C-Therm views the protection of your privacy as very important. We place great emphasis on the protection of your personal data and your right to know how that data is used with informed consent.
We collect, process and use personal data in compliance with a number of regulatory requirements; including the European Union General Data Protection Regulation (hereinafter referred to as “GDPR”), Canadian Canada’s anti-spam legislation (CASL) and the Personal Information Protection and Electronic Documents Act (PIPEDA), as well as other applicable country-specific data protection regulations.
Below we will inform you, as the data subject, as well as the general public about the nature, scope and purpose of the personal data we collect, use and process. In addition, your legal rights will be explained to you, as the data subject, by means of this privacy statement. If you are not in agreement with these regulations, we ask that you do not access or use this website in any other way. Should you have questions or other concerns, please do not hesitate to contact us. Contact information can be found under point II.
I. Responsible Entities
The responsible entity is:
C-Therm Technologies Ltd.
40 Crowther Lane Suite 200
Fredericton, NB
Canada E3C 0J1
Tel.: +1 506 462-7201
E-Mail: info@ctherm.com
Website: www.ctherm.com
II. Data Protection Officer
The data protection officer for the responsible entity is:
Adam Harris
C-Therm Technologies Ltd.
40 Crowther Lane Suite 200
Fredericton, NB
Canada E3C 0J1
E-Mail: aharris@ctherm.com
Data subjects may contact the data protection officer at all times with questions, for the assertion of rights and with other ideas regarding data protection.
III. Processing of Personal Data
1. General Information on Visiting our Website
When you visit our website for information purposes only, it is not required to provide personal data. In this case, we collect and use only the data that your internet browser automatically transmits to us, such as your browser type (including version) and the browser settings, the operating system used by the accessing system, date and time of your visit to our website, the name of your internet service provider, your IP address and the website from which you visited us. We draw no conclusions about the data subject when collecting and processing these data. The data are stored separately from all other personal data provided by a data subject. Collection and processing are carried out solely to enable the use of the websites you have accessed, for statistical purposes and to improve our website.
2. Cookies
To make our websites more attractive and to enable the use of certain functions, we use so-called cookies on various pages. These are text files which are stored on your device. Cookies help us determine the frequency of use and the number of users of our websites, and to make our offerings as convenient and efficient for you as possible.
We use “session cookies,” which are cached only during the time you are using one of our websites. We also use “permanent cookies” (including “flash cookies”), to capture information about computers that repeatedly access our websites. In this way, we can offer an optimal user interface and also “recognize” you when you return so that we can optimize the quality of infomration presented.
In your browser under Extras/Internet Options, you can disable cookies, limit them to certain websites or set your browser to notify you when a cookie is sent. You also have the option to remove existing cookies with your browser. More detailed information about these functions can be found in the documentation or in your browser’s help file. You can remove Flash cookies using the settings in your Adobe Flash Player. Further information on this can be found under http://www.macromedia.com/support/documentation/en/flashplayer/help/settings_manager06.html. Please note that, with cookies disabled, a limited display of our web pages and a limited user interface are to be expected.
3. Other Tracking
Google Analytics
Our websites also use Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics uses so-called “cookies,” which are text files placed on your computer to enable the website analyze how visitors use the site. The information generated by the cookie about your use of our websites will generally be transmitted to a Google server in the United States and stored there. However, because IP anonymization has been activated on our websites, within the Member States of the European Union or other states that are party to the Agreement on the European Economic Area, your IP address will first be truncated. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there. Google will use this information on our behalf for the purpose of evaluating your use of our websites, compiling reports on website activity and providing us with other services related to website and internet usage. The IP address transmitted from your browser as part of Google Analytics will not be merged with other Google data.
You can prevent the storage of cookies using the appropriate settings in your browser; however, please note that by doing so, you may lose some of the functionality of the websites. In addition, you can prevent the collection and processing by Google of the data generated by the cookie and related to your use of our websites (including your IP address) by downloading and installing the browser plug-in available under: tools.google.com/dlpage/gaoptout
Additional information can be found at tools.google.com/dlpage/gaoptoutor www.google.com/intl/en/analytics/privacyoverview.html(general information on Google Analytics and data protection). Please note that our websites use Google Analytics with the extension “gat._anonymizeIp();” to ensure anonymized collection of IP addresses (so-called IP masking).
4. Use of other Services Offered
Additional data are collected and processed when visiting these websites only if you provide these data yourself in connection with the use of services offered separately on our websites. Please note that, in this context, there is fundamentally no legal or contractual obligation to provide your personal data. However, if you choose not to provide personal data, the use of our services may be restricted or excluded.
Contact via our Website
Due to legal requirements, our website contains information that enables quick electronic contact with our company as well as direct communication with us, which also includes a general, so-called electronic mail (e-mail) address. If a data subject contacts the data controller by e-mail or through a contact form, the personal data provided by the data subject will be saved automatically. Such personal data transmitted voluntarily by a data subject to the controller will be stored for purposes of processing or for contacting the data subject.
IV. Processing Purposes and Legal Basis as well as Legitimate Interest
When personalized services are utilized, we process the personal data you share with us for the purpose of providing the service you have requested.
We use the personal data collected in connection with the communication initiated via our contact form solely for purposes of processing or for contacting the data subject. Legal basis for this is the legitimate interest (see Art. 6 Para. 1 lit. f GDPR).
V. Storage Duration and Routine Deletion
The legislation around data storage and retention has issued a number of requirements and specifications on the retention periods. Typically, these are also the basis for the storage period for personal data. Upon expiry of these periods, the corresponding data are routinely deleted or their processing is restricted. If data are not affected, they will be deleted as soon as the respective uses no longer apply.
We save the personal data that you provide us within the context of the contact, subject to further processing purposes (for example, inquiry via the contact form) only until such time that your inquiry has been processed or pursuant to the in-house deletion period.
VI. Rights of Data Subjects
According to the European Union General Data Protection Regulation, you, as the data subject, have various rights in connection with the collection and processing of your personal data, which we would like to explain below.
Fundamentally, these rights can be asserted by the data subject at any time. To assert these rights, and for questions in this regard, we ask that the data subject contact our person in charge (see point II). He will be happy to answer your questions and, in individual cases, take necessary measures to implement the rights asserted by the data subject without delay.
Right to Confirmation and Access
Every data subject has the right to request from the controller a confirmation of whether personal data about him have been processed. If that is the case, the data subject also has the right to receive, free of charge, information about his personal data that has been stored as well as a copy of that information.
Right to Rectification
Every data subject has the right to request immediate rectification of personal data about him that is incorrect. Further, he has the right to request the completion of incomplete personal data — including by means of a supplementary statement — taking into account the purposes of the processing.
Right to Deletion
Every data subject has the right to request that the controller immediately remove personal data about him, if any of the following applies and if processing is not required:
Insofar as we, the controller, have made the personal data public and are required to delete them, we will take the appropriate steps, under consideration of the available technology and the costs of implementation, to inform other controllers who process the published personal data that the data subject has requested deletion. In addition, we will inform these other controllers that the data subject has requested the deletion of all links to these personal data, along with any copies or replications, to the extent that processing is not required.
Right to Restriction/Blocking of Processing
Every data subject has the right to request that the controller restrict the processing if one of the following conditions is met:
Right to Data Portability
In principle, every data subject has the right to receive the personal data he has made available to a controller in a structured, common and machine-readable format. He also has the right to transmit these data to another controller without obstruction by the controller to whom the personal data were originally provided, insofar as the processing is based on consent or a contract and the processing takes place using an automated process.
In addition, the data subject has the right to have the personal data transmitted directly from one controller to another, provided that it is technically possible and does not compromise the rights and freedoms of others.
Right to Object
Every data subject has the right, for reasons that arise from his particular situation, to object to the processing of his personal data, insofar as the processing is carried out to safeguard the legitimate interests of the controller or third parties.
In the case of an objection, we will no longer process the personal data, unless we can demonstrate compelling legitimate grounds for processing that outweigh the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims.
If personal data are processed for the purpose of direct advertising, the data subject has the right to object at any time to the processing of his personal data for the purpose of such advertising. If the data subject objects to processing for direct advertising purposes, the personal data will no longer be processed for these purposes.
Right to Appeal
Independent of the above stated rights and independent of other remedies, every data subject has the right to appeal to a supervisory authority, if he believes that the processing of his personal data violates the data protection regulations.
VII. Data Security
Please note that data transmission via the internet is essentially unsecured. There is a possibility that transmitted data can be read and perhaps even falsified by unauthorized persons. For secure communication, we offer, by default, encrypted communication over the SSL protocol, which we use to transfer your personal data. In addition, we employ current technical and organizational measures to secure our website and other systems against loss, destruction, access, modification or dissemination of your data by unauthorized persons. These are always consistent with the current state of the art.
VIII. Recipient or Category of Recipients
Insofar as we transfer personal data to third parties, it is done in accordance with the data protection regulations and according to this privacy policy. Our service providers and agents can receive data for the stated processing purposes, if they, in particular, uphold their obligation to confidentiality. There are additionally companies providing IT services, logistics and printing services.