1 INTRODUCTION
The protection of your privacy is a very serious concern to the NOVOMATIC Group therefore we want you to be able to visit our web pages without being concerned about security issues. It is generally possible to use our website without the disclosure of personal data. The following Privacy Statement will provide you with an overview of how the NOVOMATIC Group guarantees the protection of your privacy, the type of data being collected as well as its main purpose.
2 DATA PROCESSING ON OUR WEBSITE
Whenever you visit our website, some of the data we collect is used for statistical evaluation. The extent of such data is described below. The data are only used internally and serve primarily to continuously improve our website and adapt it to suit your business or personal requirements. For tracking purposes, we employ the Piwik tool (piwik.org). During a visit to our website we collect and evaluate the following data which your browser sends to our server. The data are collected using JavaScript which is run from each web page. JavaScript places a tracking cookie on your computer to identify your browser session and to recognize repeated access to the website.
The following data are collected:
Request (name of the requested data file) (e.g. www.beispiel.de/index.html) including parameters (e. g. www.novomatic.com/de/search?keyword=verantwortung)
Browser type and version (e.g. Internet Explorer 6.0)
Browser language (e.g. German)
Operating system used (e.g. Windows XP)
Internal resolution of your browser window
Screen resolution
JavaScript activation
Installed plugins (Java, Flash, Real, Quicktime, …)
Cookies on/off
Color bit depth
Referrer URL (the previously visited website including parameters, e.g. search items in search engines, ...)
IP address to identify country of origin. The IP address itself is only used for geographical allocation and to identify the provider, and is immediately deleted again afterwards.
Time and date of accessing
Clicks
Any personal details you have entered in one of our forms, either to request information, apply for a job or get in touch with us, are also saved. The NOVOMATIC Group will use your personal data exclusively in accordance with the relevant laws and regulations.
3 IP ADDRESS
The IP address is transmitted on every server request to let the server know where the response has to be sent. Your Internet Service Provider (ISP) gives you an IP address as soon as you connect to the Internet, and the ISP can retrace which IP address was assigned to which of its customers at any given time. For as long as the IP address is saved, it is theoretically possible to identify the owner of the Internet connection via the ISP. For this reason, we and our statistics providers do not save the IP address permanently but only temporarily for session recognition and for security reasons (for example to ward off hacker attacks). The IP address is then immediately deleted, so that any collected data are made anonymous and it is no longer possible to identify the user, not even via the ISP.
4 COOKIES
4.1 The Purpose of Cookies
To allow you to use the NOVOMATIC Group’s website without any restrictions, we use what are referred to as session cookies. Session cookies are tiny parcels of information that are automatically saved to the memory of the website visitor\'s computer. In a session cookie a randomly created and unique identification number is deposited, a so-called session ID. A cookie additionally contains information on its origin and its life span. These cookies are unable to save any other kind of data. Placing session cookies on your computer does not enable us to see the files on your computer.
After you conclude your session, i.e. after you close your browser window, the session cookies are automatically deleted.
You need to activate session cookies to be able to use website services which require authentication.
4.2 Handling Cookies
Your browser settings allow you to set how you wish cookies to be handled. By default, the browser is set to accept session cookies. You have the option of refusing the use of session cookies.
5 PRIVACY POLICY OF THE NOVOMATIC GROUP
The NOVOMATIC Group regards privacy (data protection), information security and reliability as the basis for stable and successful customer relations. We would therefore like to take this opportunity to inform you about the Privacy Policy we have in place for the entire NOVOMATIC Group.
5.1 Privacy Principles
The protection of your privacy and the security of your personal data is a matter of great importance to us.
All data applications run by the NOVOMATIC Group comply with the provisions laid down in the Austrian Data Protection Act (Datenschutzgesetz, DSG 2000) as well as other sector-specific rules and regulations. All our employees are obliged to observe data secrecy as specified in § 15 Data Protection Act 2000.
Compliance with the data protection and data security regulations is guaranteed across the entire Group by the following binding measures:
5.2 Privacy Concept
The Privacy Concept lays down the desired level of data protection security (the protection requirements) as defined by the legal representatives of the NOVOMATIC Group. This serves as the basis for the development of the demands on Privacy Policy and on the continuous privacy improvement process within the entire NOVOMATIC Group.
5.3 Privacy Policy
On account of the assessment of privacy-related processes and the relevant data protection legislation, a written Privacy Policy was drawn up for the NOVOMATIC Group to serve as a basis for the implementation of the Privacy Program and the establishment of the Privacy Management System.
5.4 Privacy Program
As part of the Privacy Program, data protection goals are continuously being specified and the measures to be implemented are defined in the form of a work program and provided with corresponding implementation deadlines.
5.5 Privacy Management System
The Privacy Management System defines the rules, policies, measures, resources, methods, responsibilities, procedures and organization structures for implementing and monitoring the Privacy Program. Modeled on the international standards ISO 9001:2008 and ISO/IEC 27001:2005, our Privacy Policy was designed along the lines of the PDCA (Plan, Do, Check, Act) model to achieve continuous improvement.
Source: Karn G. Bulsuk (blog.bulsuk.com)
5.6 Data Applications
Providing there is an obligation to register, the data applications operated within the scope of the NOVOMATIC Group are entered into the Data Processing Registry (DVR).
Everybody is entitled to inspect the registered data applications at the DSB website https://dsb.gv.at
The contact details of the DSB are as follows: DSB, 1010 Wien, Hohenstauffengasse 3, tel. +43 (1) 531 15 – 204043, fax +43 (1) 531 15 – 202690, e-mail: dsb@dsb.gv.at, website: www.dsb.gv.at
5.7 Sensitive Data
The NOVOMATIC Group determines or processes no sensitive data whatsoever in the realm of its web presence in terms of § 4 Item 2 of the Data Protection Act 2000.
5.8 Guaranteed Data Protection
On principle, we never process your personal data without your approval. Your personal data shall only be used within the context of a contractual relationship concluded with you. We shall keep your personal data for the periods defined in the relevant statutory regulations.
5.9 Transferring and Surrendering Data
Data transfer to third parties shall not take place without your approval. Exempted from this provision are data transfers that are required for contract fulfillment. If data is passed on to order processors (service providers) this is done exclusively and essentially to such companies that can sufficiently guarantee that the data is used lawfully and securely.
5.10 Data Security
The technologies employed by the NOVOMATIC Group to process your personal data (hardware, software, network, infrastructure) comply with state-of-the-art security technologies.
5.11 Right of Access to Personal Data
Pursuant to the provisions laid down in the Data Protection Act 2000, you shall always have the right to access information on any personal data relating to you, their origin and any receivers of data transfer and the purpose of data use. The NOVOMATIC Group\'s Legal Department mentioned in Section 5.14 will disclose this information at your written request. If it should become evident in the context of this disclosure that your data are incorrect or being unlawfully processed by us, we will correct or delete your data within a period of 8 weeks if these requirements are met.
5.12 Right of Withdrawal
Pursuant to the regulations of the Data Protection Act 2000, you are entitled to revoke your consent to the use of your personal data at any time. In such an event, we will no longer use your data and delete them taking into account any statutory retention periods.
5.13 Right of Objection
Pursuant to the provisions of the Data Protection Act 2000, and unless the use of your personal data is not provided for by law, you have the right to raise an objection on account of the violation of your confidentiality interests which are more worthy of protection. If these requirements are met, we shall delete your data within a period of 8 weeks taking into account any statutory periods of retention.
5.14 Further Information
We value the trust you place in us. Should you therefore have any further questions on how we use and utilize your personal data, please contact the NOVOMATIC Group’s Legal Department by sending a written message to NOVOMATIC AG, Wiener Straße 158, 2352 Gumpoldskirchen, Austria, e-mail: datenschutz@novomatic.com
