Privacy Policy

Dear Visitors,

We are pleased to welcome you on our customer portal. In order for you to feel safe and comfortable during your visit on our website, we would like to inform you about the processing of your data.

Who we are

The operator of this customer portal (website) is SWARCO AG. Whenever "we" or "us" are referred to in this privacy policy, this refers to SWARCO AG. SWARCO AG is part of the SWARCO Group with about 80 companies in currently 26 countries. The SWARCO Group is a leading manufacturer of signalling equipment and offers a market-leading range of products, services and solutions in the fields of urban and interurban traffic management. In addition, the SWARCO Group is known as a manufacturer and supplier of the full range of retroreflective marking systems.

The following information provides a simple overview of what happens to your personal data when you visit our customer portal. Personal data is any data by which you can be personally identified. For detailed information on the subject of data protection, please refer to our further notes listed below this text.

Scope

The following data protection provisions serve to inform you as a customer portal visitor about our handling of the collection, use and disclosure of personal data.

The responsible body for the operation of this customer portal is SWARCO AG.

Depending on the specific circumstances of the data collection and processing, SWARCO AG is also responsible for the processing of personal data within the meaning of Art. 4 No. 7 GDPR.

Data Protection Officer:

Data Protection Officers | SWARCO

How do we collect your data?

Your data is primarily collected by you providing it to us. The data consists of the information necessary for logging into the customer portal (mail address, company name, telephone number). In addition, further data provided in the course of the registration process is stored (surname and first name, business telephone numbers, job title, country and city, postcode, company address).

The processing is carried out for the purposes of unique identification for logging into our customer portal as well as the administration and processing of existing contracts. The legal basis for data processing is Art. 6 (1) b), c) and f) GDPR.

Furthermore, data is processed when you open a fault case via an enquiry form, your details from this form, including the contact details you provided there, are stored with us for the purpose of processing the enquiry and in the event of follow-up questions. We do not pass on this data without your consent.

In this case, the data entered in the enquiry form is processed exclusively on the basis of your consent (Art. 6 para. 1 lit. a GDPR). You can revoke this consent at any time. For this purpose, an informal communication by e-mail to us is sufficient. The legality of the data processing operations carried out until the revocation remains unaffected by the revocation.

The data you entered in the enquiry form will remain with us until you request us to delete it, revoke your consent to store it or the purpose for storing the data no longer applies (e.g. after processing your enquiry has been completed). Mandatory legal provisions - in particular retention periods - remain unaffected.

Storage duration / Criteria for defining the storage duration:

We store your personal data as long as it is necessary for the purpose for which it was collected. As far as there are no deviating legal storage obligations, the storage of the data required in each case therefore always takes place for the duration of the business relationship with you and until the expiry of the applicable limitation periods for any claims resulting from the business relationship. This is usually 3 years after the last activity on your part in the customer portal.

Recipients / categories of recipients

Disclosure of personal data within the SWARCO Group:

It may be necessary for us to transfer your requests sent to us by e-mail, contact form, telephone or post, including the personal data contained therein, to other companies within the SWARCO Group, if this is necessary for the purposes of processing your request.

Furthermore, your data will be shared with other companies of the SWARCO Group for the implementation or initiation of a business relationship.

Within the SWARCO Group your data may be transferred to other companies of this group for marketing purposes.

Disclosure of personal data to third parties:

In principle, no data will be shared with other third parties outside the SWARCO Group. We may only disclose your personal data to third parties if you have expressly consented to the transfer in advance, or if we are obliged to do so by law. The legal basis for this data processing is Art. 6 para. 1 a) GDPR in case of consent or Art. 6 para. 1 c) GDPR in case of a legal obligation.

Exceptionally, however, data are processed on our behalf by third party processors (i.e. we outsource personal data collected from us to external service providers). These contractors are carefully selected, audited by us and contractually bound according to Art. 28 GDPR (in particular on provision of suitable technical and organisational security measures).

We may also disclose your personal information if disclosure is necessary to protect vital interests, or where we are otherwise permitted by applicable laws or regulations.

We do not sell or license your personal information to third parties.

International data transfer:

In order to fulfil the purposes mentioned under this Privacy Policy, we may transfer your personal information to recipients outside the European Economic Area (EEA). In those countries there might not apply the same standard of data protection as in the state in which you provided your personal data originally. This may for example be the case when data is shared with another corporation of the SWARCO Group, which is based in a non-EEA country.

Personal data will only be transferred to non-EEA countries under the following conditions:

the transfer is made to a country where the European Commission considers that adequate protection of personal data is guaranteed, or
appropriate measures have been taken to protect your data, in particular by contractual agreement on appropriate data protection measures or safeguards in accordance with the requirements of the European Commission or a data protection authority, or if you
have consented to the transfer or
the transfer is necessary for the performance of a contract between you and the person responsible or for the implementation of pre-contractual measures at your request, or
there is another legal basis for the data transfer.

Use of our customer portal

The protection of your privacy is very important to us. For this reason, we have designed our website in such a way that it can be used anonymously. We use information that we receive and store during your visit to our websites exclusively for internal purposes and to improve the design of the websites. Exceptions apply if data processing is necessary to defend against and prosecute attacks that constitute criminal offences or impair the functionality of our website.

Encryption

To protect your data from unwanted access, we use an encryption method on most pages. Your details are then transmitted from your computer to our server and vice versa via the Internet using 128-bit SSL encryption (Secure Socket Layer). You can recognize this by the fact that the lock symbol on the status bar of your browser is closed and the address line starts with https://.

Your Rights

Right of access (Art. 15 GDPR):

Pursuant to Art. 15 para. 1 GDPR, you have the right, to request confirmation as to whether personal data relating to you are processed and, if this is the case, to receive information about the personal data we hold about you as well as the information specified in Art. 15 GDPR.

Right to rectification and erasure (Art. 16 und 17 GDPR):

In addition, you have the right to have modify, correct or in general amend your personal information (Art. 16 GDPR).

Furthermore, you have the right to request the deletion of personal data concerning you (e.g. if the data is no longer required for the purposes pursued) if the conditions set out in Art. 17 GDPR are met.

Right to restriction of processing (Art. 18 GDPR):

You have the right to request the restriction of the processing (Art. 18 GDPR) of your personal data if one of the conditions set out in Art. 18 GDPR is fulfilled, e.g. if you have objected to the processing, for the duration of any examination of our right to data processing or in the event that personal data are no longer required for processing purposes but must continue to be reserved for the assertion, exercise or defence of legal claims.

A restriction on the processing means that the data in question may only be processed - apart from being stored - with your consent or in order to assert, exercise or defend legal claims, to protect the rights of another person or for reasons of an important public interest of the European Union or a Member State.

Right to data portability (Art. 20 GDPR):

If automated data processing is based on your consent or processing is necessary for the fulfilment of a contract with you or for the implementation of pre-contractual measures that take place at your request, you have the right to receive the personal data you have provided and which concerns you in a structured, current and machine-readable format and to transmit this data to another controller without hindrance from the controller to which the personal data have been provided. You also have the right to request the direct transmission of this data by us to a third party if this is technically feasible.

Right of objection (Art. 21 GDPR):

If the data processing is based on Art. 6 para. 1 f) GDPR (data processing for the protection of legitimate interests), you have the right to object to the processing at any time for reasons arising from your particular situation. We will then no longer process the personal data unless there are demonstrably compelling reasons worthy of protection for further processing which outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

Right of withdrawal (Art. 7 para. 3 GDPR):

If the data processing is based on a consent pursuant to Art. 6 para. 1 a) or Art. 9 para. 2 a) GDPR, you can withdraw your consent at any time with effect for the future. However, such withdrawal shall not affect the lawfulness of data processing based on consent before its withdrawal.

To exercise the aforementioned rights or in the event of open questions, please send us your request here:

SWARCO Compliance Office
Blattenwaldweg 8
A-6112 Wattens
compliance@swarco.com

We will ask you to verify your identity and specify which kind of information you require. We will make sure that your request will be addressed in time and free of charge unless a disproportionate effort is required.

Right to lodge a complaint with a supervisory authority (Art. 77 GDPR):

In addition, you have the right to lodge a formal complaint with the respective data protection authority in your jurisdiction, if you believe that the processing of personal data concerning you violates applicable data protection regulations. In particular, the complaint may be lodged with a supervisory authority in the EU Member State of your place of residence, place of work or the place of alleged violation.

Changes to this Privacy Policy

We may change this privacy policy in order to comply with applicable legal requirement. The current privacy policy can be found on our website and we therefore encourage you to regularly check it for any changes.

Responsible for data processing in accordance with art. 4 para. 7 GDPR in connection with visiting this website:

SWARCO AG
Blattenwaldweg 8
A-6112 Wattens