CHÍNH SÁCH BẢO MẬT

PALFINGER AG is responsible for the processing of your personal data on our PALFINGER Websites.

We use so-called cookies on our Websites. These are small text files that are stored on your end device with the help of your browser. Some cookies are technically necessary in order to display and execute the web pages correctly. All other cookies are optional and are only set after you have given your consent.

You can object to cookies for advertising and data analysis purposes at any time!

Your personal data may be shared within the PALFINGER Group, so your data may be transferred to PALFINGER companies outside the European Union and vice versa. Data protection agreements are in place to ensure the security of your data. A list of all subsidiaries can be found here.

Your personal data will be treated confidentially and processed in compliance with the applicable data protection laws.

1.1.     Technically necessary cookies

If you use our Websites for informational purposes only, we process the personal data that your browser transmits to our servers. This personal data is technically necessary in order to display our Websites to you and to ensure stability and security. The following data is collected:

• IP address
• Date and time of the request
• Time zone difference to Greenwich Mean Time (GMT)
• Access status/HTTP status code
• Operating system used
• Language, version and settings of the web browser used
• Content of the request (page visited, clicks)

Your personal data will be stored for the duration of your visit to our Websites. As soon as you close your browser, your data will be deleted.

1.2.     Optional cookies – advertising tracking and user analysis

Optional cookies are used to:

• make it easier for you to use the Website via different browsers or end devices,
• analyze your user behavior on our platform,
• recognize you when you visit our platform and
• place personalized advertising.

When you visit our Websites for the first time, you can choose whether to allow the placement of optional cookies via the permanent cookie button. You can revoke your consent at any time. This does not affect the permissibility of processing your personal data until you withdraw your consent. Deactivating cookies may limit the functionality of our Websites.

The following personal data is processed by optional cookies:

• Data about your device/browser
• IP address
• Website or app activities
• Usage behavior (e.g. time spent on website)
• Country or region of origin
• A randomly generated ID
• Date and time of the request
• Time zone difference to Greenwich Mean Time (GMT)
• Access status/HTTP status code
• Content of the request (page visited, clicks)

Some cookies are automatically deleted when you close your browser (session cookies). Other cookies remain stored on your end device for a certain period of time (persistent cookies).

For more detailed information on the cookies used, please refer to the cookie banner details. Here you will find a list of all cookies as well as their purpose and storage duration.

PALFINGER uses external providers to carry out advertising tracking and visitor analyses. Suitable guarantees have been put in place to ensure that your data is handled in compliance with data protection regulations. Among other things, PALFINGER uses so-called server-side cookies. Server-side cookies are not stored on your end device, but on a PALFINGER server in the European Union. This has the advantage that PALFINGER can take measures to anonymize your data to protect it before it is passed on to third parties. This means that only anonymized data is transferred to third parties. 

We provide contact forms on our Websites so you can get in touch with us, our sellers, dealers and service partners. The following data is regularly collected: Name, e-mail, telephone, street, zip code, city, personal message. This data is necessary in order to process your request. Your data will be stored for the duration needed to answer your request. We process your request to take pre‑contractual steps or to perform a contract. Where this is not applicable, we process your data based on your consent, which you may revoke at any time.

Depending on which company of the PALFINGER Group is mentioned on the contact form, this company is jointly responsible for data processing with PALFINGER AG. A list of all PALFINGER companies can be found here.

In the case of inquiries about products and services, your data may be transferred to other responsible companies in the PALFINGER Group and to third parties (dealers or service partners) if this is necessary to respond to your request. You will be explicitly informed before your data is forwarded to a third party. Third parties act as separate controllers and their privacy practices apply to their subsequent processing. Your data may as a result be transferred to a country outside the European Union or vice versa.

PALFINGER AG, together with the PALFINGER subsidiary you are in contact with, is responsible for processing your personal data for marketing purposes. A list of all PALFINGER companies can be found here.

The purposes of processing are:

• the sending of information material about PALFINGER products or the PALFINGER Group in the form of brochures, e-mail newsletters or other advertising material;
• conducting surveys to analyze the market and customer satisfaction;
• the initiation of sales talks.

The following personal data may be processed:

• Name
• Address
• E-mail
• Phone number
• Company address
• Purchased product or product of interest
• Answers to surveys

Your personal data may be shared within the PALFINGER Group on a need-to-know basis, which means that your data may be transferred to PALFINGER companies outside the European Union or vice versa. Data protection agreements are in place to ensure the security of your data.

PALFINGER may commission external advertising agencies to create and send out advertising material. Your data will be passed on to these agencies for this purpose. These advertising agencies are contractually obliged by PALFINGER to protect your data appropriately.

Processing for marketing purposes is based on your consent, which you can revoke at any time via the unsubscribe link provided in the given communication or via email to dataprotection@palfinger.com. Your data will be deleted upon revocation.

PALFINGER AG and its subsidiaries are present on various social media platforms and responsible for processing your personal data for the purposes of:

• operating social media channels and
• analyzing PALFINGER’s social media presence through aggregated data provided by the platform operator.

In some cases, PALFINGER is jointly responsible with the respective social media platform operator within the meaning of Art. 26 GDPR. It should be noted that, despite possible joint responsibility, PALFINGER has no influence on the processing of your personal data by the individual platform operators. Please inform yourself about the processing of your personal data by the platform operators before using social media.

The following data categories are processed for the mentioned purposes:

• Interactions with PALFINGER content
• Messages to PALFINGER
• Visits to our profiles
• Follower status
• Aggregated data (e.g. country, on LinkedIn: job title, industry, employee status, ...)

Data processing is based on our legitimate interest in promoting PALFINGER and our products on social media as well as your consent through an affirmative act by engaging with our social media presence.

The deletion of your data depends on the settings of the respective platform over which PALFINGER has no influence. Please refer to the privacy policy of the respective platform.

PALFINGER AG and its subsidiaries may operate on the following social media platforms:

• Facebook: Meta Platforms Ireland Ltd, Merrion Road, Dublin 4, D04 X2K5, Ireland
  https://www.facebook.com/privacy/center/
  
  
• Instagram: Meta Platforms Ireland Ltd, Merrion Road, Dublin 4, D04 X2K5, Ireland
  https://privacycenter.instagram.com/
  
  
• LinkedIn: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland

https://www.linkedin.com/legal/privacy-policy

It should also be noted here that PALFINGER has no knowledge of the processing of your personal data by the platform operator. If you want to assert your rights as a data subject concerning the processing of the platform operator, please contact them directly.

You have the right to be informed, the right of access, the right to rectification, erasure, restriction of processing, data portability, object, rights in relation to automated decision-making and profiling and the right to lodge a complaint with the data protection authority.

The PALFINGER subsidiary you are in contact with is jointly responsible with PALFINGER AG for processing your personal data when entering into a business relationship with you. A list of all PALFINGER companies can be found here.

The purposes for processing are:

• fulfilling the contract that forms our business relationship (e.g. sales contract)
• invoicing.

The following personal data may be processed:

• Name
• Address
• E-mail
• Phone number
• Company address
• Purchased products, order history
• Detailed information on purchase (delivery date, order confirmation, payment information,…)

Your personal data may be shared within the PALFINGER Group if this is necessary to fulfill the above-mentioned purposes. Your data will therefore be shared with our PALFINGER owned business service center located in Sofia, Bulgaria. Your data may be transferred to PALFINGER companies outside the European Union or vice versa. Data protection agreements are in place to ensure the security of your data.

The processing is based on the fulfillment of the contract that concludes our business relationship. Your data will be stored as long as it is necessary to comply with bookkeeping and accounting regulations. Your data will be deleted once the retention periods are expired.

Right to be informed: You can obtain information about the processing of your personal data.

Right of access: On request, we will provide you with information about the personal data PALFINGER holds about you.

Right to rectification: If despite our efforts to ensure that your personal data is accurate and up to date, we have stored incorrect personal data, we will correct it at your request.

Right to erasure: If you no longer wish your data to be processed, please let us know. We will delete your data immediately and inform you accordingly. If there are compelling legal grounds for not erasing your data, we will notify you.

Right to restriction of processing: You can request the restriction of the processing of your personal data in specific cases. As a result, the data stored about you may only be processed with your individual consent or for the assertion and enforcement of legal claims.

Right to data portability: You can receive your personal data in a machine-readable format and send it to another controller.

Right to object: Consent given can be revoked at any time free of charge. Your data may no longer be processed. The legality of the previous processing remains unaffected. Furthermore, you can also object to processing operations. In this case, we ask you to state the reasons for your objection.

Rights in relation to automated decision-making and profiling: You can request that decisions based on your personal data and that significantly affect you are made by natural persons, not only by computers.

Right to lodge a complaint with the data protection authority: You have the right to lodge a complaint with the data protection authority if you consider that the processing of your personal data infringes applicable data protection laws. However, we ask you to contact us first in the event of a suspected violation so that we can clarify and resolve this matter in the interests of a good relationship.

Automated decision-making: We do not engage in automated decision‑making, including profiling, that produces legal or similarly significant effects.

Security measures: We implement appropriate technical and organizational measures (TOMs) to ensure a level of security appropriate to the risk, including access controls, encryption in transit and at rest where appropriate, logging, and staff training. For more information view our TOMs at: https://www.palfinger.com/data-protection/toms.pdf

International Transfers: Where personal data is transferred from the EEA to a third country, we rely on an adequacy decision under Art. 45 GDPR (where available) or the European Commission’s Standard Contractual Clauses under Art. 46 GDPR, together with supplementary measures where necessary. Where personal data is transferred from third countries to the EEA, the respective local transfer mechanisms and safeguards applicable in the exporting country are applied. In all cases, we ensure that an appropriate level of data protection is maintained throughout the transfer process, consistent with the requirements of Art. 44-49 GDPR.

Depending on the country in which you are located, additional regulations may apply to the processing of your personal data next to the GDPR. Please note that the following information applies in addition to the information already provided.

1.1.     USA (California)

This Privacy Policy may also be referred to as “Notice at Collection” as defined by the California Privacy Rights Act (CPRA).

Further rights and statements:

Right to non-retaliation: You will not be subject to any form of discrimination or disadvantage for exercising your data protection rights.

Right to non-sale and non-sharing of personal data: We do not sell or share your personal data to/with third parties as defined under the California Consumer Privacy Act (CCPA) and CPRA. If this practice were to change in the future, we will notify you in advance and provide a clear and accessible mechanism to opt out.

Children’s data: The above-mentioned processing activities are not directed at children. We do not knowingly collect personal data from children. If we become aware of such collection, we will delete it.