We, Porsche Deutschland GmbH (hereafter "we" or "Porsche Deutschland"), appreciate your visit to our response tool and your interest in our company and our products. Your privacy is extremely important to us. We therefore take the protection of your personal details very seriously, and treat them in strictest confidence. Your personal data is processed only within the scope of the legal provisions of the European Union's data protection law, in particular the General Data Protection Regulation (hereafter "GDPR").
In this privacy policy we provide you with information about the processing of your personal data and your rights as a data subject within the scope of the use of our response tool. For information on other products and services offered by other companies in the Porsche Group, please consult the respective privacy policy for these services or companies.
If we link to this Privacy Policy from external social media sites, the following information only applies to the extent that the data processing in the context of such social media sites is actually in our area of responsibility and therefore more specific information on privacy in the context of such social media sites is provided.
1. Controller and data protection officer for data processing; contact
Controller for data processing within the meaning of the data protection legislation is:
Porsche Deutschland GmbH
Porschestraße 1
74321 Bietigheim-Bissingen
Germany
Please do not hesitate to contact us if you have any questions or ideas relating to data protection.
You can contact our data protection officers at the following address:
Porsche Deutschland GmbH
Data Protection Officer
Porschestraße 1
74321 Bietigheim-Bissingen
Germany
Contact: https://www.porsche.com/germany/privacy/contact/
2. Subject matter of data protection
The subject matter of data protection is personal data. This is all the information that relates to an identified or identifiable natural person (known in the legislation as the data subject). This covers, for example, information such as name, postal address, e-mail address, or telephone number as well as information that necessarily originates during the use of our response tool such as details about the start, end, and scope of use, and the communication of your IP address.
3. Type, scope, purposes of, and legal basis for automated data processing
In general, it is possible to use our response tool without registering. Even if you use our response tool without registering, personal data can still be processed.
An overview of the type, scope, purposes of, and legal basis for data processing within the scope of our response tool is provided below.
3.1 Provision of our response tool
When you access our response tool using your device, we automatically process the following data:
We process this data on the basis of Article 6 (1) (f) GDPR to provide the service, to ensure the technical operation, and to identify and rectify faults. In this way, we pursue the interest of facilitating and ensuring the long-term use of our response tool and its technical functional capability. When our response tool is selected, this data is automatically processed. You cannot use our services unless this data is provided. We do not use this data for the purpose of drawing conclusions about you or your identity.
We generally delete this data after 12 months, unless, in exceptional cases, we need it for longer for the above-mentioned purposes. In such cases, we delete the data immediately after these purposes cease to apply
3.2 Cookies
When you visit our response tool, "cookies", which are small files, may be stored on your device in order to provide you with a comprehensive scope of functions, make it easier to use our service, and optimize our offerings. If you do not wish to allow the use of cookies, you can prevent them from being stored on your device by configuring the relevant settings in your Internet browser or using the specific opt-out options. Please note that the functional capability and functional scope of our offering could be restricted as a result. Please refer to our Cookie Policy for details on the type, scope, purposes of, legal basis for, and opt-out options for data processing in relation to cookies.
4. Individual services and functionalities
This website is a response tool to enter into a dialogue with us. You can therefore enter personal data in several places, which - depending on the response element - can be in the form of predefined selection options or in the form of free text. Without this personal data, we cannot process or receive your request, or only to a limited extent.
4.1 Authentication
You have received individual access data for logging into the response tool. If further mandatory information is required, these are marked with a "*" in the respective input field. This is only information to identify you beyond doubt.
4.2 Response
After registering with the response tool, you have the option of contacting us, giving us feedback and expressing requests or criticism. Depending on the response element, you can provide additional personal data here. This is done on a voluntary basis. If you do not provide this data, we may not be able to meet your wishes in the best possible way when using our offers. We process the data collected in the processing steps under 4.1 and 4.2 on the basis of Article 6 (1) (b) and (f) GDPR as well as sections 14 (1), 15 (1) TMG in order to identify you on the website and to provide you with the desired services.
We usually delete this data after 12 months, unless we exceptionally need it longer for the above-mentioned purposes. In such a case, we will delete the data immediately after it has no longer been used.
4.3 Other contact
If you provide us with personal data by email or via a contact form, this is always done on a voluntary basis. Your details will be processed by us to process your contact request and to process it in accordance with Article 6 (1) (b) or (f) GDPR and, in this context, may also be passed on to third parties (e.g. Porsche centers or external service providers).
5. Legitimate interests
We process your personal data to protect our legitimate interests. In addition to the interests specified in the description of the individual services and offers under section 4, data processing takes place on our website or after registration, in particular against the background of the following interests:
Any data processing in this respect is carried out on the basis of Article 6 (1) (f) GDPR.
6. Consent
If you give us your consent to certain data processing operations, the consent is always limited to the specific purposes; the purposes result from the content of the specific declaration of consent. In this case, data processing takes place on the basis of Article 6 (1) (a) GDPR. Without giving your consent, we cannot comply with your request covered by the consent. You can revoke your consent at any time without affecting the legality of the processing carried out on the basis of the consent up to the time of revocation.
On the basis of the consent you may have given, the companies listed in the declaration of consent can use the data for a specific purpose, e.g. for individual customer and prospective customer support, and contact you via the communication channels you require. Your data will be used by us in this context to offer you an inspiring brand and support experience with Porsche and to make communication and interaction with you as personal and relevant as possible.
Which of your data is specifically used for individual support depends in particular on which data you have made available at the respective contact points (e.g. via this website). The scope and purpose of the consent you have given is then derived specifically from the formulation of the declaration of consent at the contact point.
7. Recipients of personal data
Internal recipients: Within Porsche Deutschland the only people who have access are those who need it for the purposes named in Sections 3 and 4.
External recipients: We only forward your personal data to external recipients outside Porsche Deutschland if this is necessary for the administering or processing of your issue, if another legal authorization exists, or if we have your consent to forward the data.
External recipients can be:
a) Processors
Group companies in Porsche Deutschland or external service providers that we use to provide services, for example in the areas of technical infrastructure and maintenance for the Porsche Deutschland offering or the provision of content. We carefully select and regularly inspect these processors to make sure that your privacy is protected. The service providers may use the data only for the purposes we have specified and in accordance with our instructions.
b) Public bodies
Authorities and public institutions, such as public prosecutors, courts, or financial authorities to which we must transfer personal data for legal reasons. The data is transferred on the basis of Article 6 (1) (c) GDPR.
c) Private bodies
Dealers, cooperation partners, or support staff to whom the data is transferred on the basis of consent, to implement a contract with you or to safeguard legitimate interests, for example Porsche Dealerships, financing banks, providers of other services or transport service providers. The data is transferred on the basis of Article 6 (1) (a), (b) and/or (f) GDPR.
8. Data processing in third countries
If data is transferred to bodies whose headquarters or whose place of data processing is not located in a member state of the European Union or in another country outside of the European Union who is a signatory to the treaty, we ensure before forwarding the data that, outside of legally permitted exceptional cases pertaining to the recipient, either an appropriate level of data protection exists (e.g., through an adequacy decision of the European Commission, through suitable guarantees such as the agreement of EU standard contractual clauses between the European Union and the recipient) or you give sufficient consent for the transfer of the data.
We can provide you with an overview of the recipients in third countries and a copy of the specifically agreed regulations to ensure the appropriate level of data protection. To obtain these, please contact the address specified in Section 1.
9. Duration of storage
For information on the duration of storage of personal data, please refer to the relevant section on data processing relating to certain services and functions above in Section 3 and Section 4. In addition, as a general rule, we store your personal data only for the length of time necessary to fulfill the purposes, or - in the case of consent - until you withdraw your consent. If you object, we delete your personal data unless its further processing is permitted according to the relevant legal provisions. We also delete your personal data if we are obliged to do so for legal reasons
10. Rights of data subjects
As the data subject affected by the data processing, you have several rights. Specifically,
Right of access: You have the right to obtain information from us about the data that we have stored about you.
Right of rectification and erasure: You have the right to demand that we rectify incorrect data and - provided the legal requirements are met - that we delete your data.
Restriction of processing: You have the right - provided the legal requirements are met - to demand that we restrict the processing of your data.
Data portability: If you have provided us with data on the basis of a contract or consent, you have the right, in accordance with the legal requirements, to obtain the data you have provided in a structured, standard, and machine-readable format or you can demand that we transfer this data to another controller.
Objection to the processing of data on the legal basis of "legitimate interests": You have the right to object at any time, on grounds relating to your particular situation, to our processing of your data, provided this objection is based on the legal basis of "legitimate interests". If you exercise your right to object, we will cease the processing of your data unless we can - pursuant to the legal requirements - prove compelling legitimate reasons for the further processing, which override your rights.
Objection to cookies: You can also object to the use of cookies at any time. For details on how to object, please refer to our Cookie Policy.
Withdrawal of consent: If you have given us consent to process your data, you can withdraw this consent at any time with effect for the future. The lawfulness of the processing of your data remains unaffected up until the time of the withdrawal of consent.
Right to lodge a complaint with a supervisory authority: You can also submit a complaint to the competent supervisory authority if you believe that the processing of your data is in breach of the legislation. To do so, you can apply to the data protection authority that is responsible for your town/city or country or the data protection authority that is responsible for us.
Contacting us: Please do not hesitate to contact us if you have any questions regarding the processing of your personal data, your rights as a data subject, and any consent that you may have given. To exercise all of these above-mentioned rights, please contact https://www.porsche.com/germany/privacy/contact or by post at the address specified above in Section 1. In doing so, please ensure that it is possible for us to uniquely define you.
11. Links to third-party offerings
Websites and services delivered by other providers that are linked to by this online service have been and are structured and provided by third parties. We do not have any influence over the structure, content, or role of these third-party services. We explicitly distance ourselves from all content in all linked third-party offerings. Please note that the third-party offerings linked to from this online service may install their own cookies on your device or collect personal data. We have no influence over this. Please contact the providers of these linked third-party offerings as required for the relevant information.
12. Status
The latest version of this privacy policy applies.
Status: 01.01.2021
Scope of application
This Cookie Policy applies in addition to the general privacy policy for our response tool and describes the type, scope, purposes of, legal basis for, and opt-out options for data processing in relation to cookies. The general privacy policy for our response tool applies to all other information. Status: 01.01.2021.
What are cookies?
We use "cookies" in order to provide you with a comprehensive scope of functions, make it easier to use our service, and optimize our offerings. Cookies are small files, which are stored on your device by your Internet browser.
Categories of cookies
We use cookies for different purposes and with different functions. We make a distinction according to whether the cookie is technically required (technical requirement), how long it is stored for and used (duration of storage), whether it was created by our response tool itself or by a third party and who the provider who created the cookie is (cookie provider).
Technical requirement
Cookies required for technical reasons: We use certain cookies because they are required for our response tool and its functions to work properly. These cookies are set automatically when the response tool or a specific function is called up, unless you have disabled cookies in your browser settings. Cookies not required for technical reasons: By contrast, cookies that are not required are set to improve your experience with our response tool or to store specific settings that you have configured. We also use cookies that are not required for technical reasons to obtain information on the frequency of use of certain areas of our response tool so that we can better tailor them to your needs.
Duration of storage
Session cookies: Most cookies are required only for the duration of your current service call or session and are deleted or become invalid as soon as you exit our response tool or your current session expires. Session cookies are used, for example, to retain certain information such as your login for the response tool during your session.
Permanent cookies: Cookies are occasionally stored over a longer period for the purposes of recognizing you when you subsequently call up our response tool again and retrieving saved settings. This makes it faster and easier for you to access our response tool and means that you do not have to repeat settings such as your selected language, for example. Permanent cookies are deleted automatically at the end of a predefined period when you visit the page or domain from which the cookie was set.
Flow cookies: These cookies are used for communication between various internal Porsche servers. They are created at the start of a user interaction and deleted again when it is ended. Flow cookies are assigned a unique identification number during the interaction. However, this does not allow any conclusions to be drawn with respect to the identity of the actual customer or user.
Deletion and objection to the use of cookies
The acceptance of cookies when using our website is not mandatory; If you do not want cookies to be stored on your device, you can deactivate the corresponding option in the system settings of your browser. You can delete saved cookies at any time in the system settings of your browser. If you do not accept cookies, however, this can limit the functionality of our website.
The following cookies may be stored when you call up our response tool:
| Name of cookie | Technical requirement | Duration of storage | Cookie provider | Purpose and interest | Legal basis |
|---|---|---|---|---|---|
| de.porsche.ag.pdrms.presentation.mvc.2017.release | yes | Session cookie (end of session) | Dr. Ing. h.c. F. Porsche AG | This cookie is required for storing the user session and the login to the response tool. | Art. 6 (1) (b) GDPR |
| de.porsche.ag.pdrms.presentation.mvc.2017.Language | yes | Permanent cookie (duration of storage: 10 days) | Dr. Ing. h.c. F. Porsche AG | This cookie stores the user"s decision in which language the presentation should take place. | Art. 6 (1) (b) GDPR |
| _RequestVerificationToken | yes | Session cookie (end of session) | Dr. Ing. h.c. F. Porsche AG | This cookie is used to prevent cross-site-request-forgery (CSRF) attempts | Art. 6 (1) (b) GDPR |