Privacy Policy "Spindle Identifier" (Last Update as of 02/20/2019)

Protection of personal data is of utmost importance to Weiss Spindeltechnologie GmbH, Birkenfelder Weg 14, 96126 Maroldsweisach, Germany (“Weiss”), a Siemens company. Therefore, Weiss operates Spindle Identifier (“App”) pursuant to valid legal provisions on personal data protection and data security.

Data Categories, Processing Purpose, and Legal Basis

Whenever you use the App, Weiss processes the below personal data:

  • personal data that you voluntarily provide when using the App (e.g. when registering, sending contact queries, etc.), such as given/family names, email addresses, phone numbers, and information transferred for support queries;
  • information that your web browser/terminal automatically transfers to us, such as your IP address, device/browser type, websites/web pages you previously accessed, or the date and time of the access.

We process your data to:

  • enable you to use the App services and functions;
  • identify you;
  • process your queries;
  • enforce our Terms of use, assert/defend legal claims, and defend/prevent fraudulent or similar actions, including attacks on our IT infrastructure.

Personal data processing is required to fulfill the above purposes; we process your data only if we are legally authorized to do so. Regarding European Union and European Economic Area data protection law, data processing is based on the following, unless expressly provided otherwise during personal data collection:

  • executing and fulfilling contracts with you (point (b) of Art. 6(1) GDPR);
  • fulfilling Weiss’ legal duties (point (c) of Art. 6(1) GDPR); or
  • protecting Weiss’ legitimate interests (point (f) of Art. 6(1) GDPR). Weiss’ legitimate interests generally consist in the processing of your data to offer and operate the App. If need be, we will separately notify you of other or deviating legitimate interests prior to data collection.

In some cases, we expressly ask you to consent to your data being processed, whereby personal data processing in these cases is legally based on your consent (point (a) of Art. 6(1) GDPR).


Certain App functions can be used only if the relevant authorizations are granted, whereby “authorizations” means interfaces to your terminal operating system through which the App is able to access data that are stored thereon.

The App uses the below authorizations:

  • camera access: The camera is required to scan QR codes;
  • location data access: You can decide whether you want to transfer the location of the spindle that you scanned, whereby locating serves service coordination;
  • storage access: Access to the storage is required to attach files to notes;
  • phone access: This authorization is required to directly contact our service hotlines.

By setting your operating system accordingly, you can manage and deactivate these authorizations. Please note that authorization deactivation may lead to you no longer being able to use all the App functions.

Personal Data Transmission/Transfer

If need be, we transmit personal data to:

  • other Siemens companies if required for App provision and operation or for reacting to your support query;
  • service providers, that is, “processors”, such as IT maintenance service providers that process data on behalf and pursuant to instructions of Weiss and that undertook to comply with valid data protection law;
  • (arbitration) courts, authorities, or legal counsels if required to comply with valid laws or for asserting, exercising, or defending legal claims.

If you reside in the territory of the European Union and/or the European Economic Area, please note that some recipients are located in countries with laws providing for lower data protection levels compared to that of your home country.
Weiss will take adequate steps, if required by law, to guarantee adequate and reasonable personal data protection levels in other ways.

  • Hence, we transfer your personal data to Siemens companies in these countries only if they implemented the binding personal data protection corporate rules (“BCR”). For more information on the Siemens BCR, please click here.
  • We transfer our personal data to recipients outside the Group only if they (i) concluded the EU Standard Contract Clauses with Siemens, (ii) introduced the Binding Corporate Rules, or (iii) – with recipients located in the US – obtained EU/US Privacy Shield certification. For more information and a copy of the measures that we implemented, please refer to

Storage Periods

If no express storage period is indicated upon data collection (e.g. based on your consent), we erase your data once they are no longer required for fulfilling the storage purpose, unless erasure is contrary to statutory storage duties (e.g. under commercial and tax law).

Your Rights

Under European Union and/or European Economic Area law, you may have the right to:

  • request a confirmation of whether Weiss processes your personal data and information about the personal data that Weiss processes as well as other information;
  • request incorrect personal data to be corrected;
  • request personal data that Weiss processed to be erased;
  • request Weiss to restrict personal data processing;
  • request the data to be transferred; or
  • object to Weiss processing your personal data.

Contact Partner

The Weiss Data Protection department assists you with any queries concerning data protection. You may also submit complaints to and assert your rights under this Privacy Policy towards the Weiss Data Protection department.

Please contact the Weiss Data Protection department at

The Weiss Data Protection department always strives at reacting and finding a solution to your queries and complaints. However, in addition to referring to the Weiss Data Protection department, you may also refer to the competent data protection authority at any time.