KPT Privacy Policy

Končar – Power Transformers ltd. Personal Data Protection Notice

Company Koncar – Power Transformers ltd., J. Mokrovića 12, 10090 Zagreb, (hereinafter KPT) places importance on protection of the security and privacy of your personal information. Therefore, KPT processes personal data in accordance with applicable law on personal data protection.

 

  1. Processing of personal information relating to your use of our websites, applications and online platforms
  2. Processing of personal data relating to your business relationship with KPT
  3. Transfer and disclosure of personal data
  4. Retention periods
  5. Right to Withdrawal
  6. Right to access and rectify or delete personal data, limitation of processing, right to object to processing and right to data portability
  7. Contact for protection of personal data

 

  1. Processing of personal data relating to your use of our websites, applications and online platforms

 

Categories of personal data processed, purpose of processing and legal basis

 

When visiting KPT’s websites, applications or web tools (each a “KPT’s Internet Offer”) KPT may process the following personal data about you:

  • personal data that you actively and voluntarily provide through the KPT website (eg when registering, contacting us with your inquiries or participating in surveys, etc.), including name, e-mail address, telephone number, information submitted as a part of a support request, comments or forum posts, etc., and
  • information that is automatically sent to us by your internet browser or device, such as IP address, device type, browser type, referring site, sites accessed during your visit, the date and time of each visitor request.

 

We process your personal data for the following purposes:

  • to provide the KPT Internet Offers services and functions and to administer your use of the KPT Internet Offers,
  • to verify your identity (if you are registered for KPT’s Online Offer),
  • to answer and fulfill your specific requirements, and
  • to the extent reasonably necessary to enforce the applicable conditions of use, to establish or maintain legal requirements or defense, to prevent fraud or other illegal activities, including attacks on Siemens IT systems.

 

The processing of your personal data is required to fulfill the purposes mentioned above. Unless otherwise stated at the time of collection, our legal basis for processing personal information is as follows:

  • you have given express consent to the processing of your personal data (Article 6 (1) (a) of the General Data Protection Regulation),
  • processing is necessary to perform a contractual relationship with you (Article 6 (1) (b) of the General Data Protection Regulation), or
  • processing is for other reasons necessary for the effective operation or management of your use of the Siemens Internet Offers (Article 6 (1) (f) of the General Data Protection Regulation).

 

Cookies

We may use cookies within the Siemens Internet Offerings. Information on Siemens’ use of cookies is available in Cookie Policy. The Cookie Policy also provides information on how to block and object to the use of cookies and the processing of data collected by cookies.

 

Links to other websites

This Privacy Notice applies only to Siemens Internet offers and not to other websites or applications operated by third party. We may provide links to other websites and applications that we believe may be of interest to you. KPT is not responsible for the privacy practices of such other websites or applications.

 

  1. Processing of personal data relating to your business relationship with KPT

 

Categories of personal data processed, purpose of processing and legal basis

In the context of business relationship with KPT, KPT may process the following categories of personal data contact persons at (prospective) customers, suppliers, vendors and partners (each a “Business Partner“):

  • Contact information such as full name, work address, business phone number, business mobile phone number, business fax number and business email address,
  • Payment data, such as data necessary for processing payments and fraud prevention, including credit / debit card numbers, security code numbers and other related billing information,
  • Further information necessarily processed in a project or contractual relationship with Siemens or voluntarily provided by the Business Partner, such as personal data relating to orders placed, payments made, requests, and project milestones
  • Personal data collected from publicly available resources, integrated databases and credit agencies, and
  • If legally required for Business Partner compliance screenings: date of birth, ID numbers, identity cards and information about relevant and significant litigation or other legal proceedings against Business Partners.

 

KPT may process your personal information for the following purposes:

  • Communication with business partners about products, services and projects of KPT or Business Partners, such as answering queries or requests or providing technical information about purchased products,
  • Planning, executing and managing the (contractual) relationship with Business Partners; e.g., performing transactions and orders for products or services, processing payments, performing accounting, auditing, billing and collection activities, arranging shipments and deliveries, facilitating repairs and providing support services,
  • Administrating and performing customer surveys, marketing campaigns, market analysis, sweepstakes, contest or other promotional activities or events,
  • Maintain and protect the security of our products, services and websites, preventing and detecting security threats, fraud or other criminal or malicious activity,
  • Ensuring compliance with legal obligations (such as record keeping obligations), export controls and customs, obligations related to business partner verification (to prevent white-colar or money laundering crimes), and KPT policies or industry standards, and
  • Solving disputes, enforce our contractual agreements and to establish, exercise or defend legal claims.

 

The processing of personal data is necessary for the fulfillment of the above stated purposes. Unless otherwise stated at the time of collection, our legal basis for processing personal information is as follows:

  • Have given your explicit consent to the processing of your personal data (Article 6 (1) (a) of the General Data Protection Regulation),
  • Processing is necessary to perform a contractual relationship with you (Article 6 (1) (b) of the General Data Protection Regulation), or
  • Processing is, for other reasons, necessary for the effective operation or management of our business relationship with you (Article 6 (1) (f) of the General Data Protection Regulation).

 

3.    Transfer and disclosure of personal data

KPT may transfer personal data to other Siemens companies or third parties, but only to the the extent that such transfer is necessary for the purposes stated above.

If permitted by law, KPT may transfer personal data to courts, law enforcement authorities, regulatory authorities or attorneys, as required to comply with the law or to establish, enforce or defend legal claims.

KPT engages service providers (so-called processing executives), such as providers of hosting or maintenance of IT systems, who act only in accordance with the instructions of KPT and are contractually obliged to comply with applicable personal data protection laws.

The recipients of personal data may be located in countries outside the European Economic Area (“third countries”), where the legislation does not provide the same level of data protection as the legislation of the individual’s home country.

In such cases, the KPT shall take measures to implement appropriate and suitable safeguards for the protection of your personal data. In particular:

  • We share your personal data with Siemens companies in third countries only if they have implemented the Siemens Binding Corporate Rules for the protection of personal data. More information about Siemens Binding Corporate Policies is available at: https://www.siemens.com/corp/pool/en/siemens-bcr-summary-of-third-party-rights-en.pdf.
  • We transfer personal data to external recipients in third countries only if the recipient concerned has (i) signed standard EU Contractual Clauses with Siemens, (ii) implemented Binding Corporate Rules in its organization, or (iii) for US recipients, if the recipient is certified under a personal data protection system. The persons concerned may request additional information and copies of security measures by contacting Siemens.

Personal data that you self-publish as part of the Siemens Internet Offers (such as correspondence rooms or forums) may be made available globally to other registered users of the relevant Siemens Internet Offerings.

 

  1. Retention periods

Unless indicated otherwise at the time of the collection of your personal data (e.g. within the consent form you provided), we erase  personal data if the retention of that personal data is no longer necessary for the purposes for which they were collected or otherwise processed or to comply with legal obligations (such as retention obligations under tax or commercial low).

 

  1. Right to Withdrawal

If you have consented to Siemens processing your particular personal data, you have the right to withdraw it at any time with future effect; that is, the withdrawal of the privilege does not affect the legality of the processing carried out on the basis of the privilege prior to its withdrawal. In case of withdrawal of consent, Siemens may continue to process personal data only if there is some other legal basis for their processing.

 

  1. Right of access to personal data and correction or deletion of personal data, limitation of processing, right to object to processing and right to data portability

You may be entitled under the applicable law on personal data protection, provided that the relevant legal requirements are met:

  • obtain from Siemens an acknowledgment of your personal data being processed and, if processed, to access that personal data,
  • ask Siemens to correct your inaccurate personal data,
  • have Siemens delete your personal data,
  • limit the processing of your personal data by Siemens,
  • the portability of data with respect to the personal data you have actively provided, and
  • Based on your particular situation, object to the processing of your personal data.

 

  1. Data Privacy Contact

The Siemens Data Privacy Organization provides support for any questions, comments, objections or complaints regarding the protection of personal data, or if you wish to exercise your rights regarding personal data. You can contact the Siemens personal information organization at: dataprotection@siemens.com.

Siemens Personal Data Protection will always make every effort to provide a response or solution to any requests or complaints you make to it. In addition to contacting the Siemens Personal Data Protection Organization, you are always entitled to make a request or complaint to a competent personal data protection authority.