Data Protection Declaration

Last updated: May 5, 2021

Protecting your privacy when using this website (the iET Customer Portal) is particularly important to us. The following information is provided to notify you about the collection of anonymous and personal data.

1.) Provider responsible for data protection

This website is a service of:

  • iET Solutions, LLC.
  • 25 Dan Road
  • Canton, MA 02021
  • United States

2.) How to contact us

If you have any questions regarding your personal data and how iET Solutions may use it, including any queries relating to this Data Protection Declaration, please write to the Compliance Team at iET Solutions, c/o 15535 San Fernando Mission Blvd, Mission Hills, CA 91345, United States or call +1 818.838.0606 and ask to speak with a member of our Compliance Team.

It is important that the personal data iET Solutions holds about you is accurate and current. Please keep iET Solutions informed if your personal data changes during your relationship with iET Solutions.

3.) Responsible controlling authority

Inside the European Union (EU):
Bayerisches Landesamt für Datenschutzaufsicht (BayLDA), Promenade 18, 91522 Ansbach, Deutschland. Phone: +49 (0) 981 180093-0, e-mail: poststelle@lda.bayern.de.

Inside the United Kingdom (UK):
Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF, United Kingdom. Phone: +44 (0)303 123 1113.

4.) Basics

Your personal data (for example salutation, name, address, e-mail address, phone number) will be stored and processed by us taking into account the relevant legal data protection regulations, especially the REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation – GDPR), the Federal Data Protection Act (Bundesdatenschutzgesetz – BDSG), and other data-related laws [for example the German Teleservices Act (Telemediengesetz – TMG)].

Pursuant to GDPR and other regulations, the processing and use of data is only permitted if the GDPR or another legal regulation explicitly allows this or if the data subject agrees (prohibition with reservation of authorization). Pursuant to this statutory basis, the processing and use of data is in particular only permitted if:

  1. the data subject has consented to the processing of his or her personal data for one or more specific purposes;
  2. the processing is required for the fulfillment of a contract whose signatory party is the data subject or for the execution of contractual measures that are carried out at the request of the data subject;
  3. the processing is required for the fulfillment of a legal commitment to which the person responsible is liable;
  4. the processing is required to protect vital interests of the data subject or another natural person;
  5. the processing is required for the exercise of a task that is in public interest or is done in exercise of public force transferred to the person responsible;
  6. the processing is required for the protection of justified interests of the person responsible or a third party, unless the interests or fundamental rights and fundamental freedom of the data subject that require the protection of personal data prevail, especially if the data subject is a child.

Accordingly, we will use and process your personal data within the permissible framework of the processing of contracts or with your informed consent.

We will not pass on your personal data including your address and e-mail address to third parties. Excluded from this are our service partners that require the transfer of data for handling of the contractual relationship and cases where we have explicitly pointed this out. In those cases, however, the volume of the transferred data will always be restricted to the required minimum.

5.) Anonymous data collection

You can visit our website without revealing your identity. Your IP address, the website from which you visit us, and the pages of our website that you visit, however, will be identifiable. An evaluation of this information is only carried out for statistical purposes.

6.) Collection of personal data when visiting our website and when using our services in general

We will only collect your personal data if you voluntarily consent to it. This may be done, for example, for the execution of a contract, a survey, or when registering for services for which a login with personal data is required (for example for sending offers, special actions, contractual performance, or sending newsletters). In such cases, we will only collect the data where legally permitted and necessary for the fulfillment of the services that you have requested (for sending offers, this would normally be, for example, your name, address, phone number, and e-mail address, for subscribing to the newsletter, for example, it would only be your e-mail address). If we collect personal data from you (for example via a contact or order form), you will always have to specify the required data only. The respective mandatory data fields are marked with an asterisk. All data additionally specified by you is purely voluntary and needs not to be disclosed by you. If you choose to specify such information, then your disclosure implies your consent to allow us to save and process this data for the respective specified purpose too; sometimes we also request your explicit consent for purposes of data protection regulation that require an explicit consent, which you can give voluntarily, which is not bound to other commitment, and which can be revoked at any time for the future.

For the highest possible security of your data, this will be transferred via SSL/TLS encryption in encrypted form. This is to prevent a misuse of your data by third parties. Your data collected via this website will be stored and processed by us on servers within the UK.

7.) Data processing for contractual performance

(7.1) Purpose of processing

Within the framework, for example, of our ordering process, you provide us with your personal data. The compulsory statements marked with an asterisk in this context are personal data required for the conclusion of a contract with us. Without your communication of the required data (in case of an order, for example, your address), we cannot provide the service required by you (for example the contractual performance).

(7.2) Legal basis

Legal basis of this processing is point (b) of Article 6(1) GDPR.

(7.3) Categories of recipient

Payment service providers, shipping service providers, CRM system where applicable, suppliers where applicable (drop shipping).

(7.4) Storage period

Where iET Solutions acts as a data controller, it will not keep your personal information longer than is necessary for the purpose in which it was provided, unless required by law, or for other legitimate reasons that need it to be retained for longer (for example, if necessary for any legal proceedings). Where iET Solutions acts as a data processor on behalf of its customers, iET Solutions will only hold on to personal data for the period notified to iET Solutions by the data controller customer, or for the period required for the purposes of satisfying any legal, accounting, regulatory or reporting requirements.

8.) Consent in terms of data protection law

The iET Customer Portal is a Business-to-Business (B2B) customer portal where our customers can independently access product news, documentation, and software downloads. Users can trigger and monitor support incidents. By registering to use the iET Customer Portal on our website, you consent that

  • your personal data, particularly user name,
  • first name, last name,
  • company name and address,

as well as

  • company e-mail address and phone number

will be collected and processed by us for the following purposes:

  • Fulfillment of the service desired by you, point (b) of Article 6(1)
  • Internal control of requests from several countries for faster treatment of them, point (f) of Article 6(1)

9.) Use of cookies

On several pages, we use cookies to enhance the experience of the iET Customer Portal and to enable specific features and functions. Cookies are small text files that are stored on your computer. One or more of the cookies used by us will be deleted from your hard disk after the end of the browser session (session cookies). Other cookies will remain on your computer and allow us to recognize your computer at your next visit (persistent cookies). Our partner companies are not permitted to collect, process, or use personal data via cookies. The cookies used, for example, by Google are explained here.

10.) Customer Portal

The iET Customer Portal is a B2B customer portal where our customers can independently access product information, documentation, and software downloads. Users can trigger and monitor support incidents. Within the framework of our Customer Portal, we use cookies. The cookies used by us as well as the storage period and function of the cookies are listed below:

Cookie for retaining the visitor session, during a single visit to our website:

  • Name: ASP.NET_SessionId
  • Party Type: First
  • Category: strictly necessary

The cookie expires as soon as the session ends.

Cookie for maintaining the login data of the user and for access permission to the website:

  • Name: UNICOMAuth
  • Party Type: First
  • Category: strictly necessary

The cookie expires as soon as the session ends, unless the user has chosen the “Remember me” option during login. In this case, the cookie will be kept for 75 days.

Cookie for confirmation that the visitor has active iET products:

  • Name: productschecked
  • Party Type: First
  • Category: strictly necessary

The cookie expires as soon as the session ends.

11.) Revocation of your consent

If you have given us a consent regarding data protection law for specific data use and/or services, you can revoke it at any time in the future. To do this, a simple message outlining your request should be sent to the following address:

  • Compliance Team
  • iET Solutions, LLC.
  • c/o 15535 San Fernando Mission Blvd,
  • Mission Hills,
  • CA 91345,
  • United States
  • Phone: +1 818.838.0606

12.) Your rights as a data subject

As a data subject, you have rights regarding your personal data in certain circumstances. Accordingly, we have taken appropriate measures to provide you as a data subject with all information pursuant to Articles 13 and 14 GDPR and all notifications pursuant to Articles 15 to 22 and Article 34 GDPR, which are related to processing, in a precise, transparent, intelligible, and easily accessible form and in a clear and simple language; this in particular applies to information that especially addresses children. The transfer of the information is carried out in written, electronic or another form, as required. If desired by you, the information can also be given orally, provided that your identity as data subject has been verified in a different form.

You have the right to request, in written or electronic form, information about your stored personal data and its origin, the recipient(s) to whom the data is disclosed, and the purpose of storage. In addition, you have the right to demand that inaccurate data will be rectified and, if the legal requirements are fulfilled, that your data will be erased or locked. To do this, a simple message outlining your request should be sent to the following address:

  • Compliance Team
  • iET Solutions, LLC.
  • c/o 15535 San Fernando Mission Blvd,
  • Mission Hills,
  • CA 91345,
  • United States
  • Phone: +1 818.838.0606

Furthermore, you have the following rights in certain circumstances:

(12.1) Right to confirmation and disclosure

You can request a confirmation from us whether personal data affecting you is processed by us.

If we are processing your data, you can request disclosure of the following information from us:

  1. the purposes of the processing;
  2. the categories of personal data concerned;
  3. the recipients or categories of recipient to whom the personal data has been or will be disclosed;
  4. where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to demine that period;
  5. the existence of the right to request from the controller rectification or erasure of personal data or restriction of processing of personal data concerning the data subject or to object to such processing;
  6. the right to lodge a complaint with a supervisory authority;
  7. where the personal data is not collected from the data subject, any available information as to their source;
  8. the existence of automated decision-making, including profiling, referred to in Article 22(1) and (4) GDPR and, with such cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for the data subject.

In addition, you have the right to request disclosure if the personal data affecting you is transferred to a third country or to an international organisation. In this context, you can request to be informed about of the appropriate safeguards pursuant to Article 46 GDPR relating to the transfer.

(12.2) Right to rectification

You have the right to rectification and/or completion if the processed personal data we hold about you is inaccurate or incomplete. We will carry out rectification without undue delay.

(12.3) Right to restriction of processing

Under the following conditions, you can request a restriction of processing of the personal data concerning you:

  1. if you contest the accuracy of the personal data concerning you, for a period enabling the controller to verify the accuracy of the personal data;
  2. if the processing is unlawful and you oppose the erasure of the personal data and request the restriction of its use instead;
  3. if we no longer need the personal data for the purposes of the processing, but you require it for the establishment, exercise, or defense of legal claims; or
  4. if you have objected to processing pursuant to Article 21(1) GDPR pending the verification of whether our legitimate interest overrides your interest.

Where processing the personal data concerning you has been restricted, this data will, with the exception of storage, only be processed by us or entitled third parties with your consent or for the establishment, exercise, or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.

If you have obtained restriction of processing under the above conditions, we will inform you before the restriction of processing is lifted.

(12.4) Right to erasure (right to be forgotten)

a.) Obligation to erase

You can request from us the erasure of personal data concerning you. We will have the obligation to erase this data without undue delay where one of the following grounds applies:

  1. the personal data concerning you is no longer necessary in relation to the purposes for which it was collected or otherwise processed;
  2. you withdraw your consent on which the processing was based according to point (a) of Article 6(1) or point (a) of Article 9(2) GDPR and where there is no other legal ground for the processing.
  3. you object to the processing pursuant to Article 21(1) GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Article 21(2) GDPR;
  4. the personal data concerning you has been unlawfully processed;
  5. the personal data concerning you has to be erased for compliance with a legal obligation in Union or Member State law to which we are subject;
  6. the personal data concerning you has been collected in relation to the offer of information society services referred to in Article 8(1) GDPR.

b.) Information to third parties

Where we have made the personal data public and are obliged pursuant to Article 17(1) GDPR to erase the personal data, we will, taking account of available technology and the cost of implementation, take reasonable steps, including technical measures, to inform controllers which are processing the personal data that you have requested the erasure by such controllers of any links to, or copy or replication of, that personal data.

c.) Exceptions

The right to erasure does not apply to the extent that processing is necessary:

  1. for exercising the right of freedom of expression and information;
  2. for compliance with a legal obligation which requires processing by Union or Member State law to which we are subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in us;
  3. for reasons of public interest in the area of public health in accordance with points (h) and (i) of Article 9(2) as well as Article 93GDPR;
  4. for archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes in accordance with article 89(1) GDPR in so far as the right referred to in paragraph a.) is likely to render impossible or seriously impair the achievement of the objectives of that processing; or
  5. for the establishment, exercise, or defense of legal claims.

(12.5) Right to notification

If you have claimed from us the right to rectification, erasure, or restriction of processing, we are obliged to communicate any rectification or erasure of personal data or restriction of processing to each recipient to whom the personal data concerning you has been disclosed, unless this proves impossible or involves disproportionate effort.

You have the right to be informed about those recipients by us.

(12.6) Right to data portability

You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used, and machine-readable format. In addition, you have the right to transmit that data to another controller without hindrance, where:

  1. the processing is based on consent pursuant to point (a) of Article 6(1) GDPR or point (a) of Article 9(2) GDPR or on a contract pursuant to point (b) of Article 6(1) GDPR; and
  2. the processing is carried out by automated means.

In exercising that right, you also have the right to have the personal data transmitted directly from us to another controller. That right must not adversely affect the rights and freedoms of others.

The right to data portability does not apply to processing of personal data that is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in us.

(12.7) Right to object

You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (e) or (f) of Article 6(1) GDPR, including profiling based on those provisions.

We will then no longer process the personal data unless we demonstrate compelling legitimate grounds for the processing which override your interests, rights, and freedoms, or the processing is used for the establishment, exercise, or defense of legal claims.

Where personal data is processed for direct marketing purposes, you have the right to object at any time to processing of personal data concerning you for such marketing, which includes profiling to the extent that it is related to such direct marketing.

Where you object to processing for direct marketing purposes, the personal data will no longer be processed for such purposes.

In the context of the use of information society services, and notwithstanding Directive 2002/58/EC, you may exercise your right to object by automated means using technical specifications.

(12.8) Right to revoke the declaration of consent regarding data protection law

You have the right to revoke at any time your declaration of consent regarding data protection law. The revocation of the consent will not affect the legitimacy of the processing done on the basis of the consent until revocation.

(12.9) Automated individual decision-making, including profiling

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. This does not apply if the decision:

  1. is necessary for entering into, or performance of, a contract between you and us;
  2. is authorized by Union or Member State law to which we are subject and which also lays down suitable measures to safeguard your rights and freedoms and legitimate interests; or
  3. is based on your explicit consent.

However, those decisions must not be based on special categories of personal data referred to in Article 9(1) GDPR, point (a) or (g) of Article 9(2) applies and suitable measures to safeguard your rights and freedoms as well as your legitimate interests.

In the cases referred to in points a,) and c.), we will implement suitable measures to safeguard your rights and freedoms as well as your legitimate interests.

(12.10) Right to lodge a complaint with a supervisory authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement if you consider that the processing of personal data relating to you infringes GDPR.

The supervisory authority with which the complaint has been lodged will inform the complainant on the progress and the outcome of the complaint including the possibility of a judicial remedy pursuant to Article 78 GDPR.

13.) Additional Information

If you have other questions or concerns about how iET has handled your personal data or if you want information about your data or its correction or deletion, please write to:

  • iET Solutions, LLC.
  • c/o 15535 San Fernando Mission Blvd,
  • Mission Hills,
  • CA 91345,
  • United States