Privacy Policy

We welcome you to our website. We would like to inform you about the management of your personal data in accordance with Art. 13 General Data Protection Regulation (GDPR).


The controller responsible for the described data collection and processing is named in the imprint.

Storage of Your IP address

We store the IP address transmitted by your web browser for a period of seven (7) days, strictly for the purpose of identifying, restricting and eliminating attacks on our website. After seven (7) days, we delete or anonymize your IP address. The legal basis for the processing of this personal data is provided for in Art. 6 para. 1 s. 1 lit. f GDPR.

Usage Data

When you visit our website, the data collected from the use of the website is temporarily stored on our web server for statistical purposes in order to improve the quality of our website. This data set contains:

  • the page, from which the data is requested
  • the name of the data file,
  • the date and time of the query,
  • the amount of data transferred,
  • the access status (file transmitted, file not found),
  • a description of the type of browser used,
  • the IP address of the requesting computer shortened to such an extent that no reidentification of any persona data is possible.

The listed usage data is stored anonymously.

Data Transfer to Third Parties

To avoid unauthorized access to your data, we have implemented technical and organizational measures. We use encryption technologies on our website. Your data will be transferred to our servers and back again via a connection that is protected by a TLS encryption technology. You can recognize that you are browsing on an encryption secured website by the lock-symbol shown in the address bar of your browser and by the address bar starting with https://.

Data Transfer to Third Countries (Non-EU Countries)

In some cases, we may transfer personal data to third countries outside the EU. In each case, we ensure an appropriate level of data protection according to European standards.

In the case of our daughter companies in China, Japan, Taiwan, und USA the appropriate level of data protection pursuant to Art. 46 para. 2 lit. c GDPR is guaranteed by EU standard contractual clauses, which we have concluded with our subsidiary companies.

Social Media Plugins

For data protection reasons, we do not integrate any social media plugins directly into our website. Therefore, when you access our pages, no data is transferred to social media services such as Facebook, Youtube, Linkedin, Twitter, XING or Google+. A profiling by third parties is thus excluded. However, you still have the option of sharing selected pages by clicking on the e.g. Facebook, Twitter, XING or Google+ buttons, and you can see how often a page has been shared in the past when you view the post. We use the so-called Shariff solution developed by the German c’t Magazine to offer a data protection compliant alternative to the classic social plug-ins.

What’s behind it? The Shariff solution means that as a first step, all the data and functions required to display Facebook, Twitter, XING or Google+ buttons are provided by our web server. Only when you decide to share a post via the corresponding button and click on it, does a data transfer to the operator of the respective social media service takes place.


On our website we provide the opportunity to subscribe to our newsletter. If you consent to this processing separately, this processing is pursuant to Art. 6 para. 1 s. 1 lit. a GDPR. Your consent can be withdrawn at any time without affecting the lawfulness of the prior processing. If consent is withdrawn, we will stop the corresponding data processing.

In order to warrant the consented posting of our newsletter, we use the so-called Opt-in process. There-by, the subscriber can be added to our mailing-list. Subsequently, he/she will receive an e-mail, to the specified e-mail address, enabling him to confirm his/her wish of receiving our newsletter. If he/she doesn’t confirm it, the newsletter registration won’t be actived and the e-mail address will be deleted after a periode of (14) fourteen days. E-mail addresses will not be added to our mailing-list without confirmation. Given consent concerning to use your e-mail address for the purpose of sending you a newsletter, can be revoked at any time by either sending an e-mail to or by clicking on the „Unsubscribe“ button which you can find at the bottom of all our newsletters.

As our newsletter software we use Newsletter2Go. By doing so, your data will be transferred to Newsletter2Go. Newsletter2Go are not permitted to sell your data or to pass them on for any purpose other than the sending of our newsletters. Newsletter2Go is a certified German provider who has been chosen by us on the grounds of the GDPR. Further information you will find under

When using Newsletter2Go, default tracking is possible. We don’t use this tracking for sending Newsletters. We just collect and record information concerning your Double-opt-in e-mail sent to you confirming your subscription. We only do this in order to comply with the legal standards of proof corresponding to Art. 6 para. 1 s. 1 lit. a GDPR. That means we collect and record on what day and time you clicked on the confirmation link. You may unsubscribe from the newsletter at any time, e.g. via an email sent to or via the link to unsubscribe from the newsletter, which you will find in every newsletter email.

Restricted Access Area

In case you want to participate in our special customer service Interlab Live, Interlab EVO, 7layers support portals, Rapid Response you must register beforehand. We process the following data: first name, surname, e-mail address, company name, company address, billing address to be inserted according to Art. 6 par. 1 s. 1 lit. b GDPR. Data transferred to us in the context of the registration will be used in order to send release notes, give support or invoice. You can change or delete your profile within your account at any time. Data will then be deleted from the system automatically after fourteen (14) days , if there are no retention requirements or the data is not required on an individual case basis (e.g. in the case of open claims).

Company Facebook Page

We operate an official facebook page based on Art. 6 para. 1 s. 1 lit. f GDPR under the URL We never collect, store or process personal data of our users on this site. Furthermore, no other data processing is carried out or initiated by us. The data you enter on our Facebook page, such as comments, videos or images, will not be used or processed by us at any time for any other purpose. Facebook uses web tracking methods on this site. Please be aware that Facebook may use your profile data to evaluate your habits, personal relationships, preferences, etc. We have no influence on the processing of your data by Facebook.

Contact form

You can contact us via our web contact form. In order to use our contact form we require your name, your company name, your email-address, the subject of the e-mail and the corresponding message. You may provide us with further information, but you are not obligated to do so. The legal basis for processing is Art. 6 para. 1 s. 1 lit. b or f GDPRYour data will only be used answering your enquiries and will be deleted after a period of six (6) months.

Your Rights as a User

As a website user, the GDPR grants you certain rights when processing your personal data.

Right of access (Art. 15 GDPR):

You have the right to obtain confirmation at to whether or not personal data concerning you is being processed, and, where that is the case access to the personal data and the information specified in Art. 15 GDPR. Right to rectification and erasure (Art. 16 and 17 GDPR):

You have the right to obtain without undue delay the rectification of inaccurate personal data concerning you and, if necessary, the right to have incomplete personal data completed. You also have the right to obtain an erasure of the personal data concerning you without undue delay, if one of the reasons listed in Art. 17 GDPR applies, e.g. if the data is no longer necessary for the intended purpose.

Right to restriction of processing (Art. 18 GDPR):

If one of the conditions set forth in Art. 18 GDPR applies, you shall have the right to restrict the processing of your data to mere storage, e.g. if you revoke consent, to the processing, for the duration of a possible examination. Right to data portability (Art. 20 GDPR):

In certain situations, listed in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, common and machine-readable format or demand a transmission of the data to another third party.

Right to object (Art. 21 GDPR):

If the data is processed pursuant to Art. 6 para. 1 s. 1 lit. f GDPR (data processing for the purposes of the legitimate interests), you have the right to object to the processing at any time for reasons arising out of your particular situation. We will then no longer process personal data, unless there are demonstrably compelling legitimate grounds for processing, which override the interests, rights and freedoms of the person concerned, or the processing serves the purpose of asserting, exercising or defending legal claims.

Right to lodge a complaint with a supervisory authority

Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you consider the processing of the data concerning you infringes data protection regulations. The right to lodge a complaint may be invoked in particular in the Member State of your habitual residence, place of work or the place of the alleged infringement.

Contact Details of the Data Protection Officer

Please contact our data protection officer if you have any further questions, suggestions or wishes regarding data protection:

Dr. Uwe Schläger
datenschutz nord GmbH
Konsul-Smidt-Straße 88
28217 Bremen, Germany
Phone: +49.421.


Bureau Veritas has created a GDPR rights exercise website which contains our global privacy policy and a means to submit requests governed by the law.