Lewati ke konten

Privacy Notice

Effective from: 1st May 2024

    Introduction

    This is the Privacy Notice for Wavin B.V. and its affiliates (hereinafter: “Wavin”, “we”, “our” or “us”) and its websites (referred to as “Website”). This Privacy Notice applies to Personal Information that we process about you when you:  

     

    • Use any of our Websites (including all subdomains depending on your location); 
    • Use any of our IT systems, including messaging, applications (unless a specific privacy notice applies) and collaboration platforms (“IT systems”) 
    • Create an account on any of our Websites, subdomains, applications or IT systems; 
    • Contact us or when we contact you; 
    • Apply for one of our job vacancies; 
    • Purchase or make use of goods or services from us (including attending webinars, training, tradeshows, etc.); 
    • Provide services or goods to us (for example, you are a sole trader or where you are providing services or goods on behalf of your employer/contractor); and 
    • Visit our premises. 

     

    This Privacy Notice also explains your rights in relation to the Personal Information that we collect and how to exercise them. Throughout this Notice, each of these activities will be collectively referred to as the “Activities” 

     

    The data controller for Personal Information collected under this privacy notice is Wavin B.V. and/or the relevant Wavin Group entity that you are dealing with, or with whom your data may be shared as explained further in this notice. An overview of the applicable responsible Wavin Group entities and, where applicable, their representatives, can be found here. You can contact us using the details in Section 12. 

    1. What Personal Information Do We Collect

    Personal Information means any information which can directly or indirectly identify a living individual.  We collect the following Personal Information:  

     

    Personal Information Collected Directly From You (where provided) 

    • Identification Details: including your first and last name, title, gender, job title, company name, and “myWavin” account information, including username (email address) and password.  
    • Contact Details: including your personal or business phone number, email address, home or business address.  
    • Communication Details: including Identification Details and Contact Details and any information which you provide in the form of queries, comments, feedback, on social media messaging, within contact forms or otherwise.  
    • Application Details: including Identification Details, Contact Details, CV details, cover letter, information within your CV, and preferred locations of work, when you apply for a vacant role.  
    • Marketing Preferences: including preferred methods of contact, your Contact Details, and your interests. 

     

    Personal Information Collected When You Become A Customer Or Supplier 

    • Contract Details: including information about goods or services you have ordered, received or supplied, the contract information which has been disclosed to us and can be linked to you as a customer/customer representative such as the information listed below under Payment Details. 

    • Account Details: including, in addition to Identification and Contact Details, your account number, username, and password. For Customer and Supplier representatives only: your authorisation by the Customer/Supplier and your role within the Customer’s/Supplier’s business.  

    • Payment Details: including bank details, payment methods, payment and transaction history (e.g., payments made or due, including invoice details), payment transaction references, and details of authorised person on the account.  

    • Product or Service Usage Details: including purchases you make on behalf of your company, the amount and date of your purchase, the product or service you purchase, location of purchase, product usage, functional classification etc.   

     

    Personal Information Collected From Your Time on Our Premises 

    • Visitor Details: including Identification Details, Contact Details, and visitor logs which may include full name, time of arrival and departure, and where applicable, vehicle registration number.  

    • Recording of Footage (“Recording Details”): where you enter our building or premises, you may be recorded on our video surveillance systems (CCTV). You may also be recorded during events that we organise during which we collect video footage. This may include both audio and visual recording details. 

     

    Personal Information Collected Automatically  

    • Cookies and Preference Details: when visiting our Website, we collect data automatically through your browser or device, by making use of cookies and other technologies to track visitors on the Website and to collect information about your use of our Website. Such information includes an identifier that corresponds to your device, your IP address, information about the device you use (e.g., operating system, model, language setting), duration, frequency, time of use, click through information (meaning the way you browse through and use our Website) and/or region. For further information, please see our Cookie Policy

     

    Personal Information Collected Indirectly  

    We may receive Personal Information about you from indirect sources for example: 

    • Reference Details: when you apply for a vacant role, we may collect references about you from your previous employers, such as details about your performance and role at previous organisations. 

    • Employee Referral Programmes: where you have been referred for a vacant role, as part of our employee referral programme, we may receive Identification details about you from your referrer.  

    • Credit Checks: we may receive information about your credit history.  

     

    There are also other sources of your Personal Information that may be applicable from time to time, such as, government agencies, tax authorities. We may also collect information that is available publicly (e.g., journalist contact details or media contacts) etc.  

    2. What We Do With Your Personal Information and Legal Bases Relied On

    Wavin collects and uses your Personal Information for the purposes and on the lawful bases as set out below.    

     

    For our Legitimate Interests. We process your Personal Information for the following purposes on the basis of our legitimate interests or those of a third-party, where they are not outweighed by your interests or fundamental rights and freedoms: 

     

    • Communication Purposes. We may process Identification Details, Contact Details and Communications Details to (a) respond to any questions, enquiries, emails, or comments you might share with us via the contact forms available on the Website; (b) respond to any phone calls you make to us; (c) send any required service update emails, for example, changes or updates to our services, or terms; (d) engage with you, for example in facilitating the provision of training, webinars or interacting at tradeshows; and (e) to reply to and deal with any complaints made.  

     

    • Business and Operational Purposes. We may process Identification Details, Contact Details and Communications Details to (a) operate and expand our business and Activities; (b) operate company policies and procedures (for example, for training and learning purposes); and (c) enable us to make corporate transactions, such as mergers, sales, reorganizations, transfer of our assets or business or acquisitions. 

     

    • Social Media Interaction Purposes. When you interact with us on social media websites, (a) we receive from the social media platform, basic engagement metrics and we use this to tailor content and marketing to improve the user experience; (b) we may store engagement moments and behaviour like replies on our content or sent messages to our social media inboxes and messaging services; and (c) we may combine information about individuals’ social media behaviour and Website behaviour to personalise your experience on our Website and better understand you as a customer.  

     

    • Personalisation Purposes. We may process Identification Details, Contact Details, Communication Details, Product/Service Usage Details, to personalise our services, including online ordering, calculation tools, BIM content, e-learning, technical drawings and/or price lists.  

     

    • Customer Optimisation Purposes. We may process Communication Details, Product/Service Usage Details, Cookies and Preference Details (where you have consented to cookies) to (a) assess what may interest you; (b) to measure or understand the effectiveness of advertising we serve you and others and to deliver relevant and targeted advertising (both on our own Website and on other websites (including social media). 

     

    • Online Campaign and Promotion Purposes. To motivate and stay connected to our customers and potential customers we may process your Contact Details and Product/Service Usage Details (for existing customers) and Cookies and Preference Details (where you have consented to cookies). 

     

    • Phone Call Recording Purposes. We may process and record Identification Details (where provided), Contact Details and Details from any phone calls you may have with us. Such call recordings will be used for training and monitoring purposes – this is necessary to protect our staff and customers. We may also record phone calls in order to perform a contract with you where such call recording shall be used to verify any request or statement made as part of any order or otherwise deal with customer management). 

     

    • Prevention and Detection of Unlawful Activities Purposes. Depending on the issue, we may process Personal Information listed at Section 2, such as Identification Details, Contact Details, Account Details, Product/Service Usage Details, external reports from fraud agencies, Payment Details, etc. in order to detect or prevent for example, fraudulent activities or money laundering – this is necessary to protect our business and co-operate with relevant law enforcement agencies. 

     

    • Product and Services Improvement Purposes. We may process Identification Details, Contact Details, Communication Details and/or Product/Service Usage Details to improve our products, services and experience with Wavin, and, if necessary, to respond to any feedback you send us. 

     

    • Health, Safety and Security Purposes. We may process Identification Details, Visitor Details and Recording Footage in order to (a) ensure the safety and security of our staff, visitors, suppliers, premises, property, vehicles, operating equipment, etc; and (b) carry out any required investigations where a health, safety or security incident has occurred. 

     

    • Processing Job Application Purposes. When you apply for a vacant position, we will process Application Details, Identity Details, and Contact Details for the purposes of processing job applications of prospective employees. If you are successful in your application and move on to interview stages, we will process your Personal Information on the basis of necessary steps taken to enter into a contract with you.  

     

    Your Consent. We process your Personal Information for the following purposes on the basis of your consent: 

     

    • Newsletter and Marketing Purposes. Where you have consented (or “opted-in”) to receiving marketing communications such as newsletters or other marketing materials from Wavin, we will process Identification Details, Contact Details, and Marketing Preferences to send direct marketing communications to you.   

     

    • Cookies and Analytics Purposes. Where you have consented to the use of cookies on the Website, Wavin uses Cookies and Preference Details and to (a) collect website usage data to understand how our website is used and to improve our services; and (b) to recognise users across multiple pages to analyse user patterns. For further information, please see our Cookie Notice

     

    • Photograph or Video Purposes. Where you have consented to your photograph or video being taken at an event or conference, we will process your Identification Details, audio / visual Recording Details and in some cases, where provided, Contact Details for the purpose of (a) taking the photograph or video footage; and (b) with your consent, the publishing of photographs or video footage on specified platforms or locations, for example, within a newsletter, on our Website or on our social media channels. 

     

    To Enter Into and Administer Our Contracts With You. We will process your Personal Information for the following purposes on the basis of performing contracts with you (as a customer or supplier): 

     

    • For the purposes of setting up customer/supplier accounts. We will process Identification Details, Contract Details, Account Details and Payment Details to set you up as a customer/supplier on our systems and to manage our relationship with you. 

     

    • To administer services or provide goods that we have been contracted to perform or sell.  We will process Identification Details, Contact Details, Account Details and Payment Details to administer services or provide goods which have been contracted to provide. 

     

    Legal Obligations. We may process your Personal Information for the following purposes on the basis of our legal obligations: 

     

    • Compliance Purposes. We may process or disclose Identification Details, Contact Details, Communications Details, recording details, Whistleblowing Details and/or other details in order to ensure compliance with company policy and applicable legal obligations. For example, a court order, or a request from a regulator or authority. 

     

    • For the Purposes of Defending Against Legal Claims, Demands or Proceedings. We may process Identification Details, Contact Details, Communications Details, Recording Details, and/or other details in order to defend against legal matters.  

     

    • For the Purposes of Establishing, Protecting or Exercising Legal Rights. We may process Identification Details, Contact Details, Communications Details, Recording Details and/or other details in order to establish, protection or exercise our legal rights for example, to enforce our agreements or other contracts. 

     

    We will only use your Personal Information for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose.   If we need to use your Personal Information for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so. 

     

    Please note that we may process your Personal Information without your knowledge or consent, in compliance with the above rules, where this is required or permitted by law. 

     

    We may also anonymize or aggregate any of the Personal Information we collect and use it for any purpose, including for research and product-development purposes.  Such information will not identify you individually. 

    3. How We Share Personal Information

    To fulfil the purposes described above, from time to time we share your Personal Information with other entities that assist us in our Activities. These entities will have access to your Personal Information, but only when necessary to perform their services. We do this on a need-to-know basis, and we ensure that before we share your Personal Information, we put in place appropriate contractual agreements as required.  

     

    These entities may include:  

     A. Other entities within our Group – this may include within the Wavin group, or with other or affiliate entities to the extent required for internal administration purposes, management purposes or other business-related purposes as described within this Notice. 

     B. Service Providers and Data Processors – we may engage service providers from time to time who assist us in our Activities, including, for example:  

    1. Business partner suppliers including, without limitation: IT providers, website hosting providers, CRM database providers, etc., and sub-contractors who might assist with the performance of any contract we enter into with them or to provide services on our behalf; 
    2. Marketing companies and other advertising companies that assist us or that carry out marketing activities on our behalf;  

    3. Analytics and search engine providers that assist us in the improvement and optimisation of our Website and Activities.  

     

    We may also share Personal Information with third parties: 

    A. Who are Professional Advisors – including, without limitation: tax, legal or other corporate advisors who provide professional services to us to protect our legal interests and other rights, protect against fraud or other illegal activities, prevent harm and for risk management purposes. 

      B. In the case of a legal requirement or legal proceedings – such as in response to court orders, law enforcement of legal process, for national security purposes, to establish, protect or exercise our legal rights, as required to enforce our terms of service or other contracts, to defend against legal claims or demands, to detect, investigate, prevent of take action against illegal activities, or threats to rights, property or a person’s safety; or in the context of an investigation, regulatory requirement, judicial proceeding, or to protect the rights or safety of the Website, our Activities, and/or our affiliated entities.   

     

    C. In the case of a corporate transaction or reorganisation – Personal Information may be disclosed to third parties as part of any merger, sale, transfer of our assets, acquisition, bankruptcy, or similar event.  

     

    D. In line with your consent or request – we may disclose your Personal Information to a third-party where you have provider prior consent or have requested that we do so.  

    4. International Data Transfers

    For individuals who reside in the European Economic Area (EEA), the United Kingdom (UK) or Switzerland, it is likely that we may need to transfer Personal Information to locations outside of the EEA, UK, or Switzerland in order to facilitate and manage our global business operations.  

     

    Similarly, subject to compliance with local law requirements, the recipients of Personal Information described in Section 3 may be located in countries whose laws regarding data protection may not offer an adequate level of protection compared to the laws in your country. For example, not all countries outside the EEA, UK or Switzerland offer the same level of protections. 

     

    Where we transfer Personal Information to other entities within our group, or service providers based outside of these locations, we rely on the following safeguards:  

     

    • Adequacy Decisions  

    • European Standard Contractual Clauses  (“SCCs”)  

    • The UK International Data Transfer Agreement (“IDTA”) 

    • In limited circumstances where the transfer is permitted by applicable data protection laws.  

      

    The European SCCs are contractual clauses approved by the European Commission that ensure appropriate data protection safeguards when personal information is transferred from the EEA to third countries. They can be viewed here

     

    The UK's IDTA has been issued by the UK Government to ensure appropriate data protection safeguards when personal information is transferred from the UK to third countries or territories that have not been deemed adequate by a formal decision of the UK Government. This can be viewed here

     

    You may request a copy of the European SCCs and/or UK IDTA by contacting us using the details at Section 12. 

    5. How Long We Retain Personal Information

    We retain your Personal Information for as long as required to satisfy the purpose for which they were collected and used, unless a longer period is necessary to comply with legal or contractual obligations, or to defend a legal claim.   

      

    To determine the appropriate retention period for Personal Information, we firstly consider applicable legal requirements or whether any statutory retention periods apply. We also consider the volume, nature, and sensitivity of the information, the potential risk of harm from unauthorised use or disclosure of the information, the purposes for which we process your Personal Information and whether we can achieve those purposes through other means.  

     

    Your Rights  

     

    If you are located within the EEA, in certain circumstances, you have the following rights:  

    • You can request information about how we process your Personal Information, where and how we collected your data, the categories of Personal Information, with whom we share it, and how long we retain it.  

    • You can request access to copies of your Personal Information which we process. 

    • You have the right to request that we correct the Personal Information we maintain about you if that data is inaccurate or out of date.  

    • You can request the deletion of certain Personal Information that we have collected from or about you.   

    • You can object to the processing of your Personal Information or ask us to restrict the processing. 

    • You can request portability of your Personal Information (meaning we will transfer it from our IT environment to another environment).  

    • You can opt out of marketing communications we send at any time.  You can opt out by clicking on the “unsubscribe” or “opt-out” link in any marketing email that we send you. 

    • When we have collected and processed your Personal Information based upon your consent, you may withdraw your consent at any time.  However, withdrawing your consent will not affect the lawfulness of any processing we conducted before your withdrawal, nor will it affect processing of your Personal Information when we have relied on other legal grounds for the processing. 

    • As a French resident, you have the right to post-mortem guidance meaning you can provide guidelines regarding the retention, deletion and communication of your personal data after your death. 

    • You also have the right to lodge a complaint to your relevant data protection authority about our collection and use of your Personal Information.  We encourage you to contact us first if you have any queries, comments, or concerns about the way we handle your Personal Information. However, as explained above, you also have the right to make a complaint to your local data protection authority.  

     

    If you have any questions or if you wish to exercise one of your rights under applicable local data protection laws, please use the contact details provided in Section 12 below and specify your request.   

     

    6. California Resident Notice

    Under California Civil Code Section 1789.3, users of electronic commercial services are entitled to the following specific consumer rights notice: The Complaint Assistance Unit of the Division of Consumer Services of the California Department of Consumer Affairs may be contacted in writing at 1625 N. Market Blvd., Suite S-202, Sacramento, California 95834, or by telephone at (800) 952-5210.  

     

    Under the California Consumer Privacy Act or "CCPA”, California residents have the right: 

    • To request (twice in a 12-month period) the disclosure of the categories and specific pieces of Personal Information that we collected about you, the categories of sources from which the Personal Information is collected, the business or commercial purpose for collecting Personal Information, the categories of third parties to whom we disclose Personal Information, and the specific pieces of Personal Information we have collected about you.  

    • You can request that we correct the Personal Information we maintain about you if that data is inaccurate or out of date. 

    • To request the deletion of certain Personal Information that we have collected from or about you.   

    • To request to opt out of the sale of Personal Information for cross-context behavioural advertising purposes (where such data is sold). Wavin does not sell your Personal Information.  

    • Not to be discriminated against. 

     

    You may request to exercise your rights under the CCPA by submitting a request (yourself or by an authorized agent) through the contact details provided below or, dial us at + 1-800-xxx-xxxx or + 1-xxx-xxx-xxxx and specify your request.    

      

    We may request additional information necessary to confirm your identity. We will provide information on the actions taken without undue delay. Verifiable consumers requests shall be addressed, and data will be provided in a portable format, within 45 days, subject to exceptions set out in the CCPA.  

     

    Under California Civil Code Section 1798.83, California residents can request in writing from businesses with whom they have an established business relationship: (a) a list of the categories of Personal Information and the type of services provided to the customer, that a business has disclosed to third parties (including affiliates that are separate legal entities) during the immediately preceding calendar year for the third parties' direct marketing purposes and (b) the names and addresses of all such third parties.  

     

    To make such a request from us, if entitled, please submit a written request to the contact details provided in Section 12. We will respond to such properly addressed written requests.  

    7. Security of Personal Information

    Wavin recognizes the importance of data security for our stakeholders. We treat your Personal Information with the utmost care and have put in place appropriate security measures to protect the confidentiality, integrity, and availability of your Personal Information from unlawful or unauthorized processing and accidental loss, destruction, or damage. 

    We monitor our network and systems for vulnerabilities and attacks, and also carry out regular testing to identify ways to further strengthen security. 

    Although we take commercially reasonable measures to protect your Personal Information, we cannot guarantee its security. For this reason, we urge users to take every precaution to protect their Personal Information whilst using the Internet. 

    8. Do-Not-Track Requests

    We do not respond to Do Not Track requests. Do Not Track is a preference you can set in your web browser to inform websites and mobile applications that you do not want to be tracked. You can enable or disable Do Not Track by visiting the Preferences or Settings page of your web browser.   

    9. Other Websites

    Our Website may, from time to time, contain links to and from third-party websites, such as our business partners, social media networks, branch organizations and affiliates.  

     

    If you follow a link to any of these websites, please note that these websites have their own privacy notices and that we do not accept any responsibility or liability for these notices. Please consult these notices before you submit any Personal Information to these websites. 

     

    10. Changes to This Privacy Notice

    We will update our Privacy Notice as needed and the most recent version will be available on each applicable Website at all times.  

     

    If a fundamental change to the nature of the use of your Personal Information is involved or if the change is in any other manner relevant to you, we will ensure that information is provided to you separately. 

     

    This Privacy Notice was last updated in May 2024.  

    11. Contact Us

    If you have any questions about this Privacy Notice or the processing of your Personal Information in general, or if you wish to exercise any of your rights, please email us at dataprivacy@orbia.com indicating the nature of your query.