PRIVACY STATEMENT

 

Last date of revision: 19/07/2019

 

Who does this privacy statement apply to?

BMT group (“BMT” or “We”) is an industrial, family-owned holding company with a glass and a gearwheel division, with various companies which are global market leaders. BMT Group’s aim is to achieve continuous profitable growth in all its divisions.

BMT group operates and manages a network of companies in various locations across Europe, Americas and Asia. Our group consists of several companies (“the BMT Companies”) that process personal data, see below link for details http://www.bmt.lu/group-structure

This Privacy Statement applies to the processing of personal data:

All BMT Companies are separate and independent legal entities. Depending on the processing activity in the context of which your personal data are processed, they may be qualified as a separate data controller or a joint controller with one or more of the other BMT Companies. None of the BMT companies have any liability for the other BMT Companies’ acts or omissions.

We want to be a great company. In order to achieve that goal we are committed to work in the right way. We are committed to protect your privacy and to process your personal data in an open and transparent manner, in particular with respect of the General Data Protection Regulation 2016/679 of 27 April 2016 (“GDPR”).

 

Contents

Who DOES this privacy statement apply to?

What is covered by this Privacy Statement?

Why we use your data

I AM A WEBSITE VISITOR

I AM (A CONTACT PERSON OF) A SUPPLIER, A CUSTOMER OR A PROSPECT OR ANY OTHER INDIVIDUAL WHOSE PERSONAL DATA ARE PROCESSED (E.G. A VISITOR, A BUSINESS CONTACT ETC.)

The legal grounds for processing your data

I AM A WEBSITE VISITOR

I AM (A CONTACT PERSON OF) A SUPPLIER, A CUSTOMER OR A PROSPECT OR ANY OTHER INDIVIDUAL WHOSE PERSONAL DATA ARE PROCESSED (E.G. A VISITOR, A BUSINESS CONTACT ETC.)

Your Rights

How we obtain DATA

I AM A WEBSITE VISITOR

I AM (A CONTACT PERSON OF) A SUPPLIER, A CUSTOMER OR A PROSPECT OR ANY OTHER INDIVIDUAL WHOSE PERSONAL DATA ARE PROCESSED (E.G. A VISITOR, A BUSINESS CONTACT ETC.)

Data we collect

I AM A WEBSITE VISITOR

I AM (A CONTACT PERSON OF) A SUPPLIER, A CUSTOMER OR A PROSPECT OR ANY OTHER INDIVIDUAL WHOSE PERSONAL DATA ARE PROCESSED (E.G. A VISITOR, A BUSINESS CONTACT ETC.)

Disclosures

COOKIES

Security of your data

Data retention

I AM A WEBSITE VISITOR

I AM (A CONTACT PERSON OF) A SUPPLIER, A CUSTOMER OR A PROSPECT OR ANY OTHER INDIVIDUAL WHOSE PERSONAL DATA ARE PROCESSED (E.G. A VISITOR, A BUSINESS CONTACT ETC.)

Automated Decision-making

How to contact us?

CHANGES TO this PRIVACY STATEMENT

  

What is covered by this Privacy statement?

With this Privacy Statement we would like to inform you about why and how we process your personal data when we perform our business activities or when you use our website (“the Site”) and any of the services we offer through the Sites, who we give that information to, what your rights are and who you can contact for more information or queries.

When we refer to “the Site”, we mean the following webpages:

Company 

Website

BMT International

http://www.bmt.lu/

BMT Aerospace

http://www.bmtaerospace.com

BMT Additive

http://www.bmtadditive.com/

OMCO

http://www.omcomould.com/

CNUD-EFCO

https://www.cnudefco.com/

IGW

http://www.igwpower.com/

VCST

https://www.vcst.com/

 

However, by way of derogation, this Privacy Statement does not apply to webpages of the Site allowing you to apply for job openings. These webpages are subject to our separate Privacy Notice for job applicants: Privacy Notice Job Applicants.

The Sites may link to other sites provided by other affiliated companies entities or by third parties. Whilst we try to link only to sites that share our high standards and respect for privacy, we are not responsible for the content or the privacy practices of other websites. When linking to any such sites, we strongly recommend you to review the Privacy Statements on these sites, before disclosing any personal information.

Please note that when you are visiting our pages on Facebook, Twitter, Instagram or LinkedIn, cookies are processed by Facebook, Twitter, Instagram and LinkedIn. Based on these cookies, we can gather information - in a completely anonymous way - about the public visiting our social media pages. For further information about why and how personal data are processed in this context, we revert to the Privacy and Cookie Policies of these platforms:

 

Why we use your data

I AM A WEBSITE VISITOR

We only process your personal data for legitimate business reasons. These purposes include, but are not limited to:

I AM (A CONTACT PERSON OF) A SUPPLIER, A CUSTOMER OR A PROSPECT OR ANY OTHER INDIVIDUAL WHOSE PERSONAL DATA ARE PROCESSED (E.G. A VISITOR, A BUSINESS CONTACT ETC.)

We only process your personal data for legitimate business reasons. These purposes include, but are not limited to:

  

The legal grounds for processing your data

I AM A WEBSITE VISITOR

When you contact us through an online contact form, your personal data will in principle be processed for the purpose of our legitimate interests (namely the importance to treat your questions, requests and complaints in the best possible manner).

In this respect, we will always determine case by case whether our interests are not overridden by your interests, fundamental rights and freedoms. If you want more information about this, you can always contact us.

I AM (A CONTACT PERSON OF) A SUPPLIER, A CUSTOMER OR A PROSPECT OR ANY OTHER INDIVIDUAL WHOSE PERSONAL DATA ARE PROCESSED (E.G. A VISITOR, A BUSINESS CONTACT ETC.)

We process your personal data for the purposes mentioned above:

If we have the legal obligation to obtain your free, informed, specific and unambiguous consent to process your personal data for certain purposes (e.g. specific direct marketing or market research activities), we will only process your data for such purposes to the extent that we have obtained such consent from you.

 

Your Rights

You have several rights concerning the information we hold about you. We would like to inform you that you have the right to:

You have also the right to object at any time to the processing of personal data for direct marketing. If you do not want to continue receiving any direct marketing from us, you can contact us (see below) or click on the unsubscribe function in any such communication. In that event, the personal data shall no longer be processed for such purposes.

In order to exercise any of your rights, you can send us a request, indicating the right you wish to exercise, by e-mailing us at gdpr@bmt.lu.

You may also use these contact details if you wish to make a complaint to us relating to your privacy.

If you are unhappy with the way we have handled your personal data or any privacy query or request that you have raised with us, you have a right to complain to the Data Protection Authority (“DPA”) in your jurisdiction. If you would like to be directed to the appropriate DPA, please contact us.

 

How we obtain data

I AM A WEBSITE VISITOR

We may obtain your personal data when you use the Site and its services and applications. This may for instance be the case when you fill in a contact form on the Site.

The Sites may also uses cookies. For more information about the cookies we use and how you can control them, please consult the cookie policy of the website concerned.

I AM (A CONTACT PERSON OF) A SUPPLIER, A CUSTOMER OR A PROSPECT OR ANY OTHER INDIVIDUAL WHOSE PERSONAL DATA ARE PROCESSED (E.G. A VISITOR, A BUSINESS CONTACT ETC.)

We may obtain you personal data in the framework of the execution of our business activities.

We may obtain such personal data because you give them to us (e.g. by contacting us, by completing online forms, ...), because others give them to us (e.g. your employer or third party service providers that we use in the framework of our business activities) or because they are publicly available. 

We may further also obtain personal data from you by the way you interact with us or data about you may also be generated by us (e.g. camera surveillance records).

When we obtain personal data from external parties, we make reasonable efforts to enter into contractual clauses with these parties obliging them to respect the data protection legislation. This can be done by obliging this party to provide you with all necessary information or - if necessary - to obtain your consent for processing the personal data as described in this Privacy Statement.

 

Data we collect

I AM A WEBSITE VISITOR

The main personal data which we collect via the Sites, relate to the contact forms. Via the Sites you can contact us to obtain more information, to ask questions or to receive advice. In this context, we may process your message and your contact details (such as: your name, your company, your e-mail address and your phone number).

The Sites may also use cookies. For more information about the cookies we use and how you can control them, please consult the cookie policy of the website concerned.

I AM (A CONTACT PERSON OF) A SUPPLIER, A CUSTOMER OR A PROSPECT OR ANY OTHER INDIVIDUAL WHOSE PERSONAL DATA ARE PROCESSED (E.G. A VISITOR, A BUSINESS CONTACT ETC.)

The personal data that we collect or obtain may, among other things, include:

  

Disclosures

We may disclose your personal data to affiliated companies, and to third parties that provide services to us that reasonably require access to personal data relating to you for one or more of the purposes outlined in the “Why we use your data” section above. The following external parties may for instance be involved:

If our business enters into a joint venture with or is sold to or merged with another business entity, your information may be disclosed to our new business partners or owners.

Please note that some of the recipients of your personal data referenced above may be based in countries outside of the European Economic Area whose laws may not provide the same level of data protection. In order for your personal data to be processed in accordance with data protection principles, Dentons has, where necessary, adopted appropriate safeguards in line with the GDPR. For this purpose all BMT Companies have concluded an intra-group agreement including standard contractual clauses in the sense of article 46 (c) of the GDPR. For more information regarding the appropriate safeguards adopted by BMT, you can contact us at gdpr@bmt.lu.

In general, we will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Statement.

We reserve the right to disclose your personal information as required by law, or when we believe that disclosure is necessary to protect our rights and/or comply with a judicial proceeding, court order, request from a regulator or any other legal process served on us.

 

COOKIES

The Sites may use Cookies. Cookies are small text files that are stored by your browser onto your computer or mobile device when you visit this Site.

They are used to provide you with a good experience when you browse this Site and allow us to improve this Site. They can also be used to personalise the content of this Site based on your previous browsing behaviour and to gather statistics in order to improve this Site.

You can find more information about cookies by visiting the following website: www.allaboutcookies.org.

For more information about the specific cookies used by each of our Sites, we refer to the cookie policy of each Site.

You can enable, disable and/or delete cookies as you wish. You can delete all cookies that are already on your device and you can set most browsers to prevent them from being placed.

The ability to enable, disable and/or delete cookies can be completed at browser level. These settings are usually found in the “options” or “preferences” menu of you internet browser. In order to understand these settings, the following links may be helpful. Otherwise you should use the “Help” option in your internet browser for more details:

 

Security of your data

We employ strict technical and organizational (security) measures to protect your information from access by unauthorized persons and against unlawful processing, accidental loss, destruction and damage both online and offline.

These measures include:

Although we use appropriate security measures once we have received your personal data, the transmission of data - especially over the internet (including by e-mail) - is never completely secure. We endeavor to protect personal data, but we cannot guarantee the security of data transmitted to us or by us.

We limit access to your personal information to those who we believe reasonably need to come into contact with that information in order to carry out their jobs.

 

Data retention

I AM A WEBSITE VISITOR

Your personal data will not be retained longer than necessary for the purposes described above.

As a general rule, personal data obtained through the contact form on our website are stored for a period of 5 years.

Depending on the specific situation and the applicable national legislation, we may however retain your personal data for a longer period. This will in particular be the case if any of the following periods is longer : (i) as long as is necessary for our daily business; (ii) any retention period that is required by law; or (iii) the end of the period in which litigation or investigations might arise.

I AM (A CONTACT PERSON OF) A SUPPLIER, A CUSTOMER OR A PROSPECT OR ANY OTHER INDIVIDUAL WHOSE PERSONAL DATA ARE PROCESSED (E.G. A VISITOR, A BUSINESS CONTACT ETC.)

Your personal data will not be retained longer than necessary for the purposes described above.

As a general rule, records in the framework of our business activities that may contain personal data (e.g. contracts, orders, correspondance etc.) are stored for a period of 10 years.

Personal data processed for direct marketing purposes, are however stored for a period of 3 years as from the last contact with the individual concerned. If the company you are working for has become a client during this period, we may however retain your personal data for a longer period, namely 10 years as from the delivery of the products or services, or as from the latest contact with a BMT Company (if this contact would take place at a later date).

Depending on the specific situation and the applicable national legislation, we may however retain your personal data for a longer period. This will in particular be the case if any of the following periods is longer : (i) as long as is necessary for our daily business; (ii) any retention period that is required by law; or (iii) the end of the period in which litigation or investigations might arise.

 

Automated Decision-making

Automated decisions are defined as decisions about individuals that are based solely on the automated processing of data and that produce legal effects that significantly affect the individuals involved.

As a rule, your personal data will not be used for automated decision-making. We do not base any decisions about you solely on automated processing of your personal data.

 

How to contact us?

We hope that this Privacy Statement helps you understand, and feel more confident about, the way we process your data. If you have any further queries about this Privacy Statement and the Sites in general, please contact us by e-mailing at gdpr@bmt.lu

 

Changes to this Privacy Statement

We may modify or amend this Privacy Statement from time to time. Any changes we may make to this Privacy Statement in the future will be posted on this page. To let you know when we make changes to this Privacy Statement, we will amend the revision date at the top of this page. The new modified or amended Privacy Statement will apply from that revision date. Please check back periodically to see changes and additions.