Data Protection Policy

Swisslog Healthcare, Member of the KUKA Group

The protection of your personal data is very important to us.

Below, we provide details about the collection of personal data when using the kuka.com website. Personal data are all data that may relate to you personally, e.g. name, address, e-mail addresses, user behavior.

The “controller” as defined in Art. 4(7) of the EU General Data Protection Regulation (GDPR) is:

KUKA Aktiengesellschaft
Zugspitzstrasse 140
86165 Augsburg, Germany

Executive Board
Peter Mohnen
Chief Executive Officer

Alexander Liong Hauw Tan
Chief Financial Officer

Phone: +49 821 797-50
Fax: +49 821 797-5252
Email: kontakt@kuka.com

Further information can be found in the imprint of Swisslog Healthcare.

You can reach our Data Protection Officer at data-privacy@kuka.com.

Safety

The Swisslog Healthcare website is protected by technical and organizational security measures in order to prevent the loss, manipulation or destruction of your personal data and to avoid access to these data by unauthorized persons. Despite using industry standard Secure Sockets Layer (SSL) technology for encrypting the data transferred between you and our website, complete protection against all eventualities is not possible.

Disclosure of personal data

No personal data will be disclosed to third parties without your express permission. Data shall only be passed on to public bodies, law enforcement authorities and courts where there is a legal requirement to do so. Our employees are also obliged to secrecy and to treat the personal data you provide confidentially.

The third-party designation shall not apply to companies in the KUKA Group affiliated with KUKA AG, nor shall it apply to service providers contractually bound to us for contracted data processing.

Collection, processing and use of personal data

If you are using our website for purely informative purposes, i.e. if you are not registered or sending information to us in any other way, we collect only those personal data that your browser sends to our server. We require these data for technical purposes in order to display our website for you and to ensure the stability and security thereof. These data also enable us to purposefully improve our range of services. The legal basis for this is contained in Art. 6(1)(1)(f) GDPR (legitimate interest).

This includes:

Date and URL relating to the visitor’s use of the website
URL immediately prior to the visitor’s access to the website
IP address and domain from which the site was accessed
The browser used
The operating system used
Technical information about the visit (http method, http version, http status code, length of the data transferred)

Use of cookies

KUKA AG uses cookies in order to make its website more attractive and user-friendly. Cookies are small text files which are stored on your device but do not contain a virus of any kind or cause any damage. Our website uses “session cookies”. These cookies track your movements between the various pages of our website during a session so that you are not asked for the same information that you have already provided on our website. Closing and reopening the browser starts a new user session with a new cookie ID.

Global cookies are also used. These measure the traffic of the website and identify the visitors and the session. These cookies are not deleted at the end of the session, but are replaced after a year.

You can determine how the “Global cookies” are set by selecting from among three levels under “Cookie settings”(can be called up on every page via the footer at the bottom or via the cookie banner during the initial visit to the site). There, you can also obtain a complete overview of all the cookies embedded into our site.

These levels are:

Required cookies: Required cookies enable basic functions such as input into forms or spam detection.

Functional cookies: Functional cookies enable the embedding of external content in our webpages. This includes the embedding of YouTube videos, Facebook posts or the current share price.

Marketing cookies: Here, cookies and tracking pixels (typically a graphic with a size of 1x1 pixel which is loaded by a server as soon as a user calls up a website) are used which enable customization, advertising and retargeting via via communication with sites beyond our website (e.g. via platforms such as LinkedIn, Twitter, Facebook, DoubleClick or Bing). In addition, these cookies provide click paths to the sales department. Further information on this can be found under “Embedded content” and “Internet advertisement”.

The legal basis for the use of “session cookies” and required cookies is our legitimate interest as stipulated in Art. 6(1)(1)(f) GDPR. The legal basis for the use of functional and marketing cookies is your consent as stipulated in Art. 6(1)(1)(a) GDPR.

You can prevent all saving of cookies using the appropriate browser settings. However, if you want to be able to use all the functions of our website, we do not recommend this.

Swisslog Healthcare on social media

In addition to our website, Swisslog Healthcare has a presence on various social media channels. We are currently represented on YouTube, LinkedIn, Facebook, X, XING and Instagram.

Please refer to the data privacy provisions of the relevant operator for the purpose and extent of the related data collection as well as the provisions for use of your data by the relevant platform.

YouTube (Google): https://policies.google.com/privacy?hl=de&gl=de

LinkedIn: https://www.linkedin.com/legal/privacy-policy?trk=organization-guest_footer-privacy-policy

Facebook: https://www.facebook.com/privacy/explanation

X: https://twitter.com/de/privacy

XING: https://www.xing.com/privacy

Instagram: https://help.instagram.com/155833707900388

Site functions

YouTube

This website uses plug-ins to display and play videos from the following provider: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

Data can also be transmitted to: Google LLC., USA

If you call up a page of our website that contains such a plug-in, your browser establishes a direct connection to the servers of the provider in order to load the plug-in. Certain information, including your IP address, is transmitted to the provider.

If the embedded videos are played via the plug-in, the provider also uses cookies to collect information about user behavior, compile playback statistics and prevent abusive behavior.

If you are logged into a user account from the provider during your page visit, your data will be directly assigned to your account when you click on a video. If you do not want data to be allocated to your account, you must log out before pushing the play button.

All of the aforementioned processing, in particular the setting of cookies for reading information on the end device used, will only be carried out if you have given us your express consent to do so in accordance with Art. 6(1)(a) GDPR. You can withdraw your consent at any time with effect for the future by disabling this service via the “cookie consent tool” provided on the website.

In the case of data transmission to the USA, the provider has signed up to the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.

Cloudflare Turnstile

On this website, we use the CAPTCHA service of the following provider: Cloudflare, Inc., 101 Townsend St. San Francisco, CA 94107, USA

This service checks whether an entry is being made by a natural person or improperly by machine and automated processing, and blocks spam, DDoS attacks and similar automated malicious access. To ensure that an action is being carried out by a human and not by an automated bot, Cloudflare Turnstile collects the IP address of the end device used, identification data of the browser and operating system type used as well as the date and duration of the visit and transmits these to the provider’s servers for evaluation.

The legal basis is our legitimate interest in determining individual responsibility on the Internet and the prevention of misuse and spam in accordance with Art. 6(1)(f) GDPR.

We have entered into an order processing agreement with the provider, which ensures the protection of the data of our website visitors and prohibits unauthorized disclosure to third parties.

Hosting & content delivery network

Cloudflare

We use a content delivery network from the following provider: Cloudflare Inc., 101 Townsend St. San Francisco, CA 94107, USA

This service enables us to deliver large media files such as graphics, page content or scripts more quickly via a network of regionally distributed servers. The processing is carried out to safeguard our legitimate interest in improving the stability and functionality of our website in accordance with Art. 6(1)(f) GDPR. We have entered into an order processing agreement with the provider, which ensures the protection of the data of our website visitors and prohibits unauthorized disclosure to third parties.

Initiating contact

e-mail and forms

When you contact us (e.g. via contact form or email), personal data are processed exclusively for the purpose of processing and responding to your inquiry and only to the extent necessary for this purpose.

The legal basis for processing these data is our legitimate interest in responding to your inquiry in accordance with Art. 6(1)(f) GDPR. If your reason for contacting us relates to a contract, the additional legal basis for data processing is Art. 6(1)(b) GDPR. Your data will be deleted when it can be inferred from the circumstances that the matter in question has been conclusively clarified and there are no statutory retention obligations to the contrary.

Microsoft Bookings

We use the services of the following provider to provide an online appointment booking function: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA

For the purpose of making appointments, the first and last name and email address (and, if applicable, the telephone number if a telephone appointment is requested) are collected in accordance with Art. 6(1)(b) GDPR and transmitted to the provider in accordance with Art. 6(1)(f) GDPR on the basis of our legitimate interest in effective customer management and efficient appointment management and stored there for the purpose of organizing appointments.

Once the appointment has been held or the agreed appointment period has expired, the provider will delete your data.

We have entered into an order processing agreement with the provider, which ensures the protection of the data of our website visitors and prohibits unauthorized disclosure to third parties.

Online marketing

Salesforce Pardot

This website uses the software-based marketing service of the following provider to provide and synchronize various customer management services: salesforce.com Germany GmbH, Erika-Mann-Str. 31, 80636 Munich, Germany

The service enables automated processing of feed activities, management of advertising in the marketing channels used and analysis of the success of marketing activities as well as centralized email marketing and contact management.

To implement the various functions, cookies are used, i.e. small text files that are stored locally in the cache of your web browser on your end device, enabling us to analyze the way you use the website. The cookies collect certain information, such as the IP address, the location and the time the page was accessed.

All forms of processing described above, in particular the setting of cookies for reading information on the end device used, will only be carried out if you have given us your express consent to do so in accordance with Art. 6(1)(a) GDPR. You can withdraw your consent at any time with effect for the future by disabling this service via the “cookie consent tool” provided on the website.

Other legal bases for data processing that are applied in the context of specific service functions (such as the requirement for express consent in accordance with Art. 6(1)(a) GDPR when sending newsletters) remain unaffected by this.

We have entered into an order processing agreement with the provider, which ensures the protection of the data of our website visitors and prohibits unauthorized disclosure to third parties.

Data may also be transmitted to: Pardot LLC, 950 E. Paces Ferry Rd. Suite 3300 Atlanta, GA 30326, USA

For the transfer of data to the United States, the provider relies on European Commission standard contractual clauses to ensure compliance with European-level data protection.

Web analysis services

Google Tag Manager

This website uses the “Google Tag Manager”, a service of the following provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: “Google”).

The Google Tag Manager provides a technical basis for pooling various web applications, including tracking and analysis services, and calibrating, controlling and linking them to conditions via a standardized user interface. The Google Tag Manager itself does not store or read any information on user devices. The service does not carry out any independent data analyses either. However, your IP address is transmitted to Google by the Google Tag Manager when you access the page and may be stored there. Transmission to Google LLC servers in the USA may also occur.

This processing will only be carried out if you have given us your express consent to do so in accordance with Art. 6(1)(a) GDPR. If you do not give your consent, Google Tag Manager will not be used during your visit to our website. You can revoke your consent at any time with effect for the future. To revoke your consent, please disable this service in the “cookie consent tool” provided on the website.

We have entered into an order processing agreement with the provider, which ensures the protection of the data of our website visitors and prohibits unauthorized disclosure to third parties.

Further legal information on Google Tag Manager can be found at
https://business.safety.google/intl/de/privacy/ and
https://policies.google.com/privacy?hl=de&gl=de

Mouseflow

This website uses the web analysis service of the following provider: Mouseflow ApS, Flaesketorvet 68, 1711 Copenhagen, Denmark

With the help of cookies and/or comparable technologies (tracking pixels, web beacons, algorithms for reading end device and browser information), the service collects and stores pseudonymous visitor data, including information about the end device used, such as the IP address and browser information, in order to evaluate it for statistical analyses of usage behavior on our website and to create pseudonymous usage profiles. Among other things, this facilitates the evaluation of movement patterns (known as heat maps), which show the duration of page visits and interactions with page content (e.g. text input, scrolling, clicks and mouse-overs). Pseudonymization rules out the possibility of direct personal identification. Your personal data will not be merged with plain data collected in any other way.

All forms of processing described above, in particular the reading or storage of information on the end device used, will only be carried out if you have given us your express consent to do so in accordance with Art. 6(1)(a) GDPR. You can withdraw your consent at any time with effect for the future by disabling this service via the “cookie consent tool” provided on the website.

We have entered into an order processing agreement with the provider, which ensures the protection of the data of our website visitors and prohibits unauthorized disclosure to third parties.

Microsoft Power BI

We use the “Microsoft Power BI” service from Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA, for internal visualization of business transactions and for user-defined analyses of business processes. Personal customer data may be the subject of visualization and analysis processes and may be processed by Microsoft BI for this purpose. In this case, Microsoft processes personal data as a processor bound by instructions in accordance with Art. 28 GDPR and has made a contractual commitment to us to protect these data in accordance with the statutory requirements.

To this end, Microsoft uses state-of-the-art encryption methods and guarantees that data processing procedures are carried out exclusively in data centers within the EU.

Baidu Analytics – in China only
The Chinese version of this website uses Baidu Analytics, a service provided by Baidu.
Baidu Analytics uses cookies, which generate information about your use of the Chinese website (including your IP address) and which are transmitted to a Baidu server in China and stored there. Baidu uses this information to evaluate your use of the website, to generate reports about website activities for the website operator and to provide further services in connection with the use of the website and the Internet. Baidu may also disclose this information to third parties if this is required by law or if third parties are commissioned by Baidu to process these data.
This processing will only be carried out if you have given us your express consent to do so in accordance with Art. 6(1)(a) GDPR. If you do not give your consent, Baidu Analytics will not be used during your visit to our website. You can revoke your consent at any time with effect for the future. To revoke your consent, please disable this service in the “cookie consent tool” provided on the website.
Further information on data protection at Baidu can be found at https://ir.baidu.com/baidu-statement-privacy-protection

Retargeting/remarketing and conversion tracking

Meta Pixel

We use the “Meta Pixel” service of the following provider in our online services: Meta Platforms Ireland Limited, 4 Grand Canal Quare, Dublin 2, Ireland (“Meta”)

If a user clicks on an advertisement placed by us on Facebook and/or Instagram, a parameter is added to the URL of our linked page with the help of “meta pixels”. After redirection, this URL parameter is then entered in the user’s browser by a cookie that our linked page sets itself.

On the one hand, this enables Meta to identify visitors to our online services as a target group for displaying advertisements (known as “ads”). We therefore use the service to display the Facebook and/or Instagram ads we place solely to users who have shown an interest in our online services or who have certain characteristics (e.g. interests in certain topics or products determined on the basis of the websites visited), which we transmit to Meta (known as “custom audiences”).

On the other hand, “Meta Pixel” can be used to track whether users have been redirected to our website after clicking on an advertisement and what actions they take there (known as “conversion tracking”).

The data collected are anonymous for us and do not allow us to draw any conclusions about the identity of the user. Nevertheless, the data are stored and processed by Meta so that it is possible to establish a link to the respective user profile and Meta is able to use the data for its own advertising purposes.

We have entered into an order processing agreement with the provider, which ensures the protection of the data of our website visitors and prohibits unauthorized disclosure to third parties.

The information generated by Meta is usually transmitted to a Meta server and stored there; in doing so, it may also be transmitted to Meta Platforms Inc. servers in the USA.

Google Ads Remarketing

This website uses retargeting technology of the following provider: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland

For this purpose, Google sets a cookie in the browser of your end device, which automatically enables interest-based advertising by means of a pseudonymous cookie ID and based on the pages you visit. Any further data processing will only take place if you have consented to Google linking your internet and app browsing history to your Google account and using information from your Google account to personalize the ads you view on the web. In this case, if you are logged in to Google while visiting our website, Google will use your data together with Google Analytics data to create and define target group lists for cross-device remarketing. To this end, Google temporarily links your personal data with Google Analytics data in order to create target groups. When Google Ads Remarketing is used, personal data may also be transmitted to the servers of Google LLC. in the USA.

All forms of processing described above, in particular the setting of cookies for reading information on the end device used, will only be carried out if you have given us your express consent to do so in accordance with Art. 6(1)(a) GDPR. If you do not give your consent, retargeting technology will not be used during your visit to our website.

You can revoke your consent at any time with effect for the future. To revoke your consent, please disable this service in the “cookie consent tool” provided on the website.

Details on the processing initiated by Google and on how Google handles
with data from websites can be found here: https://policies.google.com/technologies/partner-sites

Further information on Google's privacy policy can be found here:
https://business.safety.google/intl/de/privacy/ and
https://www.google.de/policies/privacy/

LinkedIn Insight

This website uses retargeting technology of the following provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland

This enables us to target visitors to our website who have already shown an interest in our store and our products with personalized, interest-based advertising. The advertising material is displayed on the basis of a cookie-based analysis of previous and current user behavior, but no personal data are stored. In the case of retargeting technology, a cookie is stored on your computer or mobile device in order to collect pseudonymous data about your interests and thus adapt the advertising individually based on the stored information. These cookies are small text files that are stored on your computer or mobile device. This means that you are shown advertising that is highly likely to match your product and information interests.

All forms of processing described above, in particular the setting of cookies for reading information on the end device used, will only be carried out if you have given us your express consent to do so in accordance with Art. 6(1)(a) GDPR. If you do not give your consent, retargeting technology will not be used during your visit to our website.

You can revoke your consent at any time with effect for the future. To revoke your consent, please disable this service in the “cookie consent tool” provided on the website.

Microsoft Advertising

This website uses retargeting technology of the following provider: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA

All forms of processing described above, in particular the setting of cookies for reading information on the end device used, will only be carried out if you have given us your express consent to do so in accordance with Art. 6(1)(a) GDPR. If you do not give your consent, retargeting technology will not be used during your visit to our website.

You can revoke your consent at any time with effect for the future. To revoke your consent, please disable this service in the “cookie consent tool” provided on the website.

Google Ads Conversion Tracking

This website uses the online advertising program “Google Ads” and, as part of Google Ads, the conversion tracking service of Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”). We use the advertising services provided by Google Ads (known as Google Adwords) to make people aware of our appealing services on external websites. By analyzing the data pertaining to the advertising campaigns, we are able to establish how successful the individual advertising measures are. In doing so, we are pursuing the aim of presenting you with advertising that is of interest to you, that makes our website more interesting for you and that provides us with good value for money.

The cookie for conversion tracking is set when a user clicks on an “Ads” advertisement placed by Google. Cookies are small text files that are stored locally on your device. These cookies generally lose their validity after 30 days and are not used to identify the user personally. If the user visits certain pages of this website and the cookie has not yet expired, both we and Google will be able to recognize that the user clicked on the ad and was redirected to this page. Each Google Ads customer receives a different cookie. As such, cookies cannot be tracked via the websites of Google Ads customers. The information gathered with the aid of the conversion cookie is used to generate conversion statistics for Google Ads customers who have opted to use conversion tracking. The customers are informed about the total number of users who have clicked on their ad and were then redirected to a page featuring a conversion tracking tag. However, they do not receive any information that could be used to identify users personally. When Google Ads is used, personal data may also be transmitted to the servers of Google LLC. in the USA.

Details on the processing operations initiated by Google Ads Conversion Tracking and how Google handles data from websites can be found here: https://policies.google.com/technologies/partner-sites

You can also permanently object to cookies being set by Google Ads Conversion Tracking by downloading and installing the Google browser plug-in available at the following link:

https://www.google.com/settings/ads/plugin?hl=de

Please note that if you have disabled the use of cookies, you may not be able to use certain functions of this website or may only be able to use them to a limited extent.

Google's privacy policy can be viewed here:
https://business.safety.google/intl/de/privacy/ and
https://www.google.de/policies/privacy/

For data transfers to the USA, the provider has signed up to the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision by the European Commission.

Microsoft Advertising Universal Event Tracking

This website uses conversion tracking technology of the following provider: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA

To use universal event tracking, a tag is stored on every page of our website and interacts with the conversion cookie set by Microsoft. This interaction makes it possible to track user behavior on our website and sends the information collected in this way to Microsoft. The purpose of this is to statistically track and evaluate certain predefined goals, such as purchases or leads, so that we can tailor the focus and content of our offers more closely to your interests. The tags are not used to identify users personally at any time.

All forms of processing described above, in particular the setting of cookies for reading information on the end device used, will only be carried out if you have given us your express consent to do so in accordance with Art. 6(1)(a) GDPR. If you do not give your consent, retargeting technology will not be used during your visit to our website.

You can revoke your consent at any time with effect for the future. To revoke your consent, please disable this service in the “cookie consent tool” provided on the website.

Tools and miscellaneous

Cloudflare

For security purposes, this website uses the service of the following provider: Cloudflare, Inc., 101 Townsend St. San Francisco, CA 94107, USA

The provider protects the website and the associated IT infrastructure against unauthorized third-party access, cyberattacks, viruses and malware. The provider collects the IP addresses of users and, if applicable, other data about how you use our website (in particular URLs accessed and header information) in order to detect and prevent illegitimate page access and threats. The recorded IP address is compared with a list of known attackers. If the recorded IP address is identified as a security risk, the provider can automatically block it from accessing the site. The information collected in this way is transferred to one of the provider’s servers and stored there.

The data processing activities described are carried out in accordance with Art. 6(1)(f) GDPR on the basis of our legitimate interests in protecting the website from harmful cyber attacks and in maintaining structural integrity, data integrity, and data security.

We have entered into an order processing agreement with the provider, which ensures the protection of the data of our website visitors and prohibits unauthorized disclosure to third parties.

Links to third-party websites

Our website may contain links to external websites. At the time of setting the link, KUKA AG satisfied itself that the linked pages do not contain illegal content of any kind. However, KUKA AG cannot ensure continuous monitoring and has no influence whatsoever on the content of the linked websites. No liability will therefore be accepted for the content after the link has been set.

Your rights

You have the following rights from us in respect of your personal data:

Right of access,
Right to rectification or erasure,
Right to object to processing,
Right to restriction of processing,
Right to data portability.

You can contact our Data Protection Officer free of charge to assert these rights.
You also have the right to lodge a complaint with a data protection supervisory authority regarding our processing of your personal data.

Storage period for personal data

The storage period for personal data is determined by the respective legal basis, the processing purpose and, if applicable, the respective statutory retention period (e.g. retention periods under commercial and tax law).

When processing personal data on the basis of express consent in accordance with Art. 6(1)(a) GDPR, the data in question will be stored until you withdraw your consent.

If there are statutory retention periods for data that are processed within the scope of statutory obligations or similar obligations on the basis of Art. 6(1)(b) GDPR, these data will be routinely deleted after the retention periods have expired, provided that they are no longer required for contract fulfillment or contract initiation and/or we no longer have a legitimate interest in continued storage.

When processing personal data on the basis of Art. 6(1)(f) GDPR, this data will be stored until you exercise your right to object in accordance with Art. 21(1) GDPR, unless we can demonstrate compelling legitimate grounds for the processing activity that override your interests, rights and freedoms, or the processing activity is for the assertion, exercise or defense of legal claims.

When processing personal data for the purpose of direct marketing on the basis of Art. 6(1)(f) GDPR, these data are stored until you exercise your right to object in accordance with Art. 21(2) GDPR.

Unless otherwise stated in the other information provided in this declaration on specific processing situations, any stored personal data will be deleted when it is no longer required for the purposes for which it was collected or otherwise processed.

Contact person

If you have any questions regarding the design or functions of the website, please contact:

press@swisslog-healthcare.com

Reservation of the right of modification

The Swisslog Healthcare Privacy Policy can be saved or printed out at any time. Swisslog Healthcare, however, reserves the right to modify the Privacy Policy at any time, subject to data protection regulations, in order to cater for the ongoing further development of the website.