Thank you for visiting the websites and mobile applications (also referred to jointly as the “online service”) of Bosch Power Tools GmbH (hereinafter referred to as “Bosch Power Tools” or “we” or “us”) and for your interest in our company and products.
For us, the protection of your privacy during the processing of personal data and the security of all business data are important matters which we take into account in our business processes. We process the personal data that is collected when you visit our online service confidentially and strictly in accordance with statutory regulations.
Data protection and information security form an integral part of our company policy.
The controller responsible for processing your data is Bosch Power Tools; any exceptions are clearly indicated in this Data Protection Note.
Our contact details are as follows:
Robert Bosch Power Tools GmbH, Max-Lang-Straße 40-46, 70771 Leinfelden-Echterdingen, Germany, firstname.lastname@example.org.
We process the following categories of data:
Personal data is all information that relates to an identified or identifiable natural person, for example names, addresses, telephone numbers, e-mail addresses and contractual, accounting and billing information, that expresses an individual's identity.
We only collect, process and use personal data (including IP addresses) if there is a legal basis to do so or you have granted us your consent to do so, for example during registration.
We, and the service providers we engage, process your personal data for the following purposes:
4.3.1 Provision of this online service
(Legal basis: Consent/our legitimate interest in direct marketing provided it complies with data protection and competition regulations.)
4.3.2 Identification of defects and for security reasons
(Legal bases: To fulfil our legal obligations regarding data security, and our legitimate interest in eliminating defects and ensuring the security of our services.)
4.3.3 Safeguarding and defending our rights
(Legal basis: Our legitimate interest in asserting and defending our rights).
Every time you use the Internet, your web browser automatically transfers certain information, which we store in “log files”.
We store the log files for 30 days in order to identify defects and for security reasons (e.g. for information on hacking attempts), and then delete them. Log files that need to be stored for a longer period for evidence purposes are not deleted until the incident in question has been fully clarified and may be passed on to investigation authorities in individual cases.
The following information is stored in log files:
- IP address (Internet protocol address) of the device from which the online service is accessed;
- Internet address of the website from which the online service is accessed (referrer URL);
- Name of the files or information retrieved;
- Date, time and duration of the visit;
- Operating system and information about the web browser used including any add-ons installed (e.g. for Flash Player);
- Http status code (e.g. “request successful” or “requested file not found”).
This online service is not suitable for children under the age of 16.
We will only ever pass on your personal data to other controllers if this is necessary in order to perform the contract, if we or the third party have/has a legitimate interest in passing on the data, or if you have granted your consent to this. Details about the legal bases and recipients and/or categories of recipients are provided in the “Processing purposes and legal bases” section.
In addition, data can be passed on to other controllers if we are obliged to do so on the basis of legal provisions or enforceable official or judicial orders.
4.6.1 Service providers (general)
We commission external service providers to perform tasks such as programming and data hosting. We have selected these service providers with care and monitor them on a regular basis, particularly with regard to the careful handling and safeguarding of the data they store. All the service providers are required by us to maintain confidentiality and comply with statutory requirements. Service providers may also be other companies in the Bosch Group.
We store your data for as long as necessary to provide our online services and the services associated with them, or for as long as we have a legitimate interest in storing it further (e.g. we may still have a legitimate interest in postal marketing even after the contract has been performed). After this time, we will erase your personal data, with the exception of the data that we must continue storing in order to comply with legal obligations (e.g. due to retention periods under tax and commercial law, we are obliged to retain, for example, contracts and invoices for a certain period).
Our online service may contain links to third-party websites, i.e. providers not affiliated with us. After you have clicked the link, we have no further control over the collection, processing and use of any of the personal data (such as IP address or URL of the page containing the link) transmitted to the third party when the link is clicked, since the conduct of third parties is clearly beyond our control. We accept no responsibility for the processing of this personal data by third parties.
Our employees and the service providers we commission are committed to maintaining confidentiality and complying with the provisions of the applicable data protection laws.
We take all necessary technical and organisational measures to guarantee an adequate level of protection and to protect your data that is managed by us, particularly against risks from unintentional or unlawful destruction, manipulation, loss, alteration or unauthorised disclosure or access. Our security measures are constantly being improved in line with technological developments.
To exercise your rights, please use the details in the Contact section. When doing so, please ensure that we can clearly identify you.
Right to information and right of access by the data subject:
You have the right to receive information from us about the processing of your data. In this respect, you can exercise your right to obtain information about the personal data concerning you that we process.
Right to rectification and erasure:
You can demand that we rectify incorrect data and – provided the legal requirements are met – complete or erase your data.
This does not apply to data that is required for invoicing and accounting purposes, or that is subject to the statutory retention obligation. If access to such data is not required, any processing of it will, however, be restricted (see below).
Restriction of processing:
Provided the legal requirements are met, you can demand that we restrict the processing of your data.
You also have the right to receive data, which you have provided to us, in a structured, commonly used and machine-readable format and, where technically possible, have the right to transmit that data to a third party.
You have the right to lodge a complaint with a data protection authority. To this end, you can contact the data protection authority responsible for your place of residence or federal state or the data protection authority responsible for us. This is:
Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit
Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit Baden-Württemberg
70173 Stuttgart, Germany
Postfach 10 29 32
70025 Stuttgart, Germany
Tel.: +49 (0) 711/615541-0
FAX: +49 (0) 711/615541-15
We reserve the right to change our security and data protection measures. In such cases, we will also amend our data protection information accordingly. Therefore please observe the latest version of our Data Protection Note.
If you would like to contact us, you can use the address given in the “Controller” section.
Please use the following link to exercise your rights and report data protection incidents:
For suggestions and complaints with regard to how your personal data is processed, we recommend that you contact our Data Protection Officer:
Abteilung Informationssicherheit und Datenschutz Bosch-Gruppe (C/ISP)
Postfach 30 02 20
Date of last revision: 27.09.2019