Data Protection Policy
Integrated Packaging Systems FZCO (hereinafter referred to as “IPS”, “we” or “us”) is glad that you are visiting our websites as well as mobile applications (collectively also referred to as “Online Offer”) and that you are interested in our Company and our product offerings.
Data protection and information security are part of our company policy. We view the protection of your privacy during the processing of personal data— and the security of all business data— as important considerations which we take into account in our business processes.
IPS is the Controller responsible for the processing of your data. Our contact details are as follows:
Integrated Packaging Systems FZCO
Address: DAFZ Office No. 4WA 219, P.O. Box 54337, Dubai, U.A.E.
Telephone: +971 4 2115300
Fax: +971 4 2996322
3. Processing of personal data
Personal data is any information relating to an identified or identifiable natural person (e.g. names, addresses, telephone numbers, e-mail addresses, contractual, booking and accounting data which is the expression of a person’s identity).
We process personal data (including IP addresses) only if there is a legal basis for this or if you granted us your consent in this regard (e.g. in the course of a registration).
3.2. Categories of data processed
The following data categories are processed:
• Communication data (e.g. name, telephone, e-mail, address)
• Key contract data (e.g. contractual relationship, product or contractual interest)
• Customer history
• Contract billing and payments data
3.3. Purposes of processing and legal bases
We and service providers engaged by us process your personal data for the following purposes of processing and subject to the following legal bases:
3.3.1. Contractual basis (preparation, performance, termination):
• Answering enquiries
• Handling of your orders
• Preparation, negotiation and fulfilment of a contract with you
• Granting access to certain information and offers.
3.3.2. Legal obligation
• Official or judicial order
3.3.3. Legitimate interests
• Direct marketing
• Improvement of services
• Online surveys (note: if we involve a market research institute for survey, it will only become active on our behalf and subject to our instructions.)
• Establishment or protection of legal claims or defence of court actions
• Prevention of abuse or other unlawful activities
• Guarantee of data security
4. Obligation for the provision of personal data
To the extent there is a contract between you and us, you must provide the personal data which is required for commencement, performance and termination of the contractual relationship and for the fulfilment of the contractual obligations related thereto or to the collection of which we are legally obliged. Without the provision of such data, we will generally not be able to enter into, perform and terminate a contract with you.
To the extent the data processing during your use of our website is not required for the commencement, performance and termination of a contractual relationship or for the fulfilment of contractual obligations and is not required under applicable laws, the provision of your data shall be voluntary. Please note that certain functionalities of the website or services cannot be used if you do not provide the data required for such purposes.
IPS will not knowingly process personal data of children without explicitly pointing out that such data should only be transmitted with the consent of the legal guardians or if permissible under applicable legal provisions. Any use or disclosure of personal data of children by IPS will in general only be performed, to the extent this is legally permitted, to obtain the legally required consent of the parents or for the protection of children.
6. Data disclosure
6.1. Forwarding of data to other controllers
In general, we transfer your personal data to third parties only if this is required for contract performance or if the third party has a legitimate interest in the data disclosure of if you provided your consent thereto. Third parties may be subsidiary companies of IPS. To the extent data is transferred to third parties based upon a legitimate interest, this is explained in this Privacy Notice.
Furthermore, data can be transferred to other controllers to the extent we are obliged to do so due to statutory provisions or enforceable official or judicial orders.
6.2. Service providers
We engage external service providers to perform tasks such as payment processing, programming, and data hosting. We have chosen these service providers carefully and monitor them on a regular basis—in particular for their careful treatment and protection of the data stored with them. We oblige all service providers to maintain confidentiality and to comply with the statutory regulations.
7. Disclosure to recipients outside the EEA
We may also disclose personal data to recipients based outside the European Economic Area, in so-called third states. In such case, we make sure before disclosure that the recipient either has an appropriate data protection level in place (e.g. based upon an adequacy decision by the EU Commission for the country in question or the agreement of so-called EU Standard Contractual Clauses of the European Union with the recipient) or that you granted your consent to such disclosure.
8. Duration of storage / retention periods
In general, we store your personal data as long as this is required for the provision of our contracted services or as long as we have a legitimate interest in continued storage (for example, we may have a legitimate interest in postal marketing after fulfilment of the contract). In all other cases, we delete your personal data except for data which we must keep for the fulfilment of legal obligations (e.g. under tax or commercial law).
Cookies are small text files which are stored on your computer when you visit an website. If you access such website again, your browser will send back the contents of the cookies to the respective provider, thus allowing for recognition of the end device. By reading out cookies, we can design our website for you in an optimal manner and facilitate your use, e.g. storage of the password. If you do not wish that IPS recognises your computer, please adjust the settings of your internet browser such that it deletes cookies from your hard disks, blocks all cookies or warns you before a cookie is saved.
10. External links
Our website may contain links to third-party websites (i.e. of providers not affiliated to us). After clicking on the link, we do not have any influence on the collection, processing and use of any personal data transferred to the third party by clicking on the link (such as the IP address or the URL of the page containing the link) as the behaviour of third parties is naturally not under our control. We do not assume any responsibility for the processing of such personal data by third parties.
Our employees and the service providers acting on our behalf are obliged to maintain confidentiality and comply with the provisions of the applicable data protection laws.
We take the required technical and organisational measures to ensure an appropriate level of protection for your data managed by us, particularly against the risks of accidental or unlawful destruction, manipulation, loss, alteration or unauthorised disclosure or unauthorised access. Our security measures are subject to continuous improvement according to technological developments.
12. Your rights as a user
Please use the details set forth in the “Controller” section to assert your rights. When doing so, please ensure that we can clearly identify you.
You are entitled to obtain from us information on the processing of your data. For this purpose, you can assert a right of access regarding your personal information we process. In addition, you can require us to rectify incorrect data and—to the extent the statutory provisions are met—complete or erase your data. However, this shall not apply to data required for billing and accounting purposes or subject to the statutory retention obligation. To the extent access to such data is not required, processing thereof will be restricted. In addition, you can require us to—to the extent the statutory provisions are met—restrict the processing of your data.
Objection to data processing:
Moreover, you are entitled to object to data processing by us at any time. We will then cease processing your data, unless we can—in accordance with the statutory provisions—demonstrate compelling legitimate grounds for the further processing which override your interests.
Objection to direct marketing:
Apart from that, you can object to the processing of your personal data for marketing purposes at any time (“objection to marketing”). Please note that for
organisational reasons, your withdrawal and the use of your data during a campaign which has already commenced may overlap.
Objection to data processing if “legitimate interest” is the legal basis:
In addition, you are entitled to object to data processing by us at any time to
the extent such processing is based upon the legal basis of a legitimate interest. We will then cease processing your data, unless we can—in accordance with the statutory provisions—demonstrate compelling legitimate grounds for the further
processing which override your interests.
Withdrawal of consent:
If you have given us your consent to the processing of your data, you can withdraw
it at any time with effect for the future. A withdrawal shall not affect the lawfulness of the data up until the time of the withdrawal.
12.1. Data portability
Furthermore, you are entitled to receive data which you provided to us in a structured, common and machine-readable format or, to the extent technically feasible, to request transfer of such data to a third party.
Changes to the Privacy Notice
We reserve the right to amend our security and data protection measures to the extent this is necessary due to technological advancements. In these cases, we will also adjust our data protection information accordingly. Therefore, please note the respective current version of our Privacy Notice.