1. Data Protection Notice
sia Abrasives Industries AG (hereinafter referred to as “sia Abrasives” or “we” or “us”) welcomes you to
our websites
and mobile applications (also referred to jointly as “Online Services”). Thank you for your interest in
our company and
our products.
2. sia Abrasives respects your privacy
For us, the protection of your privacy during the processing of personal data and the security of all
business data are
important matters which we take into account in our business processes. We process the personal data
that is collected
when you visit our Online Services confidentially and only in accordance with statutory regulations.
Data protection and information security are included in our corporate policy.
3. Controller
sia Abrasives Industries AG is the controller responsible for processing your data; any exceptions are
outlined in this
Data Protection Notice.
Our contact details are as follows:
sia Abrasives Industries AG
Mühlewiesenstrasse 20, 8501 Frauenfeld, Switzerland
E-mail:
communications@sia-abrasives.com
Tel.: +41 (0) 52 724 41 11
4. Collection, processing and use of personal data
4.1 Categories of processed data
We process the following categories of data:
4.2 Basic principles
Personal data is all information that relates to an identified or identifiable natural person, for example names, addresses, telephone numbers, e-mail addresses and contractual, accounting and billing information, that expresses an individual's identity.
We collect, process and use personal data (including IP addresses) only if there is a legal basis to do so or if you have given us your consent to do so, e.g. during registration.
4.3 Processing purposes and legal bases
We, and the service providers we engage, process your personal data for the following purposes:
4. Registration
If you wish to use our services which require entering into a contract, you will need to register.
During registration,
we collect the personal data necessary for entering into and fulfilment of the contract (e.g. first
name, last name,
date of birth, e-mail address, if applicable, details on the preferred payment method or on the account
holder) as well
as further data on a voluntary basis, if applicable. Mandatory information is marked with an *.
4.5 Log files
Every time you use the Internet, your web browser automatically transfers certain information, which we
store in “log
files”.
We store the log files for 7 days in order to determine service disruptions and for security reasons (e.g. to investigate hacking attempts), and then delete them. Log files that need to be stored for a longer period for evidence purposes are not deleted until the incident in question has been fully clarified and may be passed on to investigating authorities on a case-by-base basis.
Log files (without an IP address or with a partial IP address) are also used for analysis purposes under the conditions set out in the “Advertising and/or market research (including web analysis, without customer surveys)” section. The following information in particular is stored in log files:
4.6 Children
These Online Services are not intended for children under the age of 16.
4.7 Forwarding data to other controllers
We will only ever pass on your personal data to other controllers if this is necessary for fulfilment of
the contract,
if we or the third party have/has a legitimate interest in passing on the data, or if you have granted
your consent to
this. Details about the legal bases are provided in the “Processing purposes and legal bases” section.
Third parties may
also be other companies in the Bosch Group. Passing on data to third parties on the basis of a
legitimate interest is
explained in this Data Protection Notice.
In addition, data can be passed on to other controllers if we are obliged to do so on the basis of statutory provisions or enforceable official or judicial orders.
4.7.1 Service providers (general)
We commission external service providers to perform tasks such as programming, data hosting and hotline
services. We
have selected these service providers with care and monitor them on a regular basis, particularly with
regard to the
careful handling and safeguarding of the data they store. All the service providers are required by us
to maintain
confidentiality and comply with statutory provisions. Service providers may also be other companies in
the Bosch Group.
4.8 Transmission to recipients outside the EEA
We may also transmit personal data to recipients based outside of the EEA, in so-called third countries.
In this case,
we shall ensure before transmission that an appropriate level of data protection exists at the recipient
or that you
consent to the transmission of this data.
We are happy to provide you with an overview of the recipients in third countries and a copy of the specific provisions agreed to ensure an appropriate level of data protection. To do this, please use the details in the Contact section.
4.9 Duration of storage; retention periods
We store your data for as long as necessary to provide our Online Services and the services associated
with them, or for
as long as we have a legitimate interest in storing it further (e.g. we may still have a legitimate
interest in postal
marketing even after the contract has been fulfilled). In all other cases, we delete your personal data,
with the
exception of the data we are obliged to store for longer in order to fulfil legal obligations (e.g. we
are obliged to
retain documents such as contracts and invoices for a specific period of time due to fiscal and
commercial retention
period regulations).
5. Use of cookies
Cookies and tracking mechanisms may be used in the context of providing our Online Services. Cookies are
small text
files that may be stored on your end device when you visit our Online Services. Tracking is made
possible by various
different technologies. We process information using pixel technology and log file analysis in
particular.
5.1 Categories
We distinguish between cookies that are essential in order to enable use of the Online Services and its
features, and
cookies and tracking mechanisms that are not strictly necessary to the functioning of the Online
Services.
Online Services can still generally be used without cookies that are not strictly necessary.
5.1.1 Strictly necessary cookies
Strictly necessary cookies are cookies without which the functions and features of the Online Services
cannot be
provided. These include, for example, cookies that store information in order to guarantee flawless
playback of video or
audio content.
These cookies are deleted when you leave the website.
6. External links
Our Online Services may contain links to third-party websites, i.e. providers not affiliated with us. After you have clicked the link, we have no further control over the collection, processing and use of any of the personal data (such as IP address or URL of the page containing the link) transmitted to the third party when the link is clicked, since the conduct of third parties is clearly beyond our control. We accept no responsibility for the processing of this personal data by third parties.
7. Security
Our employees and the service providers we commission are committed to maintaining confidentiality and
complying with
the provisions of the applicable data protection laws.
We take all necessary technical and organisational measures to guarantee an adequate level of protection
and to protect
your data that is managed by us, particularly against risks from unintentional or unlawful destruction,
manipulation,
loss, alteration or unauthorised disclosure or access. Our security measures are constantly being
improved in line with
technological developments.
8. User rights
To exercise your rights, please use the details in the Contact section. When doing so, please ensure
that we can clearly
identify you.
8.1 Right to information and right of access by the data subject:
You have the right to receive information from us about the processing of your data. In this respect,
you can exercise
your right to obtain information about the personal data concerning you that we process.
8.2 Right to rectification and erasure:
You can demand that we rectify incorrect data. Provided the statutory provisions are met, you can demand
the completion
or erasure of your data.
This does not apply to data that is required for invoicing and accounting purposes, or that is subject
to the statutory
retention obligation. If access to such data is not required, any processing of it will, however, be
restricted (see
below).
8.3 Restriction of processing:
Provided the statutory provisions are met, you can demand that we restrict the processing of your data.
8.4 Data portability
Provided the statutory provisions are met, you also have the right to receive data, which you have
provided to us, in a
structured, commonly used and machine-readable format and, where technically possible, have the right to
transmit that
data to a third party.
8.5 Objection to direct marketing:
In addition, you can object at any time to the processing of your personal data for marketing purposes
(“objection to
marketing”). Please note that, for organisational reasons, there may be an overlap between the
submission of your
objection and the use of your data during a campaign that is already ongoing.
8.6 Objection to data processing where the legal basis is a legitimate
interest:
You also have the right to object at any time to data processing by us if the data processing is based
on a legitimate
interest. We will then stop processing your data unless we can demonstrate – in accordance with
statutory provisions –
compelling legitimate grounds for the processing that override your rights.
8.7 Withdrawal of consent:
If you have given us your consent to process your data, you can withdraw it at any time with effect for
the future. This
will not affect the lawfulness of processing before the withdrawal.
9. Right to lodge a complaint with the supervisory authority:
You have the right to lodge a complaint with a data protection authority. To this end, you can contact
the data
protection authority responsible for your place of residence or the data protection authority
responsible for us.
This is:
Eidgenössischer Datenschutz- und Öffentlichkeitsbeauftragter (Office of the Federal Data Protection and Information Officer)
Address:
Eidgenössischer Datenschutz- und Öffentlichkeitsbeauftragter (Office of the Federal Data Protection and Information Officer)
Feldeggweg 1
3003 Bern
SWITZERLAND
Tel.: +41 (0) 58 462 43 95
Fax: +41 (0) 58 465 99 96
10. Changes to the Data Protection Notice
We reserve the right to change our security and data protection measures if required due to technical
developments. In
such cases, we will also amend our Data Protection Notice accordingly. Therefore please observe the
latest version of
our Data Protection Notice.
11. Contact
If you wish to contact us, you can use the address given in the
“Controller” section.
To assert your rights, click on the following link:
https://request.privacy-bosch.com/
To report a data protection incident, click on the following link:
https://www.bkms-system.net/bosch-datenschutz .
For suggestions and complaints with regard to how your personal data is processed, we recommend that you contact our Data Protection Officer:
Datenschutzbeauftragter
Abteilung Informationssicherheit und Datenschutz Bosch-Gruppe (C/ISP)
Postfach 30 02 20
70442 Stuttgart
GERMANY
or
mailto: DPO@bosch.com
Date of last revision: 23.07.2021 / ath