Privacy Policy STABILO International GmbH
Preamble
STABILO International GmbH is pleased that you are visiting our website. Data protection and data security when using our website are very important to us. We therefore inform you about which of your personal data we collect when you visit our website and for what purposes it is used.
Since changes in legislation or changes to our internal processes may require an adjustment to this Privacy Policy, we ask you to read this policy regularly. The Privacy Policy applies to the online offering of STABILO International GmbH, available at https://www.stabilo.com including further subdomains.
| Website | Country |
|---|---|
| www.stabilo.com/com/ | Global Website |
| www.stabilo.com/at/ | Austria |
| www.stabilo.com/be-fr/ www.stabilo.com/be-nl/ |
Belgium |
| www.stabilo.com/br/ | Brazil |
| www.stabilo.com/ch-de/ www.stabilo.com/ch-fr/ |
Switzerland |
| www.stabilo.com/cz/ | Czech Republic |
| www.stabilo.com/de/ | Germany |
| www.stabilo.com/es/ | Spain |
| www.stabilo.com/fr/ | France |
| www.stabilo.com/gr/ | Greece |
| www.stabilo.com/hu/ | Hungary |
| www.stabilo.com/it/ | Italy |
| www.stabilo.com/kr/ | South Korea |
| www.stabilo.com/latam/ | Latin America |
| www.stabilo.com/nl/ | Netherlands |
| www.stabilo.com/pl/ | Poland |
| www.stabilo.com/sk/ | Slovakia |
| www.stabilo.com/tr/ | Turkey |
| www.stabilo.com/uk/ | United Kingdom |
| www.stabilo.com/us/ | USA |
1. Name and Address of the Controller
The responsible party and service provider is STABILO International GmbH, Schwanweg 1, 90562 Heroldsberg, Germany (hereinafter "STABILO").
2. Name and Address of the Data Protection Officer
Our Data Protection Officer is Mr. Sebastian Meyer, Schwanweg 1, 90562 Heroldsberg, Germany. For all questions regarding data protection, please contact: Datenschutz@schwan-stabilo.com
3. General Information on Data Processing
3.1 Personal Data
Personal data is any information relating to an identified or identifiable natural person (e.g. name, address, telephone number, email, IP address, user behavior). Information without a personal reference, e.g. through anonymization, does not constitute personal data.
3.2 Processing of Personal Data
Processing is any operation carried out in connection with personal data (e.g. collection, recording, organization, storage, adaptation, retrieval, use, transmission, restriction, erasure).
3.3 Legal Bases
We regularly process data on the basis of consent pursuant to Art. 6 para. 1 lit. a GDPR. Processing may also take place for the performance of a contract or for pre-contractual measures (Art. 6 para. 1 lit. b GDPR), for compliance with a legal obligation (Art. 6 para. 1 lit. c GDPR), or for the purposes of the legitimate interests pursued by us (Art. 6 para. 1 lit. f GDPR), provided that no overriding interests of the data subject preclude this.
4. Data Processing Operations
Personal data is collected when you voluntarily provide it to us (e.g. via a form or email). Transmission to third parties only takes place if permitted by law or with your consent.
4.1 Informational Use of the Website
When the website is used purely for informational purposes, we only process the data that your browser transmits for technical provision (server log files): host, IP address, date/time, method (GET/POST), request, protocol, status, volume of data transferred, referrer, browser/OS.
The legal basis is Art. 6 para. 1 lit. f GDPR (legitimate interest in providing the website). The data is deleted as soon as it is no longer required for display purposes; further storage may be required by law.
4.2 Contact Forms
For general inquiries, educator inquiries, sponsoring, etc., we process – depending on the form – email, first/last name, country, message; for complaints additionally address and place of purchase; for teachers, if applicable, further school-related details; for sponsoring, organizational data.
Legal bases: Art. 6 para. 1 lit. b GDPR (contractual/pre-contractual) or Art. 6 para. 1 lit. f GDPR (legitimate interest in efficient processing). Deletion upon completion of the inquiry; longer storage if required by law.
4.3 Processing in the Context of Product Safety
4.3.a Complaints Register
Processing of, among other things, name, telephone number, email, customer number, time/reason of purchase/complaint for traceability and the derivation of measures. Legal basis: Art. 6 para. 1 lit. f GDPR. Storage only for as long as necessary.
4.3.b Contact in Connection with Safety Incidents
Contact, e.g. in the event of recalls; processing of name, telephone number, email, time of purchase. Legal basis: Art. 6 para. 1 lit. f GDPR; from December 13, 2024, additionally Art. 6 para. 1 lit. c GDPR in conjunction with Art. 35 para. 1 Produktsicherheitsverordnung.
4.4 Contests
Required data: name/nickname, email, date of birth, country; if applicable, address in the event of winning. Legal basis: Art. 6 para. 1 lit. b GDPR. Deletion upon completion; statutory retention obligations remain unaffected.
5. Transmission of Personal Data to Third Parties
Personal data is transmitted to third parties in the context of the processing operations described below, in particular to payment service providers, shipping service providers, and IT service providers. Furthermore, your data may be transmitted in the following cases: official/judicial order, authorization for law enforcement/criminal prosecution, or if you have given your consent.
6. Cookies and External Services
6.1 Cookies
Cookies and tracking technologies that are not technically necessary are only set following the user's prior express consent. Consent can be revoked or adjusted at any time via the consent management tool.
Information and individual settings can be found here: Cookie Policy.
Cookie Settings
6.2 Integration of Technical Third-Party Tools
We use technical tools and services from third-party providers that are either technically necessary for the operation and functionality of our website or are based on a legal basis pursuant to Art. 6 para. 1 lit. b GDPR (performance of a contract) or Art. 6 para. 1 lit. f GDPR (legitimate interest in the technical provision of the website, ensuring IT security, and optimizing the user experience).
To the extent that personal data is processed through the use of these tools, this is done exclusively to the extent necessary for the respective purposes. Where third-party providers act as processors, processing is carried out on the basis of agreements pursuant to Art. 28 GDPR.
To the extent that the use of individual services involves the transfer of personal data to countries outside the European Union or the European Economic Area, this only takes place in compliance with the requirements of Art. 44 et seq. GDPR. In these cases, in particular, there may be risks that government authorities access the data or that the enforcement of data subjects' rights is made more difficult. We therefore take appropriate additional measures to ensure an adequate level of data protection.
Where the use of tools is not technically necessary, their use takes place exclusively on the basis of your prior consent pursuant to Art. 6 para. 1 lit. a GDPR. You can revoke or adjust your consent at any time via the consent management tool used.
7. Fan Pages on Facebook, Instagram, TikTok, YouTube, Pinterest
We are joint controllers (Art. 4 No. 7 GDPR) together with the respective operators. Further information:
The essential content of the agreements on joint controllership pursuant to Art. 26 GDPR can be viewed at the respective platform operators.
8. Security Measures
We protect your data through technical and organizational measures, adapt these regularly, and point out that unencrypted communication (e.g. email) can be read by third parties. Please protect your data through appropriate measures (e.g. encryption).
9. Hyperlinks
Our website contains links to other providers. Those providers are responsible for their own data protection. Please inform yourself directly there.
10. External Service Providers
We engage service providers in the context of data processing on our behalf. These are bound by our instructions and are only given the access that is necessary. In this context, data may be transferred to third countries (in particular the USA); standard contractual clauses have been concluded; if applicable, additional measures to protect your data. To the extent that data is transferred to countries outside the EU/EEA, this only takes place in compliance with the requirements of Art. 44 et seq. GDPR.
11. Storage Period
We process and store personal data only for as long as is necessary for the respective purposes or as statutory retention obligations exist.
In detail, the following storage periods or criteria apply:
- Data in connection with customer inquiries (e.g. by email or contact form) is generally deleted after final processing, unless statutory retention obligations exist or further storage is necessary for the assertion, exercise, or defense of legal claims.
- Applicant data is generally deleted 6 months after the conclusion of the application process, unless consent to longer storage has been given.
- Usage and log data (e.g. server log files) is stored for a limited period for security reasons and subsequently deleted, unless further retention for evidentiary purposes is required.
If statutory retention obligations exist or data is needed for the assertion or defense of legal claims, deletion takes place only after the expiry of the respective periods.
12. Rights of Data Subjects
12.1 Right of Access (Art. 15 GDPR)
You have the right to obtain information about the personal data being processed.
12.2 Right of Withdrawal (Art. 7 para. 3 GDPR)
You may withdraw any consent given at any time with effect for the future – by email to Datenschutz@schwan-stabilo.com or by post to STABILO International GmbH, Schwanweg 1, 90562 Heroldsberg, Germany.
12.3 Right to Rectification (Art. 16 GDPR)
You may request the rectification of inaccurate data or the completion of your data.
12.4 Right to Erasure/Restriction (Art. 17/18 GDPR)
You have the right to erasure or restriction, provided no retention obligations preclude this.
12.5 Right to Data Portability (Art. 20 GDPR)
You may request the provision of your data in a commonly used, machine-readable format.
12.6 Right to Object (Art. 21 GDPR)
You may object, on grounds relating to your particular situation, to processing based on Art. 6 para. 1 lit. f GDPR.
12.7 Contact for Data Subject Rights
Email: Datenschutz@schwan-stabilo.com
Post: STABILO International GmbH, Schwanweg 1, 90562 Heroldsberg, Germany
13. Right to Lodge a Complaint with a Supervisory Authority (Art. 77 GDPR)
You have the right to lodge a complaint with the competent lead supervisory authority:
Bayerisches Landesamt für Datenschutzaufsicht
Office address:
Promenade 18
91522 Ansbach
Germany
Postal address:
Postfach 1349
91504 Ansbach
Germany
Phone: +49 (0) 981 180093-0
Fax: +49 (0) 981 180093-800
Email: poststelle@lda.bayern.de (Only PDF files are accepted by email)
Complaint form: https://www.lda.bayern.de/de/beschwerde.html
or also with a local authority.
14. Automated Decision-Making/Profiling
We do not use automated decision-making or profiling.
As of: May 2026