Robert Bosch (South East Asia) Pte. Ltd. and its subsidiaries and related companies in ASEAN (‘Robert Bosch Singapore’, ‘we’, ‘us’ ‘our’, etc.) take the protection of your personal data very seriously. Consequently, data protection and information security are an integral part of our corporate policy for ASEAN.
| ‘Personal data’ means all the information that relates to an identified or identifiable natural person (that is, an individual) – for example, your name, telephone number, email address and street / mailing address. |
In this Privacy Policy, we set out information about how we process personal data if and when we collect personal data about you in connection with providing you with our products and/or services or otherwise do business with you and when you use our online service. (Our website may include links to third party websites. They are not covered by this Privacy Policy. Please check the third party website for information about how they may process personal data.)
This Privacy Policy does not include how we process personal data in connection with recruitment, human resources management and ex-employees. If you would like information about how we process personal data for these categories of individuals, please email asean.dpo@sg.bosch.com and we will be happy to send you a copy of it.
We have written this Privacy Policy in a way that is straightforward and easy for you to understand. You are welcome to read it from end-to-end. Otherwise, you may like to click on a link below to take you directly to the parts of it that are most relevant to you.
For general information about how we process personal data, how we keep it secure, when we dispose of personal data and when we transfer it overseas click here (general information), here (security), here (disposal) and here (overseas transfer).
To find information relevant to your relationship with us, click on:
To find information about your rights, click on:
Some countries in ASEAN do not yet have data protection laws. If you live in such a country we generally aim to protect your personal data as if there were data protection laws that apply to you.
The data protection laws in some countries in ASEAN are different from the data protection laws in other countries in ASEAN. We generally aim to protect your personal data as if the strictest standard of data protection law applies to you.
We collect personal data about you only for specific and legitimate purposes. We notify you about those purposes and we process such personal data only in ways that are compatible with the specific and legitimate purposes that we tell you about. We process personal data about you lawfully and fairly.
We only collect personal data about you that is adequate and not excessive in relation to the purpose(s) for which we process it. We take care to make sure such personal data is accurate and relevant and, where necessary for the purposes for which we process it, we keep it up-to-date.
We retain personal data about you only for so long as we need to do so for legal and business purposes. For so long as we retain such personal data we make reasonable security arrangements to prevent unauthorized access, collection, use, disclosure, copying, modification, disposal or similar risks.
We want to treat all of the individuals with whom we interact equally, but sometimes we cannot do so because of the way we must apply the laws.
In Singapore, the data protection law requires us to obtain your consent before we collect, use, disclose and store (collectively, ‘Process’) personal data about you, except where there is an exception to the requirement for consent. For example, we do not need consent to process personal data to respond to an emergency that threatens someone’s life, health or safety.
Elsewhere in ASEAN, the data protection laws lay out the lawful bases on which we may process personal data about you. Broadly, these are:
· where processing personal data is necessary for us to fulfil a contract we have with you – for example, where we have provided you with a product warranty – or in order to take steps at your request prior to entering into a contract
· where the processing is necessary for us to comply with a legal obligation to which we are subject
· where the processing is necessary to protect your vitally important interests, including your life and health
· where the processing is necessary for our legitimate interests or the legitimate interests of a third party, except where such legitimate interests are over‑ridden by your fundamental rights and freedoms and/or
· where we have your consent to process personal data about you
We generally collect personal data directly from you. We will ask you for it (including contact information) when you interact with us, including when we are responding to your enquiries about our products or services. Sometimes we collect it from a third party, but only after checking that the third party has the right to provide the personal data to us – for example, where they do so at your request to enable us to provide information to you or to provide you with our products and/or services.
The personal data we collect about or relating to you depends on the circumstances in which we interact with you. We only collect personal data for purposes that are directly related to our business activities and when it is necessary for such purposes. We set out more specific information below, but generally:
· Ordering spare parts on our website requires specifying the following categories of personal data in the order form for subsequent transfer to the service center:
Company, first name, last name, contact phone number, contact email, delivery address and billing address
· for information about how you use our online services click here
Product offering, sales and support
In connection with our product offerings, sales and support we collect personal data that is about you or relates to you when:
· you request information from us about products or services and/or you seek support, such as warranty and/or other aftermarket support (for example, in relation to power tools), from us and/or you join one of our workshops or training activities and/or
· you participate in a sales promotion, competition, redemption or cash rebate programme and/or you subscribe to our email or newsletter list(s)
and we use that personal data only for the purpose for which we collected it
We do not sell personal data about or relating to you. We do, however, disclose it as follows:
· to our subsidiaries and related companies where reasonably necessary for the various purposes for which we use such personal data – see ‘How we use personal data about or relating to you’
· we engage a third party service provider to assist us with conducting the activities for which we collect and use the personal data, such as service dealers, retailers, training providers and agents – in this case, the third party service provider is under contractual arrangements with us to ensure that your personal data is protected
· your consent
· you would reasonably expect, or you have been told, that personal data of that kind is usually passed to those individuals, bodies or agencies
· we are required or authorised by law to disclose it
We only use cookies and tracking mechanisms that are not technically required if you have given us your prior consent in each case. With regard to these cookies and tracking mechanisms, we distinguish:
· Convenience/comfort cookies – they facilitate operation of the online service and thus allow you to browse it more comfortably (for example, your language settings may be included in these cookies)
· marketing cookies and tracking mechanisms:
o marketing cookies and tracking mechanisms enable us and our partners to show you offerings based on your interests, resulting from an analysis of your user behavior
o statistical tools enable us to measure, for example, the number of pages in our online service you that you view
o conversion tracking tools are placed on your device by our marketing partners if you accessed our website via an advertisement of such marketing partner (and are normally are no longer valid after 30 days) – if you visit certain pages of our website and the cookie has not yet expired, we and the relevant marketing partner can recognise that you clicked on the advertisement and were redirected to our website, which enables us to compile conversion statistics and to record the total number of users who clicked on the relevant advertisement and were redirected to our website
o Retargeting
These tools create usage profiles using advertising or third-party advertising cookies, so-called web beacons (transparent images, also called "pixels" or "tracking pixels"), or similar technologies. They are used to select advertisements based on interests and to manage how often certain advertisements are viewed user announcements. Responsibility for processing data related to such instruments are the responsibility of the respective service provider. Service providers offering these tools may also share information with third parties for the above purposes as necessary. In this regard, please refer to the Privacy Policy of the relevant service provider.
Please note that when you use such tools, the cookie data may be transferred to recipients in other countries. More detailed information is contained in the description of marketing tools, given below.
Google Analytics
Name: Google Analytics
Operator: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Function: analysis of user behavior (page views, number of visitors and visits, downloads), creation of pseudonymized profiles users using information from different devices from registered Google users (Cross-Device tracking), data accumulation pseudonymized type of information on target groups provided Google, retargeting, UX testing, conversion tracking and retargeting combined with contextual advertising service Google Ads.
Tealium
Name: Tealium
Operator: Tealium Inc., 11095 Torreyana Road San Diego, CA 92121
Function: administration of site tags through the interface, software integration codes on our websites.
You can manage your cookie and tracking mechanism settings in the browser and/or our privacy settings. (Note: the settings you have made refer only to the browser used in each case.)
If you wish to deactivate all cookies, please deactivate cookies in your browser settings. Please note that this may affect the functionality of the website.
When visiting our websites, you will be asked in a cookie layer whether you consent to our using of convenience cookies, marketing cookies or tracking mechanisms, respectively.
In our privacy settings, you may withdraw the consent with effect for the future or grant your consent at a later point in time.
If we ask you for personal data that you do not want to provide, please tell us and we will try to continue without it. However, it might not be possible for us to provide the product or service that you are seeking or lack of personal data may result in inconvenience to you when we are providing such product or service.
Where we have obtained your consent to process your personal data, you may withdraw your consent at any time. You can do this by notifying us in writing (which includes email) – click here for our contact details.
You can opt‑out of commercial emails by clicking the ‘unsubscribe’ line at the bottom of any such email that we send to you. Please note that if you opt-out of commercial emails we may still need to contact you with important transactional information about you and/or your company’s account and/or about a product and/or service that you have purchased from us.
We take steps to ensure that the personal data we collect is accurate, up-to-date and complete. This includes updating it if and when you let us know that it has changed. Please let us know about any changes by notifying us in writing (which includes email) – click here for our contact details.
You can request us to provide you with a copy of personal data about you or that refers to you that is in our possession or under our control. We will also give you information about the ways in which we have, or may have, used or disclosed it within the previous 12 months.
Please ask us in writing (which includes email) – click here for our contact details. We may request information from you that enables us to verify your identity before meeting your request. Subject to you verifying your identity, we will respond to your request as soon as reasonably possible. If we are unable to respond to your request within 30 days we will let you know within that period when we expect to be able to respond to your request.
We reserve the right to charge a fee for access to your personal data, which will be limited to the incremental costs incurred by us in meeting your request. We will notify you of the amount (or, if that cannot be determined, the estimated amount) of the fee before fulfilling your request.
You can request us to correct on error or omission in personal data about you or that refers to you that is in our possession or under our control.
Notify us about your correction request in writing (which includes email) – click here for our contact details. We may request information from you that enables us to verify your identity before meeting your request. Subject to you verifying your identity, we will respond to your request as soon as practicable. If we are unable to respond to your request within 30 days we will let you know within that period when we expect to be able to respond to your request. We may also send the corrected personal data to other organisations to which we have disclosed your personal data.
As a leading global supplier of technology and services we take the security of personal data about or referring to you seriously
We have appropriate security measures in place to prevent your personal data being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. We limit access to your personal data to those employees, agents, contractors and other third parties who have a business ‘need to know’. They will process your personal data only on our instructions.
We have procedures in place to deal with any suspected personal data breach and will notify you and any applicable supervisory authority of an actual or suspected personal data breach where we are required by contract or law to do so.
We will cease to retain documents that contain personal data about you or that refers to you as soon as it is reasonable to assume that the purpose for which we collected it is no longer being served by us retaining it and we no longer need it for a business or legal purpose. Alternatively, we may anonymise the personal data so that it can no longer be associated with you.
We may from time to time, depending on the circumstances under which you provided personal data to us, have a business need to transfer it (or a copy of it) out of the country in which you gave it to us and to one of our subsidiaries or related companies a different country. For example, if you gave it to us outside of Singapore we might need to transfer it to our regional headquarters in Singapore.
We have entered into contracts to ensure that personal data about or relating to you is treated by the receiving entity with the same degree of care as is required by this Privacy Policy. This includes us adopting uniform practices / standard operating procedures (SOPs) in all of our subsidiaries and related companies in ASEAN (and in the location of our global headquarters, in the European Economic Area).
If you have any complaint about the way in which we have processed personal data about you or that refers to you – that is, if you feel we have not complied with this Privacy Policy and/or with the applicable data protection / privacy law please let us know. You may do this in writing (which includes email) – click here for our contact details. Please include the following:
· sufficient contact details to enable us to identify you
· clear and succinct details about the nature of the complaint – for example, what happened, when you became aware of it and who was involved
· an outline of the impact the event that happened has had on you and
· details of what you would like to see happen to resolve your complaint
We will acknowledge receipt of your complain as soon as practicable. Then we will investigate it. We may need to obtain further information from you, speak to relevant staff members, review relevant documents and/or obtain legal or technical advice to do our investigation. Once we have completed our investigation, we will write to you to let you know the outcome of the investigation.
You can contact us to get further information in relation to this Privacy Policy, to provide comments or to make any complaint by contacting our data protection officer as follows:
By letter: Data Protection Officer, ASEAN Region
Robert Bosch (S.E.A.) Pte. Ltd.
11 Bishan Street 21
Singapore 573943
By email: asean.dpo@sg.bosch.com
By phone: +65 6258 5511
We reserve the right to change and update this Privacy Policy from time to time. We will notify changes by posting them on our website. The amended Privacy Policy will come into effect from the time that it is posted on our website.