Privacy

"PCK Notice is our whistleblower system. Through PCK Notice, employees, customers, business partners, or other whistleblowers can report suspicions of violations against laws and internal regulations to the internal reporting office. PCK Notice is part of our Compliance Management System.

Who is responsible for data processing? The responsible party for the processing of your personal data is (hereinafter also referred to as the organization): CODESYS GmbH,  Memminger Straße 151, 87439 Kempten


What data is processed? The use of PCK Notice is voluntary. In the case of reports, the following personal data are processed: Whistleblowers: Name (if you disclose your identity), contact details (if you provide them) Persons affected by incidents: First and last name, information about incidents and suspected violations of laws and regulations Witnesses and/or third parties mentioned in the report (e.g., customers, suppliers, colleagues, or business partners): First and last name, contact details

For what purpose and on what legal basis do we process your data? The aforementioned data is processed for the purpose of uncovering and preventing serious misconduct and avoiding and averting particularly severe or existential legal consequences and damages both for our organization (criminal prosecution, claims for damages, reputational damage, supervisory measures) and for our employees. The legal basis for processing is a legal obligation according to Art. 6 para. 1 lit b GDPR to comply with the requirements of the EU Whistleblower Directive of 23.10.2019 (EU 2019/1937) and the national implementation laws thereof.

Who receives my data? In the context of audits, investigations, and remedial measures, it may be necessary to pass on information about a reported incident to external advisors (e.g., legal advisors) or to the competent authorities. PCK Notice is operated by the specialized software service provider iComply GmbH, Große Langgasse 1a, DE-55116 Mainz, on our behalf.

What data protection rights do you have? You have the right to obtain information free of charge upon request about the personal data stored about you, their origin and recipient, and the purpose of data processing. If we process your data based on our legitimate interest, you have the right to object to the processing (right of objection) if there are legitimate reasons arising from your particular situation. Additionally, you have the right to correct inaccurate personal data, the right to delete personal data, the right to restrict the processing of personal data, the right to data portability. You can contact us at any time regarding these and other questions about personal data. Finally, you have the option of filing a complaint with the supervisory authority if you believe that the processing of your data violates data protection law or your data protection rights have otherwise been violated in any way.

How long are personal data stored? Personal data are stored as long as it is necessary for the clarification and final assessment or as required by law. After that, these data are deleted in accordance with legal requirements. If a report proves to be unfounded, the report, including the personal data contained therein, will be deleted immediately. Reports and notifications are regularly deleted after 6 months. For documentation purposes, a final assessment is also stored."

Privacy Policy (codesys.com)