Privacy policy

 Robert Bosch Power Tools GmbH (hereinafter referred to as "Bosch" or "We" or "Us") appreciates your interest in our company and our products and your visit to our website, social media profiles, and mobile applications (collectively "Online Offerings").

 

2. Bosch Power Tools respects your privacy

Protecting your privacy when processing personal data as well as the security of all business data are important concerns for us, which we take into account in our business processes. We process personal data collected during your visit to our online offers confidentially and only in accordance with legal requirements.

Data protection and information security are part of our corporate policy.

 

3. Controller

We are the Controller for the data processing described below,

 

Robert Bosch Power Tools GmbH, Max-Lang-Strasse 40-46, 70771 Leinfelden-Echterdingen, kontakt@bosch.de ("Bosch PT")

 

and in part the operator of the LinkedIn platform, LinkedIn Ireland Unlimited Company Wilton Plaza, Gardner House 4,5,6 2 Dublin, Ireland ("Platform").

 

and in part the corporate influencer represented on the profile

 

Theunissen, Kim, Max-Lang-Strasse 40-46, 70771 Leinfelden-Echterdingen, kontakt@bosch.de ("Influencer").

 

collectively "the Parties"

 

For certain processing operations, we and the represented Corporate Influencer also act as joint controllers within the meaning of Article 26 of the GDPR.

 

We set out the responsibilities in more detail below:

 

3.1 Our Responsibilities

a) Principles

Personal data is any information relating to an identified or identifiable natural person, for example, names, addresses, telephone numbers, email addresses, contractual, booking and billing data that is an expression of a person's identity.

We collect, process and use personal data (including IP addresses) only if there is a legal basis for doing so.

 

b) Categories of data processed

The following categories of data are processed:

- Communication data (e.g. name, e-mail address) and all other personal data that you may leave us voluntarily in the course of contacting us via private message on the platform or in the form of commented posts/comments or reactions and that are purely in the business interest of Bosch.

(Legal basis: legitimate interest to represent our company and to conduct public relations, or to contact customers and interested parties of our company).

 

- To investigate malfunctions and for safety reasons

 

(Legal basis: fulfillment of our legal obligations in the area of data security and legitimate interest in the elimination of malfunctions and the security of our offerings).

 

- Preservation and defense of our rights

(Legal basis: Legitimate interest on our part in asserting and defending our rights).

We only reserve the right to delete content or have it deleted if this should be necessary. If applicable, we share your content on our site if this is a function of the platform and communicate with you via the platform.

 

3.2 Responsibility of the platform operators

We have no influence on the data processing by the platform operators (e.g. management of members and the shared information and account creation).

 

The platform operator operates the entire IT infrastructure of the service, maintains its own data protection provisions and maintains its own user or member relationship with you as soon as you create an account with the platform or perform actions on the platform. The platform operator therefore acts as an independent data controller.

 

For more information on data processing by the platform provider and your rights in this regard, please refer to the provider's privacy policy:

- LinkedIn: https://www.linkedin.com/legal/privacy-policy?_l=de_DE

Please note that we have no influence on the recipients to whom the platform operator passes on your data. As a rule, the platform operator will also process your data on servers in third countries, in particular in the USA and the United Kingdom. The level of data protection in these countries may be lower than that in Germany. And data subject rights may not be granted and exercised as in Germany.

 

3.3 Responsibility of the Corporate Influencer.

In addition to content created and published for and with Bosch PT, the Influencer also uses the profile for purely private content and communication.

In doing so, the Influencer may also contact you. The Corporate Influencer is solely responsible for the associated communication and data processing.

 

3.4 Joint responsibility, Art. 26 (1) DSGVO

There is no joint responsibility with the platform operator in relation to the Corperate Influencer Profile, as we do not use any so-called "Insight" functions for the profile. As already explained in 3.2, there is separate responsibility for the platform operator.

 

In addition to the separate responsibility explained in 3.3, there is a relationship with the corporate influencer pursuant to Article 26(1) of the GDPR (joint responsibility):

Here is a detailed overview of the joint data processing activities and responsibilities of the parties:

Data Processing:

 

Data processing:

 

Accountabilityt:

Communicate and interact with visitors and interested parties of the profile related to posts, interaction and matters of mutual interest.

Bosch PT and Influencer

 

What does this mean for you as a data subject?

 

What does this mean for you as a data subject?

In addition to the responsibilities set out above, the following applies:

- Bosch PT and the Influencer shall provide you, as a data subject, with the information required by Articles 13 and 14 GDPR in a precise, transparent, understandable and easily accessible form in clear and simple language, free of charge. Each party shall provide the other party with all required information from its area of activity.

- Bosch PT and the Influencer shall inform each other without delay of the data subject rights asserted by you as a data subject. They shall provide each other with all information necessary to respond to your requests for information.

- You may assert your data subject rights directly against either party at any time, and the response to data subject rights for the Influencer, will be carried out by Bosch PT.

 

4. Disclosure of data to other data Controllers.

As a matter of principle, we will only transfer your personal data to other Controllers if this is necessary for the performance of the contract, if we or the third party have a legitimate interest in the transfer, or if we have your consent to do so. In addition, data may be transferred to other Controllers insofar as we are obliged to do so by law or by enforceable official or court order.

 

4.1 Service providers (general)

We commission external service providers with tasks such as website design. We have carefully selected these service providers and monitor them regularly, in particular their careful handling and safeguarding of the data stored by them. All service providers are obligated by us to maintain confidentiality and to comply with legal requirements. Service providers may also be other companies of the Bosch Group.

 

4.2 Transfer to recipients outside the EEA

We may also disclose personal data to recipients located outside the EEA in so-called third countries. In this case, we ensure before the transfer that either an adequate level of data protection exists at the recipient or that your consent to the transfer has been obtained.

You can obtain from us an overview of the recipients in third countries and a copy of the specifically agreed arrangements for ensuring an adequate level of data protection. Please use the information in the Contact section for this purpose.

 

5. Duration of storage; retention periods

We generally store your data for as long as it is required to provide our service or we have a legitimate interest in continuing to store it. Afterwards, we delete your personal data with the exception of data that we must continue to store in order to fulfill legal obligations. We only have influence on data which is within our sphere of influence, e.g. direct messages which you transmit to us via the platform. The deletion of account and membership data is the sole responsibility of the platform operator.

 

6. External Links

Our online offer may contain links to Internet pages of third parties, providers not affiliated with us. After clicking on the link, we no longer have any influence on the collection, processing and use of any personal data transmitted to the third party when the link is clicked on (such as the IP address or the URL of the page on which the link is located), as the behavior of third parties is naturally beyond our control. We do not assume any responsibility for the processing of such personal data by third parties.

 

7. Security

Our employees and the service companies contracted by us are obliged to maintain confidentiality and to comply with the provisions of the applicable data protection laws. We take all necessary technical and organizational measures to ensure an adequate level of protection and to protect your data managed by us in particular against the risks of accidental or unlawful destruction, manipulation, loss, alteration or unauthorized disclosure or access. Our security measures are constantly being improved in line with technological developments.

 

8. User rights

Please use the information in the Contact Us section to assert your rights. Please make sure that we are able to clearly identify you.

 

Right to information and disclosure

You have the right to receive information from us about the processing of your data. To this end, you can assert a right to information with regard to the personal data we process about you.

Right of correction and deletion

Please use the information in the Contact section to assert your rights. Please make sure that we can clearly identify you.

Right to information and disclosure

You have the right to receive information from us about the processing of your data. To this end, you can assert a right to information with regard to the personal data we process about you.

Right of correction and deletion

You may request us to correct incorrect data. Insofar as the legal requirements are fulfilled, you may request the completion or deletion of your data.

This does not apply to data that is required for billing and accounting purposes or is subject to the legal obligation to retain data. However, if access to such data is not required, its processing will be restricted (see below).

Restriction of processing

You may request us - provided that the legal requirements are met - to restrict the processing of your data.

Data portability

Insofar as the legal requirements are met, you may request that data you have provided to us be transferred in a structured, common and machine-readable format or - insofar as technically feasible - that the data be transferred to a third party.

Objection to data processing on the legal basis of "legitimate interest"

In addition, you have the right to object to data processing by us at any time, insofar as this is based on the legal basis of "legitimate interest". We will then stop processing your data unless we can prove - in accordance with the legal requirements - compelling reasons for further processing that are worthy of protection and which outweigh your rights

Revocation of consent

If you have given us consent to process your data, you can revoke this consent at any time with effect for the future. The lawfulness of the processing of your data until the revocation remains unaffected.

9. Right of complaint to the supervisory authority

You have the right to file a complaint with a data protection authority. To do so, you can contact the data protection authority responsible for your place of residence or federal state or the data protection authority responsible for us. This is:

The State Commissioner for Data Protection and Freedom of Information of Baden-Württemberg.

Address:

Lautenschlagerstraße 20

70173 Stuttgart

GERMANY

 

Postal address:

PO Box 10 29 32

70025 Stuttgart

GERMANY

phone: 0711/615541-0

FAX: 0711/615541-15

e-mail: poststelle@lfdi.bwl.de

 

10. Change of the data protection notice

We reserve the right to change our security and data protection measures. In these cases, we will also adapt our data protection information accordingly. Therefore, please refer to the current version of our data protection notice.

 

11. Contact

If you would like to contact us, you can reach us at the address given in the "Controller" section.

To assert your rights, use the following link: https://request.privacy-bosch.com/entity/PTDE/?app=3e8c6be4-83b0-4e41-96f0-c591f6bdc4fe.

To report data protection incidents, use the following link:

https://www.bkms-system.net/bosch-datenschutz.

For suggestions and complaints regarding the processing of your personal data, we recommend that you contact our data protection officer:

Data Protection Officer

Bosch Group Information Security and Privacy Department (C/ISP)

P.O. Box 30 02 20

70442 Stuttgart

GERMANY

 

Or

mailto: DPO@bosch.com

 

Status: December 2022

Privacy policy

 Robert Bosch Power Tools GmbH (hereinafter referred to as "Bosch" or "We" or "Us") appreciates your interest in our company and our products and your visit to our website, social media profiles, and mobile applications (collectively "Online Offerings").

 

2. Bosch Power Tools respects your privacy

Protecting your privacy when processing personal data as well as the security of all business data are important concerns for us, which we take into account in our business processes. We process personal data collected during your visit to our online offers confidentially and only in accordance with legal requirements.

Data protection and information security are part of our corporate policy.

 

3. Controller

We are the Controller for the data processing described below,

 

Robert Bosch Power Tools GmbH, Max-Lang-Strasse 40-46, 70771 Leinfelden-Echterdingen, kontakt@bosch.de ("Bosch PT")

 

and in part the operator of the LinkedIn platform, LinkedIn Ireland Unlimited Company Wilton Plaza, Gardner House 4,5,6 2 Dublin, Ireland ("Platform").

 

and in part the corporate influencer represented on the profile

 

Bohn, Carolin, Max-Lang-Strasse 40-46, 70771 Leinfelden-Echterdingen, kontakt@bosch.de ("Influencer").

 

collectively "the Parties"

 

For certain processing operations, we and the represented Corporate Influencer also act as joint controllers within the meaning of Article 26 of the GDPR.

 

We set out the responsibilities in more detail below:

 

3.1 Our Responsibilities

a) Principles

Personal data is any information relating to an identified or identifiable natural person, for example, names, addresses, telephone numbers, email addresses, contractual, booking and billing data that is an expression of a person's identity.

We collect, process and use personal data (including IP addresses) only if there is a legal basis for doing so.

 

b) Categories of data processed

The following categories of data are processed:

- Communication data (e.g. name, e-mail address) and all other personal data that you may leave us voluntarily in the course of contacting us via private message on the platform or in the form of commented posts/comments or reactions and that are purely in the business interest of Bosch.

(Legal basis: legitimate interest to represent our company and to conduct public relations, or to contact customers and interested parties of our company).

 

- To investigate malfunctions and for safety reasons

 

(Legal basis: fulfillment of our legal obligations in the area of data security and legitimate interest in the elimination of malfunctions and the security of our offerings).

 

- Preservation and defense of our rights

(Legal basis: Legitimate interest on our part in asserting and defending our rights).

We only reserve the right to delete content or have it deleted if this should be necessary. If applicable, we share your content on our site if this is a function of the platform and communicate with you via the platform.

 

3.2 Responsibility of the platform operators

We have no influence on the data processing by the platform operators (e.g. management of members and the shared information and account creation).

 

The platform operator operates the entire IT infrastructure of the service, maintains its own data protection provisions and maintains its own user or member relationship with you as soon as you create an account with the platform or perform actions on the platform. The platform operator therefore acts as an independent data controller.

 

For more information on data processing by the platform provider and your rights in this regard, please refer to the provider's privacy policy:

- LinkedIn: https://www.linkedin.com/legal/privacy-policy?_l=de_DE

Please note that we have no influence on the recipients to whom the platform operator passes on your data. As a rule, the platform operator will also process your data on servers in third countries, in particular in the USA and the United Kingdom. The level of data protection in these countries may be lower than that in Germany. And data subject rights may not be granted and exercised as in Germany.

 

3.3 Responsibility of the Corporate Influencer.

In addition to content created and published for and with Bosch PT, the Influencer also uses the profile for purely private content and communication.

In doing so, the Influencer may also contact you. The Corporate Influencer is solely responsible for the associated communication and data processing.

 

3.4 Joint responsibility, Art. 26 (1) DSGVO

There is no joint responsibility with the platform operator in relation to the Corperate Influencer Profile, as we do not use any so-called "Insight" functions for the profile. As already explained in 3.2, there is separate responsibility for the platform operator.

 

In addition to the separate responsibility explained in 3.3, there is a relationship with the corporate influencer pursuant to Article 26(1) of the GDPR (joint responsibility):

Here is a detailed overview of the joint data processing activities and responsibilities of the parties:

Data Processing:

 

Data processing:

 

Accountabilityt:

Communicate and interact with visitors and interested parties of the profile related to posts, interaction and matters of mutual interest.

Bosch PT and Influencer

 

What does this mean for you as a data subject?

 

What does this mean for you as a data subject?

In addition to the responsibilities set out above, the following applies:

- Bosch PT and the Influencer shall provide you, as a data subject, with the information required by Articles 13 and 14 GDPR in a precise, transparent, understandable and easily accessible form in clear and simple language, free of charge. Each party shall provide the other party with all required information from its area of activity.

- Bosch PT and the Influencer shall inform each other without delay of the data subject rights asserted by you as a data subject. They shall provide each other with all information necessary to respond to your requests for information.

- You may assert your data subject rights directly against either party at any time, and the response to data subject rights for the Influencer, will be carried out by Bosch PT.

 

4. Disclosure of data to other data Controllers.

As a matter of principle, we will only transfer your personal data to other Controllers if this is necessary for the performance of the contract, if we or the third party have a legitimate interest in the transfer, or if we have your consent to do so. In addition, data may be transferred to other Controllers insofar as we are obliged to do so by law or by enforceable official or court order.

 

4.1 Service providers (general)

We commission external service providers with tasks such as website design. We have carefully selected these service providers and monitor them regularly, in particular their careful handling and safeguarding of the data stored by them. All service providers are obligated by us to maintain confidentiality and to comply with legal requirements. Service providers may also be other companies of the Bosch Group.

 

4.2 Transfer to recipients outside the EEA

We may also disclose personal data to recipients located outside the EEA in so-called third countries. In this case, we ensure before the transfer that either an adequate level of data protection exists at the recipient or that your consent to the transfer has been obtained.

You can obtain from us an overview of the recipients in third countries and a copy of the specifically agreed arrangements for ensuring an adequate level of data protection. Please use the information in the Contact section for this purpose.

 

5. Duration of storage; retention periods

We generally store your data for as long as it is required to provide our service or we have a legitimate interest in continuing to store it. Afterwards, we delete your personal data with the exception of data that we must continue to store in order to fulfill legal obligations. We only have influence on data which is within our sphere of influence, e.g. direct messages which you transmit to us via the platform. The deletion of account and membership data is the sole responsibility of the platform operator.

 

6. External Links

Our online offer may contain links to Internet pages of third parties, providers not affiliated with us. After clicking on the link, we no longer have any influence on the collection, processing and use of any personal data transmitted to the third party when the link is clicked on (such as the IP address or the URL of the page on which the link is located), as the behavior of third parties is naturally beyond our control. We do not assume any responsibility for the processing of such personal data by third parties.

 

7. Security

Our employees and the service companies contracted by us are obliged to maintain confidentiality and to comply with the provisions of the applicable data protection laws. We take all necessary technical and organizational measures to ensure an adequate level of protection and to protect your data managed by us in particular against the risks of accidental or unlawful destruction, manipulation, loss, alteration or unauthorized disclosure or access. Our security measures are constantly being improved in line with technological developments.

 

8. User rights

Please use the information in the Contact Us section to assert your rights. Please make sure that we are able to clearly identify you.

 

Right to information and disclosure

You have the right to receive information from us about the processing of your data. To this end, you can assert a right to information with regard to the personal data we process about you.

Right of correction and deletion

Please use the information in the Contact section to assert your rights. Please make sure that we can clearly identify you.

Right to information and disclosure

You have the right to receive information from us about the processing of your data. To this end, you can assert a right to information with regard to the personal data we process about you.

Right of correction and deletion

You may request us to correct incorrect data. Insofar as the legal requirements are fulfilled, you may request the completion or deletion of your data.

This does not apply to data that is required for billing and accounting purposes or is subject to the legal obligation to retain data. However, if access to such data is not required, its processing will be restricted (see below).

Restriction of processing

You may request us - provided that the legal requirements are met - to restrict the processing of your data.

Data portability

Insofar as the legal requirements are met, you may request that data you have provided to us be transferred in a structured, common and machine-readable format or - insofar as technically feasible - that the data be transferred to a third party.

Objection to data processing on the legal basis of "legitimate interest"

In addition, you have the right to object to data processing by us at any time, insofar as this is based on the legal basis of "legitimate interest". We will then stop processing your data unless we can prove - in accordance with the legal requirements - compelling reasons for further processing that are worthy of protection and which outweigh your rights

Revocation of consent

If you have given us consent to process your data, you can revoke this consent at any time with effect for the future. The lawfulness of the processing of your data until the revocation remains unaffected.

9. Right of complaint to the supervisory authority

You have the right to file a complaint with a data protection authority. To do so, you can contact the data protection authority responsible for your place of residence or federal state or the data protection authority responsible for us. This is:

The State Commissioner for Data Protection and Freedom of Information of Baden-Württemberg.

Address:

Lautenschlagerstraße 20

70173 Stuttgart

GERMANY

 

Postal address:

PO Box 10 29 32

70025 Stuttgart

GERMANY

phone: 0711/615541-0

FAX: 0711/615541-15

e-mail: poststelle@lfdi.bwl.de

 

10. Change of the data protection notice

We reserve the right to change our security and data protection measures. In these cases, we will also adapt our data protection information accordingly. Therefore, please refer to the current version of our data protection notice.

 

11. Contact

If you would like to contact us, you can reach us at the address given in the "Controller" section.

To assert your rights, use the following link: https://request.privacy-bosch.com/entity/PTDE/?app=3e8c6be4-83b0-4e41-96f0-c591f6bdc4fe.

To report data protection incidents, use the following link:

https://www.bkms-system.net/bosch-datenschutz.

For suggestions and complaints regarding the processing of your personal data, we recommend that you contact our data protection officer:

Data Protection Officer

Bosch Group Information Security and Privacy Department (C/ISP)

P.O. Box 30 02 20

70442 Stuttgart

GERMANY

 

Or

mailto: DPO@bosch.com

 

Status: December 2022