Privacy Policy

Tailor made microfluidic systems

Technology Leadership

Unique Solutions Portfolio

On this page you will find Information on data processing (obligations to provide information pursuant to Art. 13 of the GDPR) – thinXXS Microtechnology AG. The privacy policy is structured as follows:

1. Information for all users of our website

2. Information for customers and suppliers

3. Privacy policy for applicants

 

1. Information for all users of our website

Personal data (usually referred to just as “data” below) will only be processed by us to the extent necessary and for the purpose of providing a functional and user-friendly website, including its contents, and the services offered there.

Per Art. 4 No. 1 of Regulation (EU) 2016/679, i.e. the General Data Protection Regulation (hereinafter referred to as the “GDPR”), “processing” refers to any operation or set of operations such as collection, recording, organization, structuring, storage, adaptation, alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment, or combination, restriction, erasure, or destruction performed on personal data, whether by automated means or not.

The following privacy policy is intended to inform you in particular about the type, scope, purpose, duration, and legal basis for the processing of such data. It is structured as follows:

I. Information about us as controllers of your data
II. The rights of users and data subjects
III. Information about the data processing

I. Information about us as controllers of your data

The party responsible for this website (the “controller”) for purposes of data protection law is:

thinXXS Microtechnology AG
Amerikastrasse 21
66482 Zweibrücken, Deutschland
Tel.: +49 (0)6332 8002 0
E-Mail: thx-info@idexcorp.de
Website: www.thinxxs.de; www.thinxxs.com

You can reach the controller’s data protection officer at:
thx-datenschutz@idexcorp.com

 II. The rights of users and data subjects

With regard to the data processing to be described in more detail below, users and data subjects have the right

  • to confirmation of whether data concerning them is being processed, information about the data being processed, further information about the nature of the data processing, and copies of the data (cf. also Art. 15 GDPR);
  • to correct or complete incorrect or incomplete data (cf. also Art. 16 GDPR);
  • to the immediate deletion of data concerning them (cf. also Art. 17 DSGVO), or, alternatively, if further processing is necessary as stipulated in Art. 17 Para. 3 GDPR, to restrict said processing per Art. 18 GDPR;
  • to receive copies of the data concerning them and/or provided by them and to have the same transmitted to other providers/controllers (cf. also Art. 20 GDPR);
  • to file complaints with the supervisory authority if they believe that data concerning them is being processed by the controller in breach of data protection provisions (see also Art. 77 GDPR).

In addition, the controller is obliged to inform all recipients to whom it discloses data of any such corrections, deletions, or restrictions placed on processing the same per Art. 16, 17 Para. 1, 18 GDPR. However, this obligation does not apply if such notification is impossible or involves a disproportionate effort. Nevertheless, users have a right to information about these recipients.

Likewise, under Art. 21 GDPR, users and data subjects have the right to object to the controller’s future processing of their data pursuant to Art. 6 Para. 1 lit. f) GDPR.

III. Information about the data processing

Your data processed when using our website will be deleted or blocked as soon as the purpose of the storage no longer applies, the deletion of the data does not conflict with any legal storage obligations and no other information on individual processing methods is given below

Server data

For technical reasons, in particular to ensure a secure and stable Internet presence, data is transmitted to us or to our web space provider by your Internet browser. These so-called server log files are used to record, among other things, the type and version of your Internet browser, the operating system, the website from which you have switched to our Internet presence (referrer URL), the website(s) of our Internet presence that you visit, the date and time of the respective access and the IP address of the Internet connection from which our Internet presence is used.

This data is temporarily stored, but not together with other data about you.

This storage takes place on the legal basis of Art. 6 para. 1 lit. f) DSGVO. Our legitimate interest lies in the improvement, stability, functionality and security of our Internet presence.

Cookies

We use so-called cookies with our Internet presence. Cookies are small text files or other storage technologies that are stored on your terminal device by the Internet browser you use. Through these cookies, certain information from you, such as your browser data or your IP address, is processed to an individual extent.

This processing makes our Internet presence more user-friendly, effective and secure, as the processing enables, for example, the reproduction of our Internet presence in different languages. The cookies we set are technically required cookies.

The legal basis is Art. 6 para. 1 lit. f) DSGVO. The legitimate interest lies in improving the functionality of our website.

Disabling cookies

You can prevent or restrict the installation of cookies by adjusting your Internet browser settings. You can also delete already stored cookies at any time. However, the steps and measures required for this depend on the Internet browser you are actually using. If you have any questions, please use the help function or documentation of your Internet browser or contact its manufacturer or support.

You can view and change cookie settings at any time here: Cookie Settings

If you prevent or restrict the installation of cookies, however, this may mean that not all functions of our website can be used to their full extent.

Contact enquiries / Contact possibility

If you contact us via contact form or e-mail, the data you provide will be used to process your request. The provision of the data is necessary for processing and answering your enquiry – without the provision of this data, we cannot answer your enquiry or can only answer it to a limited extent.

The legal basis for this processing is Art. 6 Para. 1 lit. b) DSGVO, if these data are processed for the purpose of contract initiation or processing, Art. 6 Para. 1 lit. a) DSGVO, if you have given your consent for processing or if there is a legitimate interest according to Art. 6 Para. 1 lit. f) DSGVO. Your data will be deleted if your inquiry has been finally answered and the deletion does not conflict with any legal storage obligations, as for example in the case of a possible subsequent contract processing.

 

Taken in part form the Model Data Protection Statement of Anwaltskanzlei Weiß & Partner

2. Information for customers and suppliers

We take the protection of your personal data very seriously. ​For that reason,​ we will be ​glad to inform you below ​about the​ way we deal with​ ​your personal data​ and​ about​ ​the rights ​you have in respect of us regarding the use of those data.

Who is responsible for the data processing?
The body​ responsible for the collection and use​ ​of your personal data​ ​is
thinXXS Microtechnology AG, Amerikastrasse 21​, 66482 Zweibrücken

Telephone: ​      06332 – 8002 – 0
Telefax: ​           06332 – 8002 – 75
E-mail:             ​thx-info@idexcorp.com

Contact data of data protection officer
You can get in touch with​ ​our data protection officer by e-mail at:

thx-datenschutz@idexcorp.com

Framework of processing
a) ​ ​Categories of personal data ​which are processed
We process the following categories of data: address data, contact data, bank account data, ​invoicing data, ​​contract data, ​customers’ interests.
b)​ ​Duration of storage
Three years after the termination of the contract we had with you, we​ ​check to see​ ​whether or not we still need your data. If the data are no longer needed and​ there are no statutory obligations to preserve them (under the German Commercial Code [HGB], the German Criminal Code [StGB] or the German Fiscal Code [AO]) such as​ ​contradict their erasure, ​the data will be​ ​erased.
c)​ ​Purposes​ ​and​ ​legal basis​ ​of​ ​data processing
We use your data​ ​for the negotiation and administration​ ​of the​ ​contractual relationship that exists with you, and​ ​for​ ​customer care. The processing of your data​ ​is​ necessary ​for the performance of a contract with you​ pursuant to​ ​Art.​ ​6​ ​​1. ​(​b) ​​of the GDPR.
d) ​ ​Mandatory​ provision​ ​of data
The provision​ ​of your data​ ​is​ required ​for the conclusion of the contract with you. ​If you do not​ ​make the data available, it will not be possible to conclude the contract.
e) ​ ​Automated​ decision-making
No use will be made of fully automated decision-making as in Art. 22 of the GDPR in the establishment or performance of the contract.

​Transmission of data, information relating to foreign countries
a) ​ ​Recipients ​of data
We only​ ​transmit​ ​personal data​ to third parties if​​ this is necessary ​in the context of the administration of the contract,​ if you​ ​have given us your express prior consent,​ ​if we are obliged to do so ​by law​ ​or​ on account of an order issued by a court or administrative authority​​,​​ ​or if said transmission is necessary to the ​enforcement​ ​of our rights,​ ​in particular that​ of​ ​claims resulting from a ​​contractual relationship​ ​with you.

We​ shall transmit the data to​ the following categories of recipients​ ​if this is necessary​ to the performance of the contract:

  • ​public​ ​bodies which receive data​ ​on the basis of statutory regulations​​ (e.g. fiscal authorities)
  • ​internal​ ​bodies involved in the ​implementation​ of the respective​ ​business processes​
  • ​external​ ​bodies such as ​affiliated enterprises​ ​of ​thinXXS Microtechnology AG​ ​and​ ​external​ ​contractors engaged for​ ​correct and proper business processing​ (e.g. transport companies, banks)
  • external bodies which function as processors.

b) Transmission to third states
To process a request or to fulfil a contract it may be necessary to transmit personal data outside the EU (to third states). In cases personal data is transferred to third states, it will be transmitted only to those countries, national laws provide a level of protection for personal data which is comparable to those of EU law.  There is no transmission to third states which do not fall under this category and no such transmission is planned unless written consent is given.

5.​ ​Rights of data subjects

 a) ​ ​Right to​ withdrawal of consent, information, rectification, erasure, ​restriction of processing and ​data portability

You have the right:

  • to withdraw the consent you have given us as in Art. 7 3. of the GDPR at any time. The consequence of such withdrawal will be that we are not allowed to continue the processing based on that consent in the future.
  • to request information about personal data that concern you and are processed by us as in Art. 15 of the GDPR. You may in particular request information about the purposes of the processing, the categories of personal data, the categories of recipients to whom your data have been or will be disclosed, the planned storage duration, the existence of a right to rectification, erasure, restriction of processing or objection to such processing, the existence of a right to complain, the origin of your data if they were not collected by us, and information about the existence of automated decision-making including profiling and, if applicable, meaningful information regarding details thereof.
  • to request the rectification of inaccurate or completion of incomplete personal data that concern you and are stored by us without delay as in Art. 16 of the GDPR.
  • to request the erasure of personal data that concern you and are stored by us as in Art. 17 of the GDPR, unless the processing is necessary for exercising the right to freedom of expression and information, for the fulfilment of a legal obligation, for reasons of public interest or for the assertion, exercising or defence of legal claims.
  • to request that the processing of your personal data be restricted as in Art. 18 of the GDPR, if the accuracy of the data is contested by you, if the processing is unlawful but you oppose the erasure of the data, if we no longer require the data but they are required by you for the assertion, exercising or defence of legal claims, or if you have lodged an objection to the processing pursuant to Art. 21 of the GDPR.
  • to request receipt of the personal data which you have provided to us in a structured, commonly used and machine-readable format, or to request that they be transmitted to another controller as in Art. 20 of the GDPR.
  • to lodge a complaint with a supervisory authority as in Art. 77 of the GDPR. As a rule, you can address yourself in such a case to the supervisory authority at your habitual residence or place of work or at our place of business.

The address of the​ supervisory authority ​responsible for our company​ ​is:
Rhineland-Palatinate

The State Officer for Data Protection and Freedom of Information in the Federal State of the Rhineland-Palatinate
Postfach 30 40
55020 Mainz

or:

Hintere Bleiche 34
55116 Mainz

Telephone: 061 31 – 208 – 24 49
Telefax: 061 31 – 208 – 24 97
E-mail: poststelle@datenschutz.rlp.de

For ​information​ ​about your​ ​personal data, ​to initiate their​ rectification or​ ​erasure,​ or​ to exercise any other rights that you have​, please contact us as follows:

by letter: ​ ​         thinXXS Microtechnology AG, Amerikastrasse 21, 66482 Zweibrücken

by telephone: ​ ​  06332 – 8002 – 0
by telefax: ​       06332 – 8002 – 75
by e-mail: ​ ​       thx-info@idexcorp.com

 

3. Privacy policy for applicants

We are pleased that you are interested in us and that you have applied or are applying for a position in our company. In the following we would like to provide you with information on the processing of your personal data in connection with your application.

Who is responsible for data processing?

Responsible in the sense of the data protection law is

thinXXS Microtechnology AG
Amerikastraße 21
D-66482 Zweibrücken

You will find further information about our company, details of the persons authorized to represent us and also further contact details in our imprint on our website

Which of your data are processed by us? And for what purposes?

We process the data you have sent us in connection with your application in order to check your suitability for the position (or any other open positions in our companies) and to carry out the application procedure:

  • Contact and identity information, including name, marital status, gender, nationality, date of birth, residential address and contact details.
  • Your application documents and all information contained therein, including your resume, cover letter and certificates; other documents about your previous work experience, education or similar; and pictures.
  • Information about your employment history and work-related experience and skills, including hiring date, date and reason for termination, employment status, current salary level, other supporting data submitted by applicants or employees, information obtained through reference checks, previous applications, proof of your skills/qualifications and relocation information.
  • Information relating to character and professional interests, including job-related and personal interests; knowledge or skills; and awards or memberships.
  • Other personal information you provide to us during the recruitment process, including our notes from interviews with you or others about you; and any correspondence you have with us or a recruitment agency during the application process.
  • Information about your work permit status.
  • Sensitive data, in certain circumstances, including your racial or ethnic origin; trade union membership; religious beliefs; or information about your health, such as information about a disability for which the Company may need to make reasonable adjustments during the recruitment process.

We may also obtain the above information about you from other sources, including recruitment agencies, the references you provide, websites and other publicly available information on the Internet. This includes, for example, personal information that you have published as part of an online profile. We may also receive information that you provide to us through third-party websites, such as LinkedIn.

Personal data that you provide us with in the context of your application will be stored and used exclusively for the purpose of processing your application and, if applicable, for the subsequent employment relationship.

If your application has convinced us, but we cannot consider you for a vacancy, we would be pleased to store your documents in our talent pool. In this case, we will ask you for your consent in a separate e-mail. You will then have the opportunity for us to contact you again in the event of suitable job advertisements that match your profile.

If we would like to send your application documents to other companies in the group of companies, we will also ask for your consent. You can also give this consent in your application. In such a case, your personal data will be forwarded to the responsible offices of other companies for the purpose of initiating the application procedure in the respective companies.

On what legal basis is this based?

Die Verarbeitung Ihrer personenbezogenen Daten im Rahmen des Bewerbungsverfahrens erfolgt auf Grundlage von Art. 6 Abs. 1 lit. b DS-GVO (Begründung und Durchführung eines Vertrages) sowie § 26 Abs. 1 S. 1 BDSG.

The processing of your personal data in the context of the application procedure takes place on the basis of Art. 6 para. 1 lit. b GDPR (establishment and execution of a contract) as well as § 26 para. 1 sentence 1 BDSG.

The storage and processing of your data in the talent pool or the forwarding to other companies in the group of companies takes place on the basis of your consent in accordance with Art. 6 para. 1 letter a GDPR.

Should the data be necessary for legal prosecution after the application procedure has been completed, data processing may be carried out on the basis of the requirements of Art. 6 GDPR, in particular to safeguard legitimate interests in accordance with Art. 6 Para. 1 letter f) DSGVO. Our interest then consists in the assertion or defense of claims.

How long is the data stored?

Data of applicants will be deleted after 6 months in case of a cancellation.       The legal basis for the storage of such data is Art. 6 para. 1 letter f GDPR. Our legal interest in this respect is to defend ourselves against any claims arising from the General Equal Treatment Act (“AGG”).

In the event that you have agreed to further storage of your personal data, we will transfer your data to our pool of applicants. There the data will be deleted after two years.

If you have been awarded a job during the application procedure, the data from the applicant data system will be transferred to our personnel information system.

To which recipients will the data be forwarded?

Your data will be made available to the responsible employees in the Human Resources Department and to the employees or managers of the department(s) responsible for the position for which you have applied. In the case of a speculative application, your documents will be made available to the relevant employees in the Human Resources department and to the relevant employees or superiors of the relevant departments for which your application might be of interest.

Due to our company structure, it can happen that there are several persons responsible for your application; this is evident from the application documents in individual cases. This transfer is protected by commitments set forth in intercompany agreements that we have entered into between the various legal entities of the IDEX group of companies. International transfers within the IDEX group of companies are governed by standard contractual clauses approved by the European Commission for data controllers and, where relevant, data processors. You can obtain a copy of these standard contractual clauses, which are used in our intra-group agreements, by contacting the company and requesting it.

Furthermore, we do not forward your applicant data to affiliated subsidiaries or parent companies unless your application also relates to these companies, is kept open for this purpose or you have given us your express consent.

We also use contract processors (e.g. IT service providers) for the application process. Your data will be passed on to them in strict compliance with the obligation of secrecy and the requirements of the DS-GVO. The processors commissioned by us may only process the data for us and not for their own purposes. The responsibility for data processing remains with us in these cases.

Data will also be passed on if we are obliged to do so by law and/or official or court orders.

Where is the data processed?

Our company is part of the IDEX group of companies, where personnel responsibilities can extend beyond national borders. For this reason, supervisors in other countries may also have access to your applicant data. This data processing is necessary to decide whether to establish an employment relationship. Data is also transferred to third countries when your data is included in the Talent Pool. This means that our affiliated foreign units also have access to your applicant data.

If data is transferred to a body in a third country, appropriate guarantees for the protection of your personal data will ensure that the data protection level of the European Union is observed.

Are you obliged to provide your data?

The data we collect is necessary for the decision on the establishment of an employment relationship. We cannot take you into account if the information provided is incomplete.

To what extent do automated individual case decisions or profiling measures take place?

We do not use automated processing to make a decision – including profiling – about the establishment of an employment relationship.

Your rights as a “data subject”

You have the right to be informed about the personal data we process about you. In the case of a request for information that is not made in writing, we ask for your understanding that we may then require you to provide evidence that proves that you are the person you claim to be.

Furthermore, you have a right to correction or deletion or to restriction of processing, as far as you are legally entitled to do so.

Our data protection officer

You can reach our data protection officer in the company at e-mail: THX-Datenschutz@idexcorp.com

Right of appeal

You have the right to complain about the processing of personal data by us to a data protection supervisory authority.

The data protection supervisory authority responsible for us is:

Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit Rheinland-Pfalz
Postfach 30 40
55020 Mainz

Or:

Hintere Bleiche 34
55116 Mainz

Telephone: 061 31 – 208 – 24 49
Telefax: 061 31 – 208 – 24 97

E-mail: poststelle@datenschutz.rlp.de

 

Message Us

Get In touch below.

Call Us

+49 (0) 6332-8002-0

GDPR notice

Office Location

Amerikastraße 21
66482 Zweibrücken
Germany

Open Hours

M-F: 8am - 6pm

Email

THX-Sales@idexcorp.com

Phone

+49 (0) 6332-8002-0