We appreciate your visit to our website and your interest in the Nova Paint Club (“we” or “Nova”).

Nova is a Swiss association of paint companies which exists to help share information within the paint industry.

Your privacy is important to us. We take the protection of your personal data and its confidential treatment very seriously. Your personal data will be processed exclusively within the framework of the legal provisions of the data protection law of the European Union, in particular the Basic Data Protection Ordinance (“DSGVO”) and the Telemedia Act (“TMG”).

This policy explains how we use your data on this website and your rights in relation to that data.

1. Data Protection Officer

We have appointed Stephen Falder as our Data Protection Officer (“DPO”). Our DPO is responsible for data processing within the meaning of the data protection laws. You can contact the DPO here:

The Nova Paint Club
Higham View
Legh Road
WA16 8LP
United Kingdom

Email: s.falder@novapaint.org

If you have any questions or suggestions regarding data protection, please do not hesitate to contact us.

2. Subject of data protection

This data protection policy applies to your personal data. Personal data is all information that relates to an identified or identifiable natural person (the “data subject”). This includes information such as your name, postal address, e-mail address or telephone number. It also includes technical data that arises while you use the website, such as when you begin and end your use of the website and the scope of your use, as well as your IP address.

3. How and why we process your data

You can use the website without registering, but even if you don’t register, we can still process some of your personal data. We do that in the following ways:

3.1 When you use the website

When you access the website, we automatically process the following data:

Date and time of access
Duration of the visit
Type of mobile device
operating system used
the functions you use
Type of event
IP – address
referrer URL
domain name

We process this data in line with Article 6(1)(f) DSGVO to provide a service, to ensure the technical operation of the website and to identify and eliminate any faults. Our interest is in making the website permanently operable.

When you access the website, this data is processed automatically. Without this provision you cannot use our services. We do not use this data to draw conclusions about you or your identity. We usually delete this data after 90 days, unless, in exceptional cases, we need to keep it for longer for the purposes explained here. If we need to do that, we’ll delete the data immediately after it has been used.

3.2 Cookies

When you visit the website, “cookies” (small files), can be stored on your device so we can offer you a comprehensive range of functions, to make use of the website more convenient and to optimise our offer to you. If you do not wish cookies to be used, you can stop them from being stored on your device by changing the settings in your internet browser, or by using separate options for objecting. You should know that this may limit the functionality of the website.We only use a technical cookie that is deleted at the end of your browser session.

4. Who can access your personal data

4.1.Internally – Within Sirius-net, your personal data is only accessible by people who need it for the purposes mentioned above.

4.2 Externally – We will only pass on your personal data to external recipients outside sirius-net if it’s necessary to process a request you have made or if we have your consent.

External recipients could include:

a) External service providers, for example, those providing us with technical infrastructure and maintenance services for the website. These contractors are carefully selected and regularly reviewed by us to make sure that your privacy is protected. [Data is not passed on to these service providers.]
b) Public authorities and state institutions, such as public prosecutor’s offices, the courts or tax authorities, to which we must transmit personal dataif we’re legally compelled to do so. We will then make the transmission in line with Article 6(1)(c) DSGVO.

5. Data processing in third countries

We do not transmit your data to third countries.

6. Storing your data

In general, we only store your personal data for as long as necessary to fulfil the purposes explained here. Where we have your consent, we will only store your data while we retain that consent. If you object, or ask us to delete your personal data, we will do so unless further processing is required by the relevant legal provisions.

7. Status of this privacy policy

This policy was reviewed and updated on 14.08.2020