Country/region and language selection

Data protection declaration

TRUMPF SE + Co. KG and its affiliated companies, hereby referred to as the TRUMPF Group, would like to thank you for your interest in our company and our products and services. Protecting your personal data while it is being processed during the entire business process is important to us.

TRUMPF SE + Co. KG operates the entire international web presence of the TRUMPF Group, as well as affiliated web applications. This data protection declaration applies to all websites operated by the TRUMPF Group, as well as to other processing of personal data within the TRUMPF Group. This does not include the websites to which our external links lead.

List of all contact details for the companies belonging to the TRUMPF Group
List of all contact details for the companies belonging to the TRUMPF Group
Data at TRUMPF
Data at TRUMPF

Trustful relations with customers is vital to TRUMPF. Transparency in the way we use data is therefore a top priority.

We will explain which information we collect when you visit our websites and how it is used, in the following. Additionally you can find general information about the handling of personal data e.g. as part of application procedures, trade shows, events, as well as in the context of registering for our B2B portals, or when implementing marketing measures.

Data protection officer

Our data protection officer and their team are available for any concerns relating to data protection that you may have.

Please send your concerns to the following e-mail address: privacy@trumpf.com or to your local contact person

Personal data

Personal data is any information relating to an identified or identifiable natural person. This includes information such as your real name, your address, your phone number, or your date of birth. Information which cannot be directly connected to your real identity – for example favorite websites or number of users to a site – is not personal data.

Your rights

In regards to your personal data, you have the right to request that we provide you with information, rectify, delete, or restrict the processing of your data in accordance with legal provisions. Upon request, we will provide you your data in a structured, common, and machine-readable format. If we are using your data based on your consent (for example when registering to our e-mail newsletter), you may revoke your consent at any time. From the time of the revocation, we will no longer use your data for these purposes. If we have a legitimate interest in processing your data, you may likewise express your objection to this, to us. In this case, we will stop processing your data unless we must continue to store it due to compelling reasons which override your interest in objecting, or unless the processing serves to pursue legal claims. If we process personal data for direct marketing, you may object to the processing of such data at any time, without submitting reasons. In this case we will no longer use the data for the purposes of direct marketing. Of course, you can always also contact the responsible supervisory authorities.

Additional information in accordance with Art. 13 GDPR can be found below.

Supplementary data protection information for customers and end customers (also for trade show stands)
Supplementary data protection information for customers and end customers (also for trade show stands)
Supplementary data protection information for participants at events
Supplementary data protection information for participants at events
Supplementary data protection information in accordance with art. 13 General Data Protection Regulation (GDPR) for suppliers
Supplementary data protection information in accordance with art. 13 General Data Protection Regulation (GDPR) for suppliers
Supplementary data protection information for applicants
Supplementary data protection information for applicants
Applicant/Employee CCPA Notice
Applicant/Employee CCPA Notice
“EEO is the Law” Poster Supplement
“EEO is the Law” Poster Supplement
Equal Employment Opportunity is the Law
Equal Employment Opportunity is the Law
PAY TRANSPARENCY NON DISCRIMINATION PROVISION
PAY TRANSPARENCY NON DISCRIMINATION PROVISION

Erasure of data

If your data is no longer needed for the listed purposes, including billing, it will be deleted. Please note that for each deletion, the data will initially only be blocked and only completely deleted after a time delay to prevent accidental deletion or possible intentional damage. For technical reasons, data is duplicated in backup files or through service mirroring, if need be. Such copies are likewise, if need be, only deleted following a time delay due to technical reasons.

Transmission of personal data to non-EU countries

If you have agreed to the setting and reading of cookies via our cookie settings, your personal data may be transferred to non-EU countries. Below you will find an overview of the service providers used that are headquartered in a non-EU country and which form the legal basis for TRUMPF to transmit your personal data.

Company Affected non-EU countries Legal basis
Akamai Technologies, Inc. USA EU-US Data Privacy Framework Agreement
Fonticons , Inc USA Consent, Art. 49 Abs. 1 lit. a GDPR
Google LLC USA EU-US Data Privacy Framework Agreement
Hotjar UK Limited United Kingdom Adequacy decision
LinkedIn Corporation USA Standard contractual clauses
Meta Platforms, Inc. USA Consent, Art. 49 Abs. 1 lit. a GDPR
Microsoft Corporation USA EU-US Data Privacy Framework Agreement
X Corp. USA Consent, Art. 49 Abs. 1 lit. a GDPR

Details on the respective processing procedures can be found below in this data protection declaration. If "Consent, Art. 49 Abs. 1 lit. a GDPR“ is indicated as the legal basis, please note that your personal data is processed in a non-EU country that the European Commission does not classify as safe. In this case there is a risk that authorities can access your data for control and monitoring purposes, against which it may not be possible to exercise effective legal remedy or to assert the rights of the persons concerned. You can use the cookie setting to prevent your data from being transmitted to these recipients.

Use and forwarding of personal data

The personal data you provide will be used by us only for a specific purpose, for example, for technical administration of websites or fulfilling your requests and demands; i.e. generally to execute the contract we have concluded with you, or to answer your questions. During registration in our B2B portals, the data will be used to carry out that registration and for the purposes of marketing exclusively within the legally permissible scope. You can object to this promotional use at any time by sending a brief message to the following address: DE.Kundenmarketing@de.trumpf.com.

We will not forward, sell or otherwise share your personal data with individuals outside the TRUMPF Group, unless this is required for the purposes of executing a contract or to carry out a service as part of order processing, or you have expressly consented to this.

Collecting and processing personal data

Data is collected in log files, and through search engines and forms, whenever our websites are used. When you visit our websites, our web servers permanently store the following as standard for the purposes of system security: the connection data of the inquiring computer; which of our websites you have visited; the date and duration of the visit; the recognition data of the browser and operating system used; the website from which you came. Additional personal information such as your name, address, telephone number, or email address are not collected, unless these are voluntarily provided by you, e.g. during registration, a survey, a contest, to execute a contract, or a request for information. The stored data will be used to track misuse on the web server and then deleted. The date/time of the last login is also used for advertising purposes, insofar as this is legally permissible.

Information on the use of cookies and local storage

Scope of processing of personal data

We integrate and use cookies on various pages to enable specific website functions and to integrate external web services. "Cookies" are small text files that your browser can store on your device. These text files contain a unique character string that identifies the browser when you return to the website. The process of saving a cookie file is also called "setting a cookie". Cookies can be set both by the website itself and by external web services.

We also use technologies on our websites that store data in the cache of the browser used (“local storage technology”). Third parties have no access to the data stored in their browser cache.

Details on the cookies and local storage technologies processed on our website can be found below in this privacy policy.

Legal basis for the processing of personal data

Art. 6 para. 1 lit. f GDPR (legitimate interest) or Art. 6 para. 1 lit. a or Art. 49 para. 1 lit. a GDPR (consent).

The relevant legal basis can be found in the cookie and local storage table listed later in this section.

As a general rule, in the case of cookies and local storage technology that are collected or saved on the basis of a legitimate interest, our legitimate interest is to ensure the functionality of our website and the services integrated into it (technically necessary cookies or local storage technology). Cookies and local storage technologies may also increase the user-friendliness and enable a more personalized presentation of the website. A legitimate interest also exists for cookies and local storage technologies used for website security and therefore also for your personal data security. With the cookies and local storage technologies listed in the table below, we take into consideration both your interests and ours.

Cookie and local storage technologies allows us to analyze and track individual website visitors only if the website visitor has consented to the use of cookies and/or local storage technologies. Displaying individualized advertising is also possible only with your consent.

Purpose of data processing

Cookies and local storage technologies are set by our website or external web services to maintain the site's full functionality, to improve user-friendliness or to pursue, with your consent, the stated purpose. Cookies and local storage technologies also allows us to identify individual visitors by using pseudonyms, e.g. individual or random IDs. We are then able to provide more personalized services. Details are shown in the following table.

Duration of storage

The cookies listed below are stored in your browser until you delete them or when the storage duration expires. Session cookies are deleted when the session has expired. The data stored in the local memory is saved in such a way that it remains stored in the browser cache and thus on the end device used after a browser window or tab has been closed or after the browser used has been closed. The data stored in the browser cache can be deleted manually. Most browsers offer you this deletion option via the “Delete browser data” or “Empty cache” function.

Details are listed in the following tables:

Description of cookies

Trumpf.com and MyTrumpf.com

Cookie name Server Purpose Legal basis Storage duration Type
_ga www.trumpf.com This cookie assigns an ID to a user so that the web tracker can summarize the actions of the user with this ID. Consent 2 years Tracking
ga-disable www.trumpf.com Deactivate Google Analytics Consent 90 days  Tracking
_gcl_au www.trumpf.com Google Ads Conversion Tracking contains a randomly generated user ID Consent 90 days Tracking
PHPSESSID www.trumpf.com PHP session cookie Legitimate interest Session Session
language_iso www.trumpf.com User's language preference Consent 6 months Functional
_ux_back_teaser  www.trumpf.com Used to provide the user with a valid back link to the previously visited page. (including page title of the previous page in the teaser) Consent Session Functional
content_groups_con www.trumpf.com Saves the category of the last page visited Consent Session Tracking
fe_typo_user www.trumpf.com Authentication cookie for TYPO3 frontend login (application session cookie) Legitimate interest Session Authentication
RT www.trumpf.com Performance analyses are carried out with this cookie via the tool Akamai mPulse to develop and enhance our offers. Consent One week Tracking
_ux_cc www.trumpf.com Stores the user's cookie preference Legitimate interest 1 year Functional
Customer identity management for single-sign-on

Cookie name Server Purpose Legal basis Storage duration Type
JSESSIONID identity.trumpf.com Java-session cookie Legitimate interest Session Functional
sessionNonceCookie- identity.trumpf.com This cookie is for session identification with our IDM and the GUID is always dynamic. This cookie is set every time the login screen is accessed and it also changes with every refresh. We do not have a user reference and is of a purely technical nature. Legitimate interest Session Functional
trumpf-ihub-cidm-prod identity.trumpf.com This cookie is used to ensure the session affinity of a user to a specific backend server. This ensures that all requests from a user during a session are forwarded to the same server. The name of this cookie contains the value of the current environment, which enables dynamic adaptation depending on the operating environment. The servers refer to our gateways. Legitimate interest Session Functional
trumpf-ihub-cidm-prodCORS identity.trumpf.com This cookie is used to ensure the session affinity of a user to a specific backend server. This ensures that all requests from a user during a session are forwarded to the same server. The name of this cookie contains the value of the current environment, which enables dynamic adaptation depending on the operating environment. The servers refer to our gateways. Legitimate interest Session Functional
long identity.trumpf.com User's language preference Consent 3 days Functional
commonAuthId identity.trumpf.com Required cookie to identify the SSO session, see docs.wso2.com/display/IS550/Authentication+Session+Persistence Legitimate interest Session Authentication
opbs identity.trumpf.com Session cookie for the OpenID Provider (OP browser state cookie). Required for single-sign-on session handling based on OpenID Connect, see medium.com/@piraveenaparalogarajah/openid-connect-sessionmanagement-dc6a65040cc Legitimate interest Session Authentication
TruShop (genuine parts, bending tools, punching tools)

Cookie name Server Purpose Legal basis Storage duration Type
RedirectURL trushop.my.trumpf.com Relevant for login, includes return URL after login Consent Session Safety
Host-SecureSessionID-* trushop.my.trumpf.com Secures the shop session Legitimate interest Session Safety
activeAccountPanels trushop.my.trumpf.com Contains B2B specific logic for the My Account pages. Legitimate interest Session Session
pgid-TRUMPF-*-Site trushop.my.trumpf.com Cookie to identify personalization groups. Determines the specific groups to which the customer belongs, such as new users, unregistered users, etc. Legitimate interest Session Session
sid trushop.my.trumpf.com This is a session identification cookie that is required to keep you logged in to the webshop. On this basis, we can present all store functions to you - products, shopping baskets, favorites lists and the ordering process. Legitimate interest Session Session
ab-<ABTestUUID> trushop.my.trumpf.com A/B Test Cookie Legitimate interest Session Session
Oseon

Cookie name Server Purpose Legal basis Storage duration Type
_ga oseon.my.trumpf.com/ This cookie assigns an ID to a session so that the web tracker can summarize the actions of the user with this ID. Legitimate interest 2 years Functional
ai_session oseon.my.trumpf.com/ This cookie assigns an ID to a session so that the analysis tool Azure Application Insights can summarize the errors and actions of the session with this ID. Legitimate interest 30 minutes  Functional
ai_user oseon.my.trumpf.com/ This cookie assigns an ID to a user so that the analysis tool Azure Application Insights can summarize the errors and actions of the user with this ID. Legitimate interest 1 year Functional
ApplicationGatewayAffinity oseon.my.trumpf.com/ This cookie assigns an ID to the requests so that consecutive requests of the same server instance can be processed and the data are consistent. Legitimate interest Session Functional
ApplicationGatewayAffinityCORS oseon.my.trumpf.com/ This cookie assigns an ID to the requests so that consecutive requests of the same server instance can be processed and the data are consistent. Legitimate interest Session Functional
Docware catalogue online

Cookie name Server Purpose Legal basis Storage duration Type
JSESSIONID exploded-drawings.trumpf.com Java session cookie for exploded view applications Legitimate interest Session Session
Docware_default_userId exploded-drawings.trumpf.com   Consent 2 years Configuration
TRUMPF learning portal (LMS)

The cookie guidelines for the TRUMPF learning portal (LMS) can be found under the following link: Cookie guidelines

Product finder

Cookie name Cookie is set by Purpose Legal basis Storage duration Type
__storage_test__ excentos Is used to find out whether the browser technically supports cookies Legitimate interest Is deleted immediately Functional cookie
xcVisitorID excentos Tracks a visitor between sessions Consent 5 years Analytics cookie
_xcpk_ses.* excentos Is used by the excentos Analytics solution to identify a visitor during a session. Consent 30 minutes Analytics cookie
_xcpk_id.* excentos Is used by the excentos Analytics solution to identify a visitor between sessions. Consent 2 years Analytics cookie
_xcpk_ref.* excentos Is used by the excentos Analytics solution to save information about the referrer which brought the visitor to the Product Finder. Consent 6 months Analytics cookie
xcConsent excentos

Indicates whether consent to tracking and/or cookies has been given:

  • essentialCookieConsent: Indicates whether consent has been given for essential excentos cookies (sessionId, consent cookies).
  • trackingConsent: Indicates whether consent to tracking has been given via excentos.
  • trackingCookieConsent: Indicates whether consent to tracking cookies (matomo) has been given. If false, tracking runs without cookies whenever possible.

Legitimate interest Session Functional cookie
xcUserProfile excentos Saves the user's current input in order to resume their session after a time overrun. Legitimate interest Session Functional cookie
xcStage excentos Saves the current stage/phase in the Product Finder to resume the session after a time overrun. Legitimate interest Session Functional cookie
excentos.analytics.matomo.lastevent excentos Time stamp of the last excentos Analytics tracking event. Consent Local storage elements do not expire (but can be deleted by the user at any time) Analytics cookie
xcSessID excentos Keeps the session status synchronized with the server. Legitimate interest Session Functional cookie

Description of the local storage technology

Local storage technology

Name of the local storage technology Server Purpose Legal basis Storage duration Type
trumpf.ux.oauth2Client.auth www.trumpf.com Authentification token for the login Legitimate interest unlimited Functional
trumpf.ux.sharedStores.global www.trumpf.com User settings such as the user's active language Consent unlimited Functional
trumpf.ux.i8nextLng www.trumpf.com Active language of the user Consent unlimited Functional
hjActiveViewportlds www.trumpf.com Hotjar (for the IDs of active viewports and an expiration timestamp used to validate active viewports during script initialization) Consent unlimited Analytics
_boomr_akamaiXhrRetry www.trumpf.com Akamai (Stores a flag that instructs the Akamai plugin when to execute requests. Does not contain any personal information.) Consent unlimited Functional
trumpf.formName www.trumpf.com Name of form sent Consent unlimited Functional
excentos.analytics.matomo www.trumpf.com Summary of the products the user has interacted with in the product finder, as well as the xcVisitorId and the account name of the project Consent unlimited Analytics
excentos.analytics.matomo.lastevent www.trumpf.com Time stamp of the last excentos Analytics tracking results. Consent unlimited Analytics
trumpf.ux.gatedContentTokens www.trumpf.com Saves information for the automatic activation of our exclusive content. Consent unlimited Functional
Loyjoy chat www.trumpf.com

Contains the chat message histories and variables of the chat

Consent

30 minutes

Functional

Right of objection, revocation of consent and deletion

You can set your browser as you wish and generally prevent the setting of cookies. You can then opt on a case-by-case basis whether to allow cookies, generally accept them or reject them. Cookies can be used for various purposes, e.g. to recognize previous connections by your device to our website (permanent cookies) or to save the pages last viewed (session cookies). Any explicit consent from you to process your personal data can be revoked at any time. Please note that up until revocation, the legal validity of consent-based processing remains unaffected.

You can revoke your cookie settings at any time: Privacy settings

Online meetings via Microsoft Teams

We use Microsoft Teams for telephone and/or video conferences, webinars and virtual tours (collectively: "online meetings"). Microsoft Teams is part of Microsoft 365 from the Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA.

Information on the legal basis for the transfer of your personal data to non-EU countries can be found in the "Transfer of personal data to non-EU countries" chapter under the "General information" tab.

If you are invited to an online meeting by TRUMPF, the following data can be processed: information on participant (first name, last name, email address, profile picture, video picture), online meeting data (subject, description) as well as further data provided by you via the Microsoft Teams' chat function within an online meeting. If required, chat transcripts can be logged by TRUMPF. In this case, the transcripts are stored until the purpose of the transcript recording is no longer valid.

The scope of the data processing by TRUMPF depends on which information you provide.

Legal basis for the processing of your personal data within the framework of online meetings is art. 6 para. 1 lit. b GDPR.

Online meetings are generally not recorded. If the meeting is recorded as an exception, all participants are asked to give their consent before and at the start of the recording. The recording will only take place if consent is given. If TRUMPF records an online meeting with your consent, the recordings are deleted as soon as the purpose for the recordings is no longer valid.

Legal basis for the processing in case of recording is your consent, art. 6 para. 1 lit. a GDPR.

Further details on data protection can be found in Microsoft's data protection statement under  https://docs.microsoft.com/en-us/microsoftteams/teams-privacy.

Google Analytics

We use Google Analytics to analyze and statistically evaluate website usage. The data obtained is used to optimize our website and promotional activities.

Google Analytics is a web analytics service operated and provided by Google (Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; for Europe: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland).

Legal basis

Your data will be processed on the basis of your provided consent in accordance with art. 6 para. 1 lit. a or art. 49 para. 1 lit. a GDPR.

Types of personal data

The following data, among others, is recorded during your website visit:

Visitor-related data

IP address (in abbreviated form so that no clear assignment is possible);  origin (country and city);  language;  operating system;  device (PC, tablet PC or smartphone);  browser and all add-ons used;  computer resolution

Traffic sources

The source of your visit (i.e. which website or advertising medium brought you to us)

User behavior

Which files were downloaded?  Which videos were viewed?  Were advertising banners clicked?  Where did the visitor go?  Did the visitor click on other pages of the portal or completely skip them?  How long did the visitor stay?

Achievement of objectives

Purchase of a product;  subscription;  download of files

Google processes the data for website use on our behalf and is contractually obliged to take action to ensure the confidentiality of the data processed. Google also processes this data for its own purposes (e.g. to create a profile or link to possible Google accounts). The data the "cookies" collect about your website use are normally transmitted to a Google server in the USA for analysis and stored there.

Storage duration

Google Analytics stores cookies in your web browser for a period of two years from your last visit. These cookies contain a randomly generated user ID that allows you to be identified during future visits to the site.

The recorded data is stored together with a randomly generated user ID, which enables evaluation of pseudonymous user profiles. This user-related data is automatically deleted by us after 2 years.

Anonymize IP

This website uses IP anonymization ("anonymizeIP" masking function). Within the member states of the EU and the European Economic Area, the user's IP address is shortened and transmitted only anonymously. Only in exceptional cases is the full IP address transferred to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity, and providing other services relating to website activity and internet usage.

Transmission of personal data to a non-EU country

When processing your data, your data may (temporarily) be transferred outside the EEA, e.g. to the USA.  Information on the legal basis for the transfer of your personal data to non-EU countries can be found in the "Transfer of personal data to non-EU countries" chapter under the "General information" tab.

Revocation/Objection

You can prevent this processing through the following measures:

It is possible to set your browser so that no "cookies" are saved. This can, however, mean that our website will not be fully functional.

It is also possible to prevent data collection using a browser add-on from Google. You can find the add-on here: http://tools.google.com/dlpage/gaoptout?hl=en.

Alternatively to the browser add-on – if you are using a smartphone or tablet, for example – you can prevent data acquisition by Google Analytics by clicking   here. This will set a cookie that prevents data collection. If you visit our website again with a different device or browser, or if you have deleted your cookies, you must set the cookie again.

You can also revoke activation of Google Analytics with future effect at any time in the  Privacy settings .

As an American company, Google is subject to the CLOUD Act. This allows American state authorities to gain access to the data stored by Google.

Additional information about data protection at Google can be found here https://policies.google.com/privacy?hl=en.

Google Adwords Remarketing

We use the Adwords Remarketing function from Google (Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; for Europe: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland).

Google Remarketing allows us to show you only the products which truly interest you, when you are visiting websites that belong to the Google Display Network (GND). To that end, cookies are saved by your browser in order to recognize you when you visit GND websites again. Through analysis of your website use, you will then be shown advertisements for products which you have already viewed, or which you may be interested in.

When processing your data, your data may (temporarily) be transferred outside the EEA, e.g. to the USA.  Information on the legal basis for the transfer of your personal data to non-EU countries can be found in the "Transfer of personal data to non-EU countries" chapter under the "General information" tab.

To prevent the saving of cookies for remarketing, you can change your settings for personalized ads here http://www.google.com/settings/ads. Alternatively, you can proceed as instructed by the website of the NAI – Network Advertising Initiative nbsp; (http://www.networkadvertising.org/managing/opt_out.asp).

Google Adwords Conversion Tracking

We use the Adwords conversion tracking function from Google (Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; for Europe: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland).
Google conversion tracking allows us to track what happens after a user accesses our advertisement. For example, to identify whether a product is purchased or if there is a subscription to our newsletter. By clicking on our Google ad, a cookie is saved on your device to enable this function. This will not create a personal reference.

When processing your data, your data may (temporarily) be transferred outside the EEA, e.g. to the USA.  Information on the legal basis for the transfer of your personal data to non-EU countries can be found in the "Transfer of personal data to non-EU countries" chapter under the "General information" tab. 

To prevent cookies for conversion tracking from being saved, you can change the settings in your browser accordingly.

Additional information about conversion tracking can be found here https://support.google.com/adwords/answer/1722022?hl=en.

Social Media Wall

We provide a social media wall on our web page. For this purpose, we use a plug-in/widget from Walls.io GmbH, Schönbrunner Straße 213/215, 1120 Vienna, Austria. As soon as the plug-in/widget is loaded by your browser, your IP address, the web page visited and other device-specific information is transmitted to Walls.io GmbH.

Integrating social media plug-ins

The social media plugins of the social networks LinkedIn, Instagram, X, Facebook and YouTube are integrated via the social media wall. In the process, your personal data (IP address, web page visited and other device-specific information) is transmitted to the operators of the aforementioned services. If you are logged into a personal account of the respective social network at the time of visiting our web page, the operator of this network can link this data directly to your person. When processing your data, your data may (temporarily) be transferred outside the EEA.  Information on the legal basis for the transfer of your personal data to non-EU countries can be found in the "Transfer of personal data to non-EU countries" chapter under the "General information" tab.

We have no influence on the processing of your data by the operators of the social networks. Information on the processing of your data by the respective operators of the social networks can be found for:

LinkedIn, Instagram, X, Facebook, YouTube (please click accordingly).

Legal basis

Your data will be processed on the basis of your provided consent in accordance with art. 6 para. 1 lit. a or art. 49 para. 1 lit. a GDPR, provided the recipient is not based in a secure non-EU country or is not certified under the EU-US Data Privacy Framework Agreement.

Revocation

You can withdraw your consent at any time by making the appropriate settings in our privacy settings.

Website monitoring via WiredMinds

For the purposes of marketing and optimization, products and services from the company wiredminds GmbH (https://www.wiredminds.de/en/) are used. In this context, data is collected, processed, and stored – and a pseudonymous usage profile is created from this. Where possible and reasonable, usage profiles are entirely anonymized. Cookies can be used for this. Cookies are small text files which are saved in the visitor's Internet browser for the purposes of recognizing the Internet browser. The collected data, which may also contain personal data, is transmitted to wiredminds, or directly collected by wiredminds. wiredminds is permitted to use information left behind from website visits to create anonymized usage profiles. The data collected in this process will not be used to personally identify the visitor of the website without separately granted consent by the data subject. It will also not be combined with personal data about the bearer of the pseudonym. If IP addresses are collected, these are immediately anonymized after they have been collected, by deleting the last block of numbers. You may object to the collection, processing, and storing of data at any time, with effect for the future.

mPulse content delivery network

We use a content delivery network  (CDN) from Akamai Technologies, Inc., 145 Broadway, Cambridge, Massachusetts, USA. A CDN is a service which can be used to deliver the content of our online offer, in particular large media files such as graphics or scripts, using regionally distributed servers that are connected via the Internet, faster.

For this purpose, we use the web application protector  service provided by Akamai. This service is used to check every request for possible security risks. This protects our web page against external threats. To ensure this, all data traffic between you and us is routed through Akamai's servers and IT infrastructure. Akamai states that it does not store any personal data.

Our web page also uses "mPulse". This sets a cookie on your end device, which helps us to measure and check the web page's response speed. This may result in the data recorded being passed on to Akamai.

In order to be able to offer updates for our products in MyTRUMPF for downloading, we use the "Download Delivery"  product from Akamai. Here too, it is possible that your personal data may be processed by Akamai.

When processing your data, as described above, your data may (temporarily) be transferred outside the EEA, e.g. to the USA.  Information on the legal basis for the transfer of your personal data to non-EU countries can be found in the "Transfer of personal data to non-EU countries" chapter under the "General information" tab.

Additional information can be found at https://www.akamai.com/legal/privacy-statement

The legal basis for the processing of your data as part of the CDN is art. 6  para.  1 lit b GDPR. The legal basis for the processing of your data as part of mPulse is formed by the consent according to art. 6 para. 1 lit. a GDPR. Data is transmitted to Akamai on the basis of suitable guarantees providing the affected persons enforceable rights and effective legal redress. We have ensured this via EU standard data protection agreements.

Security

The TRUMPF Group takes all required technical and organizational security measures in order to protect your personal data against loss or misuse. This means your data is stored in a secure operational environment, which is not accessible to the public. In certain cases, your personal data will be encrypted during transmission by so-called Transport Layer Security technology (TSL). This means that data protected by TSL is communicated between your computer and our servers by using a recognized encryption procedure if your browser supports TSL. We use Ingenico Payment Services GmbH (https://www.ingenico.com/epayments) to offer you absolute security of your credit card data. This data is not stored on our servers, but is processed directly by the relevant payment institution. If you wish to contact us by email, we would like to point out that the confidentiality of the transmitted information is not guaranteed. The content of emails can be viewed by third parties. Therefore, we recommend that you send us confidential information exclusively by post.

Google Maps

We use Google Maps (a service from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) on our website to show the location of our sites in the Google Maps plug-in. When using Google Maps, data which is necessary for this use is forwarded, along with additional data.  When processing your data, your data may (temporarily) be transferred outside the EEA.  Information on the legal basis for the transfer of your personal data to non-EU countries can be found in the "Transfer of personal data to non-EU countries" chapter under the "General information" tab.

This can be, for example, device-related information or log file data from servers, including IP addresses or data from the browser's web storage. In this regard, Google writes: "Under certain circumstances, we connect personal data from one service with information and personal data from other Google services."

You can find additional information and details in the data protection conditions for Google services (https://policies.google.com/privacy?hl=en).

Font Awesome

These web pages use external fonts from Font Awesome (Fonticons, Inc. 710 Blackhorn Dr., Carl Junction, MO 64834, USA). These web fonts are incorporated when a server is accessed; generally a server from Font Awesome in the USA. This will inform the server about which of our websites you have visited. Font Awesome will also store the IP address of the browser of the end device of the visitor to these web pages. 

When processing your data, your data may (temporarily) be transferred outside the EEA.  Information on the legal basis for the transfer of your personal data to non-EU countries can be found in the "Transfer of personal data to non-EU countries" chapter under the "General information" tab.

Additional information about Font Awesome's data protection policy can be found here: https://fontawesome.com/privacy 

Hotjar

We analyze movement, clicking, and swiping behavior on our website on a randomized basis, in order to improve the design of our pages. To do this, we use the Hotjar service, which randomly records a small portion of the session. Hotjar stores this information in a pseudonymized user profile.  When processing your data, your data may (temporarily) be transferred outside the EEA.  Information on the legal basis for the transfer of your personal data to non-EU countries can be found in the "Transfer of personal data to non-EU countries" chapter under the "General information" tab.

The information is used by neither Hotjar nor us to identify individual users. The data is anonymized, stored, and deleted after 365 days.

Additional information can be found in Hotjar's data protection policy: https://www.hotjar.com/legal/policies/privacy

Email marketing (mailings)

In order to optimally cater to your needs and interests, your email address will be used by different companies from the TRUMPF Group for the purposes of advertising. We use the TRUMPF newsletter and other mailings to inform you about us and our offers. To manage our email marketing efficiently, your data is used within the Group.

If you register via our website, we will verify your identity by means of a confirmation email in a double-opt-in process.

The subscription to mailings can be modified at any time, or canceled with immediate effect without giving a reason. To do this, please click on the "personal profile" link which is located at the end of the mailing, or send an email to info@us.trumpf.com. In your personal profile you can cancel the subscription entirely, or modify and supplement the information you have provided. Additionally, subscriptions to individual areas of interest can be edited or deselected.

We use the tool Episerver Campaign (Episerver GmbH, Wallstraße 16, 10179 Berlin, Germany) for our email processes. By setting a tracking pixel when you open our emails, information which allows us to evaluate the user behavior (opening the email, email address, time, IP address) is retrieved. The links in our emails are designed in such a way that we can trace whether they have been clicked on. Using this information we can adapt our offers to better suit your interests.

Product finder

Our website features an online product finder. The product finder allows us to display suitable products selected on the basis of your responses to certain questions. The product finder is provided by excentos Software GmbH, Reiterweg 1, 14469 Potsdam (hereinafter referred to as "excentos").

If you have granted your consent, your selected responses, navigation activities and any purchases will be recorded for optimization purposes. We process this data for customer service purposes and to provide recommendations.

The product finder can be used without providing any additional personal data. Further personal data only needs to be disclosed in a form if you request a sample part or quote.

Your data will be processed on the basis of your provided consent in accordance with Art. 6 Para. 1 lit. a GDPR

Your responses, navigation activities and any purchases will also be saved in anonymous form in a web analytics system operated by excentos. The user's IP address and user activities will likewise be recorded by the necessary infrastructure services (such as Cloudflare) as part of the justified balancing of interests to prevent cyber attacks. This is a necessary safety precaution that permits us to offer the product finder services. The data collected in this manner will only be stored for a temporary period (up to 4 hours) to identify any potential attack patterns. During this period, it may be possible to indirectly assign the user activities to the user in question on the basis of time stamps under certain circumstances. Once the retention period expires, excentos will delete the IP addresses, including all log data.

Participating in sweepstakes

By participating in sweepstakes, the participant expressly consents to the TRUMPF Group storing the required data for the period of the sweepstakes and afterwards, to carry out the sweepstakes. Participants also consent to the publishing of their full name on the participating web pages, in the event that they win. There is no claim to such publication. The data collected as part of the sweepstakes will also only be used by the TRUMPF Group in the legally permissible scope for advertising products. The data will not be forwarded to third parties.

Social plug-ins for Facebook, X and LinkedIn

On our website, so-called social plug-ins ("plug-ins") of the social networks Facebook, X and LinkedIn are used. These services are provided by the companies Facebook Inc., X Corp. and LinkedIn Inc. ("providers"). During the processing of your data, your personal data may be transferred to the USA.  For information on the legal basis for the transfer of your personal data to non-EU countries, please refer to the "Transfer of personal data to non-EU countries" section under the "General Information" tab.

Facebook is provided by the Meta Platforms, Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”). You can find an overview of the plug-ins from Facebook and what they look like here: https://developers.facebook.com/docs/plugins

X is provided by X Corp., 1355 Market St., Suite 900, San Francisco, CA 94103, USA ("X“).

LinkedIn is provided by LinkedIn Inc., 2029 Stierlin Ct., Mountain View, CA 94043, USA ("LinkedIn“). You can find information on the "inShare" button of LinkedIn and settings for privacy protection here: https://www.linkedin.com/legal/privacy-policy

To improve data protection when visiting our website, the social media buttons are integrated as simple HTML links. Through a script, the social media service providers (such as Facebook, X) are queried about how often a page has been shared or tweeted. The query is made possible by interfaces between the TRUMPF servers or their service providers and the social media service providers. Therefore, when you simply load the page and the buttons located there, your IP address is not transmitted.

Transmission takes place only when you press one of the social media buttons. If you are logged on to one of the social networks, the providers can assign the visit of our website directly to your profile at Facebook, X or LinkedIn. If you interact with the buttons and, for example, use the "Like" button, the "Tweet" button or the "inShare" button, the corresponding information is also transferred directly to a server of the provider and stored there. The information is also published in the social network or on your Twitter account and displayed to your contacts there. You can find the purpose and scope of the data acquisition as well as the further processing and use of the data by the provider and your corresponding rights and setting options for the protection of your privacy in the data protection information of the provider.

Data protection information from Facebook: http://www.facebook.com/policy.php

Data protection information from X: https://twitter.com/privacy

Data protection information from LinkedIn: https://www.linkedin.com/legal/privacy-policy

If you do not want Facebook, X or LinkedIn to assign the data collected via our website directly to your profile in the corresponding service, you must log off before activating the plug-ins at the relevant service

Questions using the contact forms

At different areas of our website, under "Contact", visitors have the option to send us questions relating to our products. By clicking the "Send" button, you agree to the collection, processing, and use of your data. The data is processed, stored, and used to handle your question. For inquiries from the business environment (B2B), it will also be used for the purposes of advertising, if this is permissible without needing consent. You may object to this use at any time, via the contact information listed above. We delete user data once questions have been handled.

Friendly Captcha

On our website we use the Friendly Captcha service from Friendly Captcha GmbH, Am Anger 3-5, 82237 Woerthsee. Friendly Captcha is integrated into our contact forms and is used to differentiate between legitimate requests from humans versus automated and abusive requests from computer programs. The purpose of this data processing is to minimize abusive inquiries via our contact forms. As soon as you access our contact form, the following personal data is collected: information about the browser you are using and the operating system, origin and referrer ID, cryptographic puzzle, version of the Friendly Captcha widget, and a time stamp. Friendly Captcha also stores an anonymous counter for dynamic adjustments to the cryptographic function. The IP addresses are anonymized using a hash value. The data is sent to a Friendly Captcha server. The server reports back to us whether the request was made by a human or by a computer program and releases the contact field for inquiries from humans. Art. 6 para. 1 letter f GDPR ("Legitimate Interest"). Our legitimate interest is to separate legitimate human inquiries from abusive inquiries generated by computer programs. After your inquiry has been processed, the data collected will be deleted immediately, provided there are no statutory retention periods. Further information can be found in Friendly Captcha's privacy policy at: https://friendlycaptcha.com/legal/privacy-end-users/.

Upload of content via the website / email

You can upload drawings or images onto our website or have them uploaded via our marketing department. The uploaded content will be erased at the end of the business relationship. By uploading or transferring this content to TRUMPF, you declare that you own the necessary rights.

Registration for digital events

You have the option of booking digital events via our website. The data entered when booking a digital event is used for preparation and execution of events. We will store the login data you enter (email address and your self-selected password) for future bookings. Of course, the password is not stored in plain text but as a hash value. We will store your data until you notify us of your desire to have your data erased. We will erase your data automatically if a booking is not made over a longer period of time.

MyTRUMPF

The notes on data protection listed below under the "MyTRUMPF" tab also apply for the use of the MyTRUMPF customer portal. The general instructions, in particular in relation to your rights, also apply for the use of MyTRUMPF.

Registration for MyTRUMPF

You must register with our customer portal in order to use MyTRUMPF. During the registration, we will process the information you provide during the registration process. All information required for the registration process is specifically indicated. You can also provide further data, beyond the necessary information, on a voluntary basis.

We will use your data within the framework of your registration activation, as well as to identify you as the contact person of a customer and to display customer-specific content. During registration, you as a person will be assigned to one of our customers. Other employees of your company can access your information stored in MyTRUMPF using this allocation. The exception is of course the password you select, which we store as a hash value and cannot view in plain text. Third parties have no access, however.

If we activate the MyTRUMPF User Admin function for your company, the customer administrator authorized for your company can view the information you have provided during registration (see notes under "MyTRUMPF User Admin").

Before activating the account, we check all business partners to ensure they are not listed on published sanction lists. This check is carried out by a service provider selected by us. The name provided during registration is checked to ensure it is not included in the sanction lists. We will block the account if we determine that the name is listed in a sanction list. The check is carried out regularly even after registration due to the fact that the sanction lists are constantly updated. We will store the status of the check. We carry out the check on the basis of our legitimate interest, art. 6  para.  1  lit.  f GDPR. Our legitimate interests consist in ensuring that TRUMPF does not do business with persons included on a sanction list. You are welcome to get in touch with our data protection officer to find out which lists TRUMPF checks specifically.

TRUMPF has a representative in some countries. If this is the case, the representative is given access to the personal data you have provided. We use contractual regulations to ensure with the representatives that the processing of your data is in line with data protection standards.

Apart from that, your data is only processed for your MyTRUMPF account and is deleted at the latest one year after the account has been deactivated. The legal basis for the processing of the information deemed to be necessary is art. 6 para. 1 lit. b GDPR. The legal basis for the provision and processing of your voluntary information is your consent, art. 6 para. 1 lit. a GDPR.

MyTRUMPF log-in

MyTRUMPF can only be accessed after the log-in process has been completed. During the log-in procedure, we process your e-mail address and the password stored as a hash value so that we are able to identify you as the contact person of our customer. This ensures that only authorized users have access to our platform.

During the log-in process, we verify the status of the sanction list check by comparing it with the data in our system. We do not check the sanction lists. Only the authorization status is read out.

The legal basis for the processing of your data during the log-in procedure is art. 6 para. 1 lit. b GDPR. We carry out the status comparison of the sanction lists' checks on the basis of our legitimate interest, art. 6 para. 1 lit. f GDPR.

Password recovery

You can reset your password with the Recover Password function. You will have to enter the e-mail address you used during registration to do so. After entering the e-mail address, you will receive a link from us which you can use to create a new password. We will store the password you select as a hash value and not in plain text. Third parties have no access, however.

The legal basis for the processing of your e-mail address is art. 6 para.1 lit b GDPR.

MyTRUMPF User Admin

We make it possible for customers to manage access to MyTRUMPF with the "MyTRUMPF User Admin" function. We activate the MyTRUMPF User Admin function in agreement with our customers on an individual basis.

Other members of the company can be invited to participate in MyTRUMPF User Admin. The e-mail address of the other members of the company must be entered for this. The invited members then receive an e-mail with a link to activate the account. If the link for account activation is not used within 30 days of being sent, the account to be activated will be automatically deleted.  The MyTRUMPF User Admin can access the personal data of members of their own organization. However, access to personal data of users from other organizations is not possible.

The MyTRUMPF User Admin is also authorized to activate or reject members from their own organization.

The legal basis for the processing is art. 6 para.1 lit b GDPR.

Upload of content

You can upload drawings or images using your MyTRUMPF account. The uploaded content can be viewed by all MyTRUMPF accounts of the same organization. Uploaded content is stored by TRUMPF until it is deleted by you or at the end of the business relationship. By uploading the content, you declare that you possess the necessary rights.

Report service cases

In the MyTRUMPF customer portal, you can report service cases for your TRUMPF products. Any data entered as part of the report and all subsequent communications via MyTRUMPF will be stored. Mandatory fields are marked. The amount of the data stored depends on the information you provide. TRUMPF processes your data for analysis and remedial action for the registered service case. Please remember that any personal information provided within the course of a service case registration can be viewed by other members of your company.

If you report a service case via the TRUMPF Service app, the corresponding instructions for the TRUMPF Service app additionally apply.

Your data will be deleted when it is no longer needed for the purposes listed above, including for billing or due to other legal requirements.

The legal basis for the processing is art. 6 para.1 lit b GDPR.

Orders in the E-Shop

You have access to the TRUMPF E-Shops within your MyTRUMPF account. The data provided as part of orders from the E-Shops is used to fulfill these orders and then saved in accordance with the legally stipulated retention periods – for example, 10 years for taxation purposes. Furthermore, the data is used for advertising purposes by the TRUMPF Group, insofar as this is legally permissible without requiring consent from the parties concerned. You can opt out of this use at any time using the contact data listed above.

CONSENT:

TRUMPF analyzes the user's order process to check for a possible cancellation of the order process. This data is then evaluated by TRUMPF. TRUMPF uses the data obtained in this manner to get in touch with a user. You hereby agree to TRUMPF carrying out the aforementioned analysis and that TRUMPF may use the insights acquired to contact you. You can revoke your consent at any time. Information on exercising the right to revoke consent can be found in the data protection statement under "Your rights".

The legal basis for the processing of data provided during ordering is art.  6  para. 1 lit. b GDPR. Your consent is the legal basis for the evaluation process described, art.  6  para. 1 lit. a GDPR

The data protection information, which can be downloaded from the app, applies for orders using our Easy Order app.

Booking training courses

You can use your MyTRUMPF account to book training courses offered by TRUMPF. An active MyTRUMPF account is required to make a booking. The data entered when making a booking is used for preparation and execution of training courses and to contact participants. We provide performance assessments as part of our training courses. If you participate in the performance assessments, the data you provide for this will be stored and evaluated. A test result is subsequently determined using this data. The test results are transmitted to the participant's employer once the assessment has been completed.

When booking training courses, you can upload a photograph of yourself on a voluntary basis. If conclusions concerning particular categories of personal data can be drawn from the photograph (for example, a person wearing glasses), your consent expressly includes this data as well.

Your contact data will be used to make you aware of further offers from TRUMPF if you agree to this when booking a training course.

The legal basis for the processing of data provided when booking training courses is art.  6  para. 1 lit. b GDPR. We process your voluntarily uploaded photograph based on your consent in accordance with art. 6 para. 1 lit. a GDPR and/or art. 9 para. 2 lit. a GDPR.

Contact
Service & contact