed pursuant to Article 9(1) of the GDPR in conjunction with the relevant national regulation (e.g. data on health, religious or trade union affiliation), this is done on the basis of Article 9(2)(b) of the GDPR in conjunction with the relevant national regulation. In addition, the processing of health data may be necessary for the assessment of your ability to work pursuant to Article 9(2)(h) of the GDPR in conjunction with the relevant national regulation.

Your documents will be automatically deleted six months after you have been sent a rejection letter. If you have applied for several positions, your documents will be automatically deleted six months after the rejection for the last open application has been sent. In the event that you are hired, we will store the data required for the performance of the employment relationship in addition to your application documents until the employment relationship is terminated.
Applicant management is not aimed at children under the age of 16.

Further information on data protection in connection with the SmartRecruiters applicant portal can be found here and here.

c.) Recommend someone

You have the possibility to be recommended by an employee of INFICON AG and/or the active subsidiaries. You can hand over your application documents to this employee, who will upload them to our applicant portal. Afterwards you will receive an e-mail with which you can activate your application. If you do not activate your application within 30 days, your data will be deleted from the applicant portal and you will not be considered further in the selection process.
Your data will be linked to the employee. From this we can draw the conclusion which employee recommended you. The employee has no access to details of the application process.

d.) Creation of a candidate profile

The creation of a candidate profile is basically voluntary. If you create a candidate profile, the processing of your data collected here is based on Article 6 (1) a and b GDPR. In your candidate profile, you can view, change and delete the data stored about you at any time. For the information stored here, see II. 3.

You have the option to delete your candidate profile at any time. Please note, however, that this does not simultaneously delete the data that can be viewed in your candidate profile once you have applied to us. In this case, your data will be deleted automatically after the expiry of the statutory periods applicable to us. The legal basis for this further data processing is Art. 6 (1) lit. c GDPR and Art. 6 (1) lit. f GDPR.

Further information on data protection in connection with the SmartRecruiters applicant portal can be found here and here.

e.) Use of a profile on professional social media networks

Should you use a professional social media network in your application, such as: LinkedIn, we may view and process job-related information that you have made publicly available. These will be transferred into SmartRecruiters.

For more information about this feature provided by the professional social media networks, please refer to their privacy statements.

Further information on data protection in connection with the SmartRecruiters applicant portal can be found here and here.

f.) Applicant pool ("talent pool")

You have the option of having your data provided during the application process stored in our Talent Pool for future job postings. The function and service is provided by SmartRecruiters.
The data you provided during the application process will be stored for a period of 12 months. Upon inclusion in our Talent Pool, we may consider you for possible future job postings.

The data processing, the inclusion in our Talent Pool and the contacting are based on your consent according to Art. 6 para. 1 p. 1 lit. a GDPR. The data will be stored in the Talent Pool for a period of 12 months and then automatically deleted.

You have the option to revoke your consent to the processing of personal data at any time. The exercise of the revocation can be made in particular by e-mail to a centralized human resources point of contact at personal.koeln@inficon.com. You can also address your revocation to the person who contacted you in the application process.

g.) Communication via SMS

We use the SmartMessage service from SmartRecruiters. SmartMessage enables us to communicate with you via SMS. The communication is carried out for us by the applicant portal, i.e. your data is processed in the applicant portal. For this function we use, among other things, your mobile phone number.

The data processing and the establishment of contact are based on your consent pursuant to Art. 6 para. 1 p. 1 lit. a GDPR.
You have the option to revoke your consent to the processing of personal data at any time. The exercise of the revocation can be made in particular by e-mail to a centralized human resources point of contact at personal.koeln@inficon.com. You can also address your revocation to the person who contacted you in the application process.

h.) Disclosure of your personal data within the group

Within the respective legal entity to which you have applied, only the persons and bodies responsible for this purpose (e.g. supervisors and employees of the specialist department involved in the application process, specialist supervisors, human resources, employee representatives, if applicable) will have access to your personal data for the processing purposes stated above. Other legal entities within the INFICON Group are generally their own data controllers. The above-mentioned persons involved in the staffing process may belong to different companies of the INFICON Group, depending on the position. Therefore, your data will be collected for the purpose of filling the position and, if another position is advertised within the INFICON Group, it will also be taken into account for this position. This is done on the basis of your consent pursuant to Art. 6 para. 1 p. 1 lit.a GDPR. The data will be forwarded within the INFICON Group to the following companies:

  • INFICON GmbH, Bonner Str. 498, 50968 Cologne, Germany
  • INFICON, Alte Landtsrasse 6, 9496 Balzers, Liechtenstein
  • INFICON Aaland Ab, Godbyvägen 1A, AX-22100 Mariehamn, Finland
  • INFICON AB, Wahlbecksgatan 25, 582 13 Linköping, Sweden
  • INFICON SARL, 7 Avenue du Québec, ZA de Courtaboeuf, 91140 Villebon sur Yvette, France
  • INFICON SRL, Via Dossobuono, 48, 37066 Sommacampagna, Italy
  • INFICON Ltd, Unit 1/Centurion Pk/Davyfield Rd, Blackburn BB1 2QY, United Kingdom
  • INFICON Inc, 2 Technology Pl, East Syracuse, NY 13057, United States
  • INFICON (Guangzhou)Instruments Co., Ltd, 4th Floor, Annex Building, No.188, Linhe Middle Road, Tianhe District, Guangzhou 510610, China
  • INFICON COMPANY LIMITED, 6F.-1, No.28, Taiyuan St., Zhubei City, Hsinchu County 30288, Taiwan R.O.C. (Tai Yuen Hi-Tech Industrial Park)
  • INFICON Pte Ltd, 3A International Business Park Tower B, #06-13 ICON@IBP, Singapore 609935

Transfer of your personal data to different legal entities within the INFICON Group of companies is performed under the protection of an intra-Group Data Processing Agreement, which addresses the obligations of subsidiaries to comply with GDPR or the approved standard contractual clauses depending on jurisdiction and receipt of an EU adequacy decision.


i.) Tracking and Targeting 

Applicant portal

Your applications are processed in the applicant portal of SmartRecruiters. SmartRecruiters sets certain cookies within the Applicant Portal to ensure that applications received through our online application portal are properly processed, among other things.

For more information about SmartRecruiters and their role in data processing, please see their Privacy Policy as well as their Cookie Policy. For an up-to-date listing and clarification of the service providers used for tracking and targeting, please refer to the Cookie Policy.

Consent Management with OneTrust in the Applicant Portal

SmartRecruiters uses the consent management service OneTrust of 2020 OneTrust, LLC (Dixon House, 1 Lloyd's Avenue, London EC3N 3DQ, United Kingdom) on the applicant portal. In this context, the date and time of the visit, browser information, consent information, device information and the IP address of the requesting device are processed. The legal basis is Art. 6 para. 1 p. 1. lit. f GDPR (legitimate interest). Obtaining and managing legally required consents is to be considered a legitimate interest in the sense of the aforementioned provision, as the interference with the rights of users as a result of the use of anonymized IP addresses and the involvement of a service provider based in Germany are very low. OneTrust stores consents and revocations on our behalf and at our instruction. The storage is based on Art. 6 para. 1 p. 1 lit. f GDPR. Being able to comply with the accountability obligation pursuant to Art. 5 (2) GDPR is a legitimate interest. Further information on data protection at OneTrust can be found here.

For more information about SmartRecruiters and their role in data processing, please see their Privacy Policy as well as their Cookie Policy

Data subject rights

You have the right

  • Pursuant to Art. 7 (3) GDPR, to revoke your consent once given to us at any time. This has the consequence that we may no longer continue the data processing, which was based on this consent, for the future (please note that this will impact our ability to consider your application for employment);
  • to request information about your personal data processed by us in accordance with Art. 15 GDPR. In particular, you may request information about the processing purposes, the category of personal data, the categories of recipients to whom your data have been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data if it has not been collected by us, and the existence of automated decision-making, including profiling, and, if applicable, meaningful information about its details;
  • in accordance with Art. 16 GDPR, to demand the immediate correction of incorrect or completion of your personal data stored by us;
  • pursuant to Art. 17 GDPR, to request the erasure of your personal data stored by us, unless the processing is necessary for the exercise of the right to freedom of expression and information, for compliance with a legal obligation, for reasons of public interest, or for the assertion, exercise or defense of legal claims;
  • in accordance with Art. 18 GDPR, to request the restriction of the processing of your personal data, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer require the data, but you need it for the assertion, exercise or defense of legal claims or you have objected to the processing in accordance with Art. 21 GDPR;
  • pursuant to Art. 20 GDPR, to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transferred to another controller;
  • complain to a supervisory authority in accordance with Art. 77 GDPR. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters for this purpose

To assert your data subject rights against us, please contact a centralized human resources point of contact at personal.koeln@inficon.com.

Right of objection

Insofar as your personal data is processed on the basis of legitimate interests pursuant to Art. 6 (1) p. 1 lit. f GDPR, you have the right to object to the processing of your personal data pursuant to Art. 21 GDPR, insofar as there are grounds for doing so that arise from your particular situation or the objection is directed against direct advertising. In the latter case, you have a general right of objection, which is implemented by us without specifying a particular situation.

If you wish to exercise your right of objection, an e-mail to a centralized human resources point of contact at personal.koeln@inficon.com will suffice.

Data security

All data transmitted by you personally will be encrypted using the generally accepted and secure standard TLS (Transport Layer Security). TLS is a secure and proven standard that is also used, for example, in online banking. You can recognize a secure TLS connection, among other things, by the appended s to http (i.e. https://..) in the address bar of your browser or by the lock symbol in the upper area of your browser.

We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

 

13. Security

INFICON has implemented and employs technical and organization security measures to protect the security of data that has been transmitted to us on our Site against manipulation, loss, destruction and against access by unauthorized persons.

Our security measures are continually reviewed and improved for purposes of keeping up with technological developments. Unfortunately, however, no collection or transmission of information over the Internet can be guaranteed to be 100% secure, and therefore, we cannot ensure or warrant the security of any such information.

 

14. Routine Deletion and Blocking of Personal Data

We process and store personal information only for the period necessary to achieve the purpose of the processing or as required by the European Directives and Regulations or any other law or regulation, such as storage periods.

If the purpose of the storage is omitted or if a storage period prescribed by the European directive and / or regulatory body expires, the processing of personal data is routinely and in accordance with statutory provisions restricted or the personal data is deleted.

 

15. Right to Information; Updates and Modifications

You have the right:

  • pursuant to Art. 15 GDPR, to request information about your personal data processed by us. In particular, you can provide information on the processing purposes, the category of personal data, the categories of recipients to whom your data has been or will be disclosed, the planned retention period, the right to correction, deletion, limitation of processing or objection, the existence of a right to complain, the source of their data, if not collected by us, and the existence of automated decision-making including profiling and, where appropriate, meaningful information about their details. If you are registered as a user, we also offer you the opportunity to view the data yourself and, if necessary, to delete or change it.
  • pursuant to Art. 16 GDPR, immediately demand the correction of incorrect or completion of your personal data stored by us;
  • pursuant to Art. 17 GDPR, to demand the deletion of your personal data stored by us, unless the processing is for the exercise of the right to freedom of expression and information, for the fulfillment of a legal obligation, for reasons of the public interest or is required for the assertion, exercise or defense of legal claims;
  • pursuant to Art. 18 GDPR, to demand the restriction of the processing of your personal data, if the accuracy of the data is disputed by you or the processing is unlawful, but you reject their deletion and we no longer need the data, however, you need them to assert, exercise or defend legal claims or you have filed an objection to the processing pursuant to Art. 21 GDPR;
  • pursuant to Art. 20 GDPR, to receive your personal data provided to us in a structured, standard and machine-readable format or to request transmission to another data controller;
  • pursuant to Art. 7 para. 3 GDPR, to revoke your one-time given consent to us at any time. As a result, we are not allowed to continue the data processing based on this consent in the future;
  • pursuant to Art. 77 GDPR, to complain to a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence for this purpose;
  • pursuant to Art. 21 GDPR, to object to the processing of your personal data, provided that your personal data, based on legitimate interests pursuant to Art. 6 (1) (1) (f) GDPR, are processed insofar as there are reasons that arise from your particular situation or the objection is directed against direct mail. In the latter case, you have a general right of objection, which is implemented by us without specifying any particular situation.

If you have any questions regarding the processing of your personal data, you can contact our data protection officer, who will also be available in case of requests for information, suggestions or complaints. The contact details of our data protection officer can be found at the end of this Privacy Statement.

 

16. Timeliness and Changes

We reserve the right to update or modify the terms of this Privacy Policy from time to time by publishing an updated version here. Therefore, we recommend that you check back frequently, especially before you submit any personal information to our Site, to see if this Privacy Policy has changed. By using our Site, you acknowledge acceptance of this Privacy Policy in effect at the time of use. 

Adopted in effect as of: June 2023

 

Name and Address of the Data Controller:

The data controller within the meaning of the General Data Protection Regulation and other national data protection laws of the member states and other data protection regulations is:

INFICON Holding AG
Matthias Tröndle
Hintergasse 15B
7310 Bad Ragaz
Switzerland
Tel.: +41 81 300 4980
E-mail: matthias.troendle@inficon.com

 

Questions, Suggestions, Comments:

Please send your questions, suggestions, comments to: matthias.troendle@inficon.com. We will contact you promptly.

 

Name and Address of the Data Protection Officer:

The data protection officer of the controller is:

Urs Waelchli
c/o INFICON AG
Alte Landstrasse 6
9496 Balzers
Liechtenstein
Tel.: +423 388 3266
E-mail: urs.waelchli@inficon.com

We require your consent for video content
More Information