Title Image

PRIVACY POLICY

CEC / PRIVACY POLICY

PRIVACY POLICY

Privacy Policy (06 February 2025)

By means of the following information, we would like to inform you about the processing of your personal data carried out by us and about your rights arising from personal data protection laws, in particular from Regulation (EU) 2016/679 – the General Data Protection Regulation (“GDPR”).

1. Data Controller and Data Protection Officer

The data controller within the meaning of Article 4(7) GDPR is:

Konica Minolta Slovakia spol. s r.o.
Galvaniho 17/B, 821 04 Bratislava
Tel.: +421 850 166 177
E-mail: info@konicaminolta.sk

 

If you have any questions regarding data protection, you may contact our data protection contact person in the Slovak Republic at any time:

 

Mgr. Karolína Tomasovič, LL.M.
E-mail: oou@konicaminolta.cz
Tel.: +420 841 777 777

 

The Data Protection Officer for the Konica Minolta Group pursuant to Article 37 GDPR is:

 

Dr. Frederike Rehker
Konica Minolta Business Solutions Deutschland GmbH
Europaallee 17, 30855 Langenhagen
Phone: +49 (0)511 7404-0
E-mail: dataprotection@konicaminolta.eu

2. Rights of Data Subjects

As a data subject, you have the following rights:

2.1 Right of access (Article 15 GDPR)

You have the right to obtain information at any time about the categories of personal data processed, the purposes of the processing, all recipients or categories of recipients of your personal data, and the envisaged storage period.

 

2.2 Right to rectification (Article 16 GDPR)

You have the right to request the rectification or completion of inaccurate or incomplete personal data concerning you.

 

2.3 Right to erasure (“right to be forgotten”) (Article 17 GDPR)

You have the right to request the immediate erasure of your personal data. As the controller, we are obliged to erase your personal data in particular where:

  • your personal data are no longer necessary for the purposes for which they were collected or otherwise processed;
  • the processing of your personal data was based exclusively on your consent, which you have withdrawn, and there is no other legal basis for the processing of your personal data;
  • you have objected to the processing based on legitimate interests or public interest, and we are unable to demonstrate overriding legitimate grounds for the processing;
  • your personal data have been processed unlawfully;
  • the erasure of your personal data is necessary for compliance with a legal obligation to which we are subject;
  • your personal data were collected in relation to the offer of information society services in accordance with Article 8(1) GDPR.

 

Please note that the right to erasure is subject to limitations and does not apply where the processing of personal data is necessary in particular:

  • for exercising the right to freedom of expression and information;
  • for compliance with a legal obligation to which we are subject;
  • for the performance of a task carried out in the public interest or in the exercise of official authority vested in us;
  • for reasons of public interest in the area of public health;
  • for archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes;
  • for the establishment, exercise or defence of legal claims.

 

2.4 Right to restriction of processing (Article 18 GDPR)

In this case, your personal data will be excluded from any processing. This right applies where:

  • you contest the accuracy of your personal data and we need to verify the accuracy of such personal data;
  • the processing of your personal data is unlawful and you request the restriction of processing instead of the erasure of your personal data;
  • we no longer need your personal data for the purposes of the processing, but you require them for the establishment, exercise or defence of legal claims;
  • you have objected to the processing of your personal data and it has not yet been determined whether your legitimate grounds override our legitimate grounds.

 

2.5 Right to data portability (Article 20 GDPR)

You have the right to receive the personal data concerning you, which you have provided to us as the controller, in a structured, commonly used and machine-readable format and to transmit those data to another controller. In addition, you have the right to request that we transmit your personal data directly to another controller, where technically feasible.

 

The requirements for exercising the right to data portability are as follows:

  • your personal data are processed by automated means on the basis of your consent or a contract;
  • your personal data are not processed for compliance with a legal obligation to which we are subject;
  • your personal data are not processed for the performance of a task carried out in the public interest;
  • your personal data are not processed for the exercise of official authority vested in us;
  • the exercise of this right does not adversely affect the rights and freedoms of others.

 

2.6 Right to object (Article 21 GDPR)

You have the right to object at any time, on grounds relating to your particular situation, to the processing of your personal data. This also applies to profiling. This right applies where the processing is based on our legitimate interests pursuant to Article 6(1)(f) GDPR or on the performance of a task carried out in the public interest pursuant to Article 6(1)(e) GDPR.

In addition, you have the right to object at any time to the processing of your personal data for direct marketing purposes or to profiling related to such direct marketing.

Where you object to the processing of your personal data based on legitimate interests, we shall, in each individual case, assess whether we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms. If no such compelling legitimate grounds exist or if your interests, rights and freedoms override ours, your personal data will no longer be processed, except where the processing is necessary for the establishment, exercise or defence of legal claims.

Where you object to the processing of your personal data for direct marketing purposes, including profiling related to such direct marketing, your personal data will no longer be processed for such purposes.

 

2.7 Right to lodge a complaint with a supervisory authority (Article 77 GDPR)

You also have the right to lodge a complaint at any time with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement, if you consider that the processing of personal data relating to you infringes data protection laws.

Our activities are also supervised by the Office for Personal Data Protection, with which you may lodge a complaint in the event of dissatisfaction. Further information is available on its website (www.uoou.cz).

 

2.8 Right to withdraw consent (Article 7 GDPR)

If you have given us your consent to the processing of your personal data, you may withdraw such consent at any time, without stating reasons and in an informal manner. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.

3. General information on the purpose of processing

The processing of your personal data is in principle always linked to a specific, explicit and legitimate purpose which is defined prior to the commencement of the processing activity, in accordance with the principle of purpose limitation pursuant to Article 5(1)(b) GDPR. In the further course of this Privacy Policy, references to specific processing activities also include a description of the respective purpose.

4. General information on legal bases for processing

We process your personal data in accordance with the GDPR. Accordingly, the processing of your personal data is always based on a legal basis. The legal bases for the processing of personal data are set out in Article 6 GDPR.

4.1 Legal bases for the processing of personal data

Consent
Where we obtain your consent to the processing of your personal data, such processing is carried out on the legal basis of Article 6(1)(a) GDPR. By way of explanation of this legal basis, the following example applies: you receive advertising from us by e-mail and/or telephone and you have given your prior consent thereto.

 

Performance of a contract
Where the processing of your personal data is necessary for the performance of a contract to which you are a party or in order to take steps at your request prior to entering into a contract, the legal basis for such processing is Article 6(1)(b) GDPR.

 

Legal obligation
Where the processing of your personal data is necessary for compliance with a legal obligation to which we are subject, such processing is based on Article 6(1)(c) GDPR.

 

Protection of vital interests
Where the processing of your personal data is necessary in order to protect your vital interests or those of another natural person, such processing is carried out in accordance with Article 6(1)(d) GDPR.

 

Public interest
Where we process your personal data for the performance of a task carried out in the public interest or in the exercise of official authority vested in us, the legal basis for such processing is Article 6(1)(e) GDPR.

 

Legitimate interests
Where the processing of personal data is necessary for the purposes of the legitimate interests pursued by our company or by a third party, and where such interests are not overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, the legal basis for the processing is Article 6(1)(f) GDPR.

 

4.2 Legal bases for the processing of special categories of personal data

In exceptional cases, we may need to process special categories of personal data, such as, in particular:

  • information on racial or ethnic origin (e.g. skin colour or specific languages);
  • information on political opinions (e.g. membership of political parties);
  • data concerning religious or philosophical beliefs (e.g. affiliation with a religious group or sect);
  • data concerning trade union membership;
  • genetic data;
  • biometric data (e.g. fingerprints or photographs);
  • data concerning health (e.g. identification numbers of persons with disabilities);
  • or data concerning your sex life or sexual orientation.
  • Such processing is carried out on the basis of one of the following legal bases as set out in Article 9 GDPR:

 

Explicit consent
Where you have given us your explicit consent to the processing of the above-mentioned categories of personal data, such consent constitutes a legal basis for the processing in accordance with Article 9(2)(a) GDPR.

 

Compliance with obligations in the field of social security, social protection and labour law
Where the processing of special categories of personal data relating to you is necessary for compliance with obligations under social security, social protection or labour law, the legal basis for such processing is Article 9(2)(b) GDPR.

 

Protection of vital interests
Where the processing of special categories of personal data relating to you is necessary in order to protect your vital interests or those of another natural person, such processing is carried out in accordance with Article 9(2)(c) GDPR.

 

Manifestly made public data
Where special categories of your personal data which you have manifestly made public are processed, such processing is based on Article 9(2)(e) GDPR.

 

Establishment, exercise or defence of legal claims
Where the processing of special categories of personal data relating to you is carried out for the purposes of the establishment, exercise or defence of legal claims, the legal basis for such processing is Article 9(2)(f) GDPR.

 

Substantial public interest
Where special categories of personal data relating to you are processed for reasons of substantial public interest on the basis of Union or Member State law, such processing is based on Article 9(2)(g) GDPR.

 

Assessment of working capacity or medical purposes, including health care
Where the processing of special categories of personal data relating to you is based on Union or Member State law or pursuant to a contract with a health professional and is carried out for the purposes of preventive or occupational medicine, the assessment of an employee’s working capacity, medical diagnosis, the provision of health or social care or treatment, or the management of health or social care systems and services, such processing is based on Article 9(2)(h) GDPR.

 

Public interest in the area of public health
Where the processing of special categories of your personal data is necessary for reasons of public interest in the area of public health, including protection against serious cross-border threats to health such as pandemics, such processing is carried out on the legal basis of Article 9(2)(i) GDPR.

 

Archiving purposes, scientific or historical research purposes, statistical purposes
Where the processing of special categories of personal data relating to you is based on Union or Member State law providing for such processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes, such processing is based on Article 9(2)(j) GDPR.

5. General information on record-keeping obligations and erasure periods

Unless otherwise stated, we erase personal data in accordance with Article 17 GDPR or restrict their processing in accordance with Article 18 GDPR. In addition to the retention periods specified in this Privacy Policy, we process and store your personal data only for as long as this is necessary to fulfil our contractual and statutory obligations. Personal data which are no longer required after the purpose has been fulfilled are regularly erased.

Information relating to transactions (e.g. relating to a specific transaction or contractual ordering relationship) is erased after completion of the respective transaction, subject to a retention period of three years following the end of the relevant calendar year, unless further processing is required for a limited period for other legally permissible purposes.

For the fulfilment of documentation obligations and statutory archiving requirements, we comply in particular with Act No. 431/2002 Coll. on Accounting and Act No. 395/2002 Coll. on Archives and Registries and on the amendment of certain acts, which govern retention periods for records as well as their disposal.

6. General information on the disclosure of personal data

Recipients of your data

As a matter of principle, we do not sell or rent user data. Transfers to third parties beyond those described in this Privacy Policy take place only where this is necessary for the provision of the requested service. For this purpose, we cooperate, inter alia, with service providers in the areas of marketing, sales, IT, logistics and human resources. We select such service providers with great care.

In other cases, we disclose data to competent public authorities upon request. Such disclosure takes place only where there is a legal obligation to do so, for example on the basis of a court order.

Locations of processing of your personal data

As a rule, we process your data in Germany and in other European countries (EU/EEA). Where your data are processed in countries outside the European Union or the European Economic Area (i.e. so-called third countries), this takes place only where you have given your explicit consent, where this is required by law, or where it is necessary for the provision of our services.

In such exceptional cases, processing in third countries is carried out on the basis of appropriate safeguards, such as an adequacy decision of the European Commission or the provision of appropriate safeguards in accordance with Article 44 et seq. GDPR.

The European Commission has determined that an adequate level of data protection also exists for companies in the United States on the basis of the EU-U.S. Data Privacy Framework (DPF). Companies established in the United States may certify their compliance with the DPF by means of self-certification. Where the DPF applies to data transfers, we will provide you with further information.

7. Cookies

7.1 General information on cookies

We use cookies on our websites. Cookies are small text files which are stored on your hard drive depending on the browser you use and which allow certain information to be transmitted to the website that sets the cookie. Many of the cookies we use are deleted after the end of the browser session (so-called session cookies). Other cookies remain stored on your end device and enable us to recognise your browser on your next visit (so-called persistent cookies).

Cookies are used on our website for various purposes. For reasons of transparency, individual cookies are assigned to one of the following categories:

Strictly necessary (technically required)
Cookies in this category are required to ensure the basic functionality and/or security of this website.

Functionality
Cookies in this category are used to enhance the user experience, for example by storing preferences such as language settings, text size settings, user names or regional settings.

Marketing
These cookies are used by advertisers to display advertisements that are relevant to potential customers.

Performance and analytics
This type of cookie helps us analyse the use of the website in order to measure and improve its performance.

You can refuse the acceptance of cookies or restrict such refusal, for example to cookies from third parties, via the settings of the browser you use. However, your browser settings may result in you not being able to use all functions of our website.

Further information on managing cookies in the respective browsers can be found here:

8. In the context of which processing activities are my personal data processed?

8.1 Processing activity – Google Tag Manager
We use Google Tag Manager on our websites, a service provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). Using Google Tag Manager, we are able to centrally integrate and manage various software solutions on our website, such as Google Analytics, by means of corresponding code snippets, also referred to as “tags”. These code snippets are also used to collect data about your browser, website visits or to set cookies.
Google Tag Manager itself is integrated via JavaScript. The files required to integrate Google Tag Manager are loaded from Google’s servers. Upon granting your consent, your end device establishes a connection to Google’s servers and initiates a request to retrieve the required files. In the course of this process, your personal data, such as your IP address, are transmitted to Google and processed by Google for the purpose of delivering the requested files.
Due to Google’s place of establishment, the transfer of your personal data to the United States may constitute a transfer to a third country. Google LLC is certified under the Data Privacy Framework (DPF), thereby ensuring an adequate level of data protection.
The legal basis for the processing of your personal data in connection with the use of Google Tag Manager is your consent pursuant to Article 6(1)(a) GDPR. Information on your right to withdraw consent can be found in section 2.8 “Right to withdraw consent (Article 7 GDPR)” of this Privacy Policy.
Further information on the processing of your personal data within the scope of the individual tools used can be found below in the separate descriptions for each solution.

 

8.2 Processing activity – Visiting our website
If you use our website for informational purposes only, i.e. if you do not register or otherwise provide us with information, we collect only those personal data that your browser transmits to our server. Such data are technically necessary to display the website to you and to ensure the stability and security of our website.
In this case, the legal basis for the processing of your personal data is Article 6(1)(f) GDPR. Our legitimate interest consists in providing and optimally presenting this website as well as protecting it against external attacks and ensuring traceability. We erase such personal data after the end of the usage process unless we require them for the purpose of detecting and tracing misuse; in such cases, the data are stored for a maximum period of three days.
When visiting our website, the following personal data may be processed, which your browser automatically transmits to our servers and which are stored there in so-called “log files”:

  • IP address of the end device used to access the website;
  • date, time and duration of the request;
  • country of origin of the request; content of the request (specific page/file);
  • access status / HTTP status code (e.g. “200 OK”);
  • internet address of the website from which the request to access our website originated;
  • browser type and installed plug-ins (e.g. Flash Player);
  • operating system and interface;
  • language and version of the browser software;
  • volume of data transferred in each case;
  • time zone difference to Greenwich Mean Time (GMT).

Certain services offered on our website can only be provided if we are able to contact you. In this context, the use of such services depends on whether you provide us with certain personal (contact) data. We collect, use and process such personal data only to the extent necessary to provide the respective services.
If you contact us by e-mail or via a contact form, we store the personal data you provide in each case (your e-mail address and any other information you voluntarily provide, such as your name or telephone number) in order to process your request and respond to any follow-up questions.
In this case, the legal basis for the processing of your personal data is Article 6(1)(f) GDPR. Our legitimate interest lies in responding to your enquiry. After a final response to your request, we erase your enquiry and the related processing information after a retention period of three years following the end of the relevant calendar year.

 

8.3 Processing activity – Website administration
Our websites are administered by Active Elements GmbH, Heinrich-Nordhoff-Ring 5, 30826 Garbsen, Germany, and hosted by Vercel Inc., 440 N Barranca Ave #4133, Covina, CA 91723, USA, on servers operated by Amazon Web Services (AWS).
The personal data collected on our website are therefore stored on the servers of these service providers. Such data may include, for example, your IP address, meta and communication data, or data submitted via contact forms.
The AWS servers on which our website is hosted are located in Europe. However, due to the place of establishment of Vercel and Amazon, the processing of your personal data may involve a transfer of your personal data to a third country. Vercel and Amazon are certified under the Data Privacy Framework (DPF), thereby ensuring an adequate level of data protection.
The legal basis for the use of Active Elements, Vercel and Amazon for the hosting and administration of our website is our legitimate interest pursuant to Article 6(1)(f) GDPR, namely to ensure the operation and security of our website and to provide our customers and prospective customers with an optimised user experience.

 

8.4 Processing activity – Content Management System / Contentstack
We use a content management system (CMS) provided by Contentstack Inc., 315 Montgomery St., Suite 909, San Francisco, CA 94104, USA, on our websites. The CMS is used to present and manage websites, online shops, intranets or other corporate websites. We use the Contentstack Software-as-a-Service solution to create and maintain our corporate websites. It enables us to create website content and distribute it to the websites of our subsidiaries and partners via defined workflows.
As Contentstack is established in the United States, the processing of your personal data may constitute a transfer to a third country. Contentstack is certified under the Data Privacy Framework (DPF), thereby ensuring an adequate level of data protection.
The legal basis for the processing of your personal data in connection with the use of Contentstack is our legitimate interest pursuant to Article 6(1)(f) GDPR. Our legitimate interest in this case is to ensure the operation and security of our website.
Further information on data protection at Contentstack can be found here: Privacy – Legal Information | Contentstack.

 

8.5 Processing activity – CloudFront
This website uses the CloudFront content delivery network (CDN), a service provided by Amazon Web Services, Inc., 410 Terry Avenue North, Seattle, WA 98109-5210 (“Amazon Web Services”). The CDN is integrated into our website in the form of JavaScript code and is loaded during website visits.
CloudFront enables us to ensure improved loading performance, greater availability and the prevention of data loss by delivering duplicate data (e.g. graphics or scripts) of this website from servers located worldwide. When visiting this website, image or video files may be automatically requested from CloudFront. Such automatic file requests may result in the transmission of personal data, such as your IP address, to Amazon Web Services’ servers.
Due to Amazon’s place of establishment, the transfer of your personal data to Amazon may involve a transfer to a third country outside the European Union or the European Economic Area, in particular to the United States. Amazon Web Services, Inc. is certified under the Data Privacy Framework (DPF), thereby ensuring an adequate level of data protection.
The legal basis for the processing of your personal data in connection with the use of CloudFront is our legitimate interest pursuant to Article 6(1)(f) GDPR, namely to ensure the security and availability of this website.
Further information on data protection is available from Amazon Web Services at:
https://aws.amazon.com/data-protection/
https://aws.amazon.com/privacy/

 

8.6 Processing activity – Consent Management Platform / Usercentrics
We use the Usercentrics Consent Management Platform on our website. This is a JavaScript-based consent management tool. By means of this tool, we are able to provide visitors to our website with an overview of the essential software solutions used and, at the same time, offer them the opportunity to decide on the use of any additional software solutions that require prior consent. In addition, the platform enables visitors to withdraw any consent given at any time without stating reasons and thereby prevent the future processing of personal data by the respective software solutions.
Furthermore, the platform enables us to fulfil the GDPR requirements relating to consent management, including the ability to demonstrate whether consents have been granted or not.
In connection with the use of the Usercentrics Consent Management Platform, the following data may be processed, inter alia:

consent details;

consent ID;

consent status (opt-in, opt-out);

consent timestamp;

language of the consent banner;

version of the banner template;

device data (HTTP user agent, HTTP referrer).

The use of the Usercentrics Consent Management Platform and the related processing of personal data serve to comply with legal obligations pursuant to Article 6(1)(c) GDPR. The use of the platform is therefore necessary in order to fulfil the accountability obligation pursuant to Article 5(2) GDPR, as well as legal obligations arising from the judgment of the Court of Justice of the European Union “ECLI:EU:C:2019:801” and the related judgment of the German Federal Court of Justice “I ZR 7/16”. According to these judgments, Section 15(3) sentence 1 of the German Telemedia Act (TMG) must be interpreted in light of Article 5(3) of Directive 2002/58/EC (ePrivacy Directive) to the effect that a service provider may use cookies to create usage profiles for advertising or market research purposes only with the user’s consent.
Personal data processed in connection with the use of the Usercentrics Consent Management Platform are erased as soon as they are no longer required for the fulfilment of the purpose. In the event of a withdrawal of consent, we retain the information relating to such withdrawal for a period of three years. This retention is based, on the one hand, on the accountability obligation pursuant to Article 5(2) GDPR and, on the other hand, on the regular statutory limitation period pursuant to Section 195 of the German Civil Code (BGB). Pursuant to Section 199 BGB, this limitation period begins at the end of the year in which the claim arose. Accordingly, the limitation period begins at 00:00 on 31 December of the year in which the consent was withdrawn and ends three years later at 00:00 on 31 December.

 

8.7 Processing activity – Google Fonts
We use fonts provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, on our websites. These fonts are grouped by Google under the name “Google Fonts”.
In order to integrate Google Fonts, so-called cascading style sheets (CSS) and font files are required. Style sheets are files used to modify the design of a website, such as fonts or font sizes. A font file contains all information on how the font is displayed. The relevant files (style sheets and font files) required for the integration of Google Fonts are stored on our web server. This means that no connection to Google’s servers is required to load these files and, consequently, no data are transmitted to Google in connection with the use of Google Fonts.

 

8.8 Processing activity – Algolia search
In order to provide visitors to our website with on-site search functionality, we use a solution provided by Algolia, Inc., 301 Howard St., Ste. 300, San Francisco, California 94105, USA.
Users can search for products and pages from our portfolio. Where the search function is used and a request is sent via our website, only the IP address is used for the purpose of displaying the search results. Through the use of a proxy solution, no data are transmitted to our server and no data are stored.
The processing of the IP address is based on our legitimate interest in the fast processing of search requests and thus in improving the user-friendliness of our website, pursuant to Article 6(1)(f) GDPR.

 

8.9 Processing activity – Web analytics

8.9.1 Google Analytics 4
We use the Google Analytics 4 service (“GA4”) on our website. GA4 is a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). We use GA4 to collect data about visitors to our website, which GA4 uses to generate reports on website usage. These reports help us to better understand how visitors use our website and to continuously improve it.
The collection of visitor data is based on events and parameters. The parameters recorded vary depending on the event being tracked. However, the following parameters are recorded for each event:

language;

page location;

referrer URL;

page title;

screen resolution.

Additional parameters that may be captured through enhanced event measurement include:

clicks;

downloads;

first website visit;

form interactions;

site searches;

scrolling on the website;

session start;

video interactions;

searches performed on the website.

Irrespective of the parameters listed above, your IP address is also processed. It is used for geolocation purposes and is subsequently automatically anonymised by Google.
In addition, detailed location and device-related data may be collected, including in particular:

city;

latitude (city);

longitude (city);

browser version;

browser user agent string;

device brand;

device model;

device name;

operating system version;

screen resolution.

Visitor data may be collected in particular by means of cookies placed on your end device by GA4, which enable the analysis of your visit to and use of our website. Further information on cookies can be found in section “7. Cookies” of this Privacy Policy.
GA4 may use various methods to aggregate visitor data across different devices. On the one hand, GA4 may assign you a unique user ID, which enables cross-device tracking; however, we do not use this functionality. If you have a Google account, are logged in and have enabled personalised advertising, Google may link the collected information to your Google account using Google Signals. 

These data may then be used for the display of personalised advertising. Using a device identifier, which corresponds to the client ID in the case of a website and the app instance ID in the case of an application, GA4 may also compare data across devices.
If GA4 cannot use cookies or user identifiers because you have not given your consent, GA4 may fill gaps in the data by means of so-called behavioural modelling based on machine learning concepts. In this process, GA4 attempts to supplement missing information using so-called “observed” data from similar users who have given consent to the processing.
Data collected by GA4, such as the screen resolution of your end device, may be aggregated with other Google services that we use in order to initiate further processing. This includes, for example, Google Ads. Data collected by GA4 may be used to create audiences in Google Ads and used for remarketing purposes. User-level data processed in GA4 are automatically deleted after a retention period of 14 months.

Due to Google’s place of establishment, the transfer of your personal data to Google may constitute a transfer to a third country. A transfer to a third country refers to the transfer of personal data to a destination in a country outside the European Union or the European Economic Area. Google LLC is certified under the Data Privacy Framework (DPF), thereby ensuring an adequate level of data protection.
The legal basis for the processing of your personal data in connection with the use of Google Analytics 4 is your consent pursuant to Article 6(1)(a) GDPR. Information on your right to withdraw consent can be found in section 2.8 “Right to withdraw consent (Article 7 GDPR)” of this Privacy Policy.

 

8.9.2 Microsoft Clarity
This website uses the web analytics features of Microsoft Clarity, provided by Microsoft Ireland Operations Ltd, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland (hereinafter referred to as “Microsoft”).
Microsoft Clarity provides website usage statistics, session logs, and heatmaps, which are primarily generated by tracking mouse movements. Microsoft Clarity uses the processed information to evaluate the use of our website, report on website activity, and provide other services related to website usage. Accordingly, we use Microsoft Clarity to analyze and regularly improve user behavior on our website, and the statistics obtained enable us to make our offerings more engaging and user-friendly for you.
The collection of your user data is conducted via cookies set on your end device, which allow the analysis of your visit to our website. For more information about cookies, please refer to Section 7 “Cookies” of this Privacy Policy.
The following data are processed by Microsoft Clarity:

Unique user ID

Date and time of visit

IP address

Location data

Session ID

User behavior

Interaction data

Mouse movements

Clicks

Scrolling activity

Data processed at the user level in Microsoft Clarity are automatically deleted after 13 months. Text fields, such as contact forms, surveys, or search fields, are masked in screen recordings, so any data entered are not recorded. Therefore, personal data submitted in our online forms are not processed by Microsoft Clarity.
In exceptional cases, your personal data may be transferred to the United States due to the location of Microsoft’s headquarters, constituting a transfer to a so-called third country. A transfer to a third country means the transfer of personal data to a destination outside the European Union or the European Economic Area. Microsoft Corporation has a Privacy Shield certification, ensuring an adequate level of data protection.
The legal basis for the processing of your personal data in connection with the use of Microsoft Clarity is your consent pursuant to Article 6(1)(a) of the GDPR. Information regarding your right to withdraw consent can be found in Section 2.8 “Right to Withdraw Consent (Article 7 GDPR)” of this Privacy Policy.

 

8.9.3 Website Performance Measurement / Dynatrace
We use the software solution provided by Dynatrace, Inc. to measure website performance and loading times. For this purpose, the visitor’s IP address is processed using cookies. The software is hosted on the Microsoft Azure Cloud by Konica Minolta in Sweden, ensuring that no data is transferred to the provider and that the provider has no access to the data. Konica Minolta retains this data for a period of 35 days.
The legal basis for processing your personal data in connection with the use of Dynatrace is your consent pursuant to Article 6(1)(a) of the GDPR. Information regarding your right to withdraw consent is provided in Section 2.8 “Right to Withdraw Consent (Article 7 GDPR)” of this Privacy Policy.

 

8.10 Data Processing Activities – Targeting and Advertising

8.10.1 Google Ads
On our website, we use the Google Ads service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). This service allows us to promote our attractive offers on external websites through advertising materials (so-called Google Ads). These advertising materials are provided by Google via advertising servers. For this purpose, the advertising servers use cookies. Further information about cookies can be found in Section 7 “Cookies.”

Cookies from advertising servers allow us to evaluate performance parameters (e.g., ad impressions, clicks, or conversions). This enables us to determine the effectiveness of individual advertising measures. If you access our website via a Google advertisement, Google Ads places a cookie on your end device. This cookie stores analytical values (unique cookie ID, number of ad impressions per site (frequency), last impression, opt-out information (indicating that the user no longer wishes to be contacted)). Cookies set by Google Ads expire after 30 days. These cookies are not intended for personal identification of the user. Instead, they allow Google Ads to recognize your browser.
If you visit certain pages on an Adwords client website, Google and the client recognize that you were redirected to the client’s page via a clicked advertisement. Google provides us, as the Adwords client, with statistical analyses. These analyses allow us to measure the effectiveness of our advertising measures. Apart from this, we do not collect any additional data.
Due to the location of Google’s headquarters, the transfer of your personal data to the United States may constitute a transfer to a third country. Google LLC has a Privacy Shield certification, ensuring an adequate level of data protection.

The legal basis for the processing of your personal data in connection with the use of Google Ads is your consent pursuant to Article 6(1)(a) of the GDPR. Information regarding your right to withdraw consent can be found in Section 2.8 “Right to Withdraw Consent (Article 7 GDPR)” of this Privacy Policy.
More information on Google’s data protection can be found here:

www.google.com/intl/de/policies/privacy/

services.google.com/sitestats/en.html

 

10.2 LinkedIn Insight Tag
We have integrated the “LinkedIn Insight Tag” conversion tool from LinkedIn Ireland Unlimited (“LinkedIn”) into our website.

The LinkedIn Insight Tag is a small piece of JavaScript code that we have implemented on our website. The LinkedIn Insight Tag collects data about visits to our website and transmits this data to LinkedIn. Such data includes the URL of the link, IP address, device information, browser information, and a timestamp of the website visit. LinkedIn does not provide us access to the detailed personal data collected. LinkedIn uses this information to provide us with reports on website traffic and advertising performance based on aggregated data, enabling us to optimize our website accordingly. Additionally, LinkedIn allows us to track conversions and retarget visitors to our website through the LinkedIn Insight Tag. This enables us to display targeted advertising off our website without identifying the individual visitor.

Due to the location of LinkedIn, the transfer of your personal data to LinkedIn may constitute a transfer to a third country, namely the United States. LinkedIn Corporation holds a Privacy Shield certification, ensuring an adequate level of data protection.

The legal basis for processing your personal data in connection with the use of the LinkedIn Insight Tag is your consent pursuant to Article 6(1)(a) of the GDPR. Information regarding your right to withdraw consent can be found in Section 2.8 “Right to Withdraw Consent (Article 7 GDPR)” of this Privacy Policy.

Data processed by the LinkedIn Insight Tag is encrypted and anonymized within seven days. Anonymized data is automatically deleted after a maximum of 90 days if it is no longer required for the intended purpose.

Further information on LinkedIn’s privacy policy can be found at: https://www.linkedin.com/legal/privacy-policy.

 

10.3 Marketo
For subscription to our newsletter and for sending information, we use the marketing automation software Marketo from Adobe Systems Software Ireland Ltd (4–6 Riverwalk, City West Business Campus, Dublin 24, Ireland). Marketo is also used to collect statistical data on the use of our website, communications, and webinars, allowing us to optimize our offerings and conduct email marketing and sales activities accordingly. Processing is partially automated for the purpose of evaluating certain personal aspects (profiling).

Marketo collects your IP address and uses cookies to track and analyze website usage to provide information specifically tailored to the user’s interests. Further information about cookies can be found in Section 7 “Cookies.”

Marketo uses this information on our behalf to evaluate the website usage of registered users and to generate website activity reports. You can prevent the storage of cookies by adjusting the appropriate browser settings; however, such settings may mean that you cannot use all functions of our online offerings.

Marketo is hosted on Equinix servers in London. Due to the location of Adobe and Equinix in the United States, the transfer of your personal data to Adobe may constitute a transfer to a third country. A transfer to a third country refers to the transfer of personal data to a destination outside the European Union or the European Economic Area. Adobe Inc. holds a Privacy Shield certification, ensuring an adequate level of data protection.

The legal basis for processing your personal data in connection with the use of Marketo is your consent pursuant to Article 6(1)(a) of the GDPR. Information regarding your right to withdraw consent can be found in Section 2.8 “Right to Withdraw Consent (Article 7 GDPR)” of this Privacy Policy.

Further information about Adobe and Marketo can be found in the Adobe Privacy Center.

 

8.10.4 Customer Mailings
Konica Minolta offers customers and interested parties the option to receive emails based on consent. The only mandatory information required for sending mailings is your email address. Providing other, specifically indicated data is voluntary and will be used to address you personally.
Subscription to the newsletter is carried out via a double opt-in process. This means that after your registration, we will send an email to the provided email address requesting confirmation that you wish to receive information. If you do not confirm your subscription by clicking the link in the email, the link will be deactivated, and your data will be deleted.
If you consent to receive information, you will have access to the following:

News and information about Konica Minolta’s product portfolio

Exclusive invitations to events, trade fairs, and webinars

Case studies and success stories

Market trends in the form of studies, market surveys, and white papers

Opportunities to participate in customer satisfaction surveys

During the double opt-in process, we store the IP addresses you use for 30 days, as well as the registration and confirmation times. Based on your consent, we evaluate your user behavior on our website and in the sent newsletters and link it to your email address/user profile in our database. Additionally, we store information about the browser you use and the settings you have made on your operating system, as well as information about the internet connection you used to access our website. Through the newsletter, we also receive confirmations of receipt and reading, as well as information about links you have clicked in the newsletter. We also record which areas you have visited on our website and in our applications. By creating a personal user profile, we aim to tailor our marketing approach to your interests and optimize our website offerings for you.
Our newsletter contains information and news from Konica Minolta Business Solutions Europe GmbH and other affiliated companies of the group (including but not limited to Konica Minolta Business Solutions Deutschland GmbH, Konica Minolta Business Solutions Austria GmbH, Konica Minolta Business Solutions (Belgium) N.V., Konica Minolta Business Solutions Nederland B.V., Konica Minolta Business Solutions Spain S.A., Konica Minolta Business Solutions Italia S.p.A., Konica Minolta Business Solutions Portugal, Unipessoal Lda., NEA RENT – ALUGUER E COMÉRCIO DE EQUIPAMENTOS S.A., Konica Minolta Business Solutions Sweden AB, Konica Minolta Business Solutions Denmark A/S, Next Agenda ApS, Konica Minolta Business Solutions Finland Oy, Konica Minolta Business Solutions Norway AS, Konica Minolta Business Solutions Czech spol. s r.o., Konica Minolta Business Solutions Bulgaria EOOD, WEBCOM Poland Sp. z o.o., Konica Minolta Hungary Business Solutions Ltd., Konica Minolta Business Solutions SE Ltd, Konica Minolta Croatia – business solutions, Ltd, Konica Minolta Poslovna Rjesenja BH d.o.o., Konica Minolta Business Solutions Polska Sp.z o.o, Konica Minolta Slovakia spol. s r.o., Konica Minolta Business Solutions Romania s.r.l., Konica Minolta Business Solutions Slovenija, poslovne resitve, d.o.o., Konica Minolta Baltia, UAB, Konica Minolta Business Solutions Greece S.A., Konica Minolta Marketing Services Limited, Konica Minolta Marketing Services Ireland Limited, Konica Minolta Marketing Services B.V., Charterhouse Print Management AG, Charterhouse AB, Indicia Group Limited, Hamsard 3099 Limited, Evolving Media Limited, Indicia Limited, Indicia Edinburgh Limited, Konica Minolta Business Solutions France S.A.S., Conibi S.A.S., Dactyl Buro du Centre S.A.S., OMR Impressions S.A.S., Konica Minolta Business Solutions (UK) Ltd, Konica Minolta Business Solutions East Ltd, KONICA MINOLTA Business Solutions (Northern Scotland) Ltd, Capture Imaging Ltd, ProcessFlows Holdings Ltd, ProcessFlows (UK) Ltd, Software Paradise Ltd, Digital Document Solutions Ltd, Konica Minolta Business Solutions (Ideal) Ltd, Konica Minolta Printing Solutions (UK) Ltd, Konica Minolta Business Solutions (Wales) Ltd, Konica Minolta Sensing Europe B.V., Mobotix AG).

The legal basis for processing your personal data for the purposes described above is your consent pursuant to Article 6(1)(a) of the GDPR. You may withdraw your consent at any time without providing a reason. Consent may be withdrawn here or by sending an email to the contact details provided in the brochure. Withdrawal of your consent does not affect the lawfulness of processing carried out on the basis of your consent prior to its withdrawal. Further information on your right to withdraw consent can be found in Section 2.8 “Right to Withdraw Consent (Article 7 GDPR)” of this Privacy Policy.

 

8.10.5 Webinars
Konica Minolta uses the Marketo Interactive Webinars service to offer webinars and other online events to its customers and other interested parties.
The following information is required for registration:

First name

Last name

Email address

Country

This information is necessary to provide you with the webinar for which you have registered. Additionally, the duration of your participation in our webinars is recorded and analyzed. If surveys are conducted during our webinars, these responses are also stored and processed. The number of downloads and any web links clicked during the webinar are also processed. We use this data to evaluate our webinars and optimize our services.
The legal basis for processing your personal data for the purposes described above is your consent pursuant to Article 6(1)(a) of the GDPR. You may withdraw your consent at any time without providing a reason. Withdrawal of your consent does not affect the lawfulness of processing carried out on the basis of your consent prior to its withdrawal. Further information regarding your right to withdraw consent can be found in Section 2.8 “Right to Withdraw Consent (Article 7 GDPR)” of this Privacy Policy.
Further information about Marketo can be found in Section 8.10.3 “Marketo.”

 

8.10.6 Data Processing Activities – Spam Prevention / Google reCAPTCHA
We have integrated Google reCAPTCHA into our website. This service is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).
Google reCAPTCHA is used to distinguish between human input and automated input by programs/bots in form fields, in order to prevent spam and abuse. In the course of providing the service, and in particular during the verification process, Google receives your IP address and, where applicable, additional information about your hardware and software required by Google, such as the version of your browser.
Due to the location of Google’s headquarters, the transfer of your personal data to the United States may constitute a transfer to a third country. Google LLC holds a Privacy Shield certification, ensuring an adequate level of data protection.
The legal basis for processing your personal data in connection with the use of Google reCAPTCHA is our legitimate interest pursuant to Article 6(1)(f) of the GDPR. Our legitimate interest is to ensure the security and functionality of our website, in particular by preventing spam and abuse.
As the data controller, we do not store your personal data.
Further information about data processing by Google can be found in Google’s privacy policy: https://policies.google.com/privacy?hl=en.

 

8.10.7 Qualtrics
We use technologies from Qualtrics LLC, 333 W. River Park Drive, Provo, UT 84604, USA (“Qualtrics”) to conduct surveys. Qualtrics allows us to provide you with the opportunity to give feedback regarding our websites or services. Surveys on our websites are generally anonymous. If you wish to be contacted in connection with your feedback, you may complete a contact form at the end of the survey. Please note that the survey will no longer be anonymous in this case.
In individual cases, we may ask you for feedback on your satisfaction with our services. For this purpose, you will be contacted via email and asked to provide feedback. This only occurs if you have previously provided valid consent for marketing contact in accordance with Article 6(1)(a) of the GDPR. To send this targeted feedback request, Qualtrics is linked with the marketing automation software Marketo. This connection between Marketo and Qualtrics allows us to send emails containing individual survey links generated in Qualtrics, which automatically include all Marketo tracking functions. It also enables analysis of survey data not only in Qualtrics but also in Marketo, allowing us to create customer-oriented follow-up actions based on this data. For more information about Marketo, see Section 8.10.3.

To provide the survey, it is necessary to activate functionally essential cookies. This occurs only when you start the survey and consent to the activation of cookies. Cookies allow, for example, leaving the survey and resuming it later at the point where you previously left off. Depending on your browser settings, you have a maximum of one week to return to the survey and complete your responses. If no further adjustments are made, your preliminary responses will be recorded as final after one week. In general, you can prevent the storage of cookies by adjusting the appropriate settings in your browser; however, please note that this may prevent you from participating in our digital surveys. Further information on cookies can be found in Section 7 “Cookies.”
The legal basis for processing your personal data in connection with surveys is your consent pursuant to Article 6(1)(a) of the GDPR. Collected data is stored and processed on our behalf by Qualtrics on servers within the EU. Due to the location of Qualtrics LLC, in individual cases, access to this data from the United States may occur. Qualtrics LLC is Privacy Shield certified, ensuring an adequate level of data protection. Information about your right to withdraw consent can be found in Section 2.8 “Right to Withdraw Consent (Article 7 GDPR)” of this Privacy Policy.

 

8.11 Data Processing Activities – Recruitment at Konica Minolta
In connection with recruitment, we process the following information:

Your CV, including cover letters and other attachments. These are personal data you provide in CVs and other documents submitted with CVs or in responses to job advertisements. They usually include identification data, contact details, education and work experience, and other information contained in these documents.

Skills test data. During interviews, we need to verify your knowledge. For this purpose, we use various types of tests to assess skills, attention, communication abilities, knowledge, etc. These tests never examine health data or other special categories of personal data.

How we use the collected information and legal basis for processing in connection with recruitment

Data from CVs and other submitted documents is used exclusively for the purposes of recruitment and hiring. Our legitimate interest in this processing is to identify suitable candidates for our company. This processing is also expected by you, as you have submitted a CV or other document and expect it to be used for recruitment purposes.

In some cases, CV and document data may also be used to offer you future job opportunities. This processing is always carried out on the basis of your consent to the processing of personal data. CVs and other documents may also be forwarded to our partner companies listed in Section 3 of this Policy, but only with your consent.

Skills test data is used exclusively to determine candidates’ skills and assess suitability for the advertised position. We have a legitimate interest in this processing.

Who has access to your personal data in connection with recruitment
We ensure that the information you provide is used solely for our purposes, as you are interested in the position offered. If no suitable position is available, we will not share your personal data with other recipients without your explicit consent. With your consent, CVs and other documents may be shared with the following recipients:

Partner company: Konica Minolta IT Solutions Czech s.r.o., Company ID: 25820826, U plynárny 1002/97, Michle, 101 00 Prague 10

Partner company: Konica Minolta Business Solutions Czech s.r.o., Company ID: 00176150, Žarošická 13, Brno, 628 00

Your personal data is processed within the European Union and is not transferred outside the EU.

How long we will process your personal data in connection with recruitment
The retention period of documents you submit depends on whether you consent to processing:

If you do not consent, your CV and other documents will be stored for the duration of the recruitment process, but for a maximum of 1 year.

If you choose to be informed about new job opportunities after one year and provide consent, your CV and other documents will be retained for 2 years.

 

8.12 Data Processing Activities – Social Media on Our Website
On our websites, we offer you the option to share or recommend individual content to your contacts or network on social media platforms, or simply open our page on the respective social network (Instagram, Xing, LinkedIn, and YouTube). For these purposes, standard buttons of the respective social networks are provided.

Simply visiting our website does not initially transmit any personal data to the social media providers. Only when you actively click one of the respective social media buttons to share or recommend content will data such as your IP address, date and time of the click, and the URL of the page you are currently visiting be transmitted, if necessary.

If you are logged into the respective social network at the time of clicking the social media button on our website, the social network will automatically assign the page view to your profile. Even if you use the social media button to recommend content from this website, the social network may associate this information with your profile. If you do not want the social network to link your visit to our website with your profile, please log out of the social network before clicking the respective social media button.

Please also note that your data will be transmitted to the respective social media provider even if you do not have an account with the social network or are not logged in, and still click one of the respective social media buttons on our website. In such cases, the social networks may use your data to create usage profiles and subsequently for purposes such as advertising, market research, or demand-driven website design. You may object to this type of processing in accordance with Article 21 GDPR. To exercise this right, you must contact the respective social media provider directly.

Information on the options for raising objections for each social media provider can be found in the section “Options to Object on Social Media” of this Privacy Policy.

You should also be aware that, due to the location of Instagram, LinkedIn, Xing, and YouTube, your personal data may be transferred to a third country, i.e., to a destination outside the European Union or the European Economic Area, such as the United States.

We would like to emphasize that we do not collect any personal data that is transmitted to the respective social network when you click one of the respective buttons.

By clicking on the respective social media button on our website, you give your consent in accordance with Article 6(1)(a) GDPR for your browser to establish a connection with the servers of the respective social network and for the data described above to be transmitted. Information regarding your right to withdraw consent can be found in Section 2.8 “Right to Withdraw Consent (Article 7 GDPR)” of this Privacy Policy.

 

8.13 Data Processing Activities – Online Social Media Presence
As the website provider, we use online platforms to inform active users about Konica Minolta’s informational offers and services, and to enable direct communication where appropriate. Social media channels complement our own website presence and offer an alternative means of communication for those who prefer this type of information. Currently, we maintain official profiles on the following networks:

Instagram: https://www.instagram.com/konicaminoltaeu

Xing: Konica Minolta Business Solutions Europe GmbH: Information and News | XING

LinkedIn: https://de.linkedin.com/company/konica-minolta-business-solutions-europe-gmbh

YouTube: Konica Minolta Business Solutions Europe GmbH – YouTube

When accessing the respective Konica Minolta profiles on these social networks, the terms and guidelines of the respective providers regarding data processing apply.
We have no influence over the collection of data or its further use by the social networks. Therefore, we only know that your data may be processed for purposes such as market research and advertising, and that usage profiles may be created based on your behavior and resulting interests. Advertising based on your presumed interests may also be placed for this purpose. For this purpose, cookies are typically stored on your device.

We explicitly point out that users’ personal data (e.g., IP address) is stored by the network providers in accordance with their data usage guidelines and is used for commercial purposes. Your data may also be processed outside the European Union or the European Economic Area.
We only process personal data of users in Konica Minolta social media presentations if they contact us and communicate with us via comments or direct messages. You may exercise your rights as a data subject both against us (see also Section 2 “What Are My Rights as a Data Subject?”) and against the social network provider. Information on how the social networks process your personal data, as well as options for objecting, can be found in the section “Options to Object on Social Media” of this Privacy Policy.
The processing of users’ personal data is based on our legitimate interest in effectively informing and communicating with users, in accordance with Article 6(1)(f) GDPR. If the respective providers ask you to give consent for the processing of your data (e.g., by checking a box or confirming a button), the legal basis for processing is Article 6(1)(a) GDPR, i.e., your consent.

Options to Object in Social Media
Detailed information on the respective processing and the options to object (opt-out) can be found in the links provided by the providers:

LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland)

Privacy Policy: https://www.linkedin.com/legal/privacy-policy

Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

Xing (XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany)

Privacy Policy / Opt-Out: https://privacy.xing.com/de/datenschutzerklaerung


In addition, European providers of marketing services offer a new option to object via the following link: http://www.youronlinechoices.com/. This is an initiative aimed at increasing awareness of online advertising. In the section “Manage Preferences” on the page http://www.youronlinechoices.com/de/praferenzmanagement/, you will find an overview of providers whose online advertising you can deactivate or activate.
We would also like to point out that in the case of requests for access and the exercise of other data subject rights, these rights can be most effectively exercised directly with the providers. Only the providers themselves have access to users’ personal data and can directly take the necessary measures and provide information. Should you nevertheless require assistance, you may contact us.

 

8.14 Data Processing Activities – YouTube
On our website, we have integrated YouTube videos. The videos are hosted on www.youtube.com but can be played directly from our website. YouTube is a platform of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”).
When embedding videos on our website, we activated the enhanced privacy mode. This means that if you do not play the videos, no information about you is transmitted to YouTube. If, however, you play the videos, data will be transferred to YouTube. Initially, YouTube is informed that you have visited the corresponding subpage of our website where the video is embedded. In addition, other data may be transmitted to YouTube, over which we have no influence.

If you are registered with YouTube, the transferred data is directly associated with your account. YouTube stores your data as usage profiles and may use it as necessary for advertising, market research, and/or website design. Such evaluations may also be performed, especially (even for non-logged-in users), for the purpose of providing demand-driven advertising.
In accordance with Article 21 GDPR, you have the right to object to the creation of user profiles by YouTube, which you must exercise directly with YouTube.
Due to the location of Google, the transfer of your personal data to Google may constitute a transfer to a third country. Specifically, this may involve a transfer to the United States. Google LLC is certified under the EU-US Data Privacy Framework (DPF), ensuring an adequate level of data protection.
The legal basis for processing your personal data in connection with the use of YouTube is your consent pursuant to Article 6(1)(a) GDPR. Information about your right to withdraw consent can be found in Section 2.8 “Right to Withdraw Consent (Article 7 GDPR)” of this Privacy Policy.
Further information on Google’s data protection practices can be found at: www.google.com/intl/en/policies/privacy/.

 

8.15 Data Processing Activities – Business Partner Location / Google Maps
On our website, we have integrated Google Maps. This service is operated by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). Google Maps is a digital mapping service that allows us to embed interactive maps on our website to provide you with an overview of our locations and to enable you to plan routes.
When you visit a webpage with embedded Google Maps, your personal data, such as your IP address, is transmitted to Google. Further information on the use of cookies can be found in Section 7 “Cookies”.

If you are logged into your Google account at the time you visit the relevant webpage, the data transferred to Google will be directly associated with your account. If you do not wish for this association to occur, you must log out of your Google account before visiting the webpage.
Even if you are not logged into a Google account, Google will still process the transferred data and may use it to create usage profiles for the purposes of personalized advertising and market research. You may object to this type of data processing by Google at any time by exercising your right to object directly with Google in accordance with Article 21 GDPR.
Due to the location of Google, the transfer of your personal data to Google may constitute a transfer to a third country. A transfer to a third country refers to the transfer of personal data to a destination outside the European Union or the European Economic Area. Google LLC is certified under the EU-US Data Privacy Framework (DPF), ensuring an adequate level of data protection.
The legal basis for processing your personal data in connection with the use of Google Maps is your consent pursuant to Article 6(1)(a) GDPR. Information about your right to withdraw consent can be found in Section 2.8 “Right to Withdraw Consent (Article 7 GDPR)” of this Privacy Policy.
As the controller, we do not store your personal data.
Further information on Google’s data protection practices can be found at: https://policies.google.com/privacy?hl=en.

 

8.16 Data Processing Activities – Telephone Customer Service
Konica Minolta records customer calls made via its telephone customer service in order to ensure the quality of the services and customer support provided. The legal basis for this processing is Konica Minolta’s legitimate interest pursuant to Article 6(1)(f) of Regulation (EU) 2016/679 (GDPR).
Call recordings (including voice, content of the communication, and telephone number) may be transcribed and evaluated using artificial intelligence. Recordings and their transcriptions will be retained for one year and then deleted. Customers are informed about the recording and its purpose before the call begins.
Customers may object to the recording and processing of their data at any time. In such a case, the call must be terminated, and the customer should subsequently contact the company via an alternative, non-recorded channel through the customer portal at portal.konicaminolta.sk.

 

8.17 Data Processing Activities – Live Chat
Users of our portal are offered the opportunity to communicate with employees of Konica Minolta Slovakia spol. s r.o. in real-time via live chat. For this purpose, we use the solution provided by Smartsupp.com, s.r.o., Šumavská 524/31, Veveří, 602 00 Brno, Czech Republic.
When using the live chat, the following data is collected: IP address, browser type/version, operating system, URL of the previously visited webpage, and a unique generated ID. The chat transcript is also stored. This transcript may contain other personal data (e.g., name, email address, phone number) if provided by you during the chat.
Your data is transmitted securely and stored on Smartsupp.com, s.r.o. servers for 90 days until deletion. Depending on your request, it may be necessary to transfer personal data provided via live chat to back-end systems (e.g., ERP or CRM systems), particularly if you wish to be contacted later regarding offers or service provision.
The processing of your personal data serves to provide you with a fast and efficient way to contact us. The legal basis for processing your personal data within our live chat is your consent pursuant to Article 6(1)(a) GDPR, which is required before initiating the live chat. For more information on your right to withdraw consent, see Section 2.8 “Right to Withdraw Consent (Article 7 GDPR)” of this Privacy Policy.

 

8.18 Data Processing Activities – Registration and Login / KM ID
Information on registration and login to our portals can be found in the KM ID Privacy Policy.

9. Konica Minolta Group Global Policies

Konica Minolta has adopted Global Principles as a benchmark for its own conduct, which you can read on our corporate website here.

Our Privacy Policy may be updated or supplemented from time to time. All changes to our Privacy Policy will be published on www.konicaminolta.sk, and in the event of significant changes, we will provide more detailed information. Previous versions of this Privacy Policy are archived and remain accessible for your reference at www.konicaminolta.sk.