This Privacy Notice shall serve as information how Sika processes your personal data when using Sika Digital Applications.
Sika is committed to ensuring the security and protection of your personal information and adheres to applicable data privacy regulations. Please be aware that depending on your country of origin, different privacy requirements may be applicable to you. For more information about your local data privacy requirements, please consult your local Sika legal entity via the following link Sika Data Privacy Portal.
Purpose of Sika Digital Applications
The purpose of Sika Digital Applications may vary depending on the application in question.
Generally, Sika Digital Applications are used to provide different analyzes in a digital way and thus, enhance project planning and implementation, improve communication and collaboration among internal and/or external stakeholders and optimize operational efficiency. Sika Digital Applications help individuals carry out projects more effectively, ultimately facilitating more informed and data-driven decision-making and leading to better project outcomes.
Data Capture
Sika Digital Applications can process different categories of personal data depending on the implemented scope of the respective application. The processed personal data of Sika employees and external users may include:
| Data Category | Exemplary Data Element |
|---|---|
| Identification data | first and last name of user, username |
| Contact information | email address, phone number |
| Authentication and log-in data | password |
| Location data | location data of users (in most cases – optional) |
| Preference data of users | preferred language |
| User generated content / voluntary data | any additional personal data, voluntarily provided by users in comments section |
Data Access
Access to your personal data collected by Sika Digital Applications is granted on the basis of the "need-to-know" principle. This means that only authorized Sika employees and/or third-party service providers, who require access to the data to perform their job functions and have a legitimate and necessary purpose are allowed such access.
Authorized Sika employees and/or third-party service providers may have access to your personal data to perform tasks essential to providing, maintaining, and supporting the services provided by the respective application. These tasks may include but are not limited to: resolving users` inquires and carrying out service-related activities, providing technical and operational support for users, maintaining and optimizing the functionalities of the application, fulfilling contractual or legal obligations.
We do not disclose your personal data to third-parties unless you have explicitly consented to such disclosure or we are legally obliged or entitled to disclose data due to local legal requirements and/or official governmental court orders or we have legitimate interest to do so, such in case of maintenance and support. In those cases, technical security measures are in place to ensure that the data is transferred in a secure manner (e.g. encryption).
All our third-party service providers are also required to take appropriate security measures to protect your personal data. We will only permit them to process your personal data for specified purposes and in accordance with our instructions.
We implement appropriate measures to ensure that your personal data remains protected and secure if it is transferred outside your home country.
Legal Basis
Depending on the specific Sika Digital Application and its functionalities, different legal bases may apply to the processing of your personal data.In line with the European General Data Protection Regulation (EU-GDPR) , your personal data may be processed on the basis of the below legal grounds. Please be aware that depending on your country of origin different legal bases may be applicable to you. For more information, please contact your local legal entity using the following link: Sika Data Privacy Portal.
Applicable legal bases according to the EU-GDPR:
- Your voluntarily given consent (especially applicable in the case of Sika Digital Applications provided free of charge)
- The performance of a contract (especially applicable in the case of paid services and when the pro-cessing is necessary to provide the services from the respective Sika Digital Application you purchased)
- Compliance with a legal obligation to which Sika is subject to
- Legitimate interest pursued by Sika or a third party
Retention Period
The retention period for personal data collected by Sika Digital Applications may vary depending on the specific application and is determined based on the principle that data should be kept only for as long as necessary to fulfill the purposes for which it was collected. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and the applicable legal requirements.
Under certain circumstances, you may request the immediate deletion of your personal data. For more information, please refer to section “Your Rights” below.
Contact information and responsible legal entity:
For more information on the responsible legal entity in your country of origin and how to contact us, please visit our Sika Data Privacy Portal.
Your Rights
Please be aware that the privacy rights listed below are in line with the EU-GDPR and might apply in countries outside of the EU as well. However, these rights are not absolute in all countries where Sika operates. To exercise your rights, please note that your eligibility may depend on your country of origin, some or all of these rights may not apply to you, or you may be entitled to different rights. For more information about your local data privacy requirements or to exercise your rights, please consult your local Sika legal entity via the following link: Sika Data Privacy Portal.
(a) Right of access:
Under certain circumstances, you may have the right to obtain from us confirmation as to whether or not personal data concerning you is processed, and, where that is the case, to request access to your personal data. This access information includes – inter alia – provision of the information about the purposes of the processing, the categories of personal data concerned, and the recipients or categories of recipients to whom the personal data have been or will be disclosed.
However, this is not an absolute right, and the interests of other individuals may restrict your right of access.
You may have the right to obtain a copy of the personal data undergoing processing.
Your requests are generally free of charge. We may charge a reasonable fee based on administrative costs in case your request is manifestly unfounded or excessive, in particular because of its repetitive character.
(b) Right to rectification:
Under certain circumstances, you may have the right to obtain from us the rectification of inaccurate personal data concerning you. Depending on the purposes of the processing, you may have the right to have incomplete personal data completed, including by means of providing a supplementary statement.
(c) Right to erasure ("right to be forgotten"):
Under certain circumstances, you may have the right to obtain from us the erasure of personal data concerning you and we may be obliged to erase such personal data.
(d) Right to restriction of processing:
Under certain circumstances, you may have the right to obtain from us restriction of processing your personal data. In this case, the respective data will be marked and may only be processed by us for certain purposes.
(e) Right to data portability:
Under certain circumstances, you may have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and you may have the right to transmit those data to another entity without hindrance from us.
(f) Right to object:
Under certain circumstances, you may have the right to object, on grounds relating to your particular situation, to the processing of your personal data by us and we can be required to no longer process your personal data.
Moreover, if your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing. In this case your personal data will no longer be processed for such purposes by us.
(g) Right to withdraw consent:
Under certain circumstances, you may have the right to withdraw your consent at any time to the use of personal data for a particular purpose (where we have asked you for consent to use your information for that particular purpose).
h) Right to lodge a complaint with a supervisory authority
If you believe that the processing of personal data concerning you that we have carried out is unlawful or inadmissible, you have the right to lodge a complaint with the competent supervisory authority.
We may be required to update or change our Privacy Notice from time to time. If this is the case and there are any significant changes in the way we process your personal data, we will notify you accordingly.