Data privacy policy
We at Liebherr-Hausgeräte GmbH are pleased to welcome you to our web pages (hereinafter also referred to collectively as “website”) and thank you for your interest in the Liebherr Group.
The protection and security of your personal data is extremely important to us. We therefore consider it essential that we inform you below about the types of personal data we collect concerning you, the purposes for which we process this and the rights you have in relation to your personal data.
General information
What is personal data and what does processing mean?
“Personal data” (hereinafter also referred to as “data”) is any information that says something about a natural person. Personal data is not only information that makes a direct reference to a specific person (such as the name or e-mail address of a person), but also information with which, given appropriate additional knowledge, a reference to a specific person can be made.
“Processing” means any measures taken in relation to your personal data (such as the collection, recording, organisation, ordering, storage, use or deletion of data).
Who is the controller for the processing of your data?
The controller for the processing of your data is:
Liebherr-Hausgeräte GmbH
Memminger Straße 77-79
88416 Ochsenhausen
Germany
E-mail: [email protected]
How can you contact our data protection officer?
Our data protection officer can be reached using the following contact details:
Corporate Privacy
Liebherr-IT Services GmbH
St. Vitus 1
88457 Kirchdorf an der Iller
Germany
E-mail: [email protected]
What rights do you have as a data subject?
Within the provisions of the legislation, as the data subject you have the right to:
Information about your data;
The correction of incorrect data and the completion of incomplete data;
Deletion of your data, particularly if (1) it is no longer necessary for the purposes stated in this data protection declaration, (2) you withdraw your consent and there is no other legal basis for the processing, (3) your data has been unlawfully processed or (4) you have objected to the processing and there are no overriding legitimate grounds for the processing;
Restriction of the processing of your data, particularly if the accuracy of the data is contested by you or the processing of your data is unlawful and you request the restriction of use instead of deletion;
Object to processing of your data based on legitimate interests on grounds arising from your particular situation, or, without specific justification, to processing of your data carried out for direct marketing purposes; unless it is an objection to direct marketing, we ask that you explain the reasons why we should not process your data as we may do, when you lodge an objection. In the event of your reasoned objection, we will examine the merits of the case and cease processing unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims;
Receive your data in a structured, commonly used and machine-readable format and the right to have your information transferred by us directly to another controller;
Withdraw consent, if you have given us consent for processing. Please note that the withdrawal of your consent shall not affect the legality of the processing carried out on the basis of your consent until the withdrawal.
If you seek to assert the above rights, kindly note that we may require you to provide proof to establish that you are the person who you say you are.
Furthermore, you have the right to lodge a complaint with a supervisory authority if you consider that the processing of your data infringes the GDPR.
Links to other websites
Our website may contain links to and from websites of other providers, which are not affiliated with us (“third parties”). Once the link has been clicked, we no longer have any influence over the processing of any data transferred to the third party upon clicking the link (such as the IP address, or URL where the link is located) since the conduct of third-parties is obviously beyond our control. We are therefore unable to take any responsibility for the processing of such data by third parties.
Links to social networks and messenger services
Our website may contain links for sharing content on our website with various social networks and/or messenger services. When you use our website, the links on our website do not result in any data being transferred to the providers of social networks or messenger services. Only if you click on one of the links to share content from our website will data (such as your IP address or the URL on which the link is located) be transmitted to the respective provider of the social network or messenger service. We have no influence on the subsequent processing of the data by the respective provider of the social network or messenger service.
Data processing
Log files
Each time you access and use our website, the web browser running on your end device (computer, smartphone or similar) automatically sends information to our web server and we store this information in so-called log files.
What data do we process and for what purpose?
We process the following data:
Your (external) IP address
Date and time of the access
Domain name of your internet access provider
The type and version of browser used by you and the operating system used by you
URL (address on the internet) of the website you were on at the time of the access
The files you retrieved via the respective website (nature of access, name of retrieved file, URL of retrieved file, result of retrieval)
The volume of data transferred to you when visiting the respective website
If necessary, date and time of sending when web forms are used
We process this data in principle only for the purpose of ensuring stability as well as network and information security.
Processing for other purposes occurs only if the requisite legal conditions pursuant to Art. 6(4) GDPR have been met. In this case, we will of course comply with any information obligations pursuant to Art. 13(3) GDPR and Art. 14(4) GDPR.
On what legal basis do we process your data?
Your data is processed for the purposes of the legitimate interests in accordance with Art. 6(1)(f) GDPR.
The legitimate interests pursued by us are to improve and maintain the stability and functionality, and the security of our website.
You have the right to object to processing at any time on the basis of Art. 6(1)(f) GDPR for reasons arising from your specific situation.
Authentication/authorisation
Authentication on our website is by means of a “MyLiebherr account”.
The “MyLiebherr account” is your main user account at Liebherr-Hausgeräte GmbH. To create a MyLiebherr account, you need to register. To register, go to (https://home.myliebherr.com). When registering, we will send you an email with a confirmation link at the end of the registration process. You will need to click the confirmation link to complete the registration process. Alternatively, you can also register for the MyLiebherr account using your Google, Meta or Microsoft account (hereinafter referred to as “social login”). Please note that we have no influence on the processing of your personal data at Google, Meta and Microsoft. You can use the single sign-on service of Liebherr-Hausgeräte GmbH (hereinafter referred to as “SSO”) with your MyLiebherr account. SSO permits you to use other access-restricted digital services (hereinafter referred to as “modules”) connected to SSO using uniform access data. With SSO, you can navigate between modules without a separate registration and sign-on process being required. SSO automatically transmits the data saved in your MyLiebherr account that is required for the use of the respective modules to the respective provider of the modules for your utmost convenience. The modules are operated either by Liebherr-Hausgeräte GmbH or by subsidiaries of Liebherr-Hausgeräte GmbH.
What data do we process and for what purpose?
We process the following data:
- User Principal Name (UPN)
Note: This data is transferred to us during the process of authentication of a Liebherr account by Liebherr-IT Services GmbH.
- Your email address
- Your first and last name [optional]
- Your address (street address, postcode, city) [optional]
- Your telephone number [optional]
We generally only process this data for the purpose of authentication on our website or the central authentication as part of using content which is not publicly available.
Processing for other purposes occurs only if the requisite legal conditions pursuant to Art. 6(4) GDPR have been met. In this case, we will of course comply with any information obligations pursuant to Art. 13(3) GDPR and Art. 14(4) GDPR.
On what legal basis do we process your data?
Your data is processed for the performance of a contract or to take steps prior to entering into a contract in accordance with Art. 6(1)(b) GDPR.
Chatbot
On our website, you have the option of receiving advice from our chatbot with regard to our product world and products. Our chatbot is a virtual product advisor that can provide information about products in an interactive online conversation, answer questions that arise and provide you with advice to assist you in making your purchasing decision.
What data do we process and for what purpose?
We process the following data:
- Cookie ID
- Free text that is used in the chat process for advice on products
This data is only processed for the following purposes:
- Product advice to our website visitors
Processing for other purposes occurs only if the requisite legal conditions pursuant to Art. 6(4) GDPR have been met. In this case, we will of course comply with any information obligations pursuant to Art. 13(3) GDPR and Art. 14(4) GDPR.
On what legal basis do we process your data?
Your data is processed based on your consent pursuant to Art. 6(1)(a) GDPR in conjunction with Art. 7 GDPR.
Use of web forms
- Contact forms
On our website, you have the option of sending messages or requests to us or to other companies via web forms. If you make use of this option, we will transfer your data that was collected via the respective form by email to the addressee selected by you. If we ourselves are the addressee of your message or request, we will also process your data in order to process your message or request and to contact you.
What data do we process and for what purpose?
We process the following data:
- Name
- Email address
- Content data (your message/request)
- If applicable, address (street address, postcode, place and country)
- If applicable, telephone number
- If applicable, serial number
- If applicable, an individual error specification / the description of an incident or request for a courtesy to be granted
- If applicable, bank details (IBAN or bank sort code / account number)
This data is only processed for the following purposes:
- Providing the service (transmitting your message or request to the addressee)
- Replying to and subsequent processing of your message or request if we are the addressee of your message or request
Processing for other purposes occurs only if the requisite legal conditions pursuant to Art. 6(4) GDPR have been met. In this case, we will of course comply with any information obligations pursuant to Art. 13(3) GDPR and Art. 14(4) GDPR.
On what legal basis do we process your data?
Your data is processed for the performance of a contract or to take steps prior to entering into a contract in accordance with Art. 6(1)(b) GDPR or to preserve legitimate interests in accordance with Art. 6(1)(f) GDPR.
If we are the addressee of your message or request, the legitimate interest that we pursue is in providing a proper response to and in processing your message or request.
You have the right to object to processing at any time on the basis of Art. 6(1)(f) GDPR for reasons arising from your specific situation.
- Email newsletter
On our website, you have the option via web forms of subscribing to our email newsletter.
What data do we process and for what purpose?
We process the following data if required:
- Salutation
- Name
- Email address
- Your (external) IP address
- Date and time of subscription and acknowledgement of subscription
- Date and time of newsletter retrieval
We process the data you provide solely in order to regularly send you our newsletter (with a personal greeting if applicable) by email and to provide you with marketing information on our products and services or about related promotions, events, competitions, articles etc.
The data collected in the course of the newsletter subscription, together with the so‐called double opt‐in procedure, are in principle processed by us solely for the protection of the offer and to comply with our legal obligations to provide proof. In the double opt‐in procedure, you will receive an email when subscribing to the newsletter with a request to confirm your subscription to our newsletter. If you do not confirm your subscription by clicking the confirmation link sent to you, you will not have subscribed to our email newsletter and you will not receive it.
We also track and analyse your interactions with our newsletter (measurement of opening and click rates) and store this information in your recipient profile. This is done in order to measure the success of our newsletter and to be able to continuously improve and design it in line with customer requirements. Opening rates are measured using a so‐called tracking pixel. This is a small, invisible image file that is automatically loaded by the web server when the newsletter is opened and therefore provides the information that the newsletter has actually been opened. Click rates, on the other hand, are measured by first directing you to a web server after you have clicked on a web link contained in a newsletter, where your click is registered, and only then are you taken to the actual target page.
Processing for other purposes occurs only if the requisite legal conditions pursuant to Art. 6(4) GDPR have been met. In this case, we will of course comply with any information obligations pursuant to Art. 13(3) GDPR and Art. 14(4) GDPR.
On what legal basis do we process your data?
Your data is processed based on your consent pursuant to Art. 6(1)(a) in conjunction with Art. 7 GDPR or for the compliance with a legal obligation pursuant to Art. 6(1)(c), (3)(a) GDPR in conjunction with Art. 32 GDPR (security) or Art. 7(1) GDPR (obligation to provide evidence).
You have the right to withdraw any consent that you have granted at any time with effect for the future and/or to object at any time to the processing of your data for marketing purposes. The withdrawal/objection does not affect the lawfulness of the processing before the withdrawal/objection. An isolated withdrawal/objection relating only to the measurement of opening and click rates and/or to the storage of the measurement results in recipient profiles is not possible. This means that, for this, you will have to unsubscribe from the newsletter as a whole. You can unsubscribe from the newsletter at any time by sending an email to [email protected] or by clicking on the unsubscribe link at the end of each newsletter.
- Email newsletters [other senders]
On our website, you have the option of subscribing to email newsletters of various senders via web forms. If you take advantage of this option, we will transfer your data that was collected via the respective form to the designated sender of the email newsletter. The sender is responsible for the subsequent processing of your data. For details on the subsequent processing of your data, please refer to the respective data protection declaration of the sender, which will be provided to you at the time that your data is collected.
What data do we process and for what purpose?
We generally process the following data:
- Salutation
- Name
- Email address
- Your (external) IP address
- Date and time of subscription and acknowledgement of subscription
- Date and time of newsletter retrieval
We generally only process this data for the purpose of providing the service (transferring your data to the sender).
Processing for other purposes occurs only if the requisite legal conditions pursuant to Art. 6(4) GDPR have been met. In this case, we will of course comply with any information obligations pursuant to Art. 13(3) GDPR and Art. 14(4) GDPR.
On what legal basis do we process your data?
Your data is processed for the performance of a contract or to take steps prior to entering into a contract in accordance with Art. 6(1)(b) GDPR.
- Competitions
On our website, you have the option of participating via web forms in various competitions run by different organisers. If you take advantage of this option, we will transfer your data that was collected via the respective form to the designated organiser of the competition. The organiser is responsible for the subsequent processing of your data. For details on the subsequent processing of your data, please refer to the respective data protection declaration of the organiser, which will be provided to you at the time that your data is collected, and to any terms and conditions of participation for the respective competition.
What data do we process and for what purpose?
We generally process the following data:
- Salutation
- Name
- Email address and/or telephone number
- If applicable, address
- If applicable, date of birth
- If applicable, content data (your answers for the competition)
We generally only process this data for the purpose of providing the service (transferring your data to the organiser).
Processing for other purposes occurs only if the requisite legal conditions pursuant to Art. 6(4) GDPR have been met. In this case, we will of course comply with any information obligations pursuant to Art. 13(3) GDPR and Art. 14(4) GDPR.
On what legal basis do we process your data?
Your data is processed for the performance of a contract or to take steps prior to entering into a contract in accordance with Art. 6(1)(b) GDPR.
- Cashback sales promotions
On our website, you have the option of taking part via web forms in various cashback sales promotions offered by different organisers. If you take advantage of this option, we will transfer your data that was collected via the respective form to the designated organiser of the cashback sales promotion. The organiser is responsible for the subsequent processing of your data. For details on the subsequent processing of your data, please refer to the respective data protection declaration of the organiser, which will be provided to you at the time that your data is collected, and to any terms and conditions of participation for the respective cashback sales promotion.
What data do we process and for what purpose?
We generally process the following data:
- Salutation
- Name
- Email address and/or telephone number
- Address
- Serial number of your Liebherr refrigerator or freezer
- Model of your Liebherr refrigerator or freezer
- Date of purchase/invoice
- Proof of invoice
- Bank details (IBAN)
We generally only process this data for the purpose of providing the service (transferring your data to the organiser).
Processing for other purposes occurs only if the requisite legal conditions pursuant to Art. 6(4) GDPR have been met. In this case, we will of course comply with any information obligations pursuant to Art. 13(3) GDPR and Art. 14(4) GDPR.
On what legal basis do we process your data?
Your data is processed for the performance of a contract or to take steps prior to entering into a contract in accordance with Art. 6(1)(b) GDPR.
- Digital content
On our website, you have the option via web forms of accessing or downloading digital content, such as white papers and similar documents, from various providers. If you take advantage of this option, we will transfer your data that was collected via the respective form to the designated provider of the digital content. The provider is responsible for the subsequent processing of your data. For details on the subsequent processing of your data, please refer to the respective data protection declaration of the provider, which will be provided to you at the time that your data is collected.
What data do we process and for what purpose?
We generally process the following data:
- Salutation
- Name
- Email address
We generally only process this data for the purpose of providing the service (transferring your data to the provider).
Processing for other purposes occurs only if the requisite legal conditions pursuant to Art. 6(4) GDPR have been met. In this case, we will of course comply with any information obligations pursuant to Art. 13(3) GDPR and Art. 14(4) GDPR.
On what legal basis do we process your data?
Your data is processed for the performance of a contract or to take steps prior to entering into a contract in accordance with Art. 6(1)(b) GDPR.
- Extensions of warranties
On our website, you have the option of requesting the extension of a warranty via web forms. If you take advantage of this option, we will transfer your data that was collected via the respective form to the designated warrantor. The warrantor is responsible for the subsequent processing of your data. For details on the subsequent processing of your data, please refer to the respective data protection declaration of the warrantor, which will be provided to you at the time that your data is collected, and to any terms and conditions of the warranty relating to the respective extension of the warranty.
What data do we process and for what purpose?
We generally process the following data:
- Salutation
- Name
- Address
- Email address
- Purchase date
- Serial number
We generally only process this data for the purpose of providing the service (transferring your data to the warrantor).
Processing for other purposes occurs only if the requisite legal conditions pursuant to Art. 6(4) GDPR have been met. In this case, we will of course comply with any information obligations pursuant to Art. 13(3) GDPR and Art. 14(4) GDPR.
On what legal basis do we process your data?
Your data is processed for the performance of a contract or to take steps prior to entering into a contract (Art. 6(1)(b) GDPR).
Use of cookies and other technologies
A. General information
We use cookies and other technologies in connection with the provision of our website. The cookie information below allows us to provide you as the user of our website with additional information on data processing when cookies and other technologies are used.
I. What are cookies and other technologies?
Cookies are small text files which a web server can store and read on your end device (computer, smartphone or similar) via the web browser used by you. Cookies contain individual, alphanumeric character strings that enable the web browser you are using to be identified and they may also contain information on user-specific settings.
Besides cookies, we use the following other technologies:
So-called local storage technology allows data to be stored locally only – i.e. solely on your end device and not on the web server – in the so-called “local storage” of your web browser. In contrast to cookies, data stored using local storage technology does not have an expiry date and is not simply automatically erased. In principle, however, you can erase this data yourself via your web browser. Please refer to the instructions from your web browser manufacturer on how to erase data stored via local storage technology.
We have also integrated so-called tracking pixels (also called “pixels”, “pixel tags” or “web beacons”) on our website. Tracking pixels are small, usually invisible, image files that are automatically loaded by a web server and can provide information about your web browser or end device and also about your use of our website. This information can then be used to create a profile that is recognised when you visit our website again.
The cookies and other technologies referred to above are hereinafter together referred to as “cookies”.
II. What types of cookies and other technologies exist?
We distinguish between essential cookies on the one hand and optional cookies on the other:
Essential cookies are cookies, which are technically necessary for the functionality of our website and information technology systems as well as for ensuring their security and stability. In this category we also include cookies which store specific settings made, options selected or information entered by you until you close your web browser (at the latest). This is in order to provide the desired function that you have requested (e.g. login status, language setting etc.). Your consent is not required for storing or reading essential cookies. You cannot, therefore, manage essential cookies via the settings of the consent management service we use. This can only be done via your web browser where you can also erase cookies stored or block the storage of cookies.
Optional cookies are cookies, which are not essential for the functionality of our website and information technology systems or for ensuring their security and stability, but are used for analysis or marketing purposes. These cookies can, for example, be used to compile anonymous statistics and collect information on how you use our website. This enables us to analyse the use of our website and therefore to optimise it. In this category we also include cookies which store specific settings made, options selected or information entered by you; these cookies remain after you have closed your web browser in order to provide the desired function you have requested (e.g. login status by selecting “Remember my e-mail address”, wish list, comparison list, etc.) over a longer term. Your prior consent is generally required for storing or reading optional cookies. You can consent to the use of optional cookies and withdraw any consent you have granted at any time with future effect via the settings of the consent management service we use.
Both essential and optional cookies may be so-called session cookies or persistent cookies. These differ in terms of their intended lifetime or functional life:
Session cookies are stored on your end device and are automatically deleted when you close your web browser.
Persistent cookies (or permanent cookies) are stored on your end device and are not automatically deleted when you close your web browser. They remain on your end device for a predefined period of time.
Data stored using local storage technology does not have an expiry date and therefore has an unlimited functional life.
Note: You can generally erase cookies and data stored using local storage technology yourself via your web browser. For details, please refer to the instructions from your web browser manufacturer.
B. Use of cookies on our website
I. Essential Cookies
1. Which essential cookies are used for what purpose and for how long?
Service | Purpose | Service provider | Functional life |
Consent management | Obtaining and managing consent and storage of information about consent decisions | Usercentrics GmbH, | 30 days |
Content Delivery Network | Security and stability | Cloudflare, Inc., | 30 days |
Load Balancer | Security and stability | - | 8 hours |
Language detection | Language detection for user-oriented language display of the website | - | Until your web browser is closed |
Country detection | Country detection for user-oriented language display of the website | - | 30 days |
Consent management
Opening settings
In order that you can manage the use of optional cookies on our website, we have implemented a consent management service. The first time you access our website you will be presented with a previously defined query (“Cookies, other technologies and miscellaneous services”) via the consent management service. This allows you to accept or decline the use of optional cookies by clicking the appropriate button. Clicking on “settings” will also take you to the settings of the consent management service. Here, for example, a simplified list of cookies classified by type is included. The consent management service enables you, for example, to find out about the purposes of the cookies we use, the data processed in each case as well as any data recipients. Also, in the case of optional cookies, you can give or withdraw your consent at any time by selecting or deselecting the relevant box.
Please note that essential cookies are already stored when accessing our website and that the relevant box is preselected. Essential cookies cannot be deselected via the consent management service. The functionality of the consent management service itself in turn requires the use of certain cookies.
Service provider information:
Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich, Germany
Website:
General Terms and Conditions:
https://usercentrics.com/de/agb/
Privacy policy:
https://usercentrics.com/de/datenschutzerklarung/
Content Delivery Network
To optimise the loading times of our website, we use a so-called “Content Delivery Network” (hereinafter “CDN”). A CDN is a network of geographically distributed servers and servers connected via the Internet. This network can be used to deliver web content faster and more securely. Within the CDN, personal data is transferred to various countries. Transfer to countries outside the EU or the EEA, so-called “third countries”, takes place in compliance with the conditions laid down in Chapter V of the GDPR. Standard contractual clauses (Art. 46(2)(c) GDPR) adopted by the EU Commission have been concluded with the service provider.
Service provider information:
Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA
Representative in the European Union:
Cloudflare Portugal, Unipessoal Lda., Largo Rafael Bordalo Pinheiro 29, 1200-369 Lisboa, Portugal
Website:
Privacy Policy (English):
https://www.cloudflare.com/privacypolicy/
Standard contractual clauses (English):
https://www.cloudflare.com/cloudflare_customer_SCCs.pdf
Load Balancer
For load distribution we use a so-called “load balancer”. A load balancer enables web requests to be sent to a load balancing server which then redirects the web request to an internal server. So that you are not routed back and forth within a session between different servers and to ensure uniform processing, your web requests are forwarded to the same server. To identify that server and to ensure correct redirection, we use a session cookie with a lifetime or functional life of 8 hours.
Country detection
We use a session cookie to enable user-oriented language display of our website. This means the language of your web browser will be detected and our website will be displayed for you in the same language.
2. On which legal basis are essential cookies used?
In order to be able to demonstrate that – or whether – you have consented to the use of optional cookies requiring your consent, we store the information about your consent, whether granted or not, in order to fulfil our legal obligation to provide evidence in accordance with Art. 6(1)(c) and Art. 6(3)(a) GDPR in conjunction with Art. 7(1) GDPR.
We also use essential cookies for the purposes of legitimate interests in accordance with Art. 6(1)(f) GDPR.
Our legitimate interests are:
Ensuring the security and stability of our website and information technology systems, for example by protecting against attacks in the form of targeted server overloads (Denial of Service attacks) or by using optimal load distribution on servers
Asserting, exercising and defending legal claims
Providing and guaranteeing the proper functionalities of our website
3. How can I object to the use of essential cookies?
You can exercise your right to object using the blocking options described under “Erasing/blocking cookies” (cf. Art. 21(5) GDPR), i.e. by blocking essential cookies via your web browser settings.
Please note that in the case of erasing without blocking, essential cookies will be set again when you access our website at a later point in time. Please also note that deactivating or erasing or blocking essential cookies may adversely affect the performance and functionality of our website and may cause certain features and functions to be unavailable.
II. Optional cookies
We would like to use the information below to enable you to make a sound decision for or against the use of optional cookies and the associated data processing.
1. Which optional cookies are used for what purpose and for how long?
Service | Purpose | Service provider | Functional life |
Google Analytics | Web analysis | Google Ireland Limited, Dublin 4, Ireland | Up to two years |
Kameleoon | Web analysis | Kameleoon SAS, 75009 Paris, France | Up to 380 days |
Google Ads Conversion Tracking | Marketing | Google Ireland Limited, Dublin 4, Ireland | Up to two years |
Google Ads Remarketing | Marketing | Google Ireland Limited, Dublin 4, Ireland | Up to two years |
Google Ad Manager | Marketing | Google Ireland Limited, Dublin 4, Ireland | Up to two years |
Microsoft Advertising | Marketing | Microsoft Ireland Operations Limited, Leopardstown, Dublin 18, Republic of Ireland | Up to 390 days |
Web analysis
Subject to your consent, we use web analysis cookies to analyse the use of our website and therefore to be able to improve it continuously. The anonymised user statistics obtained (e.g. number and origin of website visitors) enable us to optimise our website and make its design more attractive - e.g. by appropriately positioning frequently accessed information or topics on our website in line with customer requirements.
For web analysis we use “Google Analytics”, a web analysis service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter jointly referred to as “Google”), with the “IP anonymisation” extension (also called “IP masking method”). For this we have concluded a data processing agreement with Google in accordance with Art. 28 GDPR. In accordance with this, Google will process the data collected (data about your end device or your web browser, IP addresses and your website or application activities) on our behalf for the purposes of evaluating your use of our website, compiling reports on website activity and providing other services for us relating to website and internet usage.
The data collected using Google Analytics can be stored and processed in the USA or in any other country in which Google, or subprocessors of Google, maintain facilities. However, the IP masking method we use means that before transfer to a Google server in the USA and before storage there, the IP address is shortened within EU member states or in other EEA member states so that no IP address is transferred in its entirety. This prevents identification of a person or makes this significantly more difficult. Only in exceptional cases will the complete, i.e. unshortened, IP addresses be transferred to a Google server in the USA and only shortened there.
For a data transfer to a third country, i.e. a country outside the EU or EEA, appropriate safeguards for the protection of your personal data are generally required. After the Commission Implementing Decision (EU) 2016/1250 of 12 July 2016 on the adequacy of the protection provided by the EU-US Privacy Shield was declared invalid by the European Court of Justice, the EU-US Privacy Shield can no longer be used to guarantee an adequate level of protection in the USA in line with EU standards. This means that currently in the USA there is no level of data protection that is equivalent to that in the EU pursuant to Art. 45 GDPR and we cannot provide appropriate safeguards under Art. 46 GDPR to offset this shortfall. Data transfer to the USA is consequently only permitted in this case with your explicit consent in accordance with Art. 49(1)(a) GDPR. Possible risks of data transfer are that access by state authorities and/or intelligence services cannot be ruled out and your data, possibly without you being specifically informed about it and without being granted enforceable rights and effective legal remedies, can be processed by them for reasons of national security, prosecution or for other purposes in the public interest of the USA.
Service provider information:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Terms and conditions of commissioned data processing for Google advertising products:
https://privacy.google.com/businesses/processorterms/
Terms of Use:
https://marketingplatform.google.com/about/analytics/terms/de/
Overview of data usage in Google Analytics:
https://support.google.com/analytics/answer/6004245?hl=de
Privacy policy:
https://policies.google.com/privacy?hl=de
Technical explanation of “IP anonymisation (or IP masking method) in Google Analytics”:
https://support.google.com/analytics/answer/2763052?hl=de
Additional note:
If you wish to deactivate Google Analytics across all websites, you can download and install the “Browser add-on for deactivation of Google Analytics” at the following address https://tools.google.com/dlpage/gaoptout?hl=de. This option only disables web analysis so long as you are using a web browser on which you have installed the add-on.
Kameleoon
For web analysis we use “Kameleoon”, a test and personalisation service of Kameleoon SAS, 12 rue de la Chaussée d'Antin, 75009 Paris, France, with which we in this respect have concluded a data processing agreement in accordance with Article 28 GDPR. This service enables us to perform so-called A/B testing procedures, through which we can test and optimise different versions of our website. To this end, we analyse the behaviour of users who are assigned to a specific user segment based on defined criteria, such as the terminal equipment and web browser used, to which a randomly selected version of our website is displayed over a certain period of time. In this context, various information is accessed from or stored on your terminal equipment, in particular in the local storage of your web browser. In addition to data about your terminal equipment (device type, operating system, web browser used, screen/window size, language setting, activated adblocker, etc.), the information accessed or stored includes, in particular, a unique identifier (unique ID) by means of a pseudonymous visitor identifier (kameleoonVisitorCode), which can be used to uniquely recognise your terminal equipment and thus ensure continuous tracking of your user activities, including the duration of your visit and the areas of our website accessed.
Service provider information:
Kameleoon SAS, 12 rue de la Chaussée d'Antin, 75009 Paris, France
Overview of data collection by the service provider:
https://developers.kameleoon.com/privacy-and-compliance/data-collection-client-side
Privacy Policy:
https://www.kameleoon.com/en/privacy-policy
Marketing
We use marketing cookies, subject to your consent. Marketing cookies can detect whether you have accessed an advertised website and which content has been and is being used by you. This is in order to display advertising content relevant to you and tailored to your interests, to limit the frequency with which advertisements appear and to measure the success and effectiveness of advertising campaigns.
For marketing purposes, we use the following advertising products of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter together referred to as “Google”).
- Google Ads
We use the advertising product “Google Ads” (formerly: AdWords). This product enables us to display advertisements, for example in Google search results in the Google partner network or on other Google platforms. When you interact with an advertisement placed through Google Ads, such as by clicking on an advertisement, “Google Ads Conversion Tracking” uses a cookie to track whether you have subsequently completed an action (“conversion”) defined by us, such as subscribing to a newsletter. The information obtained with the cookie used is provided to us by Google in the form of so-called conversion statistics. From these statistics we can read, for example, the total number of anonymous users who have clicked on our advertisement. We receive no information ourselves that would enable personal identification. In addition to Google Ads Conversion Tracking, we use “Google Ads Remarketing” which enables advertisements to be displayed in the Google partner network during your subsequent internet usage following your visit to our website. For this purpose, Google records your usage behaviour when you visit various websites in the Google partner network, for which, according to Google, pseudonymisation is used. “Google Ad Manager” (formerly: DoubleClick) is another advertising product we use. We use this to present targeted advertisements to you based on your perceived interests. A pseudonymous identification number is assigned to the web browser you are using in order to check which advertisements have already been displayed in your web browser and which of these you have accessed.
Data collected in the context of Google's advertising products may be stored and processed by Google, for example in the USA. We have no influence over subsequent data processing by Google. For a data transfer to a third country, i.e. a country outside the EU or EEA, appropriate safeguards for the protection of your personal data are generally required. After the Commission Implementing Decision (EU) 2016/1250 of 12 July 2016 on the adequacy of the protection provided by the EU-US Privacy Shield was declared invalid by the European Court of Justice, the EU-US Privacy Shield can no longer be used to guarantee an adequate level of protection in the USA in line with EU standards. This means that currently in the USA there is no level of data protection that is equivalent to that in the EU pursuant to Art. 45 GDPR and we cannot provide appropriate safeguards under Art. 46 GDPR to offset this shortfall. Data transfer to the USA is consequently only permitted in this case with your explicit consent in accordance with Art. 49(1)(a) GDPR. Possible risks of data transfer are that access by state authorities and/or intelligence services cannot be ruled out and your data, possibly without you being specifically informed about it and without being granted enforceable rights and effective legal remedies, can be processed by them for reasons of national security, prosecution or for other purposes in the public interest of the USA.
Service provider information:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Website:
https://marketingplatform.google.com
Privacy policy:
https://policies.google.com/privacy
- Microsoft Advertising
For marketing purposes, we use “Microsoft Advertising” (previously: “Bing Ads”), an online advertising programme provided by Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Republic of Ireland; Parent company: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA (hereinafter collectively referred to as “Microsoft”).
Within the context of this advertising programme we have the ability to place promotional content and advertisements within the service provider’s advertising network (Microsoft Audience Network) as well as in search results from the “Microsoft Bing” Internet search engine, which is displayed to you based on your presumed interests (personalised advertising). In addition, we use a tool known as Universal Event Tracking (abbreviated as: “UET”) to configure and track if and how users interact with our content and advertisements placed via Microsoft Advertising. This allows us to, for example, track the user activity of someone who has accessed our website by clicking on such content or such an advertisement, including for how long they visited the website and which areas of the website they accessed. For this purpose, various cookies, some of which feature unique IDs, are stored and various data is collected, including IP addresses, which are stored by Microsoft for up to 390 days. Microsoft also processes the data collected within the context of Microsoft Advertising for its own purposes, including to improve its services as well as for reporting and performance analysis. We only receive anonymised statistics from Microsoft. From these statistics we can read, for example, the total number of users who have clicked on our advertisements. We are unable to identify you as an individual.
Data collected in the context of Microsoft Advertising may be stored and processed by Microsoft, for example, in the USA. We have no influence over subsequent data processing by Microsoft. For a data transfer to a third country, i.e. a country outside the EU or EEA, appropriate safeguards for the protection of your personal data are generally required. After the Commission Implementing Decision (EU) 2016/1250 of 12 July 2016 on the adequacy of the protection provided by the EU-US Privacy Shield was declared invalid by the European Court of Justice, the EU-US Privacy Shield can no longer be used to guarantee an adequate level of protection in the USA in line with EU standards. This means that currently in the USA there is no level of data protection that is equivalent to that in the EU pursuant to Art. 45 GDPR, and we cannot provide appropriate safeguards under Art. 46 GDPR to offset this shortfall. Data transfer to the USA is consequently only permitted in this case with your explicit consent in accordance with Art. 49(1)(a) GDPR. Possible risks of data transfer are that access by state authorities and/or intelligence services cannot be ruled out and your data, possibly without you being specifically informed about it and without being granted enforceable rights and effective legal remedies, can be processed by them for reasons of national security, prosecution or for other purposes in the public interest of the USA.
Service provider information:
Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Republic of Ireland; Parent company: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA
Website:
https://about.ads.microsoft.com
Data protection information:
https://privacy.microsoft.com/privacystatement
Additional note:
If you wish to deactivate personalised adverts from Microsoft, you can configure the corresponding setting at https://account.microsoft.com/privacy/ad-settings.
2. On which legal basis are optional cookies used?
We use optional cookies on the basis of consent in accordance with Art. 6(1)(a) in conjunction with Art. 7 GDPR.
3. How can I withdraw the consent I have granted for the use of optional cookies?
When you (first) access our website, we request among other things your consent for the use of optional cookies by means of a predefined query (“Cookies, other technologies and other services”). You can withdraw the consent you have granted at any time with effect for the future and thereby prevent further collection of your data by deselecting optional cookies (web analysis, marketing) in the settings of the consent management service.
If and insofar as you do not consent or withdraw consent already granted - (further) data collection by means of optional cookies requiring consent and data processing associated with this will cease. This has no disadvantages in terms of using the website unless you also deactivate the cookie functions for essential cookies.
The revocation of consent will not affect the legality of the processing carried out on the basis of the consent up to revocation.
As an alternative to withdrawing your consent, the options described under “Erasing/blocking cookies” relating to erasing or blocking cookies along with the information provided there are also available to you.
C. Erasing/blocking cookies
Cookies are stored on your end device which means that you have the control over these. If you do not want us to recognise your end device, you can deactivate or erase cookies already stored on your end device at any time – manually or automatically – and/or block storage of cookies with future effect by making the relevant setting on your web browser software. e.g. “not accept cookies” or similar. Most web browsers can also be configured so that cookie storage is only accepted if you agree to this separately on a case-by-case basis. If you do not want to accept cookies from our service providers and partners, you should have your web browser set to “block third-party cookies” or similar. The “Help” function in the menu bar of your web browser usually shows you how to deactivate or erase cookies already stored and how to decline new cookies. For details of the options described, please refer to the instructions from your web browser manufacturer.
Please note that in the case of erasing without blocking, essential cookies will be set again and we may ask you again for your consent to optional cookies when you access our website at a later point in time. Please also note that deactivating or erasing or blocking essential cookies may adversely affect the performance and functionality of our website and may cause certain features and functions to be unavailable.
You can manage the settings for the use of optional cookies and the data processing associated with this at any time in the settings of the consent management service.
Integration of third-party services
As part of the provision of our website, we integrate different content and functional elements (hereinafter also referred to collectively as “services”) which are obtained from the web servers of their respective providers (hereinafter referred to as “third-party providers”). Your IP address always needs to be transferred to the respective third-party provider to ensure the proper presentation and provision of the services. Although we endeavour to only integrate services where the respective third-party provider uses the IP address only to deliver the services, we have no influence on the subsequent processing by third-party providers.
For data transfers requiring consent, we ask you for your consent for the data transfer to third-party providers/third countries associated with the use of miscellaneous services, among other things, when you access our website for the first time with a predefined query (“Cookies, other technologies and miscellaneous services”). If you do not already grant your consent with this predefined query, third-party services requiring your consent will be blocked on our website and no data will be transferred to third-party providers/third countries. Instead, you can grant your consent separately in each case for individual third-party services by clicking “Accept” in the respective blocker. If, in future, you no longer want to grant consent individually to each third-party service and want to be able to load them without the respective blocker, you also have the option of selecting “always accept” and therefore also consenting to the associated data transfers for all other third-party services which you open on our website in the future.
You can withdraw the consent you have granted at any time with effect for the future and thereby prevent further transfer of your data by deselecting the corresponding services under “Miscellaneous services (optional)” in the settings of the consent management service.
Integrated third-party services:
- YouTube videos
We integrate on our website videos from “YouTube”, a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter together referred to as “Google”). “Extended data protection mode” is activated for integrated YouTube videos in order that no cookies are used to analyse usage behaviour.
Subject to your consent, we transfer your data including your IP address to Google when you load a YouTube video. Data transferred in the context of YouTube videos may be stored and processed by Google, for example, in the USA. We have no influence over subsequent data processing by Google. For a data transfer to a third country, i.e. a country outside the EU or EEA, appropriate safeguards for the protection of your personal data are generally required. After the Commission Implementing Decision (EU) 2016/1250 of 12 July 2016 on the adequacy of the protection provided by the EU-US Privacy Shield was declared invalid by the European Court of Justice, the EU-US Privacy Shield can no longer be used to guarantee an adequate level of protection in the USA in line with EU standards. This means that currently in the USA there is no level of data protection that is equivalent to that in the EU pursuant to Art. 45 GDPR, and we cannot provide appropriate safeguards under Art. 46 GDPR to offset this shortfall. Data transfer to the USA is consequently only permitted in this case with your explicit consent in accordance with Art. 49(1)(a) GDPR. Possible risks of data transfer are that access by state authorities and/or intelligence services cannot be ruled out and your data, possibly without you being specifically informed about it and without being granted enforceable rights and effective legal remedies, can be processed by them for reasons of national security, prosecution or for other purposes in the public interest of the USA.
Third-party provider information:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Website:
Data protection declaration:
https://policies.google.com/privacy
- Google Maps
We integrate on our website map data from “Google Maps”, a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter together referred to as “Google”).
Subject to your consent, we transfer your data including your IP address to Google when you load map data from Google Maps. Data transferred in the context of Google Maps may be stored and processed by Google, for example, in the USA. We have no influence over subsequent data processing by Google. For a data transfer to a third country, i.e. a country outside the EU or EEA, appropriate safeguards for the protection of your personal data are generally required. After the Commission Implementing Decision (EU) 2016/1250 of 12 July 2016 on the adequacy of the protection provided by the EU-US Privacy Shield was declared invalid by the European Court of Justice, the EU-US Privacy Shield can no longer be used to guarantee an adequate level of protection in the USA in line with EU standards. This means that currently in the USA there is no level of data protection that is equivalent to that in the EU pursuant to Art. 45 GDPR, and we cannot provide appropriate safeguards under Art. 46 GDPR to offset this shortfall. Data transfer to the USA is consequently only permitted in this case with your explicit consent in accordance with Art. 49(1)(a) GDPR. Possible risks of data transfer are that access by state authorities and/or intelligence services cannot be ruled out and your data, possibly without you being specifically informed about it and without being granted enforceable rights and effective legal remedies, can be processed by them for reasons of national security, prosecution or for other purposes in the public interest of the USA.
Third-party provider information:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Website:
https://cloud.google.com/maps-platform
Data protection declaration:
https://policies.google.com/privacy
- Google Charts
We integrate on our website charts from “Google Charts”, a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter together referred to as “Google”).
Subject to your consent, we transfer your data including your IP address to Google when you load charts from Google Charts. Data transferred in the context of Google Charts may be stored and processed by Google, for example, in the USA. We have no influence over subsequent data processing by Google. For a data transfer to a third country, i.e. a country outside the EU or EEA, appropriate safeguards for the protection of your personal data are generally required. After the Commission Implementing Decision (EU) 2016/1250 of 12 July 2016 on the adequacy of the protection provided by the EU-US Privacy Shield was declared invalid by the European Court of Justice, the EU-US Privacy Shield can no longer be used to guarantee an adequate level of protection in the USA in line with EU standards. This means that currently in the USA there is no level of data protection that is equivalent to that in the EU pursuant to Art. 45 GDPR, and we cannot provide appropriate safeguards under Art. 46 GDPR to offset this shortfall. Data transfer to the USA is consequently only permitted in this case with your explicit consent in accordance with Art. 49(1)(a) GDPR. Possible risks of data transfer are that access by state authorities and/or intelligence services cannot be ruled out and your data, possibly without you being specifically informed about it and without being granted enforceable rights and effective legal remedies, can be processed by them for reasons of national security, prosecution or for other purposes in the public interest of the USA.
Third-party provider information:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Website:
https://developers.google.com/chart
Data protection declaration:
https://policies.google.com/privacy
- Google Tag Manager
On our website, we use the “Google Tag Manager”, a service of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter together referred to as “Google”).
The Google Tag Manager is a service which allows us to use other services, such as Google Analytics, on our website or to manage their use without having to change the source code of the website for this purpose. The Google Tag Manager itself does not collect or access any personal data, but merely controls and executes the services managed by it, which in turn may process data with your consent, if necessary.
Third-party provider information:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
Terms of Use:
https://marketingplatform.google.com/about/analytics/tag-manager/use-policy/
Data protection declaration:
https://policies.google.com/privacy
Data recipients
We may transfer your data to:
Other companies of the Liebherr Group, provided this is required to bring about, perform or terminate a contract, or there is a legitimate interest in the transfer on our part, and it is not precluded by your overriding legitimate interest;
Providers of functions and any other services actively utilised by you;
Our service providers that we use in order to achieve the above purposes;
The recipient(s) requested by you;
Courts, arbitrators, authorities or legal advisers, if this is required to comply with the applicable law or to establish, exercise or defend legal claims.
Data transfers to third countries
A data transfer to entities in countries outside the European Union or the European Economic Area (so-called third countries) or to international organisations is permissible only (1) if you have given us your consent or (2) if the European Commission has decided that there is an adequate level of protection in a third country (Art. 45 GDPR). If the Commission has not taken such a decision, we can transfer your data to recipients located in a third country only if appropriate safeguards exist (e.g. standard data protection clauses adopted by the Commission or the supervisory authority under a specific procedure) and the enforcement of your rights as a data subject is guaranteed or the transfer is permissible in individual cases on the grounds of other legal bases (Art. 49 GDPR).
Where we transfer your data to third countries, we will inform you of the respective details of the transfer at the relevant points in this data protection declaration.
Data erasure and storage period
We process your data, provided that this is necessary for the respective purpose, if you have not effectively objected to the processing of your data or effectively withdrawn the consent that you may have granted.
If statutory retention obligations exist, we will have to store the data affected thereby for the duration of the retention obligation. After the expiry of the retention obligation, we will check whether there is any further necessity for processing. If there is no longer any necessity, your data will be deleted.
Data security
We use technical and organisational security measures to ensure that your data is protected from loss, improper changes or unauthorised access by third parties. Moreover, we ensure that, on our side, only authorised persons are granted access to your data and then only to the extent necessary for the above-mentioned purposes. The transfer of all data is encrypted.
#Version: May 2023