Axcelis Technologies, Inc.
Privacy Notice for Users of Axcelis Websites
Thank you for your interest in Axcelis Technologies and our products and services. We take the protection of your personal data and its confidential treatment very seriously.
This Privacy Notice is designed to inform you about when we collect and store personally identifiable information (“PII” or data) and for what purpose we use it – in compliance with the applicable European and other global data protection regulations.
If you have any questions regarding the handling of your PII, please contact Axcelis Technologies’ General Counsel, or Axcelis’ European Data Protection Officer (“DPO”), whose contact details you will find below.
Technology developments, changes in our services, laws and regulations, and other reasons may require Axcelis to update its Privacy Notice from time to time. We therefore reserve the right to change the terms of this Privacy Notice at any time, and ask that you to revisit it regularly to ensure you have the most up to date information about Axcelis’ protection of your data.
Except as specifically described below, no personal data is collected, processed or used when using our websites.
When you access our internet pages, our web servers automatically collect general information. This includes the type of web browser, the operating system used, the domain name of the Internet service provider, the IP address of the computer used, the website from which you visit us, the pages you visit on our site and the date and duration of your visit. However, none of this data can be used by us to identify the individual user. We only evaluate the information statistically and use it exclusively to improve our website and the user experience.
Definition of Personal Data
In the European Union, under the legal framework of the General Data Protection Regulation (“GDPR”), personal data is defined as follows:
Any information relating to an identified or identifiable natural person (hereinafter “data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. Individual EU member states may have their own unique definition of personal data, and non-European countries also may define personal data in their own way. Axcelis endeavors to comply with data privacy regulations worldwide.
Legal Basis for the Collection of Personal Data under GDPR
If you provide your consent for the processing of personal data, then Art. 6 para. 1 lit. a GDPR serves as the legal basis for the processing of your personal data.
When processing your personal data to fulfil a contract between you and Axcelis, Art. 6 para. 1 lit. b GDPR serves as the legal basis. This also applies to processing operations that are necessary to carry out pre-contractual measures.
When the processing of personal data is required to fulfill a legal obligation to which our company is subject, Art. 6 para. 1 lit. c GDPR serves as the legal basis.
If processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 para. 1 lit. f GDPR serves as the legal basis for the processing.
Data Erasure and Storage Period
Your personal data will be erased (or the processing will be restricted and/or blocked) as soon as the need for such information ceases to apply. Data may be stored indefinitely if this has been provided for by the relevant laws, regulations or other legal provisos to which the controller is subject worldwide. Data will also be restricted or deleted if a storage period prescribed by the aforementioned legal provision expires, unless there is a need for further storage of the data for the conclusion or fulfilment of a contract.
Collection and Processing of Personal Data Provided on and off the Website
Personal data is only collected if you or your employer provides it voluntarily, for example to place an order, respond to a survey, or register for personalized information or services. In our relationship with customers or prospects, partners and suppliers, they also provide us with business contact information (such as name, business contact details, position or title of their employees, contractors, advisors and authorized users) for purposes such as contract management, fulfillment, delivery of products and services, provision of support, invoicing and management of the services or the relationship. This Notice informs you of the intended purpose of processing your personal data and, if necessary, asks for your consent to process and store your data.
Axcelis also collects personal information from our employees and temporary staff which is used to engage in our employment and engagement relationships with them, and to perform our obligations to them.
The personal data collected on our websites will be used for responding to inquiries received via the Contact Us form or to subscribe to our emails via the Stay Updated form. If necessary, your data may be passed to an affiliated company within the Axcelis group of companies, which includes our parent and subsidiary companies, only. Your consent is required in order for us to use your data in a centrally managed contacts, prospects and customers database administered by the parent company in our corporate group, Axcelis Technologies, Inc. We use your data for the limited purpose of responding to your specific requests for information about our products and services, and to inform you of new products, promotions, and events that you may be interested in, based on your use of our websites. You can revoke your consent for us to use your data at any time, with immediate effect.
Your data is encrypted before transmission and processing in order to protect it from access by unauthorized persons. Please note that we cannot protect unencrypted e-mails that are sent through Axcelis’ website mail addresses.
Your data will not be sold, rented or made available to third parties in any way, other than described in this privacy notice. Personal data is only will be transferred to state institutions or authorities if there is a legal mandate to do so. Our employees, agencies and dealers are bound by us to the strictest confidentiality.
You can contact us via the website Contact Us form or Stay Updated email subscription form, or through direct e-mail addresses or telephone numbers provided on our website. The personal data transmitted when you contact us only will be used for the limited purposes of addressing your specific inquiry or request.
Our Contact Us form requests both required information and optional information. Optional information is requested so that we can provide the highest level of customer support. Providing either required or optional information on any of our forms is purely voluntary and acts as your consent to process such data. If you provide us with information that permits us to contact you, (e.g. e-mail address, telephone number), you are consenting to us contacting you via the information provided to respond to your request.
You can revoke your consent for us to contact you at any time, and your request will be honored immediately. Your consent and subscription options can be adjusted via unsubscribe links in our emails and/or by contacting us via the email addresses or telephone numbers provided on the Axcelis website.
Data Transmission to Other Group Companies
A transfer of your data to third parties outside Axcelis does not take place, unless we are legally obliged to do so, or the transfer of data is necessary for the execution of the contractual relationship, or you have previously expressly consented to the transfer of your data. External service providers and partner companies only receive your data if this is necessary to process your request. The scope of the transmitted data is limited to the required minimum. Service providers that come into contact with your personal data must comply with data protection laws in the same way. Such service providers may also have their own privacy policies, which apply to you.
Data Transmission to External Service Providers (Processor)
Your data will be passed on to service partners, provided that they work for and support Axcelis in providing its services, and provided that they comply with all data protection requirements worldwide.
Processing of your personal data by contracted service providers takes place in accordance with Art. 28 GDPR.
Service providers only have access to personal information that is absolutely necessary for the performance of their respective activities. Service providers are prohibited from disclosing your personal information or using it for other purposes, in particular for their own advertising purposes.
When Service Providers come into contact with your personal data, we ensure we and they have taken the necessary legal, technical and organizational measures to comply with the applicable data protection regulations.
Your personal data will not be disclosed to other companies for any commercial purpose without your express consent.
Website Optimization Tools (to be used as headlines to the individual trackers)
Under various global data protection laws, including Article 6 para. 1 lit f. GDPR in conjunction with Recital 47, direct marketing generally constitutes a legitimate interest that permits processing personal data that is provided voluntarily. Axcelis ensures it strikes a balance between your interests, fundamental rights and freedoms to control your personal data, and our legitimate business interest in advertising. By providing the comprehensive information about data collection in this Privacy Notice, and by guaranteeing your right to opt out (via link or browser settings) at any time, we believe the correct balance is struck.
We use so-called cookies in some areas of our pages. A cookie is a small text file that is placed on your hard drive by a website. Cookies do not cause any damage to your computer and do not contain any viruses. The cookies on our Internet pages do not collect any personal data. We use the information contained in cookies to make it easier for you to use our pages and to tailor them to your needs.
We use both session cookies and permanent cookies on our site. Session cookies are temporary cookies that are stored in the user’s Internet browser until the browser window is closed and the session cookies are deleted. Permanent cookies are used for repeated visits and stored in the user’s browser for a certain period of time (usually 1 year or longer). These cookies are not deleted when the browser is closed. This type of cookie is used to recall a user’s preferences when returning to the site.
All users may view our website without cookies. If you do not want cookies to be stored on your computer, you can deactivate the corresponding option in the system settings of your browser. You can delete saved cookies at any time in the system settings of your browser. You can find out how this works in detail from your browser manufacturer’s instructions. Our website may allow only limited use if cookies are disabled.
Google Analytics and Google Tag Manager
This website uses Google Analytics. At Axcelis’ request Google evaluates aggregate use of the website in order to compile anonymous reports about the website activities and to provide Axcelis with additional services to enhance the effectiveness of Axcelis’ website.
Axcelis uses the Google Tag Manager function. Google Tag Manager does not collect any personal data – the function makes it easier for Axcelis to integrate and manage our tags. Tags are small code elements used, among other things, to measure traffic and visitor behavior, to measure the impact of online advertising and social channels, to set up remarketing and targeting, and to test and optimize websites. We use the Tag Manager in conjunction with Google Services, Google Analytics and GA Audience. As noted above, you can deactivate this functionality (Google Tags, Google Services, Google Analytics and GA Audience) by deactivating Google Analytics. Deactivation of these functions may impact the responsiveness of our websites.
Axcelis uses Constant Contact, Inc. to facilitate permission-based e-marketing. Constant Contact helps Axcelis design email newsletters, share them on social networks, manage lists of contacts and marketing preferences, and track email campaign results, all of which is performed in accordance with Constant Contact’s Privacy Notice.
If you believe you have received unwanted, unsolicited messages sent from Axcelis or through Constant Contact, please forward a copy of that message with your comments to email@example.com for review.
Correspondence and Notifications
If you provide your email, or other contact information to Axcelis, we may use it to communicate with you via e-mail. If you wish to stop receiving emails from Axcelis, we will terminate the activity upon receipt of your request as per the CAN-SPAM act. All of our email correspondence will provide the ability for users to unsubscribe.
Social Media Bookmarks
Axcelis uses technical and organizational security measures to protect your data managed by us against accidental or intentional manipulation, loss, destruction or access by unauthorized persons. Our security measures are continuously improved according to technological developments.
When you transact business with Axcelis, our goal is to ensure that your information is transmitted across the web using certain security measures. We use Secure Sockets Layer (SSL) technology, which encrypts sensitive information such as your name, address, phone number, credit card, etc. The axcelis.com web site also uses digital certificates which allow your browser to confirm that the server you are transacting with is Axcelis’ server. During the transaction, the server is identified to your browser and the information is encrypted before your personal information is transmitted.
Access to your personal information is limited to Axcelis employees and its services providers as described above. All personal information is protected through password access, which is only made available to identified corporate users.
We actively monitor and enhance our security on an ongoing basis, implementing website security technologies such as secure servers, firewalls, and encryption of financial data, to protect the safety of your personal data.
Rights of the Data Subjects
If your personal data is processed, you are a data subject within the meaning of global data privacy laws and regulations, including the GDPR. As a data subject, you have the following rights against the controller:
- Right of Access (see, e.g., Art. 15 GDPR)
You can ask us to confirm whether or not we process your personal data. If we have processed your data, you have further rights to information. (See, e.g. Article 15 GDPR).
If the information we have collected from you is incorrect or incomplete, you may immediately request us to correct it. (See, e.g., Article 16 GDPR).
- Right to restriction of processing
You may also request that the processing of personal data concerning you be restricted. (See, e.g., Article 18 GDPR)
After the restriction, your data may only be processed with your consent or for the purpose of asserting, exercising or defending legal claims, or for the protection of the rights of another natural or legal person, or on grounds of an important public interest. We will inform you before the restriction is removed.
In certain cases, you can request us to delete your personal data immediately, unless there is an exception to the deletion obligation. (See, e.g. Art. 17 GDPR).
If you have exercised your right to rectification, erasure or restriction of processing, we are obliged under Article 19 GDPR to inform all recipients of your personal data of this, unless the notification is impossible or involves disproportionate effort. You also have the right to be informed of the recipients. The person responsible shall have the right to be informed of such recipients.
- Right to Data Portability
In addition, according to Article 20 GDPR, you have the right to receive personal data concerning you from us in a machine-readable format and to transmit the data to another controller without hindrance, provided that the requirements of Article 20 para. 1 lit. a GDPR are met, or to obtain that your personal data are transmitted directly by us to another controller, provided that this is technically feasible and no freedoms and rights of other persons are impaired thereby. This right shall not apply to the processing of personal data necessary for the performance of a task in the public interest or for the exercise of official authority.
You have the right to object to the processing of personal data Axcelis concerning you pursuant to Art. 6 para. 1 lit. f GDPR at any time.
We will no longer process your personal data, unless there are grounds for processing worthy of protection overriding your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
- Right to revoke the data protection declaration of consent
You have the right to revoke your data protection declaration of consent with a statement to Axcelis at any time. The revocation of consent shall not affect the legality of the processing carried out on the basis of the consent until revocation.
- Right to lodge a complaint with a supervisory authority
You have the right, at all times, without prejudice to any other administrative or judicial remedy, to lodge a complaint with a supervisory authority, in particular in the EU Member State of your place of residence, of work or of the place of suspected infringement, if you consider that the processing of personal data concerning them is contrary to the GDPR.
Data protection information according to EU data protection basic regulation
In addition to these website-specific data protection notices, the data protection notices in accordance with the EU Basic Data Protection Regulation also apply. Following you can find data protection notices for German customers, business partners and candidates:
Changes to this Privacy Notice
This Privacy Notice is constantly being adapted in the course of the further development of the Internet or our website. Changes will be announced on this page in time. In order to keep up to date with the current status of our data usage regulations, please check this page regularly.
If you have questions or comments about this Privacy Notice please email PrivacyNotice@Axcelis.com You privacy is important to us and we will make every effort to address your concerns.
Contact Details of the Personal Information Controllers
Axcelis Technologies, Inc.
Lynnette C. Fallon, Executive Vice President and General Counsel108 Cherry Hill Drive
Beverly, MA 01915-1053
The representative of the controller in accordance with Article 27 GDPR is:
Axcelis Technologies GmbH
Geschäftsführer: Mary Puma, Andreas Lantenhammer
Data Protection Officer
For questions concerning the processing of personal data within the Framework of the GDPR and under German law, please contact:
Data Protection Officer
PRODATIS CONSULTING AG
Phone: +49 351 266 23 30