Header
Nespresso Deutschland GmbH
Effective Date: August 2024
The following summary is designed to help you better understand the recent changes to our Privacy Policy and their implications for you:
We hope you find this information helpful and that it provides you with a clear understanding of how Nespresso processes personal data.
SCOPE
Please read these privacy notices (“Notice”) carefully to understand our policies and practices regarding your personal data and how we will treat it.
If you do not agree with this Notice or do not provide us with necessary personal data (we will inform you when this is the case, for example, by indicating this in our registration forms),
(a) you should not use our websites or apps and cannot become a Nespresso customer, and
(b) it is possible that we will not be able to provide you with our products and/or perform services for you.
This Notice explains how your personal data is collected, processed, and disclosed by the respective Nespresso company - as described in the “Controller and Contact” section (Section 11) (“Nespresso,” “We,” “us”). It also informs you about how you can access and update your personal data and the choices you have regarding the use of your personal data.
This Notice covers the collection of data both online and offline, including personal data we collect from various sources, such as websites, apps, third-party social networks, customer centers, boutiques, points of sale, and events. Please note that we may combine personal data collected through one method (for example, a Nespresso website) with personal data collected through another method (for example, a Nespresso event). In this context, we combine personal data that were originally collected by different Nespresso companies. Please refer to Section 8 of this Notice for more information on how you can object to these practices.
If you fail to provide us with necessary personal data (we will indicate which data is considered necessary, for example, by specific notice in our registration form), we may not be able to provide you with our goods and/or services.
This Notice may change from time to time (see Section 10).
This Notice provides important information in the following areas:
1. ORIGIN OF PERSONAL DATA
2. PERSONAL DATA WE COLLECT ABOUT YOU AND HOW WE COLLECT IT
3. COOKIES/SIMILAR TECHNOLOGIES, LOG FILES, AND WEB BEACONS
4. HOW WE USE YOUR PERSONAL DATA
5. DISCLOSURE OF YOUR PERSONAL DATA
6. RETENTION OF PERSONAL DATA
7. DISCLOSURE, STORAGE, AND/OR TRANSFER OF YOUR PERSONAL DATA
8. ACCESS TO YOUR PERSONAL DATA
9. YOUR CHOICES REGARDING OUR HANDLING OF YOUR PERSONAL DATA AND SHARING YOUR DATA
10. CHANGES TO THIS NOTICE
11. CONTROLLERS AND CONTACT
This Notice applies to all personal data that we collect from you or about you. Section 2 describes the methods by which we collect your personal data.
We use the following sources:
Nespresso Websites.
Consumer-oriented websites operated by or for Nespresso, including pages that run on our own domains/URLs and mini-sites that we operate on third-party social networks like Facebook (“Websites”).
Nespresso Mobile Sites/Apps.
Consumer-oriented mobile sites or applications operated by or for Nespresso, such as smartphone apps.
Emails, SMS, and other electronic messages.
Any electronic communication between you and Nespresso.
Nespresso Customer Centers.
Calls to the customer center.
Nespresso Boutiques.
Stores operated by Nespresso.
Offline Registration Forms.
Print versions of registration and similar forms that we collect, for example, by mail, at demonstrations in our stores, contests, or other promotional events or activities.
Points of Sale.
Demonstrators in third-party stores who assist you with the registration of your machine and coffee order.
Data from Other Sources.
Third-party social networks (such as Facebook, Google) or market research surveys (unless the feedback is given anonymously).
Depending on how you interact with Nespresso (online, offline, by phone, etc.), we collect various types of personal data from you. The collection methods are described below.
Personal Contact Information.
These data include any information you provide us that enables us to contact you, such as your name, postal address, email address, details from social networks, or your phone number.
Account Login Information.
Any information necessary to provide you access to your account profile, such as your login ID/email address, username, password (in non-recoverable format), and/or security question and its answer.
Demographic Information and Interests.
Any information describing your demographic or behavioral characteristics, such as your birthdate, age or age group, gender, geographic location (e.g., your zip code), your favorite products, hobbies and interests, and data concerning your household or lifestyle.
Technical Information About Your Computer/Mobile Device.
Any information about the computer system or other technical devices you use to access one of our websites or apps, such as the Internet Protocol (IP) address used to connect your computer or device to the Internet, the operating system, and the data regarding your web browser (version/type). When you access a Nespresso website or app using a mobile device such as a smartphone, we may also collect, where permissible, your phone's unique device identifier, advertising ID, location data, and other similar data about your mobile device.
Information about your use of our websites and communication with us.
When you browse our sites and interact with our websites and newsletters, we use automated data collection technologies to collect specific information about your visit. This includes information such as which links you click on, which pages or content you view, and how long you do this, as well as other similar information and statistics about your interactions, such as response times, download errors, and the duration of visits to specific pages. This information is collected through automated technologies such as cookies (browser cookies, flash cookies) and web beacons, and is additionally collected through third-party tracking services. You have the right to object to the use of these technologies. For more information, please see Section 3.
We use Google Signals. This allows Google Analytics to collect additional information about users users who have activated personalized ads (interests and demographic demographic data) and ads can be delivered to these users in cross-device be delivered to these users in cross-device remarketing campaigns.
Market Research and Consumer Feedback.
This includes information about your experience with our products and services that you voluntarily share with us.
Content created by consumers. This refers to any content you have created yourself and subsequently shared with us on third-party social networks or uploaded to one of our websites or apps, including the use of third-party social network apps such as Facebook. Examples include photos, videos, personal stories, or other content. Where permitted, we collect and publish content created by consumers in connection with various activities, including contests and other promotions, community features, consumer engagement, and networking (on third-party social networks).
Information from Third-Party Social Networks.
This concerns any information you post in a third-party social network or information that is part of your profile on the third-party social network (such as Facebook) and which you have allowed the third-party social network to share with us. Examples include basic information about your account (e.g., name, email address, gender, birthday, current location, profile picture, user ID, friend lists, and posts or PMs you leave on the Nespresso social media pages, etc.) and any other additional information or activity to which you have allowed the third-party social network to share. We receive your profile information from the third-party social network (or parts of it) each time you download something on a Nespresso web application on a third-party social network like Facebook or otherwise interact with it, each time you use a social network feature integrated into a Nespresso page (such as Facebook Connect), or each time you interact with us through a third-party social network. To learn more about how your data from social networks is obtained by Nespresso or to object to the sharing of this data from social networks, please visit the website of the relevant third-party social network.
Any information we need to process an order or that you use for a purchase, such as your debit or credit card details (cardholder name, card number, expiration date, etc.) or other payment methods (if available). In any case, we and our payment service provider(s) handle payment and financial information in accordance with applicable laws, regulations, and security standards such as PCI DSS.
Calls to Our Customer Center.
For local operational reasons (e.g., for quality control or training purposes), communication with our customer center is recorded and listened to, where permitted by applicable laws. Payment card details are not recorded. If required by law, we will inform you at the beginning of the conversation about the recording.
Email.
We analyze your interactions with our content (e.g., clicks, email opens) to provide you with personalized information based on your interests and preferences.
3. COOKIES/SIMILAR TECHNOLOGIES, LOG FILES, AND WEB BEACONS
Cookies/Similar Technologies.
Please refer to our Cookie Policy for information on how to manage your cookie settings. There, you will also find more details about the cookies we use and the purposes for which we use them.
Log Files.
We collect information in the form of log files that store activities on websites and gather statistical information about your browsing habits. These details are automatically generated and help us troubleshoot errors, improve the performance of the websites, and maintain the security of our websites.
Web Beacons.
Web beacons (also known as "web bugs") are small pieces of code that deliver a graphic image on a webpage or in an email to transmit data back to us. The information collected through web beacons includes details such as IP addresses and information about how you respond to email campaigns (e.g., the time an email was opened, which links in the email you clicked, etc.). We use web beacons on our websites or integrate them into the emails we send you. We use web beacon information for various purposes, including but not limited to website traffic data reporting, visitor counts, advertising, email auditing and reporting, and personalization.
4. USE OF YOUR PERSONAL DATA
The following sections describe the different purposes for which we collect and process your personal data, and the different categories of personal data collected for each purpose. Please note that not all of the purposes mentioned below will be relevant to every individual.
How We Use Your Personal Data |
Our Reasons |
Our Legitimate Interests |
|---|---|---|
| Customer Service. We use your personal data for customer service purposes, including responding to your inquiries. This typically requires the use of specific personal contact information and information about the nature of your inquiry (e.g., order status, technical issue, product query/complaint forwarded through our communication channels or social media, general query, etc.). |
||
| Contests, Marketing, and Other Advertising. With your consent (where required), we use your personal data to provide you with information about goods and services (e.g., marketing communications or campaigns or promotions). This may occur through emails, advertisements, SMS, calls, and postal mailings, where permitted under applicable laws. Some of our campaigns and promotions are run on third-party websites and/or on social networks. The use of your personal data for these purposes is voluntary, meaning you can object to the processing of your personal data for these purposes (or withdraw your consent, where applicable). For detailed information on how to change your marketing communication preferences, please refer to the official instructions or details provided for the specific contest/promotion. |
||
| Third-Party Social Networks. We use your personal data when you interact with features of third-party social networks, such as the "Like" functions, which provide you with advertising and involve you in third-party social networks. To learn more about how these features work, the profile data we obtain about you, and how to object, please refer to the privacy notices of the respective third-party social network. |
||
| Personalization (Offline and Online). With your consent (where required), we use your personal data (i) to analyze your preferences and habits, (ii) to anticipate your needs based on our analysis of your profile, (iii) to improve and personalize your experience on our websites and apps; (iv) to ensure that content from our websites/apps is optimized for you and for your computer or device; (v) to provide you with targeted advertising and content; and (vi) to enable you to participate in interactive features, if you choose to do so. For example, we remember your login ID/email address or username so that you can quickly log in during your next visit to our website or so that you can easily retrieve the items you previously placed in your shopping cart. Based on this type of information and with your consent (where required), we also show you specific Nespresso content or promotions tailored to your interests. The use of your personal data is voluntary, meaning you can refuse the processing of your personal data for this purpose. Detailed information on how to object is provided in Section 8 below. |
||
| Order Processing. We use your personal data to process and ship your orders, inform you about the status of your orders, correct addresses, and conduct identity verification and other fraud detection activities. This includes the use of certain personal data and payment information. |
||
| Other General Purposes (e.g., internal research or market research, analysis, security). In accordance with applicable laws, we use your personal data for other general business purposes, such as conducting internal research or market research and measuring the effectiveness of advertising campaigns. We reserve the right to merge accounts for Club members. We also use your personal data to ensure our security. |
||
| Legal Reasons or Merger/Acquisition. In the event that Nespresso or its assets are acquired by or merged with another company, including through bankruptcy, we will share your personal data with our successors. We will also disclose your personal data to third parties (i) when required by law; (ii) in response to a court order; (iii) in response to a competent law enforcement authority's request; (iv) to protect our rights, privacy, safety, or property or the public; or (v) to enforce the terms of an agreement or our website's terms and conditions. |
5. DISCLOSURE OF YOUR PERSONAL DATA
In addition to Nespresso / Nestlé entities or ad-hoc local partners (responsible for Nespresso activities) mentioned in the section "Controller and Contact" (see Section 11), we share your personal data with the following types of third-party organizations:
Service Providers.
These are external companies we use to run our business (e.g., order fulfillment, payment processing, fraud detection and identity verification, website operation, market research firms, support services, promotions, website development, data analysis, customer communication, etc.). Service providers and their selected staff are only allowed to access your personal data on our instructions and only for the specific tasks they need to perform, and are required to treat your personal data confidentially (see Section 11 for how to contact us).
Credit Reference Agencies / Debt Collection Agencies.
Where legally permissible, credit reference agencies and debt collection agencies are external companies we use to assist us in verifying your creditworthiness (especially for orders on account) or collecting outstanding invoices.
Third Parties Using Personal Data for Their Own Marketing Purposes.
Except in situations where you have given your consent, we do not license or sell your personal data to third parties for their own marketing purposes. The identity of the third party will be disclosed at the time your consent is sought.
Recipients (Third Parties) Using Personal Data for Legal Reasons or Due to Mergers / Acquisitions.
We disclose your personal data to third parties for legal reasons or in the context of a merger or acquisition (details see Section 4).
6. STORAGE OF YOUR PERSONAL DATA
In accordance with applicable laws, we use your personal data for as long as necessary for the purposes for which your personal data was collected (as described in Section 4 above) or to comply with applicable legal requirements.
Personal data used to provide you with a personalized experience (details see Section 4 above) will be retained for a duration allowed by applicable laws.
7. DISCLOSURE, STORAGE, AND/OR TRANSFER OF YOUR PERSONAL DATA
We employ a range of reasonable measures (details provided below) designed to ensure the confidentiality and security of your personal data. Please note that these protections do not apply to information you choose to share in public areas such as third-party social networks.
Individuals Who May Access Your Personal Data:
Your personal data will be processed by our authorized employees or agents on a need-to-know basis, depending on the specific purposes for which your personal data has been collected (e.g., our customer care employees have access to your customer record).
Operating Environment Safeguards:
We store your personal data in operating environments that use reasonable security measures to prevent unauthorized access. We follow reasonable standards to protect personal data. The transmission of information via the internet is unfortunately not completely secure, and although we will do our best to protect your personal data, we cannot guarantee the security of the data during transmission through our Websites/Apps.
Measures You Should Take:
It is important for you to also play a role in keeping your personal data safe and secure. When signing up for an online account, please be sure to choose an account password that is hard for others to guess and never reveal your password to anyone else. You are responsible for keeping this password confidential and for any use of your account. If you use a shared or public computer, never allow your login ID/email address or password to be stored by that computer, and make sure to log out of your account every time you leave the computer. You should also make use of any privacy settings or controls we provide you in our Website/App.
Transfer of Your Personal Data:
The storage and processing of your personal data as described above require that your personal data may be transferred to, and stored at, a destination outside your country of residence, notably Switzerland and Luxembourg. We will also transfer your personal data to countries outside the European Economic Area ("EEA") (for example, other Nespresso/Nestlé companies or ad-hoc partners in the respective country), including to countries which may not offer a level of protection of personal data that is as comprehensive as that offered within the EEA. We have put in place European Commission approved standard contractual clauses to protect your personal data (and you have a right to ask us for a copy of these clauses (by contacting us as set out below) and/or (ii) rely on your consent (where legally required).
8. ACCESS TO YOUR PERSONAL DATA
Access to Your Personal Data: Where permitted by law, you, your successors, representatives, and/or proxies have the right to access, review, and request a physical or electronic copy of information held about you. You also have the right to request information on the source of your personal data.
These rights can be exercised by sending us an email at DEKontakt@nespresso.com or writing to us at:
Nespresso Deutschland GmbH
Speditionstraße 23
40221 Düsseldorf
Please include a copy of your ID card or equivalent details to confirm your identity if requested and permitted by law. If the request is made by someone else on your behalf, without appropriate authorization, the request will be rejected. Please note that any identification information provided to us will only be processed in accordance with applicable laws.
Additional Rights (e.g., Modification or Deletion of Personal Data)
Where permitted by law, you, your heirs, representatives, and/or proxies have the right to (i) request the deletion, portability, correction, or rectification of your personal data; (ii) oppose the data processing; (iii) limit the use and disclosure of your personal data; and (iv) revoke consent to any of our data processing activities.
Please note that under certain circumstances, we may not be able to delete your personal data without also deleting your user account. We may be legally entitled to retain some of your personal data even after you have requested deletion, to fulfill our legal or contractual obligations. We may also be permitted by applicable laws to retain some of your personal data to satisfy our business needs.
Where available, our websites have a dedicated feature through which you can review and edit the personal data you have provided. Please note that we require our registered customers to verify their identity (e.g., login ID/email address, password) before they can access or make changes to their account information. This is to prevent unauthorized access to your account.
We hope to be able to answer any questions or concerns you have about the way we process your personal data. However, if you do have unresolved concerns, you have the right to complain to the competent data protection authorities.
9. YOUR OPTIONS REGARDING OUR HANDLING OF YOUR PERSONAL DATA AND DATA SHARING
We strive to provide you with choices regarding the personal data you provide to us. The following mechanisms give you control over your personal data:
Cookies/Similar Technologies.
You manage your consent through (i) our consent management solution or (ii) your browser to reject all or some cookies/similar technologies, or to alert you when they are being used. See section 3 above.
Advertising, Marketing, and Campaigns.
If you wish for your personal data to be used by Nespresso for promoting Nespresso products or services, you can indicate this through the relevant checkboxes on the registration form or by answering questions from our demonstrators, customer center, or boutique representatives. If you decide you no longer wish to receive such communications, you can opt-out of receiving marketing communications at any time by following the instructions in each of these communications. If you wish to opt out of marketing communications sent by any medium, including third-party social networks, you can do so at any time by logging into the websites/apps or third-party social networks and adjusting your user settings in your account profile by unchecking the respective checkboxes or calling our customer center. Please note that even if you opt out of receiving marketing communications, you may still receive administrative communications from us, such as order or other transaction confirmations, notifications about your account activities (e.g., account confirmations, password changes, etc.), and other important non-marketing communications.
Personalization (Online and Offline).
If you wish for your personal data to be used by Nespresso to provide you with a personalized experience/targeted advertising and content, you can indicate this through the relevant checkboxes on the registration form or by answering questions from our demonstrators, customer center, or boutique representatives (if required by law). If you decide you no longer wish to benefit from this, you can opt out at any time by logging into the websites/apps and adjusting your user settings in your account profile by unchecking the respective checkboxes or calling our customer center.
Interest-Based Advertising.
We work with advertising networks and other ad-serving providers ("Ad Providers") that serve ads on our behalf and on behalf of other non-affiliated companies on the Internet. Some of these ads are tailored to your interests based on information collected from you over time on Nespresso websites or on unrelated websites. You can visit www.aboutads.info/choices to learn more about this type of advertising, as well as how to opt-out of interest-based advertising practices from companies participating in the Digital Advertising Alliance ("DAA") self-regulatory program. Additionally, you can opt-out of this type of advertising from companies participating in the DAA's AppChoices app in mobile applications by downloading the app from the iOS or Android app store. You can also stop the collection of precise location data from a mobile device by accessing your device's location settings.
10. CHANGES TO THIS STATEMENT
If we change the way we use your personal data, we will update this statement. We reserve the right to make changes to our practices and this notice at any time. Please check this statement regularly for updates or changes to our notice.
To ask questions or provide comments about this statement and our privacy practices or to make a complaint about compliance with applicable privacy laws, contact us at: Nespresso.com or write to us at DEKontakt@nespresso.com or call our customer center at 0800 18 18 444.
You can also contact our data protection officer by email at Datenschutz-ND@de.nestle.com or by mail at:
Nestlé Deutschland AG
Data Protection Officer
Lyoner Str. 23
60528 Frankfurt am Main.
Additionally, you have the right to lodge a complaint with a data protection supervisory authority.
Data Controllers |
Responsible for |
Nestlé Nespresso SA |
All activities |
Additionally, all the following Nespresso / Nestlé companies or local ad-hoc partners |
|
Nespresso Deutschland GmbH |
All activities in Germany |
Nestlé Kaffee und Schokoladen GmbH |
All marketing activities of Nestlé Kaffee und Schokoladen GmbH for which the recipients of these activities have given their consent |
