ZF Digital Aftermarket@Automechanika 2021

Privacy Policy ×

I. Introduction and scope

This General Data Protection Notice (the “Notice”) applies to the processing of personal data by ZF Friedrichshafen AG and its EU-based affiliates as part of the worldwide ZF Group (“ZF Group”). For purposes of this Notice, affiliates means any company with respect to which ZF Friedrichshafen AG owns, directly or indirectly, more than 50% of the shares, together ZF (“ZF”).

ZF considers protecting the personal data of all customers and business partners to be an important priority. This includes consumers as end-use customers and employees of our business partners in their role as contact persons and representatives in the context of a business relationship.

ZF is committed to processing Personal Data responsibly and in compliance with the applicable data protection laws in all countries in which ZF operates. This Notice describes the types of Personal Data ZF collects, how ZF uses that Personal Data, with whom ZF shares your Personal Data, and the rights you, as a Data Subject, have regarding ZF’s use of the Personal Data. This Notice also describes the measures ZF takes to protect the security of the data and how you can contact us about our data protection practices.

II. Contact details of the Data Controllers

The legal entities responsible for the collection and use of your Personal Data (the “Data Controllers”) in your home country for the purposes described in this Notice are contained in the attached Download Privacy Policy

III. Contact details of the Data Protection Officer

A Data Protection Officer (“DPO”) is designated for each legal entity where required by applicable law. The DPO is involved in all issues related to the protection of your Personal Data. In particular, the DPO is in charge of monitoring and ensuring compliance with this Notice and the applicable data protection laws. For any comments or questions you may have regarding this Notice, please contact the ZF Group Coordinator for data protection, who is also the DPO of ZF Friedrichshafen AG, Ms. Silke Wolf, at the following address:

Josef Hermes
ZF Friedrichshafen AG
Corporate Headquarters / ZF Forum
Löwentaler Straße 20
88046 Friedrichshafen

You may also contact the ZF Group Coordinator for data protection by e-mail under dataprotection@zf.com.

IV. Categories of Personal Data processed

We process the following Personal Data for a number of business purposes that we list further below:

  • Contact information of user (customers, business partners, etc.), such as first name, family name, email address, password, country, corporate name and type (user group: workshop, fleet, trade partner, press, ZF employees, other) of the company / publisher / organization and position.

The Personal Data processed is limited to the data necessary for carrying out the business purpose for which such Personal Data is collected. ZF will maintain Personal Data in a manner that ensures it is accurate, complete and up-to-date.

ZF will collect the Personal Data as a general rule directly from the Data Subject. However, in line with legal provisions, data may also be collected from third parties.

V. Purposes of data processing and legal bases

ZF processes Personal Data in accordance with applicable data protection laws and regulations and only for limited, explicit and legitimate purposes. ZF will not use Personal Data for any purpose that is incompatible with the original purpose for which it was collected unless you provide your prior explicit consent for further use.

Personal Data relating to customers and business partners may be processed for the purposes of:

  • Managing commercial relationships and strategies with current and potential customers as well as business partners such as vendors and suppliers;
  • Carrying out promotional and marketing operations;
  • Managing ZF’s IT customer relationship and service operations.

The legal bases for the purposes listed above are the underlying contract with user (customer or business partner), the request of a Data Subject in a pre-contractual situation allowing ZF to take steps prior to entering into a contract, or applicable legal provisions, e.g. the Tax Code or the Product Liability Act. Further, Personal Data of our customers and business partners (including their contact persons and sales representatives) will be processed for the purposes of ZF’s legitimate business interests consisting of customer relationship management, quality assurance, complaints management, marketing and promotional activities and only as long as ZF’s legitimate interests are not overridden by the Data Subject’s interests or fundamental rights and freedoms or if Data Subjects have given their consent to do so.

ZF ensures that our internal governance procedures clearly specify the reasons behind decisions to use Personal Data for alternative processing purposes. Prior to using your personal data for a purpose other than the one for which it was initially collected, you will be informed about such new purpose.

VI. Data Security

ZF has implemented appropriate technical and organizational measures to ensure a level of security appropriate to the risk, such risk analysis includes an analysis of the risk of compromising the rights of the Data Subject, costs of implementation, and the nature, scope, context and purposes for data processing.

The measures include

(i.) encryption of personal data where applicable/appropriate;

(ii.) the ability to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services;

(iii.) the ability to restore the availability and access to personal data in a timely manner in the event of a physical or technical incident; and

(iv.) a process for regularly testing, assessing and evaluating the effectiveness of technical and organizational measures for ensuring the security of the processing.

VII. Recipients of Personal Data

ZF Friedrichshafen AG is the corporate headquarter of the ZF Group. Due to shared corporate IT systems within the ZF Group and because of the international nature of our business, Personal Data collected and processed by ZF Friedrichshafen AG and its subsidiaries (“ZF legal entities”) can be shared with or accessed by other ZF legal entities of the ZF Group for the purposes above. A data transfer to ZF legal entities outside of the EU will only occur under the provisions for international data transfers laid out in Section VIII of this Notice (see below). An overview of the ZF legal entities that are part of the ZF Group can be found at:

Collected Personal Data will only be transferred to carefully selected data processors acting on the basis of ZF’s instructions to comply with the applicable legal and contractual obligations. ZF will only grant access to Personal Data on a need-to-know basis, and such access will be limited to the Personal Data that is necessary to perform the function for which such access is granted. Authorization to access Personal Data will always be linked to the function so that no authorization will be extended to access Personal Data on a personal basis. Service providers and other data processors will only receive Personal Data according to the purposes of the service agreement with ZF.

VIII. International data transfers

International data transfers refer to transfers of Personal Data outside of the European Economic Area (“EEA”). The international footprint of ZF involves the transfer of Personal Data to and from other group companies or third parties, which may be located outside the EEA, including the United States of America. ZF will ensure that Personal Data is transferred to countries that have adequate data protection standards as per the European Commission’s specifications. Alternatively, data will only be transferred after implementation of appropriate safeguards to adequately protect the Personal Data and secure that such data transfers are in compliance with applicable data protection laws. ZF has implemented Data Transfer agreements based on EU model clauses to cover international data transfers. A copy of these agreements can be obtained by contacting the ZF Group Coordinator for Data Protection (see Section III. above).

IX. Retention of Personal Data

ZF will not retain your Personal Data for longer than is allowed under the applicable data protection laws and regulations or for longer than is justified for the purposes for which it was originally collected. As a general rule, collected data will be deleted as soon as there no longer exists a business relationship with the customer/business partner or in the event of communication inactivity for the duration of a period of 2 years. However, collected data may be subject to retention requirements pursuant to applicable legal provisions. In other cases, Personal Data may be stored and retained for as long as the statutory period of limitations with regards to legal claims against ZF has not expired.

X. Data protection rights

Under applicable data protection laws, you will benefit from the following rights. You can exercise these rights at any time by contacting the ZF Group Coordinator for data protection (see Section III. above):

  • Right to access to, rectification and erasure of Personal Data;
  • Right to restriction of processing;
  • Right of data portability to the extent applicable;
  • Right to withdraw consent where the processing is based on consent;
  • Right to lodge a complaint with the supervisory authority and
  • Right to object to processing.

XI. Notice Compliance and Contact Information

Monitoring and ensuring compliance of the Personal Data processing within ZF with this Notice and applicable data protection laws and regulations is the responsibility of the ZF Group Coordinator for data protection and of your local DPO, where applicable.

You may contact the ZF Group Coordinator for data protection with regard to any issue related to processing of your Personal Data and to exercise your rights as mentioned above.

XII. Cookies

“Cookies” are small text files that are stored by your web browser on your computer's hard drive. They allow ZF to store such things as user preferences. The ZF Aftermarket Live Websites uses both session cookies and persistent cookies. Session cookies are temporary cookies that expire (and are automatically erased) when you close your browser. Persistent cookies stay in your browser until they expire, or until you delete them.

Cookies allow us to recognise your device (e.g. your laptop or mobile device) so that your experience of our ZF Aftermarket Live Websites can be tailored to your device. Cookies do not typically identify you as an individual, just the device you are using. We use cookies to save information such as passwords and preferences so you don’t have to re-enter it each time you visit our ZF Aftermarket Live Websites, to deliver content tailored to your interests and to optimise the performance of the ZF Aftermarket Live Websites. The information connected with the cookie can also be visitors' preferences and record session information, such as pages visited, interactions with the ZF Aftermarket Live Websites ’s features, time spent on our ZF Aftermarket Live Websites and language preference.

Most Internet browsers allow you to block cookies from your browser. If you do not agree to the use of these cookies please disable them by following the instructions for your browser set out here: http://www.allaboutcookies.org/ or use the automated disabling tool where available. However, some of the services in relation to the ZF Aftermarket Live Websites will not function well if cookies are disabled.

Below, we have provided a list of the categories of cookies used on our ZF Aftermarket Live Websites, and a description of what these cookies do. Some of these cookies are essential to the operation of the ZF Aftermarket Live Websites. Others are not essential, but help us to improve our ZF Aftermarket Live Websites by collecting anonymous user information, or try and improve your experience of our ZF Aftermarket Live Websites by remembering your choices.

We use the following types of cookies:

(i.) Strictly necessary cookies – which enable services and applications you have specifically asked for

We use certain cookies which are essential to the operation of our ZF Aftermarket Live Websites. For example, these types of cookies enable you to log into secure areas of our ZF Aftermarket Live Websites, provide the necessary security your visit to our ZF Aftermarket Live Websites requires, and help ensure the content of the pages you request loads quickly. Without these cookies, ZF Aftermarket Live Websites services that you have asked for cannot be provided as required.

The use of these cookies implicates processing the following type of data: [anonymous browser session ID, permission groups, user ID]. As far as this data must be considered personal data, the processing is based on statutory provisions which justify this on the ground that the processing is necessary to provide the requested ZF Aftermarket Live Websites services.

(ii.) Functionality Cookies – which remember your choices to improve your experience

These cookies allow our ZF Aftermarket Live Websites to remember choices you make, such as remembering your preferred language, the type of device you are using, the region you are in. The aim of these cookies is to provide you with a more personal experience so that you don't have to reset your preferences each time you visit the ZF Aftermarket Live Websites. As described above, you may disable any of these functional cookies; but if you do so, then various functions of our ZF Aftermarket Live Websites may be unavailable to you or may not work the way you want them to.

The use of these cookies implicates processing the following type of data: [device ID, preferred language, preferred country, navigation history]. As far as this data must be considered personal data, the processing is based on statutory provisions which justify this on the ground that (1) the processing is necessary to provide the requested ZF Aftermarket Live Websites services; or (2) ZF has a legitimate interest in ensuring the functionality of the ZF Aftermarket Live Websites and that it is tailored to the user’s needs.

(iii.) Performance/ analytics Cookies: – which collect pseudonymous information about the web pages you visit

These cookies collect information about how visitors use our ZF Aftermarket Live Websites, for example, which pages our visitors go to most often, and if they get error messages on those pages. These performance cookies don't collect information that identifies you as an individual – all information they collect is aggregated and pseudonymous. We do not associate usage data collected through these cookies with personal data which you may have provided when registering for a ZF Aftermarket Live Account (e. g. your name).

On the ZF Aftermarket Live Websites, we use technologies Piwik PRO GmbH ( https://piwik.pro/privacy/ ) to collect and store data about your use of the ZF Aftermarket Live Websites for the purposes of optimization of the ZF Aftermarket Live Websites services and marketing. Usage profiles may be created from this data under a pseudonym using cookies.

As far as this data must be considered personal data, the processing is based on statutory provisions which justify this on the ground that (1) ZF has a legitimate interest that the ZF Aftermarket Live Websites is tailored to the user’s needs; or (2) the data is used in pseudonymous form for the purpose of marketing and optimization purposes and the user has not objected to this use.

You can change your cookie settings at any time at: https://www.zfaftermarketlive.com/en/privacy-policy .

XII. Miscellaneous

This Notice will be effective as of 14 September 2021 and will be applicable to ZF (see Section I. above for a precise definition of the scope).

This Notice may be revised and amended from time to time and appropriate notice about any amendments will be given.

ZF is allowed to adapt the text of this Notice only in order to be compliant with local legislation by means of an addendum attached to this Notice. In case of any discrepancies between this Notice and a specific local addendum made in accordance with local law, the terms of the latter will prevail.

Download the PDF "Privacy Policy"

Data requests

Please select below the type of data request along with any special requests in the body of the message. We will do our best to accommodate them. We require your email address to contact you about your request. We will not use this email address for any purpose other than the completion of your request.

Access data
Access data
Data erasure
Data rectification

Privacy settings