Privacy Policy
You and the protection of your data are important to us!
The company STILL Norge AS is delighted that you have visited our website and that you are interested in our company and products. We respect your privacy and take the protection of your personal data seriously. We therefore rely on your trustworthy cooperation when you visit our websites.
Compliance with the statutory provisions on privacy and data security is obvious for us. Our employees and agents are obligated to comply with the legal requirements of the provisions under data protection law.
You will find the bases of European data protection law in particular in the European General Data Protection Regulation (EU GDPR) and the new Federal Data Protection Act of Germany (BDSG). In the following sections, we shall be informing you in detail and transparently about the type, scope and purpose of the processing applied to your personal data within our online platform and the websites that are linked to it. In addition, we would like to inform you about the rights to which you are entitled by means of this privacy policy.
Body responsible
The body responsible for the collection, processing and use of personal data within the meaning of the GDPR, in other data protection laws applicable in the member states of the European Union and in other data protection provisions of a legal nature is:
STILL Norge AS (Hovedkontor)
Heggstadmyra 8
7080 Heimdal
Org.nr: 971597283
via Telefon: +47 810 35 035
Epost: Firmapost-sn@hesselberg.no
Website: www.still.no
Collection of general access data and information
With each visit to our website, a series of general access data and information is automatically sent by the browser used on your terminal device to the server of our website/application and is temporarily stored in a so-called logfile. This data is not stored together with the rest of your personal data.
Without you actively doing anything the following information can be collected and stored until automated deletion takes place:
- the IP address of your enquiring Internet-enabled device;
- the date and time of your access to the website;
- the website/application from which the access has taken place (referrer URL);
- the browser type and version used by you;
- the operating system of your web-enabled computer;
- the name of your Internet service provider;
- the subsites that are activated on our website via your accessing system;
- the files downloaded from our website (e.g. PDF or Word documents)
The legal basis for the processing of the IP address is Section Subsection 1 (f) of the GDPR. Our legitimate interest ensues from the above listed data collection objectives. In its use of the general access data and information, STILL GmbH therefore does not draw any direct conclusions as to your personal identity. It is rather the case that the IP address of your terminal device and the other data listed above are required to
- get to know the user’s behaviour and evaluate it statistically;
- correctly deliver the content of our website;
- optimize the content of our website and the publicity for the website;
- ensure the long-term dependability of our information technology systems and of the techniques of our website;
- provide penal prosecution authorities with the information necessary for penal prosecution in the event of a cyber attack
The data is automatically deleted as soon as it is no longer required for achieving this purpose. In the case of processing data for the provision of the website, this is achieved when the respective session is ended. When the data is stored in log files, this data is deleted automatically after seven days at the latest.
Handling of personal data
Use of the online platform of STILL Norge AS is fundamentally possible without any personal data. However, if you would like to call on the services of our website, the processing of your personal data could be required.
The processing of your personal data always takes place expressly in conformity with the GDPR, the new BDSG and the DDG, and also in compliance with the country-specific data protection regulations that apply to STILL Norge AS. This means that the data of users is processed only if it is legally allowed, i.e. if the data processing is required by law, the consent of the user is in hand or on account of our legitimate interest within the meaning of Section Subsection 1 (b) of the GDPR.
Personal information is any information that is explicitly used to determine your identity. This includes information such as your name, your postal or e-mail address, your telephone number, your location, your (online) identifier or any other distinctive features that are an expression of your physical, physiological, genetic, mental, economic, cultural or social identity.
Your personal data will be collected by us, in addition to the access data, only if you voluntarily specify it, e.g. as part of a survey, contact request, registration for a newsletter or for the purpose of placing an online order. In addition, personal data will be used only to the extent necessary and only for the purpose consented to by you or for a legally permissible purpose. For the use of personal data for any other purposes—in particular for advertising purposes—STILL Norge AS will always obtain your express consent before collecting the data.
The STILL Newsletter
Our newsletter gives you the opportunity of receiving information about innovations and the latest offers from the company STILL, and what is happening in our industry.
Provided that you enter your e-mail address in the e-mail input box and optionally your first name and surname, then press the ‘Register for the Newsletter’ button and confirm your registration via the link that will then be sent to you at the e-mail address initially provided by you (the double opt-in procedure), we shall process and use your e-mail address to send you regular issues of the requested newsletter. Subscribing to the newsletter is voluntary and your personal data will be treated confidentially.The data processing takes place on the basis of your express consent within the meaning of Section Subsection 1 (a) of the GDPR and will be used exclusively for dispatch of the STILL Newsletter.
For dispatch of the newsletter we use the Internet-based services of the provider flatrate NEWSLETTER for the automatic consignment of personalized e-mails. Flatrate-Newsletter.de is a service of Indoblo Commerce Limited, Branch Office Germany, Am Heidberg 1, 24226 Heikendorf. We have concluded a contract with the provider in accordance with Section of the GDPR, to the effect that the latter is obligated to process user data only in accordance with our instructions and to comply with the EU data protection standard.
Further information can be found in the privacy policy of the provider ‘flatrate NEWSLETTER’ www.flatrate-newsletter.de/datenschutzrichtlinie and in the terms and conditions available at www.flatrate-newsletter.de/agb.
If you no longer wish to receive our newsletter, you have the right to be removed from the newsletter mailing list at any time. All you need to do is send an e-mail to info@still.no Furthermore, we offer you the possibility of removing yourself from the mailing list via the unsubscribe link in the newsletter.
Contact
When contacting our company—via our contact form or e-mail—your details, including the personal contact data cited by you for the purpose of dealing with the contact request and the processing of it, are processed in accordance with Section Subsection 1 (b) of the GDPR (for the performance of a pre-contractual measure).
For the purpose of lead generation and for long-term and successful dialogue marketing with our target groups, we use the Lead Management System (LMS)—a service of lead on GmbH, Am Kanal 1618 in 14467 Potsdam. We have concluded a contract with the provider in accordance with Section of the GDPR, to the effect that the latter is obligated to process user data only in accordance with our instructions and to comply with the EU data protection standard.
Further information on the legally compliant privacy policy of the provider can be found at: www.leadon.de/impressum/
Friendly Captcha
Data Privacy Information for Friendly Captcha (Bot and Spam Protection)
This data privacy information is provided by us as the website operator, and it relates to the “Friendly Captcha” service which we use.
Our website uses the “Friendly Captcha” service provided by Friendly Captcha GmbH, Am Anger 3-5, 82237 Woerthsee, Germany (www.friendlycaptcha.com). Friendly Captcha GmbH acts as our processor. Friendly Captcha is an innovative, privacy-friendly protection solution designed to make it more difficult for automated programs and scripts (“bots”) to use our website. Friendly Captcha thus protects our website from abuse.
1) How it works
We have integrated program code from Friendly Captcha (“Protection Software”) into certain areas of our website (e.g., in a contact form). This means that the visitor’s end device connects to Friendly Captcha’s servers in the context of the protected area (e.g., when sending a contact form).
The visitor’s browser is sent a puzzle from Friendly Captcha. The complexity of the puzzle depends on various risk factors. The visitor’s end device solves the puzzle, using certain system resources, and sends the solution to our web server. Our server contacts the Friendly Captcha server via an interface and receives a response stating whether the puzzle has been solved correctly by the end device.
The visitor’s browser transmits the connection data, environment data, interaction data, and functional data described in more detail below to Friendly Captcha (see Point 4 for information about the data). Friendly Captcha analyzes this data and determines how probable it is that the visitor is a human user or a bot; it then transmits the result to us.
Depending on this outcome, we can deal with the access to our website or to individual functions as human or potentially non-human.
2) Purpose
All of the above data will only be used to identify and deal with potential bots and risks as described above. The purpose of the processing is therefore to ensure the security and functionality of our website.
We do not use the data to identify a natural person or for marketing purposes.
3) Storage period
If personal data is stored, this data will be erased within 30 days.
4) Processed data The following data will be processed solely for the security purposes stated above:
Connection data
HTTP request data, i.e., data that is generated every time a website is visited (e.g., user agent, browser type, operating system) and the referencing website, protocols, and ports used
- IP address: IP addresses are only stored by Friendly Captcha in hashed form (one-way encryption), and they do not enable us or Friendly Captcha to draw any conclusions about individual persons
- Connection exchange data: technical information on how a connection was established between the browser and the Friendly Captcha server Network statistics, such as bandwidth
Environment data
- Browser properties and settings (e.g., preferred language, installed fonts, local time)
- Device data (e.g., available memory, screen resolution, operating system)
- Technical data related to program code execution (e.g., error codes, browser events)
Interaction data
- Times, frequencies, and statistics of key presses, however, without this enabling conclusions to be drawn about specific text entries, e.g., by only taking function keys such as Enter or Delete into account
- Scrolling and mouse movements Adjustments to windows, e.g., resizing
Functional data, e.g.,
- Version, status, and configuration data of the protection software Software components used Random metrics (e.g., session ID)
- Technical counters (e.g., number of repeated connection attempts)
- Data on the execution of program code Puzzle solutions
The following data is only stored in the browser’s session storage for the duration of the browser session and is essential for ensuring the security of the website:
A random session ID (frc_sid), the number of loads of the protection software modules (frc_sc), the number of requests and repeated connection attempts (frc_rc), and the solutions to the puzzles and their solution context (frc_sol).
We do not place HTTP cookies and we do not store any data in the browser’s persistent storage.
5) Legal basis
Insofar as data can be attributed to a person, the legal basis for its processing is our legitimate interests in protecting our website from improper access by bots, thus protecting against spam and against attacks (e.g., mass requests), Art. 6 (1) (f) GDPR.
6) Data recipient
Friendly Captcha acts as our processor, subject to instructions and for specified purposes. Except for the outcome of the classification into bot or human user, the above-mentioned data is processed by Friendly Captcha only and is not passed on to us.
Friendly Captcha uses hosting services provided by Hetzner Online GmbH (Germany) and SCALEWAY S.A.S (France) for hosting and delivery of the content.
7) Additional information
Additional information, in particular our contact details as the controller as per data privacy legislation and the contact details of our data protection officer as well as information concerning your rights under the GDPR, is available in the data privacy information on our website that we have integrated Friendly Captcha into.
STILL’s online presence and website optimization
Use of cookies
Personal data is processed through the use of cookies. You can find more details about the cookies used on this website below. You can change your cookie settings here or in the footer of this website.
On our website, we use the consent management tool CCM19, a service from Papoo Software & Media GmbH, Auguststr. 4, 53229 Bonn, Germany (“CCM 19”). The tool allows you to save your preference for the use of cookies on this site. The data is processed for the purpose of obtaining and documenting the necessary consents for data processing.
Cookies may be used for this purpose. During this process, among other things the following information will be collected and sent to CCM19 (server located in Germany): date and time the page was accessed, a random ID, consent status. You can find out more about data processing by CCM19 at: https://www.ccm19.de/en/privacyclarification.html.
We do not process the data ourselves, the data is saved as a log file. The log files of website visitors are only accessed following prior agreement and with the consent of the user. This data is not passed on to other third parties.
The data is processed in order to meet a legal obligation on the basis of Article 6(1)(c) GDPR.
STILL utilizes the following cookies for the below mentioned specific purposes:
Cookie Name | Provider | Purpose | Consent Category | Expiration |
---|---|---|---|---|
cookieConsent | Mellowmessage GmbH | Saving the agreed categories | Required | 1 year |
mmKitContentSplashTeaserEnabled | Mellowmessage GmbH | Set the teaser display | Required | 30 days |
test | Mellowmessage GmbH | Test cookie to check whether cookies can be set or not | Required | session |
mobileOrDesktopForceMobile | Mellowmessage GmbH | Storage of information about which view the user prefers (cookie for new website system) | Required | 30 days |
stillMobileOrDesktop | Mellowmessage GmbH | Storage of information about which view the user prefers (cookie for old website system) | Required | 30 days |
newsOverviewLastScrollPosition | Mellowmessage GmbH | Remember last known scroll position | Required | 1 day |
newsOverviewCurrentPage | Mellowmessage GmbH | Remember current page | Required | 1 day |
usedTrucksSearchVersion | Mellowmessage GmbH | Version of the used truck search | Required | infinite |
postLikes | Mellowmessage GmbH | Saving the Likes per post | Required | 1 day |
Generischer Name, Fallback "user-settings" | Mellowmessage GmbH | Saving the user interface settings | Required | 1 year |
MMABTEST | Mellowmessage GmbH | Saving the assigned variant | Statistics | session |
PHPSESSID | Mellowmessage GmbH | Session cookie for the server | Required | session |
mat_ep | Matelso | Identification of the user | Statistics | 2 years |
mat_tel | Matelso | Identification of the user | Statistics | 14 months |
_fbp | Meta | Identification of the user | Marketing | 3 months |
_fbc | Meta | Saves last visit | Marketing | 2 years |
_gid | Identification of the user | Statistics | 1 day | |
_dc_gtm_UA-[CONTAINER-ID] | Identification of the user and reduction of the request rate | Statistics | 1 minute | |
_ga | Identification of the user | Statistics | 2 years | |
_gat_UA-[CONTAINER-ID] | Reduction of the request rate | Statistics | 1 minute | |
_et_coid | eTracker | Identification of the user | Statistics | 2 years |
BT_sdc | eTracker | Contains Base64-encoded data of the current visitor session (referrer, number of pages, number of seconds since the start of the session), which is used for personalisation purposes | Statistics | Session |
isSdEnabled | eTracker | Recognition of whether the visitor's scrolling depth is measured | Statistics | 1 day |
BT_ctst | eTracker | Is only used to detect whether or not cookies are activated in the visitor's browser (only if cookies are activated). | Statistics | Session |
BT_pdc | eTracker | Contains Base64-encoded data of the current visitor session (referrer, number of pages, number of seconds since the start of the session), which is used for personalisation purposes | Statistics | 1 year |
Google Analytics 4
We use Google Analytics 4 on this website. This is a web analytics service from Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”).
We use Google Analytics 4 to allow us to analyse and regularly improve use of our website. By evaluating the statistics, we can continuously improve our content and make our website even more interesting for you.
Google Analytics 4 uses “cookies”. These are text files that are saved on your computer and enable analysis of your use of our website.
Information about your use of the website, which is obtained using cookies, is regularly transmitted to Google servers and stored by Google. Further transmission to Google LLC servers in the USA and storage there is not excluded.
When using Google Analytics 4, the IP address transmitted by your device when you use the website is only collected and processed by default and automatically in an anonymous manner, meaning that the collected information cannot be directly linked to a particular person. This automatic anonymisation is carried out by Google truncating the IP address transmitted by your device to remove the last digits within European Union (EU) Member States or other signatories of the Agreement on the European Economic Area (EEA).
We have obtained your consent to process your data in accordance with Art. 6(1)(1)(a) GDPR. Your consent also includes the transfer of the data to the USA with the risk of data being accessed by authorities.
Google evaluates the information on user behaviour on our website for us, creates reports on this and uses the data to provide us as a website operator with further services related to website and Internet use.
When using Google Analytics 4, the IP address that is transmitted by your browser and truncated will not be combined with other data stored by Google.
If you do not want cookies to be stored (or want Google Analytics 4 to be deactivated), you can make this setting at any time here via our cookie consent tool.
You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website. Simply download and install the browser add-on available via the following link: https://tools.google.com/dlpage/gaoptout?hl=en. This also means that the IP address will no longer be recorded. By doing this, you will also prevent Google Analytics 4 from processing your data.
As an extension to Google Analytics 4, the “UserIDs” function may be used on this website. If you have consented to the use of Google Analytics 4 in accordance with Art. 6(1)(a) GDPR, have set up an account on this website and log in using this account on various devices, your activities, including conversions, can be analysed across devices.
For data transfers to the USA, the provider has joined the EU-US Data Privacy Framework, which ensures compliance with the European level of data protection on the basis of an adequacy decision from the European Commission.
As an extension to Google Analytics 4, Google Signals may be used on this website to generate cross-device reports.
The following data is collected by default for this purpose:
- Town/city
- Latitude (of the town/city)
- Longitude (of the town/city)
- Minor version of the browser
- User-agent string of the browser
- Device brand
- Device model
- Device name
- Minor version of the operating system
- Minor version of the platform
- Screen resolution
If you have activated personalised ads and linked your devices to your Google account, Google may, subject to your consent to the use of Google Analytics 4 in accordance with Art. 6(1)(a) GDPR, analyse your usage behaviour across devices and create database models, including for cross-device conversions. We do not receive any personal data from Google, only statistics. If you want to stop cross-device analysis, you can disable the “Personalised ads” function in your Google account settings. To do this, follow the instructions on this page: https://support.google.com/ads/answer/2662922?hl=en
You can find more information about Google Signals via the following link: https://support.google.com/analytics/answer/7532985?hl=en
We may also use the “Demographics” function of Google Analytics 4 on our website. Demographic data is specific information about groups of people.
This function allows reports to be created that contain information about the age, gender and interests (known as demographics) of the users of our site. The data comes from interest-based advertising from Google, the Google Display Network and third-party visitor data. You can deactivate this function at any time via the ad settings in your Google account. However, it is also possible to deactivate Google Analytics 4 as described above. Simply download and install the browser add-on available via the following link: https://tools.google.com/dlpage/gaoptout?hl=en.
You will find additional information here:
Relating to the terms: https://marketingplatform.google.com/about/analytics/terms/us/.
The Google privacy policy: https://privacy.google.com/businesses/compliance/#!#gdpr
Relating to Google (Universal) Analytics: https://support.google.com/analytics/answer/3379636?hl=en
Google Data Studio
On the basis of Section Subsection 1 (f) of the GDPR (legitimate interest), we use an additional data management tool of Google Analytics—Google Data Studio (beta version)—to visually create user-defined reports and interactive dynamic dashboards for our users.
For this purpose we use data from Google Analytics and no other interfaces with data sources (such as Google AdWords, Attribution 360, BigQuery, Cloud SQL, MySQL, Google Sheets, YouTube Analytics, etc.). This web tool does not require a local application and can be started via the web. Access is via a browser and the data sources are directly connected via Google Data Studio.
For more information about using Google Data Studio, please visit:
support.google.com/datastudio/answer/6283323
e-Tracker
On the STILL website, data for marketing and optimization purposes are collected and stored using technologies of the analysis service provided by etracker GmbH, Erste Brunnenstrasse 1, 20459 Hamburg. This is done on the basis of Section Subsection 1 (f) of the GDPR (legitimate interest).
Usage profiles can be compiled from this data using a pseudonym. Cookies are used for this purpose.Cookies are small text files that are stored locally in the cache of your Internet browser. These cookies enable the recognition of your Internet browser. The personal data collected using etracker technology is not used without the specifically granted consent of the person concerned to personally identify visitors to our website and is not merged with any personal data about the bearer of the pseudonym.
Furthermore, you have the right at any time to object to the data collection and storage in future. In order to object to the collection and storage of your visitor data in future, you can use the following link to obtain an opt-out cookie from etracker that ensures that no visitor data of your browser will be collected or stored by etracker in the future.
This causes an opt-out cookie with the name "cntcookie" to be set by etracker. Please do not delete this cookie, if you want to uphold your objection.
Further information can be found in the privacy policy of etracker:
www.etracker.com/en/data-privacy/
Microsoft Programs
In addition, our online offerings use Microsoft's Conversion Tracking (Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA) on the basis of Art. 6 (1) (f) DS-GVO (legitimate interest). Microsoft Bing Ads places a cookie on your computer if you have accessed our website via a Microsoft Bing ad. Microsoft Bing and we can thus see that someone clicked on an ad, was redirected to our website, and reached a previously determined landing page (conversion page). We only get to know the total number of users who clicked on a Bing ad and were then redirected to the conversion page. No personal information about the identity of the user is given.
If you do not want to participate in the tracking process, you can also refuse the required setting of a cookie - for example, via a browser setting that generally disables the automatic setting of cookies. For more information about privacy and cookies used with Microsoft Bing, visit the Microsoft website https://privacy.microsoft.com/en-us
Integration of services and contents of third parties
General information
We are an agile company, so it is extremely important to us to be present and attainable wherever our customers are. On the basis of Section Subsection 1 (f) of the GDPR (legitimate interest), social plug-ins and links of social networks (Meta, LinkedIn, XING, Google+, YouTube) are therefore integrated elements on our websites. The underlying promotional purpose can be considered as a legitimate interest within the meaning of the GDPR. The responsibility for operation in compliance with data protection must be ensured by the respective providers of the social networks.
In addition, on the basis of our legitimate interests (i.e.our interest in the analysis, optimization and economic operation of our online platform within the meaning of SectionSubsection 1 (f) of the GDPR) or on the basis of your consent within the meaning of Section Subsection 1 (a) of the GDPR, we use service platforms of third-party providers to integrate their contents and services into our online platform.
Before a connection to the provider can be made, you must expressly declare yourself in agreement with the process described below and with the data transmission:
You will recognize links to the Internet pages of the social media services by the respective corporate logo.If you follow a social link, you will reach the corporate online presence of STILL on the respective social media service site. Please take into consideration that activating a link results in a connection being made to the servers of the social media service and consequently certain data may be transferred to the provider of the social media service. Such data is, for example:
- your name and e-mail address for authentication in the course of registration and the login process;
- the address of the website at which the activated link is located;
- the date and time when the website was accessed or when the link was activated;
- information about the browser used and the operating system used;
- the IP address of the enquiring Internet-enabled terminal device.
If you are logged in as a member of the respective social media service, the social media service can associate this information with your personal user account at the social media service. You can exclude the possibility of being associated with your personal user account, if you log out of your user account beforehand. The servers of the social media services are located in the USA and other countries outside of the European Union. We draw your attention to the fact that companies in these countries are subject to data protection law that does not protect general personal data to the same degree as is the case in the member states of the European Union. STILL Norge AS has no influence on the scope, nature or purpose of the data processing performed by the provider of the respective social media service. We have provided you below with detailed information about the social media channels used by us:
Meta
On the basis of our legitimate interests for the purpose of analysis, optimization and the economic operation of our online platform within the meaning of Section Subsection 1 (f) of the GDPR, we—STILL GmbH—use the social plug-ins of the social network Meta. The provider is Meta Platforms Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, hereafter referred to as ‘Meta’ for short. Plug-ins can visualize interaction elements or content, such as: videos, graphics and text articles and are recognizable by one of the Meta logos (a white ‘f’ on a blue tile, the terms "Like", "I like this" or a „thumbs-up“ sign) or are identified by the "Meta social plug-in" extension. You can view the list and appearance of the Meta social plug-ins here: developers.facebook.com/docs/plugins/
Once a user invokes a feature of this online platform that includes such a plug-in, their device establishes a direct connection with the Meta servers. The content of the plug-in is transmitted by Meta directly to the user's device and is integrated by the latter into the online platform. In the process, usage profiles of the users can be created from the data processed. We draw your attention to the fact that we have no control whatsoever over the extent of the data that Meta collects with the aid of this plug-in.
Furthermore, through integration of the plug-ins, Meta receives the information that a user has accessed the corresponding page of the online platform. If the user is logged in on Meta, Meta can associate the visit with his Meta account. If users interact with the plug-ins (e.g. by clicking the Like button or by submitting a comment), the corresponding information is transmitted by your device directly to Meta and stored there. If a user is not a member of Meta, the possibility still exists that Meta will recognize and store her/his IP address. According to information provided by Meta, only an anonymized IP address is stored in Germany.
If a user is already a Meta member and does not want Meta to collect data about her/him via this online platform and links that data with her/his member data stored by Meta, she/he must log out of Meta and delete her/his cookies before using our online platform. Additional settings for using data for promotional purposes are available in the Meta profile settings at: www.meta.com/settings. Detailed information on the purpose and extent of data collection, the further processing and use of the data by Meta, as well as your relevant rights and setting options relating to protecting your privacy can be found in the privacy policy of Meta: www.meta.com/about/privacy/
On the basis of our legitimate interests for the purpose of analysis, optimization and the economic operation of our online platform within the meaning of Section Subsection 1 (f) of the GDPR, the features of the social network LinkedIn. The provider is the LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA.Each time you visit one of our pages that contains LinkedIn features, a connection is made to LinkedIn servers. LinkedIn is informed that you have visited our website with your IP address. If you click LinkedIn's ‘Recommend button’ and are logged in to your LinkedIn account, LinkedIn is able to associate your visit to our website with you and your user account. We draw attention to the fact that we, in our capacity as the provider of the web pages, have no knowledge of the content of the transmitted data or of their use by LinkedIn. For your rights and setting options relating to protecting your privacy, please refer to the respective privacy policy of the provider: www.linkedin.com/legal/privacy-policy
Further information on the opt-out procedure can be found here:
www.linkedin.com/psettings/guest-controls/retargeting-opt-out
On the basis of our legitimate interests for the purpose of analysis, optimization and the economic operation of our online platform within the meaning of Section Subsection 1 (f) of the GDPR, the features of the social network XING.The provider is the company XING AG, Dammtorstrasse 2932, 20354 Hamburg, Germany. Each time you visit one of our pages that contains XING features, a connection will be made to XING servers. To the best of our knowledge, no storage of personal data takes place.In particular, no IP addresses are stored nor is the usage behaviour evaluated.
For your rights and setting options relating to protecting your privacy, please refer to the respective privacy policy of the provider: www.xing.com/app/share
We, STILL GmbH, utilise the functions of the social network Instagram on the basis of our legitimate interests for the purposes of analysing, optimising and economically operating our online service within the meaning of Section 6(1)(f) of the GDPR. The provider is Meta Platforms Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland.
YouTube
On the basis of our legitimate interests for the purposes of analysis, optimization and the economic operation of our online platform within the meaning of Section Subsection 1 (f) of the GDPR, we—STILL Norge AS—integrate the features of the web service YouTube for the display and replaying of videos.The provider of these features is YouTube, LLC 901 Cherry Ave.San Bruno, CA 94066 USA.YouTube, LLC is a subsidiary of Google Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, USA.
In this case, extended data protection mode is used, which, according to information given by the provider, does not activate any storage of user information until the video is replayed. As soon as the replaying of embedded YouTube videos is started, YouTube uses cookies to collect information about the user behaviour. These are for the purpose of collecting statistics on videos, improving user friendliness and preventing improper procedures. Each time the STILL Norge AS website is accessed, regardless of whether any embedded videos are played, a connection is made to the Google network ‘DoubleClick’, which can trigger further data processing procedures without the influence of our company.
Further information about the use of cookies can be found in the privacy policy of YouTube at: www.google.de/intl/en/policies/privacy/
Google Tag Manager
On the basis of our legitimate interest (within the meaning ofi.e. our interest in the analysis, optimization and economic operation of our online platform within the meaning of Section 6 Subsection 1 (f) of the GDPR) the STILL website uses Google Tag Manager.This service enables website tags to be managed via an interface. Google Tag Manager implements tags only.No cookies are set and no personal data is collected. Google Tag Manager also triggers other tags that collect data where required. Google Tag Manager does not access this data. If it has been disabled at domain or cookie level, it is retained for all tracking tags, provided that they have been implemented with Google Tag Manager.
You can find detailed information about Google Tag Manager at the following link: https://marketingplatform.google.com/about/analytics/tag-manager/use-policy/
Google-Maps
The STILL website uses the ‘Google Maps’ component to display maps and create travel directions.Google Maps is operated by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043 USA, hereinafter referred to as ‘Google’.
By using this website the user agrees to the collection, processing and use of automatically collected data and data entered by the user (including the IP address) by Google, an agent of Google or third parties. The data processing takes place on the basis of your consent within the meaning of Section Subsection 1 (a) of the GDPR.
In addition, each time the component ‘Google Maps’ is accessed, a cookie is set by Google in order to process user settings and user data for display of the page on which the component ‘Google Maps’ is integrated. This cookie is usually not deleted by closing the browser, but expires after a certain amount of time, unless it is manually deleted by you beforehand.
If you disagree with the processing of your data, you have the option of disabling the ‘Google Maps’ service and, by doing this, preventing the transmission of data to Google. To do so, you must disable the Java Script feature in your browser. However, we draw your attention to the fact that in this case you will not be able to use ‘Google Maps’ or only to a limited extent.
The terms of service for Google Maps can be found at the following link: www.google.de/intl/en/policies/terms/regional.html
Full details on transparency, options and privacy policy can be found at the privacy centre of google.com: www.google.de/intl/en/policies/privacy/
Use of other active content
Active content, including JavaScript, ActiveX and other controls and scripting languages that contain executive elements, are integrated into our websites. For security reasons, you can disable these at any time via your browser configuration. Our websites also remain navigable without JavaScript.
Transfer of data to third parties
STILL Norge AS also provides its services together with selected partners. They are subject to the same strict provisions under data protection law and are also integrated into the privacy concept of STILL Norge AS. Any transfer of data to third parties takes place only within the scope of the legal requirements (for order data processing, e.g. online orders) and only to the extent described in the privacy policy. We pass the data of users on to third parties only if this is required, for example, for contractual purposes on the basis of Subsection 1 (b) of the GDPR or on the basis of legitimate interests within the meaning of Subsection 1 (f) of the GDPR for the economic and effective operation of our business. Further information, such as voluntarily made statements on main areas of interest, for example, are not passed on to any third parties by STILL Norge AS. Personal data is only transmitted to state institutions and authorities only in the context of statutory or judicial obligations.
Recipients outside of the EU
With the exception of the processing described in this privacy policy, we do not pass on your data to any recipients based outside of the European Union or European Economic Area.
Your rights as an affected person
According to the GDPR, in addition to the right of cancellation, subject to existence of the respective statutory requirements you are entitled to the following additional rights:
- the right to confirmation of the processing of your personal data by the party responsible for the processing and the right to gratuitous information about stored data relating to your person or to your pseudonym either in writing or at your request in electronic form in accordance with Section 15 of the GDPR;
- the right to immediate correction of any incorrect personal data concerning you or to the completion of any incomplete correct personal data—also by means of a supplementary declaration—in accordance with Section 16 of the GDPR;
- the right to immediate deletion (‘right to be forgotten’) of your personal data stored by us in accordance with Section 17 of the GDPR, provided that no statutory or contractual retention periods or other statutory obligations or rights relating to further storage have to be observed; if the personal data is made public by STILL GmbH and if our company is obligated as the responsible party in accordance with Section 17 Subsection 1 of the GDPR to delete the personal data, STILL GmbH will take appropriate measures, including measures of a technical nature, in consideration of the available technology and implementation costs, to notify other parties responsible for the data processing, who process the published personal data, that the person affected has demanded from these other parties responsible for the data processing the deletion of all links relating to this personal data and of any copies or replications of this personal data, where processing is not required. The privacy officer of STILL GmbH will instigate the necessary action in individual cases. If statutory regulations do not allow deletion, your data will instead be locked by us, so that it is only accessible for the purpose of compulsory statutory provisions.
- the right to restriction of the processing of your data in accordance with Section18 of the GDPR;
- the right to data portability in accordance with Section 20 of the GDPR; in doing so you are entitled to receive the personal data relating to you, with which the person responsible at our company was provided by you, in a structured, standard and machine-readable format.Furthermore, you have the right to have your personal data transmitted directly by our responsible party to another responsible party, provided that this is technically feasible and that this does not affect the rights and freedoms of any other persons;
- the right to complain to a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence or work or that of the registered office of our company.
Right of objection
If you no longer want your personal data to be actively used for the internal purposes of STILL Norge AS, in accordance with Section 21 Subsections 24 of the EU GDPR you are entitled to object at any time to such use and processing. To do so, it is sufficient to send a corresponding e-mail to datenschutz@kiongroup.com. The special case of a legally required locking of the data instead of data deletion in accordance with Section 17-19 of the EU GDPR remains unaffected.
Data security
STILL Norge AS continuously applies appropriate technical and organizational security measures to protect your personal data as comprehensively as possible against manipulation, partial or complete loss and unauthorized access by third parties. Our security measures are continually being improved in line with technological development.
In addition to securing the operating environment, we use, for example, an encryption procedure on our entire web platform. All data personally transmitted by you, including your payment data, is transferred by means of the generally used and secure standard SSL (Secure Socket Layer) protocol to prevent misuse of the data by third parties. SSL is a secure and proven standard that is also used in online banking. You can recognize a secure SSL connection, among other things, by the locked padlock symbol on the status bar of your browser and if the address line contains ‘https’.
Nevertheless, we draw your attention to the fact that Internet-based data transfers fundamentally have security vulnerabilities (e.g. when communicating by e-mail), so that absolute protection of the data against access by third parties cannot be guaranteed.
Proviso
STILL Norge AS reserves the right at any time to amend or supplement this privacy policy subject to consideration of the provisions under data protection law. All innovations and changes will be published on our website. New privacy policy provisions therefore become effective upon their publication. We recommend you to visit this website regularly to view the latest version.
Date of the last update: November 2020
Read our Terms of service