What is Personal Data?
Personal data means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. This includes information such as your real name, address, telephone number and date of birth. Information which cannot be linked to your real identity – such as favorite websites or number of users of a site – is not considered personal data.
What Are the Purposes of and the Legal Basis for the Processing of Personal Data? / What Are the Controller’s or Third Party’s Legitimate Interests?
Visiting our Website
SCCS is committed to preserving the privacy of users of our websites. When you visit our web pages, our web servers always temporarily save for connection and set up and security purposes the connection data of the computer connecting to our site, a list of the web pages that you visit within our site, the date and duration of your visit, the IP address of your device, the identification data of the type of browser and operation system used as well as the website through which you linked to our site. Additional personal information such as your name, address, telephone number or e-mail address is not collected unless you provide this data voluntarily, e.g. while completing an online contact form, as part of a registration, survey, competition, fulfillment of contract or an information request.
The legal basis for the processing of the aforementioned data categories is Art. 6 (1) (a) of the European General Data Protection Regulation (GDPR). Due to the said purposes, in particular to guarantee security and a smooth connection setup, we have a legitimate interest to process this data.
The web tracking data will be stored for a period of 36 months and then automatically deleted. Furthermore we are using cookies.
As far as you have enabled geo localization functions in your browser, respectively in your operating system we will use this data to offer you location-based services (e.g. location of the nearest branch, packing station etc.). We will not use this data for any other purpose. If you disable this function your data will be deleted in due time.
Performance of a Contract
For contractual reasons, we also need personal data to provide our services and comply with the obligations arising from contractual agreements concluded with you. This data is used e.g. for performing a (shipment) contract, managing customer data, handling payments and, as the case may be, assessing creditworthiness. Certain shipment data will also be provided to the authorities of the country of transit or destination for customs and tax clearance or for security screening, as required by the laws of such country. The information provided would usually include: shipper name and address, receiver name and address, description of the goods, number of pieces, weight and value of shipment.
The legal basis is usually Art. 6 (1) b) GDPR since the processing is for the performance of a contract to which you are a party.
Further information on data protection in specific services and products is available at the relevant Customer Portal.
Online Presence and Website Optimization
We use tracking software to determine how many users visit our website and how often. We do not use this software to collect individual personal data or individual IP addresses. The data are used solely in anonymous and summarized form for statistical purposes and for developing the website.
“Cookies” are small files that enable us to store information related to your device and you, the user, specifically, while you visit one of our websites. Cookies help us to determine how frequently our internet pages are accessed as well as the number of users. And they help us configure our offers so that they are as convenient and efficient as possible for you.
On the basis of Art. 6 (1) f) GDPR, we are using “session cookies” in order to optimize our website and to guarantee and convenient and undisturbed user experience. These cookies are stored exclusively for the duration of your visit to our internet pages. They are automatically deleted when you close your browser.
In addition, we use “persistent cookies” for retaining information about visitors who repeatedly access one of our internet pages. The purpose of using cookies is to be able to offer you optimal user guidance as well as to “recognize” you and thus be able to present (as much as possible) diversified internet pages and new contents during repeated use.
Generally, we do not create an individual profile of your online activities. The content of a persistent cookie is limited to an identification number. Name, email address, IP address, etc., are not saved on the majority of our sites.
How to Manage Cookies / Right to Object and to Opt-out
Using our products and services without cookies is also possible. In your browser, you can deactivate the saving of cookies, limit them to particular websites, or set the browser to notify you when a cookie is sent. You can also delete cookies from your PC hard drive at any time (file: “cookies”). Please note that in this case you will have to expect a limited page presentation and limited user guidance.
Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit: All about cookies (http://www.allaboutcookies.org/)
For further EU-specific advice on cookies and the various opt out options available to you, you can also visit the following website: Your online choices (http://youronlinechoices.eu/)
Will My Data Be Passed on
SCCS does not share, sell, transfer or otherwise disseminate your personal data to third parties and will not do so in future, unless required by law, unless required for the purpose of the contract or unless you have given explicit consent to do so. For instance, it may be necessary to pass on your address and order data to our contractors when you order products. Further information on data protection in specific services and products is available at the relevant Customer Portal.
External service providers that process data on our behalf are contractually obliged to maintain strict confidentiality as per Art. 28 GDPR. SCCS retains responsibility for safeguarding your information in such circumstances. The service providers follow the instructions of SCCS , and this is guaranteed by technical and organizational measures, as well as by means of checks and controls.
What Are My Data Subject’s Rights?
Apart from the right to obtain you have the following rights:
- You can request information as to what personal data is stored
- You can request that we correct, delete or block your personal data provided these actions are permitted by law and in compliance with existing contractual conditions.
- You can request to receive personal data you have provided in a structured, commonly used and machine-readable format.
- You may lodge a complaint with the supervisory authority. To find your competent data protection authority, please click here.
- Right to object
The right to object applies for all processing of personal data which is based on Art. 6 (1) f) GDPR.
To exercise your right, simply get in touch with us by using the contact details mentioned under “Contact”.
How About Data Security
SCCS takes all of the necessary technical and organizational security measures to protect your personal data from being lost or misused. For instance, your data is saved in a secure operating environment which is not accessible to the public. In certain cases, your personal data is encrypted by Secure Socket Layer technology (SSL) during transmission. This means that an approved encryption procedure is used for communication between your computer and the SCCS servers if your browser supports SSL. Should you wish to contact SCCS by e-mail, we would like to point out that the confidentiality of the information sent cannot be guaranteed. The contents of e-mail messages can be read by third parties. We therefore recommend you send us confidential information only by post.
Who is Responsible?
This Privacy Notice applies for the data processing carried out by:
Data Protection Officer
SCCS Hong Kong
16/F One Capital Place
18 Luard Road, Wanchai
If you have queries with regard to the processing of your personal data, please contact the Data Protection Officer.
Changes to Privacy Notice
SCCS reserves the right to change its Privacy Notice at any time with or without prior notice. Please check back frequently to be informed of any changes. By using SCCS ‘s websites you agree to this Privacy Notice.
This statement was last updated on 25 August 2019.