DaVinci Kitchen Privacy Statement
Personal Data we collect and why
When you visit and use our websites, products and services, we may collect data or ask you to provide certain data, including Personal Data, about you as you use our websites, products and services and interact with us, for the purpose of helping us manage our relationship with you. „Personal Data“ is any data relating to an identified or identifiable individual, and may include name, address, email address, phone number, login (account number,password), marketing preferences, social media account, or payment card number. If we link other data with your Personal Data, we will treat that linked data as Personal Data. We also collect Personal Data from trusted thirdparty sources and engage third-parties to collect Personal Data to assist us. This data may include:
• Contact details, such as name, mailing address, email address and phone number;
• Shipping and billing data, including credit card and payment data;
• Your transaction history;
• Data you provide to us to receive technical assistance or during customer service interactions;
• Data about other people that you may provide with any program or services including Refer-a-Friend;
• Data about your computer or device, including browser type and settings, IP address and traffic data
relating to your Internet connection; and
• DaVinci Kitchen product performance data and details about how you use our products and services.
When you choose to provide us with Personal Data about third-parties, we will only use this data for the specific reason for which you elect to provide it. It is your responsibility to ensure that when you disclose to DaVinci Kitchen Personal Data of individuals other than yourself – such as your contacts, your users or other third-parties – you abide by applicable privacy and data security laws, including informing users and third-parties that you are providing their Personal Data to DaVinci Kitchen, informing them of how it will be transferred, used, or processed, securing appropriate legal permissions and safeguards required for such disclosures, transfers and processing. If you choose to provide DaVinci Kitchen with a third-party’s Personal Data (such as name, email, and phone number), you represent that you have the third-party’s permission to do so. Examples include forwarding reference or sending job referrals. You also acknowledge that when we interact with such third-party individuals whose Personal Data you share with us, it is our duty to inform them that we obtained their Personal Data from you. Where applicable, third-parties may unsubscribe from any future communication following the link provided in the initial message or as indicated in the “Contact Us” section of this Statement. If you believe that one of your contacts has provided us with your Personal Data and you would liketo request that it be removed from our database, please contact us at firstname.lastname@example.org.
If applicable, for more information about what Personal Data we process on a product basis, please refer to the relevant product and service privacy notices accessible below.
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
Marketing and Community Networking
DaVinci Kitchen has a legitimate interest in promoting our commercial offerings and to optimize the delivery of communications to that effect to our customers and audiences that are most likely to find them relevant. We will therefore collect and process data to that end as explained below. However, where we are legally required to obtain your consent to provide you with certain marketing materials, we will only provide you with such marketing materials where we have obtained such consent from you. If you do not want to continue receiving any marketing
materials from us, you can click on the unsubscribe function in the communication or e-mail, or clicking on the following link:https://info.digitalguardian.com/email-preference-center.html
You can subscribe to our newsletter, which we use to inform you about our current offers. We use the so-called double opt-in procedure to register for our newsletter. This means that after you register, we will send you an email to the email address you have given, asking you to confirm that you would like to receive the newsletter. In addition, we store your IP address and time of registration and confirmation. The purpose of the procedure is to prove your registration and, if necessary, to clarify a possible misuse of your personal data. Mandatory information for sending the newsletter is your name and surname and your e-mail address. The provision of further, separately marked data is voluntary and is used to address you personally. After your confirmation, we will save your email address for the purpose of sending you the newsletter. You can revoke your consent at any time and unsubscribe from the newsletter by clicking on the link.
Who we share your data with
In addition to the purposes described above, we may, in compliance with applicable legal requirements, use your Personal Data to provide you with advertisements, promotions and information about products and services
tailored to you and your needs. This may include demographic data or trend data provided by third-parties, where permitted. Contact details, including phone numbers, mail and email addresses, may be used to contact you. If you do not want us to use your Personal Data in this way, you can simply choose not to consent to such use of your data on the webpages and/or forms through which such Personal Data is collected. You can also exercise this right at any time by contacting us as explained below.
We may provide your data including the data about your interests in our products to Third-Parties for the purposes of serving you more relevant ads. Where we provide you with interest-based ads on a site other than our own, we do not track your other activities on that site. If you click on our ads, we will know only the domain you came from. For more information, please see the Tracking Technologies, Cookies & Do Not Track section below.
Data from Third-Parties
Third-parties may provide us with Personal Data they have collected about you from you or from further online and offline sources, such as marketing data from our partners and third-parties that is combined with information
we already have about you, to provide you with more relevant communications and better tailored offers. We make reasonable efforts to verify that the third-parties we engage for such purposes are reputable and law-abiding and we will not solicit them to disclose to us Personal Data we do not have a lawful purpose to collect and process.
However, we are not liable for any processing of your Personal Data by such third-parties prior to, during or after them providing it to us. We may combine such Personal Data with the Personal Data we already have about you to provide you with a better experience, evaluate your interest in our products or improve the quality of our offerings.
Tracking Technologies, Cookies & Do-Not-Track
A cookie is a commonly used automated data collection tool. Cookies are small text files that are placed on your computer or device by websites that you visit or HTML-formatted emails you open, to make websites work, or
• Ensure the proper functioning of our websites and the proper delivery of legitimate electronic communications;
• Tailor information presented to you based on your browsing preferences, such as language and geographical region;
• Collect statistics regarding your website usage;
• Provide us with business and marketing information; and
• In some cases, to enable a third-party to deliver future advertising for our products and services to you when you visit certain websites owned by third-parties.
We use different kinds of cookies:
• Essential cookiesare necessary to provide you with services and features available through our websites.
Without these cookies, services you may need, cannot be provided.
• Analytics or customization cookies collect data that is either used in aggregate form to help us understand how the website is being used or how effective our marketing campaigns are, or to help us customize the website for you.
• Advertising cookies and tracking scripts are used to make advertising messages more relevant to you.
They perform functions like preventing the same ad from continuously reappearing, ensuring that ads are properly delivered and, in some cases, featuring ads based on your interests.
If you do not wish to receive cookies you may be able to refuse them by not agreeing to the use of them upon entering the website. If you do so, we may be unable to offer you some of our functionalities, services or support.
If you have previously visited our websites, you may also have to delete any existing cookies from your browser.
We gather certain data automatically and store it in log files. This data may include internet protocol (IP) addresses, browser type, internet service provider (ISP), referring/exit pages, operating system, date/time stamp,
and/or clickstream data. We may combine this log data with other data we collect about you. We do this to improve services we offer you, to improve marketing, analytics, or site functionality.
We use local storage, such as HTML5, to store content data and preferences. Third-parties with whom we partner to provide certain features on our website or to display advertising based upon your web browsing activity also use HTML5 to collect and store data. Various browsers may offer their own management tools for removing HTML5 content.
There are different ways you can prevent tracking of your online activity. One of them is setting a preference in your browser that alerts websites you visit that you do not want them to collect certain data about you. This is
referred to as a Do-Not-Track (“DNT”) signal. Please note that our websites may not recognize or act in response to DNT signals from web browsers. There is currently no universally-accepted standard for what a company should do when a DNT signal is detected. In the event a final standard is established, we will assess how to appropriately respond to these signals. For more detailed information about cookies, Do-Not-Track and other tracking technologies, please visit www.allaboutcookies.org and https://allaboutdnt.com.
Third-Party Data Collection
Cookies may also be placed by third-parties to deliver tailored information and content which may be of interest to you, such as promotions or offerings, when you visit third-party websites after you have left our websites. We do not permit these third-parties to collect Personal Data about you beyond such cookies (e.g., email address) on our
Social Media Features and Widgets
How to Opt out of Interest-based Advertising
We partner with a third-party to display advertising on our website or to manage our advertising on other sites.
to opt out of interest-based advertising, you can do so by not agreeing to the use of them upon entering the website. Please note that if you opt out, you will continue to receive generic ads not based on your interests.
Automated Individual Decision-Making and Profiling
Where DaVinci Kitchen processes network traffic data for the purpose of network and information security based on our or our customers’ legitimate interest as outlined in the corresponding section of this Statement, automated decisions concerning particular data elements may occasionally be made. This could involve in particular assigning relative cybersecurity reputation scores to IP addresses and URLs based on objective cyber-threat indicators measured by our cyber-threat detection engines. Such indicators may be for instance the determination that malicious or otherwise harmful contents are hosted at a given URL, or are emanating from a given IP address. Such automatically-assigned reputation scores may be leveraged by you, by DaVinci Kitchen, by our partners and by
other customers to detect, block and mitigate the identified cyber-threats. They could therefore result in our products and services blocking network traffic coming from or going to such URLs and IP addresses. No such
processing is intended to produce any other effect than protecting you, DaVinci Kitchen, our partners and our other customers from cyber-threats. Should you nevertheless consider that such automated processing is unduly affecting you in a significant way, please contact directly the relevant data controller whose use of our products and services is thus impacting you. In case that data controller is DaVinci Kitchen, please refer to the “Your Privacy Rights” and “Contact Us” sections of this Statement to raise your concerns and to seek our help in finding a satisfactory solution.
How We Disclose Your Personal Data
We do not sell, lease, rent or give away your Personal Data. We only disclose your Personal Data as described below, within DaVinci Kitchen, with our partners, with service providers that process data on our behalf and with public authorities, as required by applicable law. Processing is only undertaken for the purposes described in this Statement and the relevant product and service privacy notices. If we disclose your Personal Data, we require its recipients to comply with adequate privacy and confidentiality requirements, and security standards.
We may provide your Personal Data to our partners for the purpose of allowing them to conduct DaVinci Kitchen business. Our partners may use your Personal Data to communicate with you and others about DaVinci Kitchen products or services. If you do not wish to receive promotional emails from our partners, you can unsubscribe directly using the unsubscribe link or tool provided in the partner’s email or other communication to you.
Service Providers Processing Data on Our Behalf
We may use contractors and service providers to process your Personal Data on our behalf for the purposes described in this Statement and the relevant product and service privacy notices accessible below. We
contractually require service providers to keep data secure and confidential and we do not allow our data processors to disclose your Personal Data to others without our authorization, or to use it for their own purposes.
However, if you have an independent relationship with these service providers their privacy statements will apply to such relationships. Such service providers may include in particular contact centers, payment card processors and marketing/survey/analytics suppliers.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
How We Protect Your Personal Data
We take reasonable and appropriate administrative, technical, organizational, and physical security and risk management measures in accordance with applicable laws to ensure that your Personal Data is adequately protected against accidental or unlawful destruction, damage, loss or alteration, unauthorized or unlawful access, disclosure or misuse, and all other unlawful forms of processing of your Personal Data in our possession.
Securing Personal Data is an important aspect of protecting privacy. Our security organization applies policies, standards and supporting security controls at the level appropriate to the risk level and the services provided. In addition, appropriate security controls are communicated to application owners and technology teams across the business to support secure development of products and a secure operating environment.
We pay specific attention to the protection of Personal Data and the risks associated with processing this data.
Measures we take to protect Personal Data include:
We lock doors and file cabinets, control access to our facilities, implement a clean desk policy, and apply secure destruction to media containing your Personal Data.
We use network and information security technologies such as anti-virus and DaVinci Kitchen endpoint protection software, encryption, intrusion detection and data loss prevention, and we monitor our systems and data centers to ensure that they comply with our security policies. For example confidential information is transmitted using Transport Layer Security (“TLS”) encryption.
Personal Data Breaches
DaVinci Kitchen takes every reasonable measure to prevent Personal Data breaches. When these do occur, we have a process in place to take swift action within our responsibilities. These actions will be consistent with the
role we have in relation to the products,services or processes affected by the breach. In all cases, we will work together with affected parties to minimize effects, to make all notifications and disclosures that are required by applicable law or otherwise warranted, and to take action to prevent future breaches. We systematically outline responsibilities in case of Personal Data breaches in our contracts, both with customers as well as with our vendors.
Storage of Your Personal Data
The data we collect from you may be stored, with risk-appropriate technical and organizational security measures applied to it, on in-house as well as third-party servers in Europe or the United States, as well as anywhere DaVinci Kitchen or our vendors operate.
Links to Other Websites
Our websites may contain links to other websites, which are owned or operated by other companies. If you choose to visit any linked websites, we encourage you to review their privacy statements carefully, as they may differ from ours. We are not responsible for the content or privacy practices of websites that are owned by companies that are not within DaVinci Kitchen Corporation. Our websites may also link to co-branded websites that are maintained by DaVinci Kitchen and one or more of our business partners, who are collecting your Personal Data pursuant to their own privacy practices. We encourage you to read the privacy statements on any co-branded site to which you link for information on the privacy practices of that site.
How long we retain your data?
We will hold your Personal Data on our systems for the longest of the following periods:
For the sake of clarity where DaVinci Kitchen is a data controller processing your Personal Data for our own purposes, your Personal Data will be deleted or de-identified when it is no longer needed for its originally stated
processing purposes, or any additional compatible purpose for which DaVinci Kitchen may lawfully further process such data.
Moreover, where DaVinci Kitchen is a data processor processing your Personal Data for the purposes and on the instructions of another data controller or data processor, we will comply with the time limits agreed with that other Controller or Processor unless we are compelled by applicable laws and regulations to delete such data sooner, or to retain it further.
If applicable, for more information about how your Personal Data may subsequently be retained on a per product
basis, please refer to the product and service specific supplemental information.
Your rights regarding your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
How do we check your data?
Visitor comments may be checked through an automated spam detection service.
What rights do you have in connection with the processing of your data?
Every data subject has the right of access (i.a. Article 15 GDPR), the right to rectification (i.a. Article 16 GDPR), the right to erasure (i.a. Article 17 GDPR), the right to restriction of processing (i.a. Article 18 GDPR), the right to object (i.a. Article 21 GDPR) and the right to data portability (i.a. Article 20 GDPR).
Right to object
What right do you have in the event of data processing for legitimate or public Interest?
Pursuant to i.a. Art. 21 para. 1 GDPR, you have the right to object at any time for reasons arising from your particular situation to the processing of your personal data on the basis of i.a. Art. 6 para.1 lit. e GDPR (data processing in the public interest) or i.a. Article 6 para. 1 lit. f GDPR (data processing to protect a legitimate interest), this also applies to profiling based on this provision.
In the event of your objection, we will no longer process your personal data unless we can prove compelling grounds for processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
Revocation of consent
You can revoke your consent to the processing of your personal data at any time. Please note that the revocation is only valid for the future.
Right to information
You may request information as to whether we have stored personal data about you. If you wish, we will inform you of the data concerned, the purposes for which the data is processed, to whom this data is disclosed, how long the data is stored and what further rights you are entitled to with regard to this data.
In addition, you have the right to have your data corrected or deleted. If there is no reason for further storage, we will delete your data, otherwise we will restrict processing. You may also request that we provide all personal information that you have provided to us in a structured, current and machine-readable format either to you or to a person or company of your choice.
In addition, there is a right to lodge a complaint to the responsible data protection supervisory authority (Art. 77 GDPR).
Assertion of your rights
To exercise your rights, you can contact the controller or the data protection officer using the contact details provided above.
Your data will not be transferred to third parties unless we are legally obliged to do so, or data transfer is necessary to carry out the contractual relationship or you have given your prior express consent to the transfer of your data.
We don´t sell your data.
When we use certain service providers, it may happen that your data is processed outside the EU/EEA. We are determined to transfer your data only when there is no equally suitable service in the EU/EEA. In the case that your data is transferred, we concluded standard contractual clauses with the service providers. The provider is therefore obliged to ensure an adequate level of data privacy after the transmission.
Some services do not provide standard contractual clauses or other guarantees for a secure transmission. These services will only be used if you have given your prior consent to the transfer of the data to a non-secure third country within the meaning of Art. 49 para. 1 sentence 1a GDPR.
On the following pages you will also find documents with:
and for the
The processing of personal data can be based on different legal bases. If we need your data to fulfil a contract with you or to answer your queries regarding a contract, the legal basis for this data processing is i.a. Art. 6 (1) S. 1 lit. b GDPR. If we obtain your consent for certain data processing, the legal basis is i.a. Art. 6 (1) S. 1 lit. a GDPR. We carry out some data processing on the basis of our legitimate interest, whereby a balance is always made between your interests of protection and our legitimate interests. The legal basis for this is i.a. Art. 6 (1) lit. f GDPR. Insofar as processing is necessary to fulfil a legal obligation to which we are subject, the legal basis is i.a. Art. 6 (1) lit. c GDPR.
© DaVinci Kitchen GmbH