BCR - Compact Version - Vitesco Technologies Group AG

VITESCO TECHNOLOGIES BINDING CORPORATE RULES (BCR)

COMPACT INFORMATION ON THE VITESCO TECHNOLOGIES BCR

The BCR …

… represent a contractual commitment

by all Group companies to comply with

the Group data protection guidelines for

the protection of personal data and to

implement these guidelines under their

own responsibility.

… define the framework for uniform data

protection standards for the entire

Group.

… apply to the transfer of personal data

between all Group companies around

the world and represent the fundamental

internal rules for the processing of your

personal data.

… apply to all employees and must

therefore be complied with by all

employees.

… must be drawn to the attention of all

employees through trainings,

employment contracts, etc. This is

ensured by the Group companies.

Note: If the BCR are not recognized by a

Group company, the exchange of

personal data on the basis of the BCR is

not possible. In such cases, individual

contracts are required.

Availability of BCR

The complete BCR are available upon

request via eMail to

dataprotection@vitesco.com or internally

Intranet > Data Protection > Vitesco

Technologies BCR.

Questions

If you have any questions, please contact

the global data protection office at

dataprotection@vitesco.com

Vitesco Technologies Group AG

Siemensstraße 12

93055 Regensburg

Germany

Phone: +49 941-2031-0

eMail: contact@vitesco.com

Legal notice

The content of this publication is not

legally binding and is provided as

information only. The trademarks

displayed in this publication are the

property of Vitesco Technologies Group

AG and/or its affiliates.

Vitesco Technologies Group AG.

The BCR are based on legal requirements. They represent an internal data protection directive that is both global and

uniform and governs the protection of your data throughout the Vitesco Technologies Group AG and all group

companies.

VITESCO TECHNOLOGIES BINDING

CORORATE RULES (BCR)

In order to comply with

contractual obligations and legal

requirements, we need to store

and process personal data of our

customers, suppliers, employees,

shareholders and other business

partners. In this context, the

protection of your personal data is

a top priority for all Vitesco

Technologies Group companies.

The BCR are based on legal

requirements. They represent an

internal data protection directive

that is both global and uniform

and governs the protection of your

data throughout the Group.

Existing legal obligations remain

unaffected by these BCR.

Mandatory national local legal

provisions take precedence over

these BCR in all cases.

PROTECTION OF YOUR

PERSONAL DATA

Depending on national legislation*, you

have certain inalienable rights with

respect to your personal data.

These include:

> The right to information – on the

data, the origin of the data and the

purpose of processing

> The right to correction – if the data is

incorrect, incomplete or

inappropriately processed

> The right to block data – if the

situation is not clear

> The right to have data deleted – if

processing is unnecessary or the data

is processed inappropriately

> The right to refuse – to allow data to

be processed for promotion or

market/opinion research processes or

in the event of justified personal

interests

> Exercise of your rights – those

concerned must not be placed at any

disadvantage as a result of exercising

their rights.

*You will find a full overview of your rights in the

applicable laws and regulations

The implementation of the rules is

supported and monitored by the

Corporate Data Protection

Officer, the global data

protection office and our

(local/area) data protection

coordinators.

The following actions are taken to

ensure that the rules are

implemented:

> Training and information events

> Data protection audits

> Briefing sessions on data

processing, etc.

Adequate security measures, for

example for computers, networks

and/or communication links, as

well as applications, including

access to premises, are taken to

protect your data against

unauthorized access,

distribution, modification and

deletion. Specialists, for example

from the Information Security and

Corporate Security departments,

ensure that the implemented

security measures of Vitesco

Technologies comply with the

state of the art.

IMPLEMENTATION OF THE

BCR WITHIN THE GROUP

YOUR RIGHTS

Vitesco Technologies Binding Corporate Rules (BCRS)