Data processing principles at Liebherr

You have come to this page via a link because you would like to find out about how we handle the personal data of business partners. We would like to give you an overview of how your personal data is processed and about your rights as a data subject by providing you with the following information.

A. General information

I. What does this data protection policy govern?
The protection and security of your personal data is extremely important to us. It is accordingly essential that we inform you about the type of personal data that we collect about you, the purpose thereof and what your rights are in relation to your personal data.

II. What is personal data and what does processing mean?

1. “Personal data” (hereinafter also referred to as ‘data’) is any information that says something about a natural person. Personal data is not only information that makes a direct reference to a specific person (such as the name or email address of a person), but also information with which, given appropriate additional knowledge, a reference to a specific person can be made.

2. “Processing” means any measures taken in relation to your personal data (such as the collection, recording, organization, ordering, storage, use or deletion of data).

B. Data processing

I. Who is in control of the processing of your data?
The body in control (“the controller”) of the processing of your data is Liebherr-Hausgeräte GmbH, Memminger Strasse 77-79, 88416 Ochsenhausen, contact: detlef.georg@liebherr.com, phone: +49 7352 928-4460.

II. What data do we collect and for what purpose?
In the context of the cooperation with business partners, we process the following data of contact persons at customers, prospects, distribution partners, suppliers and partners (hereinafter referred to individually or jointly as ‘business partner(s)’):

1. contact information, such as forenames and surnames, business address, business telephone number, business cell phone number, business fax number and business e-mail address;
2. payment data, such as details required to process payment transactions or prevent fraud, including credit card information and card verification numbers;
3. further information the processing of which is required within the framework of a project or the processing of a contractual relationship with Liebherr or which is voluntarily provided by business partners, e.g. in the context of orders being placed, enquiries or project details;
4. personal data that is collected from publicly available sources or information databases, or is collected by credit agencies; and
5. if legally required in the context of compliance screening: date of birth, identification document and identification numbers, information regarding relevant court proceedings and other legal disputes in which the business partners are involved.

In principle, we will process this data only for the following purposes:

1. communication with business partners in relation to products, services and projects, e.g. in order to process inquiries made by the business partners or prepare technical information regarding products (data categories used: 1, 3)
2. planning, conducting and administration of the (contractual) business relationship between Liebherr and the business partner, e.g. in order to process the ordering of products and services or collect payments, for accounting and billing purposes, and in order to carry out deliveries, maintenance tasks or repairs (data categories used: 1, 2, 3, 4 and, if applicable, 5)
3. carrying out customer surveys, marketing campaigns, market analyses, contests, competitions or similar initiatives and events (data category used: 1)
4. compliance with (i) legal requirements (e.g. with record-keeping obligations under tax or commercial law), (ii) existing obligations to carry out compliance screening (in order to prevent economic crime or money laundering) and (iii) Liebherr guidelines and industry standards (data categories used: 1, 2, 3, 4 and 5) and
5. settling legal disputes, enforcing existing contracts and establishing, exercising or defending legal claims (data categories used: 1, 2, 3, 4 and 5)

Data may be processed for other purposes only if the requisite legal conditions pursuant to Article 6(4) GDPR have been met. In this case, we will of course comply with any information obligations pursuant to Article 13(3) GDPR and Article 14(4) GDPR.

III. What is the legal basis on which we collect your data?

Unless there are any specific legal provisions, the legal basis for the processing of your data is, in principle, Article 6 GDPR.

Your data shall be processed on the following legal basis/bases:

1. Consent (Article 6(1)(a) GDPR) (for purpose 3)
2. Data processing for the performance of contracts (Article 6(1)(b) GDPR) (applies to purpose 1, 2, 4)
3. Data processing on the basis of a balancing of interests (Article 6(1)(f) GDPR) (applies to purpose 3)
4. Data processing for compliance with a legal obligation (Article 6(1)(c) GDPR) (applies to purpose 4(i) and (ii))

Our legitimate interests are:

1. commercial interests   (purpose 3)
2. customer service   (purpose 3)
3. product improvement  (purpose 3)
4. risk detection   (purpose 3)
5. customer loyalty   (purpose 3)

If we process your data on the basis of your consent, you have the right to withdraw your consent from us at any time with effect from the date of your withdrawal.

If we process your data on the basis of a balancing of interests, you have the right to object to the processing of your data, taking into account the provisions of Article 21 GDPR.

We process your data only to the extent required to fulfil the aforementioned purposes.