Privacy Policy (17.02.2021)

The following information provides you with details about how we process
your personal data and your rights under data protection law.

Responsibility for data processing and company data protection officer

If you have any questions regarding how we handle your personal data you are welcome to contact our Company Data Protection Officer at:

Salman Khan, Head of Governance and Environment
Konica Minolta Business Solutions (UK) Limited.
Konica House, Miles Gray Road, Basildon, Essex, SS14 3AR
Email: dataprotection@konicaminolta.co.uk
 
In line with Article 4, Paragraph 7 of the EU General Data Protection Regulation (GDPR) the following has overall responsibility for Konica Minolta’s group companies’ data protection strategies:

Dr. Frederike Rehker
Konica Minolta Business Solutions Deutschland GmbH
Europaallee 17, 30855 Langenhagen
Telephone: +49 (0)511 7404-0
Email: dataprotection@konicaminolta.eu 

As a data subject, you have the following rights:

2.1 Right of access (Art. 15 GDPR): You have the right to be informed at any time of the categories of personal data processed, the purposes of processing, any recipients or categories of recipients of your personal data and the planned storage period.

2.2 Right of rectification (Art. 16 GDPR): You have the right to request the rectification or completion of personal data concerning you that is incorrect or incomplete.

2.3 Right to erasure („right to be forgotten“) (Art. 17 GDPR): You have the right to request the immediate erasure of your personal data. In particular, we are obliged as the controller to delete your data in the following cases:

• Your personal data is no longer needed for the purposes for which it was collected.
• A processing of your personal data took place solely on the basis of your consent, which you have now withdrawn, and there is no other legal basis that legitimises a processing of your personal data.
• You have objected to a processing which is based on the legitimate or public interest and we cannot prove that there are legitimate grounds for processing.
• Your personal data has been processed unlawfully.
• The erasure of your personal data is necessary in order to comply with a legal obligation to which we are subject.
• Your personal data has been collected in connection with information society services offered in accordance with Art. 8 I GDPR.

Please be aware that the right to erasure is subject to a limitation in the following cases, so that a deletion is excluded:

• Your personal data is used to exercise the right to freedom of expression and information.
• Your personal data serves to fulfil a legal obligation to which we are subject.
• Your personal data is used to carry out a task that is in the public interest or in the exercise of official authority that has been assigned to us.
• Your personal data serves the public interest in the field of public health.
• Your personal data are necessary for archiving purposes in the public interest, for scientific or historical research or for statistical purposes.
• Your personal data serve for us to establish, exercise or defend legal claims.

2.4 Right of restriction of processing (Art. 18 GDPR): You also have the right to request that the processing of your personal data be restricted; in such a case, your personal data will be excluded from any processing. This right applies if:

• You contest the accuracy of your personal data and we have to verify the accuracy of your personal data.
• The processing of your personal data is unlawful and instead of erasing your personal data, you request a restriction of processing.
• We no longer need your personal data for the fulfilment of the specific purposes, but you still need this personal data to establish, exercise or defend legal claims.
• You object to the processing of your personal data and it has not yet been determined whether your or our legitimate reasons override this.

2.5 Right of data portability (Art. 20 GDPR): You have the right to receive the personal data concerning you that you have provided to us as a controller in a structured, common and machine-readable format and to transfer it to another controller. Furthermore, you also have the right to request that your personal data be transferred from us to another controller, insofar as this is technically feasible.
The requirements for the applicability of data portability are:

• Your personal data is automatically processed based on your consent or a contract.
• Your personal data does not serve to fulfil a legal obligation to which we are subject.
• Your personal data will not be used to perform a task that is in the public interest.
• Your personal data do not serve for the performance of a task which is performed in the exercise of a official authority delegated to us.
• The exercise of your right shall not interfere with the rights and freedoms of others.

2.6 Right to object (Art. 21 GDPR): You have the right at any time to object to the processing of your personal data on grounds arising from your particular situation. This also applies to profiling. The requirement for this is that the processing is based on a legitimate interest on our part (Art. 6 I 1 lit. f GDPR) or the public interest (Art. 6 I 1 lit. e GDPR).
Furthermore, you may also at any time object to the processing of your personal data for the purposes of direct marketing or profiling linked to such direct marketing.
Should you object to the processing of your personal data based on a legitimate interest, we will check in each individual case whether we can show grounds worthy of protection that override your interests and rights and freedoms. In the event that there are no reasons worthy of protection on our part or your interests as well as rights and freedoms override our own, your personal data will no longer be processed. An exception is made if your personal data is still used for the establishment, exercise or defence of legal claims.
If you object to the processing of your personal data for the purposes of direct marketing or profiling, insofar as this is linked to such direct marketing, your personal data will no longer be processed for these purposes.

2.7 Right to lodge a complaint with the supervisory authority (Art. 77 GDPR): You also have the right to lodge a complaint with a supervisory authority at any time, in particular with a supervisory authority in the Member State of your residence, place of work or place of suspected infringement, if you consider that the processing of personal data concerning you is in breach of the data protection regulations.
The address of the supervisory authority responsible for our company is:
Barbara Thiel
Die Landesbeauftragte für den Datenschutz Niedersachsen
Prinzenstraße 5
30159 Hannover
Telefon 0511-120 4500
Fax 0511-120 4599
poststelle@lfd.niedersachsen.de
 

As a matter of principle, the processing of your personal data by us is always linked to a specified, explicit and legitimate purpose, which has already been defined before the processing activity is commenced, in accordance with the principle of purpose limitation under Art. 5 I lit. b GDPR. In the further course of this privacy policy, when a processing activity is cited, a description of the specific purpose is also included.

We process your personal data in accordance with the GDPR. Accordingly, the processing of your personal data is always founded on a legal basis. Article 6 of the GDPR defines legal bases for the processing of personal data.

4.1. Legal bases for the processing of personal data

Consent
If we obtain your consent for the processing of your personal data, the processing will be carried out on the legal basis of Art. 6 I 1 lit. a GDPR. The following example serves to clarify this legal basis: You receive advertising from us by electronic mail and/or telephone and have given your prior consent.

Contract or pre-contractual measure
If the processing of your personal data is necessary for the fulfilment of a contract with you or for the implementation of pre-contractual measures taken in response to your request, the legal basis on which the processing of your personal data is based is Art. 6 I 1 lit. b GDPR.

Legal obligation
In cases where the processing of your personal data is necessary to comply with a legal obligation to which we are subject, this processing is based on Art. 6 I 1 lit. c GDPR.

Vital interest
Should the processing of your personal data be necessary to protect your vital interests or those of another person, this processing is carried out in accordance with Art. 6 I 1 lit. d GDPR.

Public interest
In cases where we process your personal data in order to perform a task which is in the public interest or in the exercise of official authority delegated to us, Art. 6 I 1 lit. e GDPR constitutes the legal basis.

Legitimate interest
If the processing of personal data is necessary to safeguard a legitimate interest of our company or a third party and at the same time the interests, basic rights and fundamental freedoms of the data subject, which require the protection of personal data, do not override our legitimate interest, Art. 6 I 1 lit. f GDPR serves as the legal basis for the processing.

4.2. Legal bases for the processing of special categories of personal data

If, in extraordinary cases, we need to process special categories of personal data, such as

• data on racial or ethnic origin (e.g. skin color or special languages),
• data on political opinions (e.g. party memberships),
• data on religious or philosophical beliefs (e.g. membership of a sect),
• data on trade union membership,
• genetic data,
• biometric data (e.g. fingerprints or photographs),
• health data (e.g. identification numbers for disabilities),
• or data concerning the sex life or sexual orientation

by you, this processing is based on one of the following legal bases, which are de-fined in Article 9 GDPR

Explicit consent
If you have given us your explicit consent for the processing of the above categories of personal data, this constitutes the legal basis for the processing in accordance with Art. 9 II lit. a GDPR.
 
Performing duties under social security/protection and employment law
If the processing of special categories of personal data relating to you is necessary in order to comply with a legal obligation arising from social security/protection or employment law, the legal basis for this processing is Art. 9 II lit. b GDPR.

Protection of vital interests
If the processing of special categories of personal data relating to you should be necessary to protect your vital interests or those of another person, such processing is carried out pursuant to Art. 9 II lit. c GDPR.

Manifestly public data
Insofar as special categories of personal data of yours are processed, which have previously been made public by yourself, the processing of these data is based on Art. 9 II lit. e GDPR.

Establishment / Exercise / Defence of legal claims
Insofar as the processing of the special categories of personal data relating to you serves us to establish, exercise or defend legal claims, Art. 9 II lit. f GDPR constitutes the legal basis for the processing.

Substantial public interest
In the case of the processing of special categories of personal data concerning you in order to safeguard a substantial public interest arising from EU or national law, the processing is based on Art. 9 II lit. g GDPR.

Assessment of the person's work capacity or other medical purposes such as health care
If the processing of special categories of personal data relating to you arises from a law of the EU or a Member State or a contract concluded with a member of a health profession and is carried out for the purposes of preventive health care, occupational medicine, assessment of an employee's work capacity, medical diagnosis, care or treatment in the health or social field or the management of systems and services in the health or social field, this processing is based on Art. 9 II lit. h GDPR.

Public interest in the area of public health
If the processing of special categories of personal data of yours should be necessary for public health reasons, including protection against cross-border health threats such as pandemics, this processing is carried out on the legal basis of Art. 9 II lit. i GDPR.

Archival purposes, scientific / historical research purposes, statistical purposes
Should the processing of special categories of personal data relating to you arise from a right of the EU or a member state, which stipulates processing for archiving, scientific or historical research or statistical purposes in the public interest, this processing is based on Art. 9 II lit. j GDPR.

Unless otherwise stated, we delete personal data in accordance with Art. 17 GDPR or restrict its processing in accordance with Art. 18 GDPR. Apart from the retention periods stated in this privacy policy, we process and store your personal data only as long as the data are necessary for the fulfilment of our contractual and legal obligations. Personal data that are no longer required after the purpose has been fulfilled will be regularly deleted, unless further processing is required for a limited period of time, which may result from other legally permissible purposes. In order to fulfil documentation obligations as well as to comply with statutory obligations to preserve records in Germany, the necessary documents are kept for six years in accordance with § 257 I Commercial Code (HGB) and for ten years in accordance with § 147 I of the Fiscal Code of Germany (AO).

Recipient of your data
We do not sell or rent user data in principle. A transfer to third parties beyond the scope described in this privacy policy will only take place if this is necessary for the processing of the respective requested service. For this purpose, we work together with service providers in the areas of marketing, sales, IT, logistics and human resources, among others. We select these service providers extremely carefully. In other cases we transfer data to requesting governmental authorities. However, this only takes place if there is a legal obligation to do so, for example if a court order exists.

Locations of the processing of your personal data
In principle, we process your data in Germany and in other European countries (EU/EEA). If your data is processed in countries outside the European Union or the European Economic Area (i.e. in so-called third countries), this will only take place if you have expressly consented to it, if it is stipulated by law or if it is necessary for our service provision to you. If, in these exceptional cases, we process data in third countries, this will be done by ensuring that certain measures are taken (i.e. on the basis of an adequacy decision by the EU Commission or by presenting suitable guarantees in accordance with Art. 44ff. GDPR).

7.1. General information regarding the topic „cookies"

We use cookies on our website. Cookies are small text files that are stored on your hard drive in accordance with the browser you are using and through which certain information flows to the website that sets the cookie. Many of the cookies we use are deleted after the browser session ends (so-called session cookies). Other cookies remain on your end device and enable us to recognize your browser on your next visit (persistent cookies).

Cookies are used on our website for various purposes. For a better overview, each cookie has been assigned to one of the following categories:

Technically necessary

Cookies that belong to this category are necessary to ensure the core functionality and/or security of this website.

Functionality

Cookies of this category are used to increase user comfort e.g. by storing preferences such as language settings, text size adjustments, user names or local settings.

Marketing

These cookies are used by advertisers to serve ads that are relevant to their prospects.

Performance and analysis

This type of cookie is used to help us analyze website usage in order to measure and improve performance.

In the settings of the browser you use, you have the option of rejecting the acceptance of cookies or, for example, to limit this rejection to cookies from other parties, so-called third-party cookies. However, the browser settings you have made may mean that you may not be able to use all the functions of our website to their full extent.

Here you will find further information on the administration of cookies for corresponding browsers:

• Internet Explorer
• Google Chrome
• Firefox

7.2 Cookie overview

Download our cookie overview here.

On our website we use the Google Tag Manager, by the Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. With the help of the Tag Manager, we can integrate and manage any software solution, such as Google Analytics, centrally on our website via corresponding code sections - also called tags. These code sections also serve to collect data about your browser, your website visits or to set cookies. However, the Google Tag Manager is only a domain that neither sets cookies nor processes personal data. A processing of your personal data takes place exclusively through the solutions integrated via the code sections, such as Google Analytics itself.

Further information on the processing of your personal data within the framework of the individual solutions used can be found in the separate sections of the individual solutions in the following.
 

9.1 Processing activity – visiting of our website
Insofar as you use our website solely for informational purposes, i.e. if you do not register or otherwise transmit information to us, we only collect the personal data that your personal browser transmits to our server. This data is technically necessary so that the website can be displayed to you. Furthermore, this data is technically necessary to ensure the stability and security of our website. The legal basis for the processing of your personal data in this case is Art. 6 I lit. f GDPR; the legitimate interest in this case is the provision and optimal presentation of this website as well as the protection of this against external attacks and their traceability. We delete this personal data after the end of the usage process, unless we need it for purposes of abuse detection and abuse traceability; in such a case, we retain this data for up to a maximum of 30 days.
When visiting our website, the following personal data may thus be processed, which is automatically transmitted by your browser to our servers and stored there in the form of so-called "log files":

• IP address of the terminal device used to access the website
• Date, time and duration of the request
• Country of origin of the request
• Content of the request (specific page / file)
• Access status/http status code (e.g. "200 OK")
• Internet address of the website from which the request to access our website was made
• Browser and installed add-ons (e.g. Flash Player)
• Operating system and interface
• Language and version of the browser software
• Amount of data transferred in each case
• Time zone difference to Greenwich Mean Time (GMT)

We can only provide some of the services offered on our website if we are able to contact you. In this respect, the possibility of using these services depends on you providing us with certain personal (contact) data. We collect, use and process this personal data only to the extent necessary to provide you with the respective service. If you contact us by e-mail or via a contact form, the personal data you provide in each case (your e-mail address and other information you provide voluntarily, such as your name/telephone number) will be stored by us in order to process your request and, if necessary, answer your questions.

Here, the legal basis for the processing of your personal data is Art. 6 I 1 lit. f GDPR; the legitimate interest is to answer your request. After a final response to your request, we delete your request and the information on the processing with a period of three years after the end of the respective calendar year.

9.2 Processing activity – EMAKINA / Microsoft Azure
  9.3 Processing activity – Content Management System / Kentico

For our website we use the Content-Management-System (short: CMS) called Kentico. Kentico is operated by the company Kentico software s.r.o, Nové sady 996/25, 602 00 Brno, Czech Republic. The CMS is used to present and manage websites, online stores, intranets or other corporate websites. We use Kentico EMS and Kentico Cloud in combination as CMS, which is provided as Software as a Service for creation and maintenance of our corporate websites. It enables us to create website content and distribute it to the websites of our subsidiaries and partner companies via defined workflows. We have connected Kentico to our SDL translation management platform to initiate translations directly from Kentico and enable automatic distribution of these translations to our subsidiaries and partners' websites. Kentico is also providing a marketing automation platform allowing all national operating companies to gather leads through the website, match these with a certain persona created in Kentico and nurture these leads via email workflows or personalized website content.

In the course of using the CMS, we collect activity data from all visitors of our website in an anonymous form. Once visitors to our website identify themselves by filling out a contact form, this information is attached to their email address. For more information on the contents of a contact form, please refer to "9.1 Processing activity - visiting our website".

As part of the technical implementation of the individual functions of the CMS, Kentico sets cookies. Further information on the subject of cookies and the individual cookies used by Kentico can be found under "7. Cookies". In principle, data is stored directly in Kentico, so that any data collected by Kentico is stored on the designated web servers of Microsoft Azure in the Netherlands. An exception is when a subsidiary or partner company uses the marketing automation software called Marketo. In this case, only the activity data is stored in Kentico and all other data is transferred directly to Marketo and held there. For more information about Marketo, please see "9.8.4 Marketo".

Due to the storage of your personal data on Microsoft Azure web servers, in exceptional circumstances, due to Microsoft's headquarters, your personal data may be transferred to the United States of America and thus be transferred to a so-called third country.

The legal basis for the processing of your personal data in the scope of the visitor activities collected within the scope of the use of Kentico is our legitimate interest pursuant to Art. 6 I 1 lit. f GDPR. Our legitimate interest here is to ensure the operation and security of our website. For the processing of your personal data beyond the above-mentioned scope and the possible transfer of data to Microsoft in the USA, your consent pursuant to Art. 6 I 1 lit. a GDPR is the legal basis respectively the appropriate safeguards pursuant to Art. 49 I lit. a GDPR.
Information on your right of withdrawal can be found under point 2.8 "Right of withdrawal (Art. 7 GDPR)" in this privacy policy.

Further information on data protection at Kentico can be found under the following address: https://kenticocloud.com/privacy

9.4 Processing activity – Consent Management Platform / User Centrics

On our website we use the Usercentrics Consent Management Platform. This is a consent management tool based on JavaScript. With the help of this tool, we can give the visitor of our website both an overview of the essential software solutions used and the possibility to decide on the use of any other software solutions that require prior consent. Furthermore, the platform offers the visitor the possibility to withdraw any given consent at any time without giving reasons and thus to prevent the future processing of personal data by the respective software solution. Furthermore, with the help of the platform, we can meet the requirement resulting from the GDPR for consent management, which provides, among other things, the possibility to prove that consents have been given or not.

In the context of the use of the Usercentrics Consent Management Platform, the following data may be processed, among other things:

• Consent data
  • Consent -ID
  • Consent status (Opt-in, Opt-out)
  • Consent timestamp
• Language of the consent banner
• Version of the banner template
• Device data (http Agent, http Referrer)

The use of the Usercentrics Consent Management Platform and the associated processing of personal data serves to fulfill legal obligations within the meaning of Art. 6 I 1 lit. c GDPR. Thus, the use of the platform is necessary both to comply with the obligation to provide documentary evidence within the meaning of Art. 5 II GDPR and the legal obligation resulting from the judgment "ECLI:EU:C:2019:801" of the European Court of Justice and the related judgment "I ZR 7/16" of the German Federal Court of Justice, according to which § 15 III 1 of the German Telemedia Act (TMG) is to be interpreted with regard to Art. 5 III 1 of Directive 2020/58/EC in such a way that the service provider may only use cookies to create usage profiles for the purposes of advertising or market research with the consent of the user.

Deletion of your personal data in connection with the use of the Usercentrics Consent Management Platform will take place as soon as it is no longer required to fulfill the purpose. In case of withdrawal of consent, we retain the information regarding the withdrawal for three years. The retention results on the one hand from the accountability according to Art. 5 II GDPR and on the other hand from the regular statute of limitations according to § 195 German Civil Code (BGB). The period of this limitation begins according to § 199 BGB with the end of the year in which the claim arose. Thus, the statute of limitations begins at the end of December 31 of the year in which the withdrawal occurred and ends three years later on December 31 at 00:00.

9.5 Process activity - Special Fonts

9.5.1 Google Fonts

On our website, we use fonts from Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. These fonts are grouped together by Google under the name Google Fonts. By using Google Fonts, no cookies are set on your terminal device. The fonts are loaded and integrated via the corresponding application programming interfaces (APIs for short) from Google (fonts.googleapis.com and fonts.gstatic.com). The request to load and integrate the Google Fonts takes place shortly after your visit to our website. The request transmits personal data such as your IP address or the version of your browser to the Google servers and requests the corresponding cascading style sheets (CSS files) and font files from Google. Style sheets are files that are used to change the design of a website, such as the font or font size. A font file contains any information about how the font is displayed. Requests for CSS files are stored by Google for one day and requests for font files are stored for one year.

Due to Google's localization, the transfer of your personal data to Google may involve a third country transfer, i.e. a transfer of personal data to a destination that is neither in the European Union nor in the European Economic Area, such as the USA.

The legal basis for the processing of your personal data in the context of the use of Google Fonts is your consent pursuant to Art. 6 I 1 lit. a GDPR. A potential transfer of your personal data to a third country in the context of the use of Google Fonts (third country transfer) takes place exclusively on the basis of an appropriate safeguard. In this case, this appropriate safeguard is your consent pursuant to Art. 49 I lit. a GDPR. Information on your right of withdrawal can be found under point 2.9 "Right of withdrawal (Art. 7 GDPR)" in this privacy policy.

Your personal data will not be stored by us as the controller.
Further information regarding processing by Google can be found in the privacy policy.

9.6 Processing activity – Webanalytics

9.6.1 Google Analytics

On our website we use the service Google Analytics. This is a web analytics service provided by the Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: Google). We use Google Analytics to analyze the use of our website and to improve it regularly. We can use the statistics obtained to improve our offer and make it more interesting for you as a user.

Within the scope of the use of Google Analytics, cookies are set on your end device which enable an analysis of your visit / use of our website. You can find further information on the topic of cookies under "7. cookies".
You can prevent the storage of cookies by making the appropriate setting in your browser; however, we would like to inform you that you may then not be able to use all functions of this website to their full extent. In addition, you can prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) and the further processing of this data by Google by downloading and installing the browser plugin available under the following link (https://tools.google.com/dlpage/gaoptout?hl=en)
When the information stored in the cookies about your visit and use of our website is transferred to Google's servers, it may be transferred to a third country (e.g. to the USA) due to its localization. However, due to the activated anonymization function, your IP address will be shortened within the European Union or the European Economic Area even before it is transferred to Google. Furthermore, the IP address transmitted by your browser will not be merged with other Google data.

On behalf of the provider of this website, Google will use the information received to evaluate your use of the website, to compile reports regarding the website activities and to provide further services to the website provider in connection with the use of the website and the internet.

The legal basis for the processing of your personal data in the context of the use of Google Analytics is your consent in accordance with Art. 6 I 1 lit. a GDPR. A potential transfer of your personal data to a third country in the context of the use of Google Analytics (transfer to third countries) is exclusively carried out on the basis of an appropriate safeguard. The appropriate safeguard in this case is your consent in accordance with Art. 49 I lit. a GDPR. Information on your right of withdrawal can be found under point 2.8 "Right of withdrawal (Art. 7 GDPR)" in this privacy policy.

You can find more information on the terms of use and data protection of Google under https://www.google.com/analytics/terms/de.html or https://www.google.com/intl/de/analytics/privacyoverview.html.

9.6.2 Hotjar

This website uses features of the web analytics service tool Hotjar. The provider is Hotjar Inc., Level 2, St Julian’s Business Centre, 3, Elia Zammit Street, St Julian’s STJ 1000, Malta.

We use Hotjar to analyse and regularly improve the user experience of our website. Additionally we can use the statistics obtained to improve our offer and make it more interesting for you as a user. On behalf of the operator of this website, Hotjar will use this information to evaluate the use of the website, to compile reports on website activity, and to provide other services related to the use of the website. The information generated by the cookie, about your use of this website, is generally transmitted to a Hotjar server and stored there.

We use Hotjars Anonymization function on this website. This will truncate your IP address and make sure the analytics data is not personally identifiable. We will not merge the information with other personal information. The service provider was carefully chosen in accordance with Art. 28 I GDPR, taking into account the technical and organizational measures taken to ensure the security of the processing. In addition, in accordance with Art. 28 III GDPR, a Data processing agreement was concluded to regulate the processing.

You may Opt-out against the analytics function simply by activating the “Do not Track” standard function in your browser. In this case, we will not process your personal data in the way described here. You may find an explanation on how to enable the “Do not Track” function at this link:
https://www.hotjar.com/legal/compliance/opt-out/ 

The legal basis for the use of Hotjar is your consent, Art. 6 I 1 lit. a GDPR. Further information on your right of withdrawal can be found under point 2.8 "Right of withdrawal (Art. 7 GDPR)" in this privacy policy.

9.6.3 LeadFeeder

We use LeadFeeder to track IP addresses so we can see who has visited your website and the products and service pages they are interested in. This provides us with company details, including the SIC industry code, but no personal details.

9.7 Processing activity – Social networks on our website​

On our website, we offer you the possibility to share or recommend individual content with your contacts or your network on social platforms or simply to access our page in the corresponding social network (Facebook, Instagram, Twitter, Xing or LinkedIn). For the above mentioned purposes, the common buttons of the respective social networks are available. By simply visiting our website, no personal data is initially transmitted to the providers of the social networks. Only when you yourself become active and click on one of the corresponding buttons of the social networks to share or recommend content, data such as your IP address, the date and time of the click and the address of the website on which you are currently located will be transmitted, if applicable. If you are simultaneously logged in to the corresponding social network at the time you click on a social network button on our website, the social network will automatically assign your page view to your profile. Even if you use the button of the social network in order to recommend content from this website, the social network can still associate this information with your profile. If you do not want the social network to associate your visit to our website with your profile, please log out of the social network before clicking on the button of the respective social network.

Furthermore, please note that your data will also be transferred to the respective social network provider if you do not have an account on the social network or are simply not logged in and still click on one of the corresponding buttons of the social networks on our website. In this case, your data can be used by the social networks to create usage profiles and subsequently for the purposes of advertising, market research or the demand-oriented design of the own website. You can object to this type of processing in accordance with Art. 21 GDPR. To exercise this right, however, you need to contact the respective provider of the social network.
You will find information on the individual objection possibilities of the individual providers of the social networks under point "9.7.3 Possibilities of objection in social networks " in this privacy policy.

You should also take into account that due to the localization of Facebook, Instagram, LinkedIn, Twitter or Xing, when your personal data is transferred to the provider of the respective social network, a transfer to a third country, i.e. a transfer of personal data to a destination that is neither in the European Union nor in the European Economic Area, such as the USA, may occur.

Furthermore, we would like to point out that we ourselves do not collect any personal data that is transferred to the respective social network by clicking on one of the corresponding buttons.

By clicking on the respective button of a social network on our website, you give your consent in accordance with Art. 6 I 1 lit. a GDPR for your browser to establish a connection to the servers of the corresponding social network and for the aforementioned data to be transmitted. On the other hand, by clicking on the respective button you are also giving your consent in accordance with Art. 49 I lit. a GDPR. This consent represents the appropriate safeguard for a potential transfer of your personal data to a third country. Information on your right of withdrawal can be found under point 2.8 "Right of withdrawal (Art. 7 GDPR)" in this privacy policy.

9.7.2 Online presence in social networks​

Within social networks, we, as the provider of the website, use the offers of online platforms to inform active users about information offers and services from Konica Minolta and, if interested, to communicate directly via the platforms. The social media channels thus complement our own website presence and offer interested parties who prefer this type of information an alternative means of communication. We are currently represented in the following networks with our own online profiles:

• Facebook: https://www.facebook.com/KonicaMinoltaBusinessSolutionsUKLtd
• Instagram: https://www.instagram.com/konica_minolta_uk/
• LinkedIn: https://www.linkedin.com/company/konica-minolta-business-solutions-uk-ltd
• YouTube: https://www.youtube.com/user/KonicaMinoltaTV
• Twitter: https://twitter.com/KonicaMinoltaGB

As soon as you access the respective Konica Minolta profiles on the corresponding social network in your network, the terms and conditions and data processing guidelines of the respective providers apply.
We have no influence on the data collection and its further use by the social networks. Thus, we only know that your data will be processed for market research and advertising purposes and that usage profiles will be created from your usage behavior and the resulting interests. Furthermore, advertising can also be placed to this effect on the basis of supposed interests. For this purpose, cookies are usually stored on your end device.
We therefore expressly draw your attention to the fact that the personal data of users (e.g. the IP address) is stored by the providers of the networks in accordance with their data usage guidelines and used for business purposes. We would also like to point out that your data may be processed outside the European Union or the European Economic Area.

We process the data of users in Konica Minolta's presences on the corresponding social networks only insofar as they contact and communicate with us via comments or direct messages. You can assert your rights as a data subject both against us (see also point 2 "What are my rights as a data subject?") and against the provider of the social network. You can find information on the processing of your personal data by the individual social network providers as well as the options for objecting to this under point "9.7.3 Possibilities of objection in social networks" of this Privacy Policy.

The processing of users' personal data is based on our legitimate interests in effective information of users and communication with users in accordance with Art. 6 I 1 lit. f GDPR. If you are asked by the respective providers to give your consent to data processing (i.e. declare your consent, e.g. by ticking a check box or confirming a button), the legal basis for processing is Art. 6 I 1 lit. a GDPR, i.e. your consent.

9.7.3 Possibilities of objection in social networks

For a detailed presentation of the respective processing and the possibilities of objection (opt-out), we refer to the following linked information of the providers.
Information on the individual providers of the social networks:

• Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland)
  • Privacy Policy: https://www.facebook.com/about/privacy/, https://www.facebook.com/legal/terms/information_about_page_insights_data, https://www.facebook.com/legal/terms/page_controller_addendum, https://help.instagram.com/519522125107875
  • Opt-Out: https://www.facebook.com/ads/preferences/
• Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA
  • Privacy Policy: https://twitter.com/de/privacy
  • Opt-Out: https://twitter.com/personalization
• LinkedIn (LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland)
  • Privacy Policy: https://www.linkedin.com/legal/privacy-policy
  • Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
• Xing (XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany)
  • Privacy Policy / Opt-Out: https://privacy.xing.com/de/datenschutzerklaerung

In addition, European marketing providers offer a new possibility of objection under the following link: http://www.youronlinechoices.com/. This is an initiative to educate about online advertising. In the preference management section http://www.youronlinechoices.com/de/praferenzmanagement/ you will find an overview of providers whose online advertising can be deactivated or activated there. Also in the case of access requests and the assertion of further rights of data subjects, we would like to point out that these can most effectively be asserted with the providers. Only the providers have access to the personal data of the users and can directly take appropriate measures and provide information. Should you nevertheless require assistance, you can contact us.

9.8 Processing activity – Targeting und Advertisement

9.8.1 Google Adwords

On our website we use the service Google Adwords from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: Google). This service enables us to draw attention to our appealing offers on external websites by means of advertising material (so-called Google Ads). These advertising materials are delivered by Google via so-called "Ad Servers". Ad server cookies are used for this purpose. For further information on the topic of cookies, please go to "7. cookies". Ad server cookies enable the evaluation of performance parameters (e.g. ad impressions, clicks or conversions). In this way we can determine how successful the individual advertising measures are. If you come to our website via an ad from Google, Google Adwords stores a cookie on your end device. This cookie stores analysis values (unique cookie ID, number of ad impressions per placement (frequency), last impression, opt-out information (marking that the user no longer wants to be addressed)). The cookies set by Google Adwords lose their validity after 30 days. These cookies are not intended to identify you personally. Rather, they enable Google Adwords to recognize your internet browser. If you visit certain pages on the website of an Adwords client, Google and the client will recognize that you have been redirected to the client's page via a clicked advertisement. Google provides us as an Adwords customer with a statistical analysis. This analysis enables us to measure the effectiveness of our advertising measures. We do not receive any further data beyond this.

When the information stored in the ad server cookies is transferred to Google's servers, it may be transferred to a third country (e.g. the USA) due to its localization.

The legal basis for the processing of your personal data in the context of the use of Google Adwords is your consent according to Art. 6 I 1 lit. a GDPR. A potential transfer of your personal data to a third country in the context of the use of Google Adwords (transfer to third countries) is solely carried out on the basis of a appropriate safeguard. The appropriate safeguard in this case is your consent in accordance with Art. 49 I lit. a GDPR. Information on your right of withdrawal can be found under point 2.8 "Right of withdrawal (Art. 7 GDPR)" in this privacy policy.

Further information on data protection at Google can be found here:

•  https://policies.google.com/privacy?hl=en
• https://services.google.com/sitestats/en.html
• https://ads.google.com/intl/de_de/home/faq/gdpr/

9.8.2 Facebook Pixel

We use the offer of the social network Facebook Inc., 1601 South California Avenue, Palo Alto, CA 94304, USA ( hereinafter: Facebook) and use a so-called Facebook pixel on our website. This is a marketing service from Facebook. In the course of this service, a cookie is deposited on your end device. This cookie makes it possible for us to show certain visitors of our website, who also use Facebook, individually tailored and interest-based advertising on Facebook. The Facebook pixel allows us to track the behavior of users after they have clicked on a Facebook advertisement. With the help of the Facebook pixel, we can track how our marketing measures are accepted on Facebook and if necessary take optimization measures.

The information collected through the pixel may also be aggregated by the Facebook Ireland Limited and the aggregated information may be used by the Facebook Ireland Limited for its own advertising purposes as well as for third party advertising purposes. For example, the Facebook Ireland Limited may infer certain interests from your browsing behavior on this site and may also use this information to promote third party offers. The Facebook Ireland Limited may also combine the information collected via the pixel with other information that the Facebook Ireland Limited has collected about you via other websites and/or in connection with the use of the social network "Facebook", so that a profile about you can be created and stored at the Facebook Ireland Limited. This profile may be used for advertising purposes. For more information about the privacy policy of the Facebook Ireland Limited, please visit https://www.facebook.com/policy.php.

Due to the localization of Facebook, the transfer of your personal data to Facebook may result in a transfer to a third country such as the USA.
 
9.8.3 LinkedIn Insight Tag​

On our website we have included the conversion tool "LinkedIn Insight Tag" from the LinkedIn Ireland Unlimited Company (hereinafter: LinkedIn).

The LinkedIn Insight Tag is a small JavaScript code snippet that we have implemented on our website. With the help of the LinkedIn Insight tag, data about the visit of our website is collected and transmitted to LinkedIn. This data includes the referrer URL, IP address, device information, browser information, and a timestamp for the visit of our website. LinkedIn does not provide us with access to the personal data collected in detail. LinkedIn uses this information to provide us with reports on website audiences and ad performance, based on aggregate data, so that we can optimize our website based on the information we receive. In addition, LinkedIn provides us with the ability to track conversions and retarget our website visitors through the LinkedIn Insight tag. This allows us to display targeted advertising outside of our website without identifying the website visitor.
Because of LinkedIn's localization, the transfer of your personal data to LinkedIn may involve a transfer of personal data to a third country, such as the USA, which is neither in the European Union nor the European Economic Area.

The legal basis for the processing of your personal data in the context of the use of LinkedIn is your consent pursuant to Art. 6 I 1 lit. a GDPR. A potential transfer of your personal data to a third country in the context of the use of LinkedIn (transfer to third countries) will only take place on the basis of an appropriate safeguard. This appropriate safeguard represents your consent in accordance with Art. 49 I lit. a GDPR. Information on your right of withdrawal can be found under point 2.8 "Right of withdrawal (Art. 7 GDPR)" in this privacy policy.
The data processed in the LinkedIn Insight tag is encrypted and anonymized within seven days. After 90 days at the latest, the anonymized data is automatically deleted if it is no longer required for the fulfillment of the defined purpose.

For more information about LinkedIn's privacy policy, please visit the following address: https://www.linkedin.com/legal/privacy-policy

9.8.4 Marketo

Within the scope of registration for the newsletter as well as for sending information to you, we use the marketing automation software Marketo from Marketo Inc, 901 Mariners Island Blvd. suite 500, San Mateo, CA 94404, USA. With the help of Marketo, we collect statistical data on the usage of our website and communication activities in order to optimize our services/products accordingly and to conduct e-mail marketing and sales activities. The processing is partly automated, with the aim of evaluating certain personal aspects (profiling). Marketo records your IP address and uses cookies to track and analyze the use of the website in order to provide information specifically tailored to the interests of the user. For more information on the subject of cookies, please refer to "7. cookies". The information generated by the cookies is transferred to a Marketo server (located within the EU/EEA) and stored there. On our behalf, Marketo uses this information to evaluate the use of the website by registered persons and to compile reports on website activities. You can prevent the storage of cookies by adjusting your browser settings accordingly. However, your browser settings may result in not being able to use all the functions of our website. In exceptional and unforeseen cases where personal data is transferred to the USA, we have concluded a contract with Marketo.

Further information on data protection at Marketo can be found at: https://documents.marketo.com/legal/privacy/

The legal basis for the processing of your personal data within the framework of Marketo is your consent in accordance with Art. 6 I 1 lit. a GDPR. Information on your right of withdrawal can be found under point 2.8 "Right of withdrawal (Art. 7 GDPR)" in this privacy policy.

9.8.5 Newsletter

Konica Minolta offers a newsletter to customers and interested parties on a consent-based approach. The only mandatory data for receiving the newsletter is your e-mail address. The provision of further, separately marked data is voluntary and will be used to address you personally. Registration for the newsletter takes place by means of the so-called double opt-in procedure. This means that after your registration, we will send you an e-mail to the e-mail address you provided, in which we ask you to confirm that you wish to receive the information. If you do not confirm your registration by clicking on the link provided in the e-mail, the link sent to you will be deactivated and your data will be deleted. If you agree to receive information, you will have access to the following information:

• News and information about Konica Minolta's product portfolio
• Exclusive invitations to events, trade fairs and webinars
• Sending of testimonials and success stories
• Market trends in the form of studies, market research and white papers
• Possibility of taking part in customer satisfaction surveys

As part of the double opt-in process carried out during registration, we store the IP addresses you use for a period of 30 days as well as the times of registration and confirmation. Based on your consent, we will evaluate your user behavior on our websites as well as within the newsletters which we send out and assign them to your e-mail address / user profile within our database. In addition, we store information about the browser you use and the settings made in your operating system as well as information about your Internet connection with which you have accessed our website. Via the newsletter sent to you, we receive, among other things, receipt and read confirmations as well as information about the links you have clicked on in our newsletter. We also store which areas you have visited on our website and in our apps. By creating a personal user profile, we want to tailor our advertising approach to your interests and optimize our offers on our website for you.
Our newsletter contains information and news from Konica Minolta Business Solutions Europe GmbH and other affiliated group companies (Konica Minolta Business Solutions Deutschland GmbH, Konica Minolta Business Solutions Austria GmbH, Konica Minolta Business Solutions (Belgium) N.V., Konica Minolta Business Solutions Nederland B.V., Konica Minolta Business Solutions Spain S.A., Konica Minolta Business Solutions Italia S.p.A., Konica Minolta Business Solutions Portugal, Unipessoal Lda., NEA RENT - ALUGUER E COMÉRCIO DE EQUIPAMENTOS S.A., Konica Minolta Business Solutions Sweden AB, Konica Minolta Business Solutions Denmark A/S, Business Center Nord og Midtsjælland A/S, Konica Minolta Business Solutions Finland Oy, Konica Minolta Business Solutions Norway AS, Konica Minolta Business Solutions Czech spol. s r.o., Konica Minolta Business Solutions Bulgaria EOOD, WEBCOM Poland Sp. z o.o., Konica Minolta Hungary Business Solutions Ltd., Konica Minolta Business Solutions SE Ltd, Konica Minolta Croatia - business solutions, Ltd, Konica Minolta Poslovna Rjesenja BH d.o.o., Konica Minolta Business Solutions Polska Sp.z o.o., Konica Minolta Slovakia spol. s r.o., Konica Minolta Business Solutions Romania s.r.l., Konica Minolta Business Solutions Slovenija, poslovne resitve, d.o.o., Konica Minolta Baltia, UAB, Konica Minolta Business Solutions Greece S.A., Konica Minolta Marketing Services Limited, Konica Minolta Marketing Services Ireland Limited, Konica Minolta Marketing Services B.V., Charterhouse Print Management AG, Charterhouse AB, Indicia Group Limited, Hamsard 3099 Limited, Evolving Media Limited, Indicia Limited, Indicia Edinburgh Limited, Konica Minolta Business Solutions France S.A.S., Conibi S.A.S, Dactyl Buro du Centre S.A.S., OMR Impressions S.A.S., Konica Minolta Business Solutions (UK) Ltd., Konica Minolta Business Solutions East Ltd., KONICA MINOLTA Business Solutions (Northern Scotland) Ltd, Capture Imaging Ltd, ProcessFlows Holdings Ltd, ProcessFlows (UK) Ltd, Software Paradise Ltd, Digital Document Solutions Ltd, Konica Minolta Business Solutions (Ideal) Ltd., Konica Minolta Printing Solutions (UK) Ltd., Konica Minolta Business Solutions (Wales) Ltd., Konica Minolta Sensing Europe B.V., Mobotix AG).

The legal basis for the processing of your personal data for the above-mentioned purposes is your consent pursuant to Art. 6 I 1 lit. a GDPR. Your consent can be withdrawn at any time without giving reasons. You can also send an e-mail to einwilligung(at)konicaminolta.de or to the contact details given in the imprint. The withdrawal of your consent does not affect the lawfulness of the processing carried out on the basis of the consent until the withdrawal. For more information about your right of withdrawal, please see point 2.8 "Right of withdrawal (Art. 7 GDPR)" in this privacy policy.

9.9 Processing activity – Business partner localization / Google Maps

On our website we embed the service Google Maps. This service is operated by the Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter: Google). Google Maps is a digital map service that enables us to include interactive maps on our website, to give you an overview of our locations and partners in your vicinity and to offer the possibility to plan your route.

By visiting a subpage where Google Maps is embedded, Google sets the cookie with the name "NID" in your browser, which results in a transfer of your personal data, such as your IP address to Google. For further information on the topic of cookies, please refer to "7. cookies". If there is a user account for you at Google, in which you are logged in at the time of visiting the corresponding subpage, the data transferred to Google will be directly allocated to your user account. If such an allocation is not desired, you must log out of your Google account before you visit the corresponding subpage. However, Google will process your personal data even if you are not logged in to a Google user account. Google will use the transferred data to create user profiles for the purpose of demand-oriented advertising and market research. You can object to this type of processing by Google at any time by asserting your right to object to Google in accordance with Art. 21 GDPR.

Due to the localization of Google, the transfer of your personal data to Google may involve a transfer to a third country, i.e. a transfer of personal data to a destination that is neither in the European Union nor the European Economic Area, such as the USA.

The legal basis for the processing of your personal data in the context of the use of Google Maps is your consent in accordance with Art. 6 I 1 lit. a GDPR. A potential transfer of your personal data to a third country in the context of the use of Google Maps (transfer to third countries) is solely carried out on the basis of an appropriate safeguard. The appropriate safeguard in this case is your consent in accordance with Art. 49 I lit. a GDPR. Information on your right of withdrawal can be found under point 2.8 "Right of withdrawal (Art. 7 GDPR)" in this privacy policy.

Your personal data will not be stored by us as the controller.
Further information on data protection at Google can be found at the following address: www.google.com/intl/de/policies/privacy/

9.10 Processing activity – Spam avoidance / Google reCAPTCHA

On our website we embed the service Google reCAPTCHA. This service is operated by the Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ( hereinafter: Google). Google reCAPTCHA is used to differentiate between a manual input of a natural person and an abusive and automated input by programs / bots in form fields to avoid spam or similar. As part of providing the functionality of the service and in particular during the verification process of Google reCAPTCHA, your IP address and any other hardware and software information required by Google, such as the version of the browser used, will be transmitted to Google.
Due to the localization of Google, the transfer of your personal data to Google may result in the transfer of your personal data to a third country, i.e., to a destination that is neither in the European Union nor in the European Economic Area, such as the United States.

The legal basis for the processing of your personal data in the context of the use of Google reCAPTCHA represents our legitimate interest in accordance with Art. 6 I 1 lit. f GDPR. Our legitimate interest is to ensure the security and therefore the functionality of our website, especially by preventing spam and abuse.
Your personal data will not be stored by us as the controller.

Further information regarding the processing by Google can be found in the privacy policy of Google: www.google.com/intl/de/policies/privacy/

9.11 Processing activity – Youtube

On our websites we have integrated YouTube videos. These are stored at www.youtube.com, but can be played directly from our website. YouTube is a platform of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter: Google). We have activated the enhanced privacy mode when embedding the videos on our website. This means that no information about you will be sent to YouTube if you do not play the videos. However, when you play videos, data is transferred to YouTube. First, YouTube is notified that you have visited the appropriate subpage of our website where the video is embedded. In addition, other data may be transferred to YouTube that we are not aware of. We also have no influence on the data transfer. If you are registered on YouTube, the transferred data is directly associated with your account. YouTube stores your data as usage profiles and uses them for the purpose of advertising, market research and/or the needs-based design of the website. Such an evaluation can be carried out in particular (even for users who are not logged in) for the purpose of providing need-based advertising. You have the right to object to the creation of usage profiles by YouTube in accordance with Art. 21 GDPR, which you must assert directly with YouTube.
Further information on the purpose and scope of data collection and processing can be found in the YouTube privacy policy.

Due to Google's localization, the transfer of your personal data to Google may involve a transfer to a third country, i.e. a transfer of personal data to a destination that is neither in the European Union nor in the European Economic Area, such as the USA.

The legal basis for the processing of your personal data in the context of the use of YouTube, which is initialized by playing a YouTube video, is your consent in accordance with Art. 6 I 1 lit. a GDPR. A potential transfer of your personal data to a third country in the context of the use of YouTube (third country transfer) is only carried out on the basis of an appropriate safeguard. This appropriate safeguard represents your consent in accordance with Art. 49 I lit. a GDPR. Information on your right of withdrawal can be found under point 2.8 "Right of withdrawal (Art. 7 GDPR)" in this privacy policy.

9.12 Processing activity – Typeform

On our website we integrate the service Typeform from TYPEFORM, S.L., Bac de Roda 163, 08018 Barcelona, Spain (hereinafter: Typeform). This service is used for forms and surveys on our website. After filling out and submitting a form or survey on our website, the IP address, the date and time, as well as the duration of the visit to our website and the information provided in the form are transmitted to Typeform and stored.

The legal basis for the processing of your personal data in the context of Typeform is Art. 6 I 1 lit. a GDPR. This is your consent. You can find information on your right of withdrawal under point 2.8 "Right of withdrawal (Art. 7 GDPR)" in this privacy policy.

You can obtain further information on the subject of data protection at Typeform under the following address: https://admin.typeform.com/to/dwk6gt/.

9.13 Processing activity – Cloudfront

This website uses the content delivery network (CDN) Cloudfront. This is a service of Amazon Web Services Inc., 410 Terry Avenue North, Seattle, WA 98109-5210 (hereinafter: Amazon Web Services). The CDN is integrated in the form of Java script code on our website and reloaded during a visit. Cloudfront allows us to provide increased loading performance, improved availability and data loss prevention by providing duplicate data (e.g. graphics or scripts) from this website on different servers around the world. However, when you visit this website, photo/video files may be automatically requested from Cloudfront, and this automated request for photo/video files may result in personal data, such as your IP address, being transmitted to servers of Amazon Web Services.

Due to the fact that Cloudfront is embedded on our website by means of Java Script, you can prevent its execution by disabling Java Script in your browser or by installing a so-called Java Script blocker (e.g. https://www.ghostery.com).

The legal basis for the processing of your personal data in the context of the use of Cloudfront is our legitimate interest, which in this case is to ensure the security and availability of this website, according to Art. 6 I 1 lit. f GDPR.

You can obtain further information on the subject of data protection at Amazon Web Services at the following address(es): https://aws.amazon.com/de/data-protection/ or https://aws.amazon.com/de/privacy

9.14 Processing activity – Qualtrics

To conduct surveys, we use the technologies of Qualtrics LLC,333 W. River Park Drive, Provo, UT 84604, USA (hereinafter: Qualtrics).
We use Qualtrics to offer you the opportunity to provide us feedback regarding our websites or services. The surveys on our websites are generally anonymous. If you wish to be contacted as part of your feedback, you can fill out a contact form at the end of the survey. Please note that the survey will then no longer be anonymous.
In individual cases, we would like to ask you about your satisfaction with our services. For this purpose, you will be contacted by email and asked for feedback. This will only happen if you have given us prior valid consent for marketing contact in accordance with Art. 6 I 1 lit. a GDPR. For sending this targeted feedback request, Qualtrics is connected to the marketing automation software Marketo. This connection between Marketo and Qualtrics enables us to send emails with individual survey links created in Qualtrics and automatically containing all Marketo tracking features. In addition, this makes it possible to analyze survey data not only in Qualtrics, but also in Marketo, and create customer-centric follow-ups based on that data. For more information on Marketo, please refer to SPRUNGMARKE

In order to provide the survey, it is necessary to activate cookies that are functional necessary. This only happens as soon as you start the survey and agree to the activation of the cookies. 
The cookies make it possible, for example, to leave the survey and then continue by clicking again on the survey link at the point where you previously ended the survey. Depending on your browser settings, you have a maximum of one week to return to the survey and complete your answers. If you do not make any further edits, your preliminary responses will be recorded as final after one week. In principle, you can prevent cookies from being stored by making the corresponding setting in your browser; however, we would like to point out that you may then not be able to participate in our digital surveys. You can find more information on the subject of cookies under "7. Cookies".
The collected data is stored and processed on our behalf by Qualtrics on servers in the EU. Due to the localization of Qualtrics LLC, access to this data from the USA may occur in individual cases.
For the processing of your personal data in the context of surveys, your consent pursuant to Art. 6 I 1 lit. a GDPR constitutes the legal basis. You can find information on your right of withdrawal under point 2.8 "Right of withdrawal (Art. 7 GDPR)" in this privacy policy.

9.15 Processing activity – Application to Konica Minolta

9.15.1 Review of your application

We process the personal data provided in your application for the purpose of reviewing your application and determining your suitability for the advertised position. We may use specialized service providers to review your application. Suitable applications for a position will be passed on by the human resources department to the respective specialist department or national company for further examination. In order to comprehensively assess your application, we always need your CV as well as certificates or corresponding evidence. When entering your data, the following fields are mandatory: Name, first name, e-mail address, address, salary expectations and period of notice. It is also necessary that you include at least one attachment. Further details, such as a video or a photo, are voluntary.

In addition, our applicant portal offers you the following options:

• Application: Here you will find an overview of your applications to Konica Minolta. By clicking on the individual application, you can view the details. If you are asked by us via e-mail to submit missing documents, you can upload them here. You also have the possibility to withdraw your application.
• Appointments: As soon as we have sent you an appointment proposal by e-mail, you can view it in the "Appointments" section and confirm or reject it. If you are unable to keep an appointment, you will receive a new suggestion from us.
• Profile: You can edit and update your data at any time. You can also delete your data at any time by logging in and clicking on "Delete user" or by contacting us. Any changes will be automatically forwarded to us.

We delete your application details five months after completion of the application process in accordance with § 61b paragraph 1 of the German Labour Courts Act (ArbGG) in conjunction with § 15 of the German General Act on Equal Treatment (AGG). The application process ends after a final status has been set for the individual application (Rejection | Acceptance).

This processing of personal data takes place on the basis of Art. 6 I 1 lit. b GDPR, § 26 of the new Federal Data Protection Act (BDSG-neu).

If you are under 18 years of age, we require the consent of your legal guardians in order to conclude a contract with you.

9.15.2 Shared applicant portal

For the above-mentioned period, we store your application data in our applicant portal. The companies Konica Minolta Business Solutions Deutschland GmbH and Konica Minolta Business Solutions Europe GmbH have access to this portal.

This enables us to compare your qualification profile with other positions and to draw your attention to other suitable positions. Access can be particularly useful if you have applied for a position that is available in the same or similar form in the above-mentioned companies or if you live in a border region. If you have applied for a transnational position, the respective countries may be involved in the selection process.

The processing of your application documents is basically based on § 26 BDSG and in case you have applied for a transnational position, the processing of your application documents is carried out by the respective countries on the legal basis of your consent according to Art. 6 I 1 lit. a GDPR. Information on your right of withdrawal can be found under point 2.8 "Right of withdrawal (Art. 7 GDPR)" in this privacy policy. Please note that if your consent is withdrawn, we can no longer consider your application for transnational positions.
Your rights are protected by internal contractual regulations that guarantee a high standard of data protection.

9.15.3 Applications from apprentices, students and school interns

We gladly accept applications from you as apprentices, students and school interns. We also treat these applications according to the above mentioned principles.

9.16 Processing activity - Konica Minolta Academy

On our Academy website, only log files are created during the mere visit. These log files contain personal data such as your IP address in particular. For more information on the processing in the course of log files, please refer to section 9.1 "Processing activity - visiting our website" in this privacy policy.

We also provide a contact form on our Academy website. The use of this form is purely optional and offers you the opportunity to contact us for further information about our training products and services.

There are four mandatory fields marked with an "*" when using the form, so that you must enter the relevant personal data in these fields in order to be able to send us a message via the contact form. These mandatory fields are:

1. Salutation
2. Last name
3. Business email
4. Postal code

Any processing of personal data that we have received from you via the contact form (e.g. your name or your email address) is carried out exclusively in order to process your request and, if necessary, to answer your questions.

The legal basis for the processing of your personal data in the course of this processing activity is Art. 6 I 1 lit. a GDPR. This is your consent, which you have given us before sending the form. The right of withdrawal also applies to this consent, for which you can find more information under 2.8 in this privacy policy.

9.17 Processing activity - Konica Minolta webinars / GoToWebinar

Konica Minolta uses the GoToWebinar service provided by the LogMeIn Ireland Limited, Bloodstone Building, Block C, 70 Sir John Rogerson's Quay, Dublin 2, Ireland (hereinafter: LogMeIn) to conduct webinars.
Our webinar offerings vary from various free webinars to several paid webinars. The registration for these webinars is always done via a form on one of our landing pages. In the course of registration and participation in a webinar, personal data will inevitably be processed using various cookies that are set on your end device. For further information on the topic of cookies, please refer to "7. cookies". In addition, we would like to point out that personal data are processed by you even through the purely informative visit to the website. You can find more information on this under 8.1 "Processing activity - visiting our website". In the following you will find an overview of the personal data that can be processed if you decide to attend one of our webinars using the GoToWebinar service. The mandatory data to be entered are marked with a "*". A special feature is the address information, since this information is only required for webinars with costs in order to be able to send an invoice.

• Email address*
• First name*
• Last name*
• Company*
• Job description
• Phone number
• Address information* (only for webinars with costs)

The legal basis for the processing of your personal data in the course of registration and participation in a free webinar is your consent in accordance with Art. 6 I 1 lit. a GDPR. Information on your right of withdrawal can be found under point 2.8 "Right of withdrawal (Art. 7 GDPR)" in this privacy policy.

For webinars with costs, Art. 6 I 1 lit. b GDPR, i.e. the existing contract between you and us, constitutes the legal basis for the processing of your personal data.

Independent of registration and participation in a webinar, your personal data may also be used to analyze and optimize our webinar offerings. This processing is based on our legitimate interest according to Art. 6 I 1 lit. f GDPR, whereby our legitimate interest is the continuous optimization of our offer.

Due to the fact that LogMeIn acts as a processor within the meaning of Art. 28 GDPR, a contract for processing has been concluded. In addition, prior to using LogMeIn's services, it was checked in accordance with Art. 28 I GDPR whether the service provider ensures the security of the processing by means of technical and organizational measures taken. The place of processing may extend to both the European Union and the United States, as LogMeIn has its headquarters in the United States. The potential transfer of your personal data to the USA, however, is solely carried out on the basis of an appropriate safeguard, in this case on your consent in accordance with Art. 49 I lit. a GDPR.  For more information on your right of withdrawal, please refer to section 2.8 "Right of withdrawal (Art. 7 GDPR)" in this privacy policy.

A deletion of the information about your registration and participation in a webinar as well as all related personal data will automatically take place after 365 days.

To the Global Personal Data Protection Policy​