Privacy policy

Our current privacy policy

I. Name and address of controller

WEVO Chemical (Asia-Pacific) Limited and its subsidiaries (as the case may be) are the data controller under the data protection law.

WEVO Chemical (Asia-Pacific) Limited
Empress Plaza, Office 1203
17–19 Chatham Road South
Tsim Sha Tsui 
Hong Kong

Telephone: +852 3695 5152 

Email


Data protection is treated as particularly important at Wevo. The processing of personal data, such as the name, address, email address or telephone number of a data subject, is carried out in compliance with the General Data Protection Regulation (GDPR) at all times and in conformity with the specific national data protection legislation applying to Wevo. Through this privacy policy we wish to inform the public about the types, scope and purposes of the personal data which we collect, use and process. This privacy policy further serves to inform data subjects of their rights.

II. Use of webpages

A. Capture of general information

If you access our website, information of a general kind will be captured automatically. This information (server log files) comprises, for example, the type of web browser, the operating system used, the domain name of your internet service provider, and other similar materials. Whilst such information does not allow any conclusions to be drawn about you, it is technically necessary in order to correctly supply the website contents for which you have requested and is compulsory when using the internet. Anonymous information of this kind may be evaluated by us, in order to optimise user experience or to improve our website.


B. Use of e-trackers

The provider of this website uses the services of etracker GmbH (www.etracker.com) to analyse usage data. Here, cookies are used which enable the statistical analysis of the use of this website by its visitors as well as the display of usage-relevant content or advertising. Cookies are small text files that are stored by the internet browser on the user's device. Etracker cookies do not contain any information that could identify a  user.

The data generated with etracker is processed and stored by etracker solely in Germany by commission of the provider of this website and is thus subject to strict German and European data protection laws and standards. In this regard, etracker has been checked, certified and awarded with the ePrivacyseal data protection seal of approval.

The data described under this section is processed on the legal basis of legitimate interest under Article 6.1 (f) of the GDPR. Our legitimate interest is the optimization of our online offer and our website. As the privacy of our visitors is very important to us, etracker anonymizes the IP address as early as possible and converts login or device IDs into a unique key that no connection to any specific person can be made. etracker does not use the raw or anonymized data for any other purpose, nor combine it with other data or pass it on to third parties.

You can object to our data processing at any time provided that it is related to you personally. Your objection will have no detrimental consequences on you.

Further information on data protection with etracker can be found here.

C. Erasure or blocking of data

We comply with the principles of data avoidance and data minimisation. Therefore, we store your personal data only for so long as is necessary to achieve the purposes set out herein or the various storage periods stipulated by law. Once the purpose in question no longer applies or these periods have expired, the data is routinely erased or blocked in accordance with statutory requirements.

III. Data protection for customers

For purposes of the precontractual offer stage, or to fulfil an order or supply a service, we process personal data, such as address and contact details, information on conversations which have taken place, your requirements, offers, and further information which we receive from you. In the case of corporate customers we also process information, particularly contact details, relating to our personal contacts. For purposes of payment processing we may store and process data relating to your bank account or credit card information. Should external partners be involved in supplying the service or fulfilling the order, information may be disclosed to them, to the extent necessary for their performance of contracts. Sometimes, ancillary systems (IT environment, CRM/ERP systems, financial accounting) may be employed which third party service providers may access in the course of maintenance. In these cases, we will ensure that contractual terms are in place to bind these external service providers to comply with the same data protection standards as we do.

IV. Data protection in job application

We will collect and process the personal data of job applicants as part of the job-application procedures. Such processing may be carried out by electronic means. This will be the case in particular if an applicant transmits application documents to us by electronic means, e.g. by email or via an application form located on the website. Should Wevo conclude an employment contract with the applicant, the data so transmitted will be kept and processed for the purpose of employment in accordance with statutory regulations. Should no employment contract be concluded, the application documents will be automatically erased four months after the notice of rejection was given, providing no other legitimate interests of Wevo conflict therewith.

V. Data protection for suppliers

In the course of selecting suppliers or service providers we shall store and process information about you. Moreover, in the course of scrutinising and evaluating suppliers we may obtain and store further information, e.g. from credit-search agencies. For purposes of order handling we shall also process order-specific information in addition to the standard data collection. In the case of company contacts we shall also process information, particularly contact details, relating to our personal contacts. Sometimes, ancillary systems (IT environment, CRM/ERP systems, financial accounting) may be employed, which the service providers may access for purposes of maintenance. We enter into contracts with suppliers and service providers to ensure that the same data protection standards are observed. 

VI. General information

A. Legal bases of processing

For processing operations with respect to which we obtain a declaration of consent for a particular purpose, Article 6.1 (a) of the GDPR serves as our legal basis. Should the processing of personal data be required for the performance of a contract, the contracting party to which the data is subject – as is the case, for instance, with processing operations which are necessary for thedelivery of goods or the supply of another performance or counterperformance – the processing is based on Article 6.1 (b) of the GDPR. This will also apply to such processing operations as are necessary to execute precontractual arrangements, e.g. in connection with enquires about our products or services. Should Wevo be subject to a legal duty by virtue of which processing of personal data is required, e.g. to fulfil tax obligations, the processing will be based on Article 6.1 (c) of the GDPR. In rare cases the processing of personal data could be necessary in order to protect the vital interests of the data subject or another natural person. This would be the case, for instance, if a visitor was injured in our office and therefore, his name, age, medical-insurance details or other vital information had to be disclosed to a medical practitioner or the hospital. Then such processing would be based on Article 6.1 (d) of the GDPR. Finally, processing operations could be based on Article 6.1 (f) of the GDPR. This is the legal basis for processing operations which are not covered by any of the foregoing legal bases if such processing is necessary for the pursuit of a legitimate interest on the part of Wevo or a third party, unless overridden by the interests or fundamental rights and freedoms of the data subject. Such processing operations are particularly relevant to us because it has been expressly ratifiedby the European legislators that a legitimate interest could be assumed if the data subject is a customer of the data controller (Recital 47 of the GDPR). 

B. Justified interests in processing pursued by the data controller

If the processing of personal data is based on Article 6.1 (f) of the GDPR, our legitimate interest is the pursuit of our business operations to the benefit of all our employees and shareholders.

C. Disclosure or transfer of data to third parties

We shall process your personal data only for the purposes set out in this privacy policy. No transmission of your personal data to third parties will take place for purposes other than those set out herein. We may disclose your personal data to a third party only under limited circumstances:

  • you have expressly given your consent for us to do so;
  • the processing is necessary in order to perform a contract between us;
  • the processing is necessary to fulfil a legal obligation; or
  • the processing is necessary to pursue legitimate interests and no grounds exist to suppose that you have an overriding protective interest.


D. Transmission of data to non-EU countries

When we deploy web services such as those provided by Google or newsletter services, transfer of personal data may take place to non-EU countries. In such circumstances we always ensure that adequate safeguards are in place for the protection of your personal data. You can obtain a certification from us in this regard. 

E. Erasure or blocking of data

We comply with the principles of data avoidance and data minimisation. Therefore, we store your personal data only for so long as is necessary to achieve the purposes set out herein or the various storage periods stipulated by law. Once the purpose in question no longer applies or these periods have expired, the data is routinely erased or blocked in accordance with statutory regulations.

F. Statutory or contractual regulations on provision of personal data 

Please note that sometimes provision of personal data is mandated by law (e.g. tax rules) or may arise under contractual requirements (e.g. information about contracting partner). Moreover, it may sometimes be necessary for the conclusion of a contract and any failure to do so would result in the contract not being able to be concluded. Prior to provision of personal data by the data subject, the data subject can contact one of our employees, who will explain whether the provision of personal data is compulsory under law or contract, or is necessary for the conclusion of the contract, to what extent such duty exists on the part of the data subject, and what the consequences would be for failure to provide the personal  data.

G. Existence of automated decision making

Our data processing activities do not involve any automated decision making or profiling.

H. Your rights as a data subject

You can exercise the following rights at any time by contacting us:

  • Provision of information about your data stored with us and their processing
  • Correction of inaccurate or incomplete personal data
  • Erasure of your data stored with us
  • Restriction of data processing
  • Objection to the processing of your data
  • Data portability
  • Withdrawal of consent, with effect after such withdrawal
  • Lodge a complaint with us, or the competent supervisory authority, as you see fit

I. Amendment to privacy policy

We reserve the right to update this privacy policy from time to time to ensure that it meets current legal requirements, or to reflect any changes in our data processing practice or data protection policy. A repeated visit to this website will be governed by the privacy policy in force at the time of your visit.

J. How to contact us

If you have any questions or comments concerning this privacy policy, please write us an email, or contact us by post at Empress Plaza, Office 1203, 17–19 Chatham Road South, Tsim Sha Tsui, Hong Kong.