Sign up for our newsletter to stay up to date with
the latest HFLOR/HIMACS design trends and news.
1. Introduction
LX Hausys Europe’s Privacy Policy describes how LX Hausys Europe GmbH (“LX Hausys Europe”, or “we”) collects, uses, and shares your personal data. As the data controller, we determine the purposes and the means of processing your personal data in accordance with the applicable laws and regulations, specifically the EU General Data Protection Regulation 2016/679 (“GDPR”). We ensure to take all necessary measures to protect the privacy of your personal information as set forth under this Privacy Policy.
2. Identity and contact information
For the processing of personal data on https://www.lxhausys.com/ (“website”) as well as in the context of our business operations we determine the purposes and means alone.
LX Hausys Europe GmbH
Lyoner Str. 15
60528 Frankfurt
Germany
Managing Directors:
Kang, In Sik / Chang, Cheol Ho / Park, Min Soo / Chun, Min Chul / Park, Seong Jun
E-Mail: gdpr@lxhausys.com
Contact details of our data protection officer
Dr. Michael Foth
IBS data protection services and consulting GmbH
Zirkusweg 1, 20359 Hamburg, Germany
E-Mail: gdpr@lxhausys.com
3. Use and Storage of Personal Data
3.1 Provision of our website
If you visit our website, your web browser communicates with our web server to provide the requested pages and content. Therefore, the following information is collected and stored automatically in so-called server log files:
- type and version of web browser and operating system
- Referrer URL (visited page)
- Target URL (requested page)
- IP address and hostname of the accessing device
- timestamp of the request
This website is hosted externally by Amazon Web Services. The location of the Cloud-Server ist Ireland. The personal data collected on this website is stored on the hoster's servers. A data processing agreement has been concluded with the external service provider to ensure data protection-compliant processing.
Purpose and legal basis
The server log files are processed for the purpose of providing the website on the basis of our overriding legitimate interests pursuant to Art. 6 (1) (f) GDPR. The legitimate interests pursued by us, are to ensure a secure, technically error free and comprehensible operation of our website.
As the processing of the data in the server log files is essential to operate the website, we demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms in case you claim the right to object according to Art. 21 (1) GDPR.
Storage period
The server log files will be stored for 90 days and then deleted automatically.
3.2 Cookies and local storage
Cookies are small text files which are stored locally in your web browser and do not cause any damage to your device. Alternatively, your web browser provides a local storage to store small sizes of information. Cookies and local storage are storage technologies (“web technologies”), provided by your browser.
Web technologies could be used temporarily to store data for the duration of a session (“session cookies”, “session storage”) or permanently to archive data on your device until you or your browser actively delete them (“persistent cookies”, “local storage”).
In some cases, the web technologies are not set by our web server directly than by another server (“third party cookies”), to enable you or us to take advantage of certain services offered by the third party.
Purpose and legal basis
We use technically essential cookies or local storage for the purpose of providing certain website features on the basis of our overriding legitimate interests pursuant to Art. 6 (1) (f) GDPR. The legitimate interests pursued by us or a third party, are to provide essential website features which would not work in the absence of those web technologies.
As the processing of the data in the technically essential cookies or local storage is necessary to operate the website, we demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms in case you claim the right to object according to Art. 21 (1) GDPR.
Additionally, we use technical essential cookies for the storage of your consent to the use of technically non-essential cookies (cookie consent) for the purpose of demonstration of compliance with the GDPR pursuant to Art. 6 (1) (c) GDPR.
We use technically non-essential cookies or local storage for analytics, marketing or functional purposes on the basis of your prior consent pursuant to Art. 6 (1) (a) GDPR. Your consent will be obtained via the cookie banner if you accept all cookies or if you select your preferences. You have the right to withdraw your consent at any time with future effect, by changing your preferences in the cookie settings.
Independently from any setting on this website, you can control the use of web technologies with your browser settings at any time. Please be aware, that the use of our website could be restricted, in case we are not able to use technically essential cookies or local storage.
Storage period
More detailed information about the specific usage of cookies and third-party services, including the storage periods, we provide in the overview at the bottom of the page.
3.3 Cookie Banner
The processing is carried out for the purpose of obtaining, managing and proving your consent to the use of non-essential cookies and web services on the basis of an overriding legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. Our legitimate interests are the verifiability of compliance with legal requirements pursuant to Art. 5 para. 2 GDPR and the assertion, exercise and defence of legal claims.
When you visit our websites, you can give or subsequently change your consent to the web services via an additional interface (Consent Manager). We process pseudonymous information (e.g. IP address, time stamp) via the cookie banner and store your consent in your browser (cookie / local storage) to ensure that only those services are used to which you have consented.
The storage of information in your end device or access to information stored there is absolutely necessary in these cases in order to provide you with the expressly requested digital service.
We show you an overview of the cookies and website services managed at the bottom of this page ‘Cookie settings’.
3.4 Webservices
The processing is carried out for the purpose of statistically analysing the interaction of website visitors, for the integration of content from other websites and for advertising purposes and marketing activities on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR. In accordance with Art. 7 para. 3 GDPR, you have the right to revoke any consent you have given for the processing of your personal data at any time with effect for the future. The lawfulness of processing based on your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR remains unaffected until you withdraw your consent.
If you give us your consent to individual or all web services via the cookie banner, we collect pseudonymous information (e.g. IP address, timestamp) and store it in your browser (cookie / local storage). The third-party providers we use then receive access to this data in order to provide the desired web services.
In these cases, the storage of information in your end device or access to information stored there is based on your consent in accordance with Section 25 (1) TDDDG.
You are neither legally nor contractually obliged to provide this data. It is generally possible to visit our website without providing this information.
We use the following web services depending on the category (analytical, marketing, functional) in the cookie banner:
3.4.1 Google Fonts
We use Google Fonts on our website. Google Fonts are provided by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
The integration of these web fonts takes place through a server call, usually a Google server in the USA. This transmits to the server which of our Internet pages you have visited. Also, the IP address of the browser of the end device of the visitor of these Internet pages is stored by Google.
The transfer of personal data to the USA is based on the adequacy decision (Data Privacy Framework)
The legal basis for the use of Google Fonts is Art. 6 para. 1 lit. a GDPR.
3.4.2 Use of Google reCAPTCHA
Google reCAPTCHA is provided by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland and it is used to distinguish whether the input is made by a human or abused by automated, machine processing. The query includes sending the IP address and possibly other data required by Google for the reCAPTCHA service to Google. For this purpose, your input is transmitted to Google and used there further.
Google collects and processes the following data:
- IP-Address
- operating system
- Browser Information
- location and usage data
The legal basis for the use of google reCAPTCHA is Art. 6 para. 1 lit. a GDPR.
You must accept to activate Google reCAPTCHA in order to send us a message via the contact form. Alternatively, you can send us an email directly from your email account.
3.4.3 Google Maps
We integrated content from Google Maps ("Google"). Google Maps is provided by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. By visiting a sub-page of our website on which Google Maps is integrated, data about your behavior when using Google Maps is transmitted to Google and processed by Google.
The processing and transmission to Google does not take place automatically, but exclusively through active clicking by the user. Only through this conscious use, data about your behavior when using Google Maps is transmitted to Google and processed by Google. Google thereby receives, for example, the information that you have called up the corresponding sub-page of our website.
The data processed by Google may include, in particular, your IP address and location data, which, however, are not collected without consent (usually completed as part of the settings of your mobile devices).
Google processes this data as usage profiles and uses it for the purpose of market research and/or demand-oriented design of Google Maps. If you are a Google customer and logged in to a Google service, this data is directly linked to your Google account. If you do not wish this, you must log out of Google before visiting our website.
The processing of the data is based on Art. 6 para. 1 lit. a) GDPR.
The provision of personal data is neither required by law nor by contract, nor is it necessary for the conclusion of a contract. You are also not obliged to provide the personal data. However, failure to provide it would possibly result in you not being able to use our website or not being able to use it to its full extent.
3.4.4 Google Tag Manager
Google Tag Manager is a solution that allows marketers to manage web page tags through a single interface. The ‘Tag Manager’ tool itself, which implements the tags, is a cookie-less domain and does not collect any personal data. The tool triggers other tags, which in turn may collect data under certain circumstances. The “Google Tag Manager” does not access this data. If deactivation occurs at domain or cookie level, it remains in use for all tracking tags, insofar as they are implemented with “Google Tag Manager”. For more information, see: https://marketingplatform.google.com/about/analytics/tag-manager/use-policy/ .
3.4.5 Meta Pixel
This website uses the visitor action pixel from Meta to measure conversions. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.
This allows the behaviour of site visitors to be tracked after they have been redirected to the provider's website by clicking on a Facebook ad. This allows the effectiveness of Facebook ads to be evaluated for statistical and market research purposes and future advertising measures to be optimised.
The data collected is anonymous for us as the operator of this website; we cannot draw any conclusions about the identity of the users. However, the data is stored and processed by Meta so that a connection to the respective user profile is possible and Meta can use the data for its own advertising purposes in accordance with the Meta Data Usage Policy (https://de-de.facebook.com/about/privacy/). This enables Meta to place adverts on Facebook pages and outside of Facebook. This use of the data cannot be influenced by us as the site operator.
The use of this service is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR. You can revoke your consent at any time.
Insofar as personal data is collected on our website with the help of the tool described here and forwarded to Meta, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland are jointly responsible for this data processing in accordance with Art. 26 GDPR. The joint responsibility is limited exclusively to the collection of the data and its transfer to Meta. The processing carried out by Meta after forwarding is not part of the joint responsibility. The obligations incumbent on us jointly have been set out in an agreement on joint processing.
The text of the agreement can be found at: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for providing the data protection information when using the Meta tool and for the secure implementation of the tool on our website in accordance with data protection law.
Meta is certified according to the ‘EU-US Data Privacy Framework’ (DPF). The DPF is an agreement between the European Union and the USA that is intended to ensure compliance with European data protection standards for data processing in the USA. Every company certified in accordance with the DPF undertakes to comply with these data protection standards.
3.4.6 DoubleClick
This website contains components of DoubleClick, provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (Google). DoubleClick transfers your data to the DoubleClick server with each impression as well as with clicks or other activities. Each of these data transfers triggers a cookie request to your browser. If the browser accepts this request, DoubleClick places a cookie on your IT system. The cookie is used, among other things, to place and display user-relevant adverts and to create reports on advertising campaigns or to improve them. The cookie is also used to avoid multiple displays of the same adverts.
Each time you access one of the individual pages of this website, which is operated by us and on which a DoubleClick component has been integrated, the Internet browser on your IT system is prompted by the respective DoubleClick component to transmit data to Google for the purpose of online advertising and billing of commissions. As part of this technical process, Google obtains knowledge of data that Google also uses to create commission statements. A DoubleClick cookie does not contain any personal data. However, a DoubleClick cookie may contain additional pseudonymised identification numbers. Among other things, Google can recognise that you have clicked on certain links on our website.
These processing operations are only carried out if express consent is given in accordance with Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG. Consent can be revoked at any time.
The parent company Google LLC is certified as a US company under the EU-US Data Privacy Framework. This constitutes an adequacy decision pursuant to Art. 45 GDPR, meaning that personal data may be transferred without further guarantees or additional measures.
You can view the data protection provisions of DoubleClick by Google at: https://www.google.com/intl/de/policies/.
3.4.7 Google Ads
The website operator uses Google Ads. Google Ads is an online advertising programme of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Ads enables us to display adverts in the Google search engine or on third-party websites when the user enters certain search terms into Google (keyword targeting). Furthermore, targeted adverts can be displayed based on the user data available at Google (e.g. location data and interests) (target group targeting). As the website operator, we can evaluate this data quantitatively by analysing, for example, which search terms led to the display of our ads and how many ads led to corresponding clicks.
Google places a cookie on the website to measure the Ads campaign. This cookie reads and stores the IP address and the interactions of users who have come to the company's website via an advert.
The use of this service is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG. Consent can be revoked at any time. We have concluded an order processing contract with Google.
Your data will also be transferred to Google's parent company in the United States. The transfer of personal data to Google takes place on the basis of the adequacy decision (‘Data Privacy Framework’).
3.4.8 Google Analytics
This website uses Google Analytics , a service of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (‘Google’), a subsidiary of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA, with which the use of websites can be analysed.
In this context, pseudonymised user profiles are created and cookies are used. The information generated by the cookie about your use of this website may include, but is not limited to, a temporary collection of the IP address without permanent storage, location data, browser type/version, operating system used, referrer URL (previously visited page) and time of the server request.
The pseudonymised data is transmitted by Google to a server in the USA and stored there. The information is used to analyse the use of the website, to compile reports on website activity and to provide other services relating to website activity and internet usage for the purposes of market research and the needs-based design of this website.
These processing operations are only carried out if express consent is given in accordance with Art. 6 para. 1 lit. a GDPR.
The maximum lifespan of Google Analytics cookies is 2 years. Data whose retention period has been reached is automatically deleted once a month. The data collected as part of the use of Google Analytics 4 is stored for 2 months and then deleted.
The parent company Google LLC is certified as a US company under the EU-US Data Privacy Framework. This constitutes an adequacy decision pursuant to Art. 45 GDPR, meaning that personal data may be transferred without further guarantees or additional measures. We have concluded an order processing contract with Google for our use of Google Analytics 4, which obliges Google to protect the data of our website users and not to pass it on to third parties.
Further information on data protection when using GA4 can be found at: https://support.google.com/analytics/answer/12017362?hl=de .
3.4.9 Google Photos
We use the Google Photos service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, to store images that are embedded on our website. Embedding is the integration of specific third-party content (text, video or image data) that is provided by another website (Google Photos) and then appears on our own website (our website). An embed code is used for embedding. If we have integrated an embed code, the external content from Google Photos is displayed immediately by default as soon as one of our web pages is visited.
Your IP address is transmitted to Google Photos via the technical implementation of the embed code, which enables the images from Google Photos to be displayed. Google Photos also records our website, the type of browser used, the browser language, the time and length of access. In addition, Google Photos may collect information about which of our subpages you have visited and which links you have clicked on, as well as other interactions you have carried out when visiting our site. This data may be stored and analysed by Google Photos.
These processing operations are only carried out with express consent in accordance with Art. 6 para. 1 lit. a GDPR.
Google is certified under the EU-US Data Privacy Framework. This constitutes an adequacy decision pursuant to Art. 45 GDPR, meaning that personal data may also be transferred without further guarantees or additional measures.
You can view Google's privacy policy at: https://www.google.com/policies/privacy/.
3.4.10 YouTube Images
Videos from YouTube and YouTube plug-ins are integrated on our website. The provider of the ‘YouTube Images’ service is YouTube LLC, which is a subsidiary of Google Ireland Limited (‘Google’). When you access a website in which a YouTube video is embedded, data is transmitted to a Google server and stored there.
This does not happen automatically, but only when the user actively clicks on the video. Only through this conscious application is data about the behaviour when using YouTube transmitted to Google and processed by Google.
If you have a user account with Google and are registered, Google can assign the visit to your user account. Google stores this data as user profiles and uses it for the purposes of advertising, market research and/or customising its websites. Such an analysis is carried out in particular (even for users who are not logged in) to display customised advertising and to inform other users of the social network about their activities on our website. You have the right to object to the creation of these user profiles. Please contact Google directly for this purpose.
By integrating YouTube, we are pursuing the purpose of being able to present various videos to you on our website. You should be able to watch the videos directly on our website. The data is processed on the basis of Art. 6 para. 1 lit. a GDPR. This serves our company as the legal basis for processing operations for which we obtain consent for a specific processing purpose.
The provision of personal data is not required by law or contract and is not necessary for the conclusion of a contract. You are also not obliged to provide the personal data. Failure to provide this data may mean that you cannot use our website or cannot use it to its full extent.
If you wish to prevent the transfer of data, you cannot use this YouTube function. Irrespective of this, we recommend that you regularly log out of your user account after using a social network, especially before activating integrated content, as this will prevent you from being assigned to your profile with the respective provider.
Google is certified under the EU-US Data Privacy Framework. This constitutes an adequacy decision pursuant to Art. 45 GDPR, meaning that personal data may be transferred without further guarantees or additional measures.
3.5 Enquiries by e-mail, contact form and telephone
You may contact us via email, phone or by using contact form. In any case, we only collect personal data directly from you which is necessary to handle your request. If you use a contact form provided by us, we collect the data you enter, but at least the information marked as mandatory. The transmission to the web server is encrypted via https (SSL) and then sent to us by e-mail. E-Mails and phone calls are transmitted over the Internet. Please be aware, that those connections are not encrypted by default and may cause risks for your rights and freedoms.
Purpose and legal basis
We process personal data related to the use of the contact form, electronic mails or phone calls for the purpose of handling your request. The legal basis depends on the context of your relationship.
Generally, if you are a customer or an interested person, we process your personal data for the performance of a contract to which you are party or in order to take steps prior to entering into a contract according to Art. 6 (1) (b) GDPR.
Otherwise, we process your personal data on the basis of our overriding legitimate interests pursuant to Art. 6 (1) (f) GDPR. The legitimate interests pursued by us, are to be able to handle your request.
Storage period
We store any personal data related to a request via email or telephone as long as it is necessary to handle the request.
3.6 Newsletter
If you subscribe to our newsletter, we collect your email address and store it together with the timestamp and the IP address of your subscription as well as the confirmation with a separate mail (double opt-in). With every newsletter you will receive we process your email address to send you an email.
Purpose and legal basis
We process personal data related to the newsletter service to send you emails and provide you interesting information about our products and services, based on your prior consent according to Art. 6 (1) (a) GDPR. Your consent will be obtained by subscribing to the newsletter and confirming your subscription (double opt-in). You have the right to withdraw your consent at any time with future effect, by using the link “Unsubscribe” in the newsletter email.
Additionally, we process the information related to your subscription and unsubscription (withdrawal of your consent) for the purpose of demonstrating compliance with the GDPR, based on our legal obligation according to Art. 6 (1) (c) GDPR.
Storage period
Your email address will be stored as long as your consent to receive the newsletter is active. After your withdrawal we store your personal data related to the newsletter subscription for an additional period of two years to demonstrate your consent.
Mailchimp
We use the services of Mailchimp to send newsletters. The provider is Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA. Mailchimp is a service that can be used to organise and analyse the sending of newsletters, among other things. If you enter data for the purpose of subscribing to the newsletter (e.g. email address), this data is stored on Mailchimp's servers in the USA.
With the help of Mailchimp, we can analyse our newsletter campaigns. When you open an email sent with Mailchimp, a file contained in the email (known as a web beacon) connects to Mailchimp's servers in the USA. This makes it possible to determine whether a newsletter message has been opened and which links, if any, have been clicked on. Technical information is also collected (e.g. time of access, IP address, browser type and operating system). This information cannot be assigned to the respective newsletter recipient. It is used exclusively for the statistical analysis of newsletter campaigns. The results of these analyses can be used to better adapt future newsletters to the interests of the recipients.
If you do not wish to be analysed by Mailchimp, you must unsubscribe from the newsletter. For this purpose, we provide a corresponding link in every newsletter message. The data processing takes place on the basis of your consent in accordance with Art. 6 para. 1 lit. a GDPR. You can revoke this consent at any time by unsubscribing from the newsletter. The legality of the data processing operations that have already taken place remains unaffected by the cancellation.
The data you provide us with for the purpose of subscribing to the newsletter will be stored by us or the newsletter service provider until you unsubscribe from the newsletter and deleted from the newsletter distribution list after you unsubscribe from the newsletter. Data stored by us for other purposes remains unaffected by this.
Mailchimp may also process collected data in the USA. The transfer is based on the adequacy decision (Data Privacy Framework certification).
You can find more details in Mailchimp's privacy policy at: https://mailchimp.com/legal/terms/ .
We have concluded a data processing agreement (DPA) for the use of the above-mentioned service.
3.7 Social media
The processing is carried out for the purpose of provision of our fan pages in social networks (company pages) as well as for marketing purposes on the basis of an overriding legitimate interest pursuant to Art. 6 (1) lit. f GDPR. Our legitimate interests are the support of the social media platforms as well as the presentation of our business activities and the implementation of marketing activities.
We have set a link to each of the social media pages. No further data exchange takes place with these pages on our site.
If you visit our company page on one of the following social media platforms, we jointly determine the purposes and means with the platform operators. In terms of data protection, we are jointly responsible pursuant to Art. 26 GDPR.
3.7.1 Facebook
The Facebook Fanpage is provided by Meta Platforms Ireland Ltd (Meta), 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Meta”).
If you visit our Facebook Fanpage, we process the following data:
- your username,
- comments posted on our Fanpage,
- messages you send us via Facebook,
- Page insights (site visits, range of contribution, country / city the visitors come from, gender related statistics).
More information about Page Insights can be found here (https://www.facebook.com/legal/terms/information_about_page_insights_data)
Purpose and legal basis
Together with Meta, we determine the purposes and means of processing your personal data on our Facebook Fanpage including the Page Insights, so we are joint controllers as referred to in the page controller addendum (“joint controller agreement”: https://www.facebook.com/legal/terms/page_controller_addendum ).
We process your personal data on our Facebook Fanpage for the purpose of providing this page to you, run our business and to perform public relations and direct marketing activities on the basis of our overriding legitimate interests pursuant to Art. 6 (1) (f) GDPR. The legitimate interests pursued by us, are to support the contract between you and Meta as well as to present our business and perform marketing activities.
As the processing of the Facebook Fanpage data is dependent from your activity and membership on Facebook, we demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms in case you claim the right to object according to Art. 21 (1) GDPR.
Storage period
The storage of your personal data collected and stored within our Facebook Fanpage will be performed solely by Meta. Therefore, we do not determine the purposes of storage and any storage periods. More information about Meta as the controller of personal data can be found here (https://www.facebook.com/policy)
3.7.2 Instagram
The LX Hausys Europe Instagram page is provided by Meta, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Meta”).
If you visit our Instagram page, we process the following data:
- your username,
- comments posted on our page,
- messages you send us via Instagram,
- Page insights (site visits, range of contribution, country / city the visitors come from, gender related statistics).
More information about Page Insights can be found here (https://www.facebook.com/legal/terms/information_about_page_insights_data).
Purpose and legal basis
Together with Meta, we determine the purposes and means of processing your personal data on our Instagram page including the Page Insights, so we are joint controllers as referred to in the page controller addendum (“joint controller agreement”: https://www.facebook.com/legal/terms/page_controller_addendum).
We process your personal data on our Instagram page for the purpose of providing this page to you, run our business and to perform public relations and direct marketing activities on the basis of our overriding legitimate interests pursuant to Art. 6 (1) (f) GDPR. The legitimate interests pursued by us, are to support the contract between you and Meta as well as to present our business and perform marketing activities.
As the processing of the Instagram page data is dependent from your activity and membership on Instagram, we demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms in case you claim the right to object according to Art. 21 (1) GDPR.
Storage period
The storage of your personal data collected and stored within our Instagram page will be performed solely by Meta. Therefore, we do not determine the purposes of storage and any storage periods. More information about Meta as the controller of personal data can be found here (https://www.facebook.com/policy).
3.7.3 YouTube
The LX Hausys Europe YouTube channel is provided by Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. Google is operating YouTube as a separate controller, responsible for the processing of your personal data as a registered user. More information about Google’s privacy policy can be found here (https://policies.google.com/privacy?hl=en).
If you visit or subscribe to our YouTube Channel or watch and react to our YouTube Videos, Google is collecting and providing the following information to us:
- your username,
- comments posted on our video’s page,
- if you subscribe to our channel,
- if you liked or disliked our video,
Additionally, Google is collecting your reaction and behavior related to our YouTube channel and our videos and providing statistical information in an anonymized way to us via the YouTube Analytics. Google processes the personal data as a processor on our behalf pursuant to Art. 28 GDPR.
Storage period
The storage of your personal data collected and stored within our YouTube Channel or related to our video will be performed by Google on our behalf. Your personal data will be stored as long as our videos will be published on YouTube or you delete them on your own. Additionally, the storage of your personal data related to your membership as a YouTube user will be performed solely by Google in their responsibility.
3.7.4 LinkedIn
If you, as a registered user, access our profile on the social network "LinkedIn", follow us or interact with us (e.g. message, comment), LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland ("LinkedIn") processes personal data to provide us with aggregated information ("page insights"). In doing so, no information is provided that enables us to track the behavior of an individual user.
We and LinkedIn are jointly responsible for the processing of personal data for the purpose of providing page insights pursuant to Art. 26 GDPR. LinkedIn ensures the legally compliant collection of user data as well as appropriate security for the storage of data in the social network and compliance with data protection requirements. You can assert your rights directly against LinkedIn. Independently of this, however, you are also entitled to your rights towards us. You can obtain further information on the processing of your personal data as a joint controller directly from LinkedIn at the following external link: https://legal.linkedin.com/pages-joint-controller-addendum .
If, as a registered user, you also interact with our profile or posts shared by us (e.g. reading, following, commenting) or we call up your profile, LinkedIn processes your information as an independent controller (operation of the social network) and shares with us all information that is required for the operation of the social network in accordance with LinkedIn's terms of use.
In this case, we collect user data (e.g. name, location), qualification data (e.g. occupation, position, education) and communication data (e.g. message content) directly from you or through the use of the LinkedIn social network.
For more information on the processing of personal data by LinkedIn, please visit the following external link: https://de.linkedin.com/legal/privacy-policy .
You are under no legal or contractual obligation to provide us with this information. The use of the social network "LinkedIn" is independent of the provision of your data, however, contacting us or visiting our profile is not possible without LinkedIn providing us with this data.
3.7.5 X (formerly Twitter)
We use the short message service Twitter. The provider is X Internet Unlimited Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland.
If you are logged into your account and visit our profile, X (Twitter) can assign this visit to your user account. However, your personal data may also be collected under certain circumstances if you are not logged in or do not have an account with the respective social media portal. In this case, this data collection takes place, for example, via cookies that are stored on your end device or by recording your IP address.
Our social media presence on X (Twitter) is intended to ensure the most comprehensive presence possible on the Internet. This is a legitimate interest within the meaning of Art. 6 (1) lit. f GDPR.
You can independently adjust your X (Twitter) privacy settings in your user account. To do so, click on the following link and log in: https://x.com/settings/account/personalization.
3.7.6 Pinterest
The LX Hausys Europe Pinterest page is provided by Pinterest Europe Ltd. Palmerston House, 2nd Floor, Fenian Street, Dublin 2, Ireland.
If you visit our Pinterest page, we process the following data:
- your username,
- comments posted on our page,
- messages you send us via Pinterest,
- Page insights (site visits, range of contribution, country / city the visitors come from, gender related statistics).
Our social media presence on Pinterest is intended to ensure the most comprehensive presence possible on the Internet. This is a legitimate interest within the meaning of Art. 6 (1) lit. f GDPR.
Storage period
The storage of your personal data collected and stored within our Pinterest page will be performed solely by Pinterest. Therefore, we do not determine the purposes of storage and any storage periods. More information about Pinterest as the controller of personal data can be found here: https://policy.pinterest.com/de/privacy-policy .
3.8 Use of our services and business communication
The processing for the purpose of providing our services and business communication is carried out for the fulfilment of the contract pursuant to Art. 6 para. 1 lit. b GDPR, for the fulfilment of legal obligations pursuant to Art. 6 para. 1 lit. c GDPR and for the protection of overriding legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR. Our legitimate interests are the fulfilment of the contract, insofar as we have concluded the contract with a third party for whom you are working, as well as the assertion, exercise and defence of legal claims. In addition, in certain cases, about which we will inform you separately, processing may also be based on your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR.
If you conclude a contract directly with us as a natural person, we collect all personal data required for the establishment, performance or termination of the contract. This also applies if you negotiate or conclude a contractual agreement on behalf of another natural or legal person.
If we do not collect the data directly from you, we receive information about your person (name, position), contact data (e.g. e-mail, telephone) and contract data (e.g. performance obligations) from third parties whom you have named as the contact person or person responsible for establishing, implementing or terminating the contractual relationship.
Any marketing and sales lead contacts are manually or automatically imported to Salesforce, our CRM system. We signed a data processing with Salesforce.com Germany GmbH, the provider of Salesforce.
We process the personal data to the extent necessary for the fulfilment of the contract, the administration of the customer relationship, the processing of enquiries and the verification and invoicing of services rendered. In addition, we process this data to enable appropriate risk management and controlling as a legal entity and to comply with other legal regulations (e.g. commercial and tax law).
As a company, we are obliged to comply with various legal provisions, in particular commercial and tax law. In addition, our activities may also require measures to combat money laundering, to ensure IT security for the critical infrastructure or to participate in audits as a significant outsourcing within the meaning of financial supervision.
You are not legally or contractually obliged to provide the personal data. However, without the information requested by us, the use of our services is not possible or only possible to a limited extent.
3.9 Processing of your data when contacting us at trade fairs and events
If you provide us with your contact details in person at trade fairs and similar events (e.g. by giving us your business card), we will collect them in order to stay in contact with you. The legal basis for data processing in the context of enquiries about cooperation with us is Art. 6 para. 1 lit. b. GDPR, the implementation of pre-contractual measures based on your enquiry. In other cases, we process your data because you have expressly consented to this (Art. 6 para. 1 lit. a GDPR).
If your data can be assigned to a contractual relationship following the enquiry, we will delete it after the contract period, otherwise after your enquiry has been dealt with, or restrict processing if there are statutory retention obligations. If our data processing is based on your consent, the regulations apply according to which you can revoke your consent at any time and your data will then be deleted in accordance with the prescribed deletion periods.
4. Sharing Personal Data
We do not sell or disclose your personal data to third parties for their marketing or advertising purposes without your consent. We only disclose your personal data when it is necessary for the purposes mentioned in this Privacy Policy or when we have obtained your consent.
Processors according to Art. 28 GDPR, who are processing personal data on our behalf, will receive your personal data, as far as this is necessary for the purpose of processing.
When necessary, we share your personal data with the following data processors and recipients for the purposes described in this Policy:
- Our affiliates and subsidiaries; LX Hausys Ltd.
- Vendors who provide services on our behalf;
- Advertising networks; and - AGENCE FÉLIX (www.felix-creation.fr)
- Operating systems and platforms - Wide agency (https://en.wideagency.com/
- Any other third party especially courts, public authorities, payment providers, banks, tax or legal consultants, auditors, insurance companies and data protection officers
5. Rights of data subjects
As a data subject you have the following rights:
Right to access:
You have the right to obtain a confirmation as to whether or not we process your personal data. If so, you have the right to receive information about your personal data processed by us and to receive a copy of your personal information in a commonly used electronic form.
Right to rectification:
You can demand that we correct incorrect data or complete incomplete.
Right to erasure of your personal data:
You have the right to request from us the erasure of your personal data without undue delay. We are obliged to erase your personal data without undue delay, where one of the grounds according to Art. 17 (1) GDPR applies.
Right to restriction of processing:
You have the right to request that we restrict the processing of your personal data under certain circumstances:
- When the accuracy of your information is being contested, processing may be restricted while its accuracy is being verified;
- When the processing is unlawful, but you chose not to erase the information;
- Where we no longer use your information, but it is still required by you for establishment, exercise or defense of legal claims. The right to withdraw your consent previously granted to us.
Right to data portability:
If you have provided us with data on the basis of a contract or consent, you may, if the legal requirements are met, demand that the data you have provided us with are handed over in a structured, common and machine-readable format or that we transfer it to another controller.
Right to object to the processing:
You have the right to object to processing of your personal data at any time, on grounds relating to your particular situation, where the processing is legally based on our overriding legitimate interests according to Art. 6 (1) (f) GDPR, or when your personal is processed for direct marketing purposes according to Art. 21 (2) GDPR.
Right to lodge a complaint with a supervisory authority:
You can also lodge a complaint with the competent supervisory authority if you believe that the processing of your data violates applicable law. You can contact the supervisory authority responsible for your place of residence or your country, or the supervisory authority responsible for us.
Please be advised that your rights will apply to any personal information relating to you.
If you wish to exercise your data protection rights, please contact us gdprweb@lxhausys.com or use the data subject request forms: https://www.lxhausys.com/eu-en/rights-data-subject-request-forms .
6. Protection of Personal Data
LX Hausys Europe has implemented a comprehensive information security program that includes technical and organizational measures designed to secure and protect your data. We apply especially the following security measures to protect the users' personal information from any unauthorized access, release, use or modification:
- Encryption of personal information
- Transfer of users' personal information by using encrypted communication zone
- Storage of significant information such as passwords after encrypting it
- Countermeasures against hacking
- Installation of a system in the zone the external access to which is controlled to prevent leakage or damage to users' personal information by hacking or computer virus
- Establishment and execution of the internal security management plan
- Installation and operation of an access control system
- measures to prevent forging or alteration of access record
Nevertheless, due to the design of the Internet, ever-changing technology, and other factors outside our control, we cannot guarantee that communications between you and our servers will be free from unauthorized access by third parties or that we will not be subject to security breaches.
7. Data Transfer and processing in third countries
For the provision of website services as well as for the performance of the contract you are party to, we transfer your personal data to third countries outside the European Union (“EU”) or European Economic Area (“EEA”). In particular, your personal data will be processed by our personnel and affiliates in South Korea and the UK.
Data transfer to the South Korea and the UK is based on an adequacy decision by the European Commission pursuant to Art. 45 GDPR.
The transfer of data to the USA is either based on the adequacy decision or is subject to standard data protection clauses adopted by the European Commission pursuant to Art. 46 (2) (c) GDPR or one of the following derogations pursuant to Art. 49 (1) GDPR applies:
- you have given your explicit consent to the processing of your personal data with cookies and the webservice provider or the third-party servers are located outside the EU / EEA. Therefore, you agree to the transfer of your personal data to the USA, although there is no adequacy decision or appropriate safeguards and this could cause risks for your rights and freedoms due to the absence of an adequate level of data protection;
- we transfer your personal data to a third country as far as this is necessary for the performance of a contract between you and us;
- we transfer your personal data to a third country as far as this is necessary for the implementation of pre-contractual measures taken at your request.
8. Other relevant information
8.1 Automated decision making
You are not subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you, according to Art. 22 GDPR.
8.2 Required or obligated provision of personal data
Generally, the provision of your personal data is neither a statutory or contractual requirement with the exception of data that has been indicated as necessary for the performance of the contract.
8.3 Changes to our Privacy Notice
We review the Privacy Policy regularly and publish any updates on this website. This Privacy Policy was last updated on July 2025.
Overview of the cookies and other technologies on our website:
Strictly necessary cookies
cookie-agreed-version
The cookie is set by the GDPR Cookie Consent plugin and is used to store the version of policy that was accepted.
cookie-agreed
The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
cookie-agreed-categories
The cookie is set by the GDPR Cookie Consent plugin and is used to store the categories of cookies that the user accepted.
SCOUTER
This cookie is used for website security monitoring purposes.
JSESSIONID
This cookie is set when using sessions on the server to create them.
Analytics cookies
analytics_storage
Used to know if the cookie category was accepted.
_ga
This cookie is installed by Google Analytics. The cookie is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assigns a randomly generated number to identify unique visitors.
_ga_0G4W3S4EBR
This cookie is installed by Google Analytics. The cookie is used to persist session state.
SOCS
This cookie is installed by Google Analytics. Is used to track the cookie consent.
_gcl_au
This cookie is created by google tag manager. Is a first party cookie for conversion linker functionality.
NID
This cookie is created by google tag manager. The cookie is used to remember your preferences and other information.
_GRECAPTCHA
This cookie is set by Google recaptcha. It's used for risk analysis in spam protection and may store browsing device information.
Marketing cookies
ad_storage
Used to know if the cookie category was accepted.
_fbp
This cookie is set by Facebook for the purpose of advertisement and analytics.
IDE
This cookie is set by Google to show Google ads on non-Google sites
VISITOR_INFO1_LIVE
This cookie is set by YouTube to provide ad delivery or retargeting, store and track a visitor's identity, Store and track interaction.
YSC
This cookie is used by YouTube to remember user input and associate a user’s actions. This cookie lasts for as long as the user keeps their browser open.
Performance cookies
ADRUM
ADRUM_BT
ADRUM_CLIENTINFO
ADRUM_XD_AGENT_INFO
These cookies are set by AppDynamics. This cookie tracks errors that users may receive and provides us with the insight needed to improve customer experience.
AWSALBCORS
AWSALB
These cookies are set by the load balancer on AWS. The purpose of this cookie is to allocate server traffic to make the user experience smooth and fast.
cnx_gaCID
This cookie is set by Cloudfront. This cookie is used to track the visit.