The following contains information on the collection of information, including personal data, when using Dymax Corporation’s and its affiliate’s, Bomar Specialties, LLC (collectively, “Dymax”, “we”, “our” or “us”), websites: https://dymax.com/ and https://bomar-chem.com/ (collectively, the “Sites”) and our practices for collecting, using, maintaining, protecting and disclosing that information. “Personal Data” is all data that can be linked to you personally, such as your name, address, e-mail address, telephone number or user behavior. We have technical and operational security measures in place to comply with applicable laws to protect your data against unintentional or intentional manipulation, loss, destruction or access by unauthorized persons. Our security processes are regularly reviewed and updated as necessary.
This policy applies to information we collect: on the Sites; in email, text, and other electronic messages between you and the Sites (including through the Live Chat functions). This policy does not apply to information collected by: us offline or through any other means, including on any website operated by a third party; or any third party, including through any application or content (including advertising) that may link to or be accessible from or on the Sites.
We collect several types of information from and about users of our Sites, which may include Personal Data, information that is about you but individually does not identify you, and/or information about your internet connection, the equipment you use to access our Sites, and usage details. We collect this information both directly from you when you provide it to us and automatically as you navigate through the Sites. We may collect, use or disclose your personal information without your knowledge or consent where we are permitted or required by applicable law or regulatory requirements to do so.
The information we collect through our Sites that you provide to us may include:
- Information that you provide to us by filling in forms on our Sites, such as your name, your title, your company name, telephone number, business address, and email;
- Information that you input into our Sites in searching for certain products, such as your need for a product, technical information, viscosity temperatures, application information, and other desired product specifications and needs;
- Your responses to surveys that we might ask you to complete for research purposes;
- Your search queries on the Sites; and
- Information that you provide through the live chat function.
IP address, date and time of request, time zone difference to Greenwich Mean Time (GMT), content of request (originating page), access status/HTTP status code, data volume respectively transmitted, website from which the request is sent, browser, operating system and its interface, language and version of browser.
Collection of this information helps us to improve our Sites and to deliver a better and more personalized services.
By submitting a telephone number to us you agree that a representative of Dymax can contact you at the number you provide, potentially using automated technology (including texts/SMS messaging) or a pre-recorded message. Your consent is not an obligation to receive any of our products and/or services.
How We Use Your Information
In addition to the ways explicitly described elsewhere in this policy, we use information that we collect about you or that you provide to us, including any Personal Data, as follows:
- To present our Sites and their contents to you.
- To provide you with information, products, or services that you request from us.
- To fulfill any other purpose for which you provide information to use (i.e. request for information).
- To carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including for billing and collection.
- To notify you about changes to our Sites or any products or services we offer or provide though them.
- To allow you to participate in interactive features on our Sites.
- In any other way we may describe when you provide the information.
- For any other purpose with your consent.
- For any other purpose that applicable law permits or requires.
We may also use your information to contact you about [our own and third-parties'] goods and services that may be of interest to you. If you do not want us to use your information in this way, please [describe method for opting out.
Disclosure of Your Data
We disclose your information where we have a legal obligation to do so, the forwarding of such data is necessary for contract initiation and performance of the contractual relationship, we must do so in order to provide our products and/or services to you, or if you have expressly provided advance consent.
External service providers, partner companies and other third parties we use to support our business, for example online payment providers or shipping companies commissioned with delivery, will be provided with your data where the provision of such data is necessary to process your order. In such cases, the scope of data transferred will be kept to the minimum required.
Where our service providers will receive and/or have access to your Personal Data (as applicable) within the scope of order processing in accordance with Art 28 GDPR), those providers will agree to comply with the pertinent provisions of any and all applicable laws.
Please also refer to the respective data privacy statements of the providers in question. Responsibility for the content of any given third-party service lies solely with the respective service provider, whereby we check the compliance of such services with legal requirements to a reasonably acceptable extent but will not be liable to you for any non-compliance by such third parties.
In addition, we may disclose Personal Data that we collect or that you provide to us:
- To our subsidiaries and affiliates.
- To a buyer or other successor in the event of a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which Personal Data held by us about our Sites’ users is among the assets transferred.
- To fulfill the purpose for which you provide it.
- For any other purpose disclosed by us when you provide the information.
- With your express or implied consent.
We may also disclose your Personal Data:
- To comply with any court order, law, or legal process, including to respond to any government or regulatory request.
- If we believe disclosure is necessary or appropriate to protect the rights, property, or safety of Dymax, our customers, or others.
It is our policy to comply with the privacy legislation within each jurisdiction in which we operate. Sometimes the privacy legislation and/or an individual's right to privacy are different from one jurisdiction to another. This is why this policy refers to legislation of different jurisdictions. In Canada, the relevant legislation may include the Personal Information Protection and Electronic Documents Act (Canada), Canada's anti-spam legislation, and/or your local provincial private-sector privacy legislation, as applicable.
As a globally active company with subsidiaries around the world, we or assigned service providers process your data outside of your jurisdiction (for example, outside of the EU/EEA if you are an EU resident, and/or outside Canada if you are a Canadian resident). We may provide certain information technology and data processing services to us from time to time so that we may operate our business, and as result, your personal information may be collected, used, processed, stored or disclosed in the United States of America. By doing so we ensure that a data protection level comparable with standards within the EU is achieved on the basis of EU standard contracts or an adequacy decision such as the EU Privacy Shield.
We may disclose aggregated information about our users, and information that does not identify any individual, without restriction.
Where we disclose Personal Data for a purpose set forth herein, we enter a contract with the third party that describes the purpose and requires the third-party recipient to both keep that Personal Data confidential and not use it for any purpose except performing the contract.
We do not sell your personal information to third parties.
Communication by Email or Contact Form
When you contact us by email or using a contact form, we store the data provided by you (e.g. your email address, business address, name and telephone number). We may share that information with our affiliates, suppliers, sales partners, or other providers as necessary to process, complete or deliver product to you. If we request details via our contact form that are not required for communication or to complete your order, these will be marked as optional. Such details serve to substantiate your enquiry and improve our response to your request. You provide these details on an expressly voluntary basis and with your consent (and, as applicable, pursuant to Art 6 (1) (a) GDPR). Insofar as such details relate to communication channels (for example, email address, phone number), you additionally consent to us contacting you via these channels as necessary to respond to your issues. You may withdraw your consent at any time with future effect.
Data collected in this manner is erased once storage is no longer necessary or processing is restricted where commensurate statutory retention requirements apply.
You can subscribe to our newsletter(s) in order to receive details of our latest offers with your consent (as applicable, pursuant to Art. 6(1)(a) GDPR).
Registration to our newsletter(s) uses the so-called double opt-in process. Accordingly, following your registration we will send an email to the email address you have provided in which you are asked to confirm you wish to receive the newsletter(s).
In addition, to process your registration request we will collect IP address, date and time of request, time zone difference to Greenwich Mean Time (GMT), content of request, and website from which the request is sent. The aim of this process is to validate your registration and, if necessary, enable clarification of any potential misuse of your Personal Data.
Your contact information is required to enable receipt of the newsletter. Input of additional, separately marked data is voluntary and used to personally tailor content to you. Following your confirmation, we store your contact information for the purposes of sending you the newsletter. As applicable, the legal basis for such is provided under Art. 6 (1) (a) GDPR.
You can withdraw your consent for receipt of the newsletter and unsubscribe from it at any time. Consent can be withdrawn by clicking on the link provided in each newsletter email.
You can use electronic means, including email, to submit an application to work for our company. We will use your details solely for purposes of processing your application and your verification on a limited extent. Please be aware that emails sent without encryption are transmitted by you to Dymax without protection against third-party access.
If you have applied for a specific post that turns out to have already been filled or we wish to consider you for an alternative or more suitable position, we will need to forward your application within the company. Please notify us accordingly if you do not consent to the forwarding of your application.
Your Personal Data is erased upon conclusion of the application process, or after a maximum of 6 months where you have not expressly consented to storage of your data for a longer period or a contract has been concluded. As applicable, the legal basis for such is provided under Art. 6 (1) (a), (b) and (f) GDPR and S. 26 of the German Data Protection Act (BDSG).
When you use our Sites, cookies are placed on your computer. Cookies are small text files which are stored on your hard drive by the browser you are using, and which provide certain information to the party placing the cookie. They are used to make Internet browsing more user-friendly and more efficient as a whole.
The Sites use the following types of cookies, the extent and functions of which are described in the Sections below. For more information about the cookies used on the Sites, see our Cookie Declaration at https://dymax.com/resources/resource-library/corporate-legal-hr/cookie-declaration.
These cookies are automatically deleted when you close your browser. In particular, these include session cookies that store a so-called session ID, through which various requests by your browser are allocated to the joint session. This enables your computer to be recognized again when revisiting our Sites. The session cookies are deleted when you log off or close the browser.
These cookies are automatically deleted after a predetermined period that may vary according to the individual cookie. You can delete cookies at any time using your browser security settings.
Prevention of Cookies
You can configure your browser settings according to preference and, for example, reject acceptance of third-party cookies or all cookies. Please note that this may mean you are unable to use all the functions of the Sites.
Legal Basis and Retention Period
The legal basis for possible processing of Personal Data and the retention periods for such vary and are described herein.
We use a variety of services specified in the following text for the purpose of analyzing and optimizing our Sites. This allows us to analyse, for example, how many users visit our Sites, what information is most frequently retrieved and how users discovered our Sites. Amongst other things, we collect data on the last webpage that the data subject visited before landing on a specific webpage (the so-called referrer) as well as which sub-pages of the webpage were accessed and how often and the length of time a given sub-page was observed. This enables us to improve our Sites and make them more user-friendly. The data consequently collected is not used to identify individual users and is anonymously or, as a minimum, pseudonymously collected. As applicable, the legal basis for such is provided under Art. 6 (1) (f) GDPR.
The Sites use Google Analytics, a web analysis service of Google Inc. (1600 Amphitheatre Parkway, Mountain View, CA 94043 USA). The use encompasses the operating mode Universal Analytics. This facilitates the assignment of data, sessions and interactions across multiple devices to a pseudonymous user ID and consequently analysis of a user's activities across devices.
You can prevent the storage of cookies by setting your browser software accordingly; however, please be aware that this may mean you are unable to use the full functionality of the Sites. You can also prevent the collection and processing by Google of data generated by the cookie regarding your use of the Sites (including your IP address) by downloading and installing https://tools.google.com/dlpage/gaoptout?hl=en. Opt-out cookies prevent the future collection of your data when visiting these Sites. To prevent collection by Universal Analytics across multiple devices, you will need to disable the cookies in your browser.
For Residents of the European Union
Data Processing Controller
As applicable, Controller in accordance with Art. 4 (7) EU General Data Protection Regulation (GDPR) is Dymax Corporation 318 Industrial Lane / Torrington, CT 06790, Email: firstname.lastname@example.org (if not mentioned separately in imprint).
Data Protection Officer Contact Options
You can contact our data protection officer via email@example.com or our postal address with the addition 'Data protection officer' if you have any questions, complaints or concerns about this policy.
If you are a resident of the European Union, you have the right to access, rectification, erasure, restriction of processing, objection to processing and data portability. Where processing is carried out with your consent, you have the right to withdraw consent with future effect by contacting us at the email address set forth in Section 2.
Processing Rights in Accordance with Legitimate Interests
Pursuant to Art 21 (1) GDPR, if you are a resident of the European Union you have the right to object at any time on grounds relating to your particular situation to the processing of Personal Data concerning you based on Article 6 (1) (e) (data processing carried out in the public interest) or Article 6 (1) (f) (data processing for the purposes of legitimate interests) GDPR, including profiling based on those provisions. In the event of objection, we will no longer process your Personal Data, unless for where we are able to demonstrate compelling legitimate grounds for processing that override your interests, rights and freedoms, or where processing serves to establish, exercise or defend legal claims.
Rights in the Case of Direct Marketing
As applicable, Insofar as we process your Personal Data in order to carry out direct marketing, in accordance with Art. 21 (2) GDPR you have the right to object at any time to the processing of Personal Data concerning you for the purpose of such marketing; this also applies to profiling, insofar as it is associated with such direct marketing.
If you object to processing for direct marketing purposes, we will no longer process your Personal Data for such purposes.
Right to Lodge a Complaint with a Supervisory Authority
If you are a resident of the European Union, you also have the right to lodge a complaint regarding our processing of your Personal Data with a pertinent data privacy supervisory authority.
For Residents of California
If you are a resident of California and the CCPA applies to the relationship you have with Dymax and/or the data you submitted and/or that we collected from you, you have the following rights under the California Consumer Privacy Act of 2018 (“CCPA”):
to know what categories of Personal Data, as that term is defined under the CCPA, about you we have collected and used, including how the Personal Data was collected;
to know what categories of Personal Data is being sold or disclosed and if it is being sold or disclosed to third parties and a list of categories of information that are sold;
to opt out of the sale of your Personal Data (click here for more information on “Personal Data Sales Opt-Out and Opt-in Rights” https://oag.ca.gov/privacy/ccpa;
to access your Personal Data, including the right to download or transfer Personal Data collected during the previous 12 months (click here for more information on “Access to Specific Information and Data Portability Rights) https://oag.ca.gov/privacy/ccpa;
to request that your Personal Data be deleted (click here for more information on “Deletion Request Rights” https://oag.ca.gov/privacy/ccpa; and
to equal service and equal price for goods or services even if you exercise your rights under the CCPA.
If you are a California resident and you want to exercise any of your rights as set forth above, please contact us at 1-877-396-2988, 1-877-396-2963 or firstname.lastname@example.org. For all requests, it is helpful to put the statement “California Privacy Rights” in the body of your request, describe the nature of your request, and provide your name, street address, city, state, and zip code. In your request, you need to attest to the fact that you are a California resident and provide a current California address for our response. For more information click here https://oag.ca.gov/privacy/ccpa.
We will not discriminate against you for exercising any of your CCPA rights. Unless permitted by the CCPA, we will not:
Deny you goods or services.
Charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties.
Provide you a different level or quality of goods or services.
Suggest that you may receive a different price or rate for goods or services or a different level or quality of goods or services.
Users Only of Legal Age of Majority
Our Sites are directed to individuals over the age of eighteen (18). By using our Sites, you affirm that you are at least 18 years of age or older. We are not liable for any damages that may result from a user’s misrepresentation of age.
We do not knowingly solicit or collect Personal Data from children under the age of 13 without verifiable parental consent. If we discover that a child under the age of 13 has shared Personal Data with us, we will not use that information except as necessary to protect the safety of the child and others as the law permits or requires. We also will take all reasonable measures to have that information deleted. If you become aware that we have collected Personal Data from a child under the age of 13, please contact us immediately at the e-mail address provided in Section 2.
Parents or legal guardians of children under 13 cannot agree to this policy on their behalf.
We have technical and operational security measures in place to protect your data against unintentional or intentional manipulation, loss, destruction or access by unauthorized persons. Our security processes are regularly reviewed and updated as necessary. However, the transmission of information via the internet is not completely secure. Therefore, we cannot guarantee the security of your Personal Data transmitted to our Sites. Any transmission of Personal Data is at your own risk. We are not responsible for circumvention of any privacy settings or security measures contained on the Sites.
318 Industrial Lane
Torrington, CT 06790
FOR CALIFORNIA RESIDENTS ONLY
Your Rights under the California Consumer Privacy Act
You have the right to request that we disclose certain information to you about our collection and use of your personal information over the past twelve (12) months. Once we receive and confirm your verifiable consumer request (see Exercising Access, Data Portability, and Deletion Rights below), we will disclose to you:
- The categories of personal information we collected about you.
- The categories of sources for the personal information we collected about you.
- Our business or commercial purpose for collecting or selling that personal information.
- The categories of third parties with whom we share that personal information.
- The specific pieces of personal information we collected about you (also called a data portability request).
- If we sold or disclosed your personal information for a business purpose, two separate lists disclosing:
- sales, identifying the personal information categories that each category of recipient purchased; and,
- disclosures for a business purpose, identifying the personal information categories that each category of recipient obtained.
You have the right to request that we delete any of your personal information that we collected from you and retained, subject to certain exceptions. Once we receive and confirm your verifiable consumer request (see Exercising Access, Data Portability, and Deletion Rights below), we will delete (and direct our service providers to delete) your personal information from our records, unless an exception applies.
We may deny your deletion request if retaining the information is necessary for us or our service provider(s) to:
- Complete the transaction for which we collected the personal information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform our contract with you.
- Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities.
- Debug products to identify and repair errors that impair existing intended functionality.
- Exercise free speech protect the right of another consumer to exercise their free speech rights, or exercise another right provided for by law.
- Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 et. seq.).
- Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information’s deletion may likely render impossible or seriously impair the research's achievement, if you previously provided informed consent.
- Enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us.
- Comply with a legal obligation.
- Make other internal and lawful uses of that information that are compatible with the context in which you provided it.
To exercise the access, data portability, and deletion rights described above, please submit a verifiable consumer request to us by either calling us at 1-877-396-2988 or 1-877-396-2963, emailing us at email@example.com.
Only you, or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your personal information. You may also make a verifiable consumer request on behalf of your minor child.
You may only make a verifiable consumer request for access or data portability twice within a 12-month period. The verifiable consumer request must:
- Provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative.
- Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.
We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you. We will not require you to incur any costs or fees in order to process or provide a verifiable request.
We will only use personal information provided in a verifiable consumer request to verify the requestor’s identity or authority to make the request.
We will confirm receipt of a verifiable consumer request within ten (10) business days and provide information about how we will process the request.
We will provide a response to a verifiable consumer request within forty-five (45) calendar days of its receipt. If we require more time (up to 45 calendar days), we will inform you of the reason and extension period in writing.
We will deliver our written response by mail or electronically, at your option.
Any disclosures we provide will only cover the 12-month period preceding the verifiable consumer request’s receipt. The response we provide will also explain the reasons we cannot comply with a request, if applicable. For data portability requests, we will select a format to provide your personal information that is readily useable and should allow you to transmit the information from one entity to another entity without hindrance.
Additionally, we do not intend to market to any individual under the age of 18, and we expressly prohibit, anyone under the age of 18 from disclosing or submitting any personal information to us through our Site or other means. Therefore, we do not sell any information of any individual under the age of 18.
We will not discriminate against you for exercising any of your CCPA rights. Unless permitted by the CCPA, we will not:
- Deny you services.
- Charge you different prices or rates for services, including through granting discounts or other benefits, or imposing penalties.
- Provide you a different level or quality of services.
- Suggest that you may receive a different price or rate for services or a different level or quality of services.