PRIVACY POLICY OF STEHLI FISCHER AG AS OF OCTOBER 1, 2023.
Our high standards for the quality of our products and services are reflected in how we handle your data. Our main goal is to build and maintain a trust-based business relationship with our customers and prospects. The security and confidentiality of your personal information are particularly important to us. We are committed to handling your data with the utmost care, in accordance with your consent, and in compliance with applicable data protection laws. In the following sections of our privacy policy, we explain how Stehli Fischer AG collects, processes, and uses the personal data of its customers and prospects. For inquiries about our data protection measures, we are happy to provide information in writing; please address your request to: Stehli Fischer AG We employ extensive measures to ensure the protection of your data. These include using the services of a data protection expert, creating a data processing directory, continuously training our employees in data protection, and binding them to confidentiality. Additionally, we thoroughly vet our service providers and conclude data processing agreements with them. Data security and retention Personal data that is processed Data collection (Website Social Media) Data transfer to third parties and abroad Data origin and collection Our role as a data processor Responsibilities Changes to the privacy policy 1. DATA SECURITY AND RETENTION DATA SECURITY Our measures to protect your personal data include appropriate technical and organizational security precautions. We consider the current state of technology, the risks of data processing, and the associated investment costs. Our orientation follows not only the provisions of the Swiss Data Protection Act but also in accordance with the General Data Protection Regulation (GDPR). The main goal of these measures is to prevent data breaches, such as unauthorized access and misuse of your data. We also require our data processors to implement appropriate technical and organizational security measures. Please note that communication via email is generally unencrypted. Therefore, there is a risk that data may be lost during transmission or intercepted and/or manipulated by unauthorized third parties to change the authenticity of messages. We take appropriate technical and organizational measures to minimize such risks within our system. Despite our efforts, we cannot guarantee the confidentiality of your data when transmitted via email, especially for particularly sensitive personal data. In such cases, we ask you not to contact us via email but to arrange a secure communication channel with us in advance. Please also note that external devices such as PCs, smartphones, and parts of the infrastructure involved in transmission are outside our controllable area. Therefore, we cannot be held liable for any consequences and damages resulting from electronic information exchange, particularly in cases of misuse of the email system. We reserve the right to claim any intentional damage resulting from electronic information exchange with you. In individual cases, we reserve the right not to respond to emails or to take additional security measures for orders or information transmitted via email. DATA RETENTION We retain and process your personal data as long as necessary to fulfill our contractual obligations and legal requirements or to achieve the intended purposes of data processing. This can cover the entire duration of our business relationship, from initiation to completion and termination of a contract or order. Additionally, we may store personal data in accordance with legal retention and documentation requirements. It is possible that we may retain personal data for a period during which potential claims against our company could be asserted. This may also be the case if required by law or if legitimate business interests necessitate such retention, for example, for evidence and documentation purposes. 2. PERSONAL DATA PROCESSED 2.1 CUSTOMER DATA Personal data includes all information relating to an identifiable natural person. In the course of our activities, we process the following types of personal data, with additional personal information potentially being processed:
2.2 CONTRACTUAL/COMMUNICATION DATA Contract-related information includes all data related to the processing of contracts, as well as all communication data between you and us, whether through the contact form, email, phone, chat, written or otherwise. We collect the information exchanged during this interaction, including: Details of contract processing and management (e.g., contact details, provided services, payment data, sales figures per customer) Credit and identity information: data to verify your identity, such as driving licenses or registration certificates; also information about transactions, possibly unpaid payments to us; information on fraud cases, criminal offenses, suspicious transactions, politically exposed persons, and sanction lists containing your data. Credit and bank data: salary, housing costs, disposable income, payment behavior, balances, data from credit agencies, score values, financial situation, bank details, credit card numbers, etc. Data related to job applications for positions in our company: resumes, references, certificates Data on complaints, claims, or contract adjustments Details of contract initiation and conclusion: contract type, date Financial information: reminders, debt collection processes, enforcement of claims, credit checks Interests: information provided by you about your areas of interest, such as vehicles of interest to you, preferred BMW partner, hobbies, and other personal preferences. Information from interactions with our customer service or other contact persons Contact details: name, address, phone number, email address. Use of BMW apps and services: information about your use of BMW apps (on your mobile device) and BMW ConnectedDrive services. Use of websites and communication: information about how you use the website and whether you open or forward communications from us, including data collected via cookies and other tracking technologies. Transaction and interaction data: information on product and service purchases, interactions with BMW customer support (your inquiries and complaints), and BMW partners, as well as participation in market research studies. Information on vehicle features and settings: information on the features and current settings of your vehicle (identified by the vehicle identification number), such as BMW TeleServices, BMW ConnectedDrive services with BMW Online and My Info, or BMW CarData. 2.3 TECHNICAL DATA/OPERATIONAL VEHICLE DATA When you visit stehli-fischer.ch and the subpages found there or use our networks (e.g., WLAN), we collect certain technical information, including: Control units in the vehicle process data for vehicle operation. This includes, for example: Vehicle status information (e.g., speed, deceleration, lateral acceleration, wheel rotation number, display of closed seat belts) Environmental conditions (e.g., temperature, rain sensor, distance sensor). Usually, these data are volatile and are not stored beyond the operational period, being processed only in the vehicle itself. Control units often contain data storage (including the vehicle key) used to temporarily or permanently document information about the vehicle’s condition, component load, maintenance needs, as well as technical events and errors. Stored depending on the technical equipment: Operating conditions of system components (e.g., fill levels, tire pressure, battery status) Malfunctions and defects in essential system components (e.g., lights, brakes) System responses in special driving situations (e.g., airbag deployment, activation of stability control systems) Information on vehicle-damaging events For electric vehicles, the charge status of the high-voltage battery, estimated range. In special cases (e.g., if the vehicle detects a malfunction), it may be necessary to store data that would otherwise be volatile. When you use services (e.g., repair services, maintenance work), the stored operational data can be read out and used together with the vehicle identification number if necessary. Reading can be done by employees of the BMW partner or third parties (e.g., roadside assistance) from the vehicle. The same applies to warranty cases and quality assurance measures. Reading is usually done via the legally prescribed OBD (“On-Board-Diagnosis”) connection in the vehicle. The read operational data document technical conditions of the vehicle or individual components, help with error diagnosis, compliance with warranty obligations, and quality improvement. These data, including information about component loads, technical events, misoperation, and other errors, may be transmitted together with the vehicle identification number to BMW. Furthermore, BMW is subject to product liability. BMW also uses operational data from vehicles for recall actions. These data can also be used to verify warranty and rectification claims by the customer. Fault memories in the vehicle can be reset during repair or service work or at your request by a service operation. Komfort- und Infotainment-Funktionen Sie können Komforteinstellungen und Individualisierungen im Fahrzeug speichern und jederzeit ändern bzw. zurücksetzen. Depending on the equipment, this includes, for example: Settings for seat and steering wheel positions Chassis and air conditioning settings Suspension and climate control settings Customizations such as interior lighting. Depending on the equipment, you can enter data yourself in the vehicle’s infotainment functions, for example: Multimedia data, such as music, films or photos, for playback in an integrated multimedia system Address book data for use in conjunction with an integrated hands-free device or an integrated navigation system Entered navigation destinations Data on the use of internet services This data for convenience and infotainment functions can be stored locally in the vehicle or on a device that you have connected to the vehicle (e.g. smartphone, USB stick or MP3 player). If you have entered data yourself, you can delete it at any time. This data will only be transmitted from the vehicle at your request, in particular when using online services in accordance with the settings you have selected. Smartphone-Integration z. B. Apple car play
If your vehicle is equipped accordingly, you can connect your smartphone or other mobile device to the vehicle so that you can control it using the controls integrated in the vehicle. The smartphone’s image and sound can be output via the multimedia system. At the same time, certain information is transmitted to your smartphone. Depending on the type of integration, this includes, for example, position data, day/night mode and other general vehicle information. Please refer to the operating instructions for the vehicle/infotainment system. ROTTT The integration enables the use of selected smartphone apps, such as: B. Navigation or music playback. There is no further interaction between the smartphone and the vehicle, in particular active access to vehicle data. The type of further data processing is determined by the provider of the app used. Whether and which settings you can make depends on the respective app and the operating system of your smartphone. BMW Online-Dienste For BMW online services, the respective functions are described by BMW in an appropriate place (e.g. operating instructions, BMW Driver’s Guide app, BMW websites) and the associated data protection information is provided. Personal data may be used to provide online services. The data exchange for this takes place via a protected connection, e.g. B. with the designated IT systems from BMW. Any collection, processing and use of personal data beyond the provision of services takes place exclusively on the basis of legal permission, e.g. B. in the case of a legally required emergency call system, a contract or based on consent. You can activate or deactivate the (sometimes chargeable) services and functions and, in some cases, the entire mobile network connection of the vehicle. Excluded from this are – where technically possible – legally required functions and services, such as an emergency call system. Dienste Dritter If you make use of the option to use online services from other providers (third parties), these services are subject to the responsibility and the data protection and terms of use of the respective provider. BMW has no influence on the content exchanged. Therefore, please obtain information about the type, scope and purpose of the collection and use of personal data in the context of third-party services from the respective service provider. Vehicle location data: Information about the location of your vehicle or mobile device. BMW may receive this data in the course of providing the BMW ConnectedDrive Services and the BMW Connected App and uses it in accordance with the detailed service descriptions of the respective services and the security precautions for location data. 2.4 AUDIOVISUAL RECORDINGS We may occasionally create photographs, videos and audio recordings in which you may be seen or heard. This can be the case in particular in the following places: In the area of security cameras Training Events Exhibition These video recordings may enable us to obtain information about your behavior in the relevant situations. Please note that the use of video surveillance systems is locally limited and will be marked accordingly. 2.5 BEHAVIORAL DATA When you visit our website, purchase products, use our services, participate in events, competitions or similar events, and interact with our infrastructure, we generally collect data about these interactions. This includes in particular: Your interactions with our social media profiles. Your behavior and use of our websites, including pages visited, length of stay and links clicked. Your participation in contests, sweepstakes and similar activities. Our use of electronic communications, such as opening emails or clicking on links. Information about purchasing vehicles, parts or accessories from our branches or online stores. Participation in events, including date, location and type of event. The use of our Wi-Fi networks, including the date, time and duration of the connection, location of the Wi-Fi network and data volume. This data allows us to tailor our offers and services to your interests and preferences, if necessary in conjunction with other data, in particular technical data (see Section 3.5). This enables us to draw conclusions about your characteristics, preferences and likely behavior (sometimes referred to as “profiling”, see section 9). For example, we may infer your affinity for certain products and services or identify the preferences of segments (groups of people). This data can be used in both personally identifiable ways (e.g. for personalized advertising) and non-personally identifiable ways (e.g. for market research and product development). 3. DATA COLLECTION Data collection on our website and social media is an important part of our business practices. We would like to be transparent about what data we collect and where it happens. Below you will find an overview of the places and platforms where data can be collected: Marketing: Your contact details will be used for marketing purposes; we will provide detailed information about this in written form Websites: When you visit our website, we collect usage data, contact details, vehicle details and information about your interests; we provide detailed information about this in written form Analytics and Tag Manager: We actively use the Tag Manager from Adobe and Google, we use analysis tools such as Google Analytics to measure website usage and to collect and further process data. We provide detailed information about this in written form Messenger apps: We use WhatsApp in sales and customer service and with the business numbers of the respective employees. We provide detailed information about this in written form Pixels, plug-ins and cookies: Our website collects usage data that can identify your browser and uses cookies. We also use social media platforms and plugins from third parties, we provide detailed information about this in written form, we provide detailed information about this in written form Terminbuchung (Off- und Online): Bei der Buchung von Dienstleistungen erfassen wir die erforderlichen Daten, detaillierte Auskünfte dazu geben wir in schriftlicher Form Newsletter: To send newsletters, use the tool recommended by BMW Switzerland; the respective data protection guidelines are taken into account; we will provide detailed information in writing. 4. DATA TRANSFER TO THIRD PARTIES During our business activities and in accordance with the aforementioned objectives, we may share information with different groups of recipients. This includes in particular the following categories: Service provider partnerships: We maintain partnerships with service providers at home and abroad who regularly process personal data on our behalf. These partners act in the role of “agents” and are required to treat personal data in accordance with our instructions and to take appropriate security measures. This includes: IT providers and IT service providers, such as data storage/hosting, cloud services, sending email newsletters/text messages and data analysis. Autohersteller und -lieferanten sowie damit verbundene Unternehmen. Body manufacturer. Shipping companies, forwarding companies and logistics partners. Printing service provider. Service provider in the field of advertising and marketing services, including the sending of communications and information. Service provider for business administration tasks such as accounting or asset management. Payment service provider. Service provider in event management. Service provider for secure document destruction.
Responsibility: In certain cases, these service providers are responsible for data processing either jointly with us or independently. This may be the case in particular if you have given us your express consent or if we are legally obliged or authorized to pass on data. These cases include:
Cooperations with car manufacturers and suppliers or leasing companies to carry out joint marketing activities or to operate an online shop for accessories. Cooperation with advertising providers on our website, including Google, Facebook and other platforms. Business relationships with banks and insurance companies. Collaboration with consulting service providers such as external auditing companies, tax consultants, lawyers, management consultants and recruiters. Involvement of debt collection agencies in certain cases. Use of services from credit and credit reporting agencies. Use of address verification services. Cooperation with courts and authorities in Switzerland and abroad, including the Road Traffic Office and law enforcement authorities in the event of suspected criminal acts. This cooperation may mean that certain third parties have access to personal data. Service providers and certain contractual partners who work on our behalf may be contractually obliged not to use the data for their own purposes. Other third parties such as financial service providers, insurance companies or authorities use the data for their own purposes, such as fulfilling legal requirements, which is why we cannot restrict this processing.
5. DATA ORIGIN AND COLLECTION The personal data that we process is in most cases provided by you. This happens, for example, as part of our services, the use of our website or communication with us. If you wish to conclude contracts with us or use our services, it is necessary that you provide certain data. This also applies to the use of our website. In addition, you may be required by law to provide information to comply with legal requirements. Otherwise, you are free to provide us with information about yourself. We may also receive data from third parties, in particular from our service providers, contractual partners, financial service providers, insurance companies and manufacturers or importers. It is also possible that we obtain data from publicly accessible sources, such as websites, company registers, land registers, commercial registers, credit agencies, address dealers, associations and telephone directories. We may also access data from internet analytics services 6. OUR FUNCTION AS DATA PROCESSORS In certain services we offer, we take on the role of a data processor. In such cases, it is necessary to conclude a special data processing agreement with us; we will provide detailed information about this in writing. 7. RESPONSIBILITIES If you have any questions or concerns regarding data protection or your data protection rights, we are happy to help you. Please note that the collection and processing of personal data by the importer or manufacturer as well as data collection by vehicles and corresponding apps in the vehicle or on your mobile phone are the responsibility of the importer or manufacturer. The collection and processing of your data by the importer or manufacturer occurs, for example, when you configure your vehicle with us or request a quote, purchase a vehicle or use services (maintenance, repairs, guarantee, goodwill, connected services, etc.). Use a connected vehicle or take part in one of our studies or satisfaction surveys. For further information on the collection and processing of personal data by the importer or manufacturer, we refer to the corresponding data protection declaration from BMW: www.bmw.ch 8. CHANGES TO PRIVACY POLICY The privacy policy may be amended at any time. |