PRIVACY POLICY

A. General information

Article 1 – Definitions

“Affiliated Company” means any company that is affiliated to WÜRTH BELUX insofar as it meets the conditions for an “affiliated company” as set out in article 1:20 of the Belgian Code on Companies and Associations.
“Application” means the "WÜRTH" application developed for mobile devices for iOS and Android operating systems, owned by Adolf Würth GmbH & Co. KG, 74653 Künzelsau-Gaisbach, Reinhold-Würth-Straße 12–17.
“Controller” has the meaning as defined in the General Data Protection Regulation 2016/679. WÜRTH BELUX will be qualified as the Controller determining the purposes and means of the processing of Personal Data.
“Personal Data” has the meaning as defined in the General Data Protection Regulation 2016/679, which is any information relating to an identified or identifiable natural person (also referred to as “data subject”).
“Processor” has the meaning as defined in the General Data Protection Regulation 2016/679, which processes Personal Data on behalf of the Controller. WÜRTH IT will be qualified as a Processor under the GDPR.
“Website” means the website of WÜRTH BELUX: www.wurth.be
“WÜRTH BELUX” means WURTH BELUX NV, a company organized and existing under Belgian law, with registered office at 2300 Turnhout (Belgium), Everdongenlaan 29 and registered with the Crossroads Bank of Enterprises under number 0435.180.897.
“WÜRTH IT” means Würth IT GmbH, Drillberg 6, 97980 Bad Mergentheim.

Article 2 – Data Protection principles

The aim of data protection and also our aim as WÜRTH BELUX is to handle Personal Data in such a way that the personal rights of the individual are protected. To ensure that this objective is met, bodies responsible for processing Personal Data are obliged to comply with the provisions of EU legislation (General Data Protection Regulation (GDPR)) as well as national data protection laws. Personal data may only be collected and processed if permitted by the GDPR or another law. The key principles of the GDPR are:

• Lawfulness of processing, fairness of processing, transparency
• Data minimization
• Accuracy of data processing
• Storage limitation and deletion concepts
• Integrity and confidentiality

Responsible action in handling Personal Data, as well as the risk-conscious use of IT systems and applications, are further central objectives of WÜRTH BELUX. When you use the Application, a connection is established to the current WÜRTH online shop on the Website. The Application retrieves the desired content from there and displays it in an optimized format for your device. Depending on the configuration of your mobile device, the Application also offers additional features. For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the Application operator, this Application uses SSL or TLS encryption. SSL or TLS encryption ensures that the data you transmit to us cannot be read by third parties. It is always active. The processing of your Personal Data in the Application is subject to this privacy statement. For questions and/or comments, please contact privacy@wurth.be. By providing Personal Data, you are deemed to have acknowledged the use of your Personal Data in accordance with this privacy statement.

Article 3 – Processing purposes and legal bases

General legal bases

WÜRTH BELUX is a company operating in the trade of assembly and fastening materials. The collection, processing or use of Personal Data is carried out to fulfil this corporate purpose or supporting secondary purposes, such as customer advice. Processing of Personal Data is only lawful if it is permitted by law, i.e. if there is a legal basis, or if the person has consented. Personal Data is processed in our company only in accordance with the legal provisions. These are generally:

• If consent to the processing of Personal Data has been given (Art. 6 (1) (a) GDPR)
• If Personal Data must be processed to fulfill a contract or to initiate a contract (Art. 6 (1) (b) GDPR)
• If the processing of Personal Data is necessary to fulfil a legal obligation (Article 6 (1) (c) GDPR)
• If we process Personal Data on the basis of a legitimate interest or on the basis of a legitimate interest of a third party (Art. 6 (1) (f) GDPR)

Special feature of the legal basis for data processing for contractual purposes

WÜRTH BELUX primarily addresses its services to businesses. Therefore, when processing Personal Data for contractual purposes, the legal basis, unless otherwise specified in individual cases, is

1. If you are a registered merchant or freelancer, Art. 6 (1) (b) GDPR, the data processing is for the purpose of executing the contract or pre-contractual measures with the data subject
2. If you are an employee of a company, e.g., a purchasing employee, Art. 6 (1) (f) GDPR, this is the legitimate interest of WÜRTH BELUX. The legitimate interest of WÜRTH BELUX lies in the sale of its own goods and services, which is based in particular on entrepreneurial freedom and freedom of occupation

For this purpose, we aggregate data that is stored and processed in our central systems as a result of interactions between customers or interested parties and their employees with us via various communication channels (in particular field service, branch, telephone sales and online shop) and also use the data when contacting you via another communication channel (e.g. our field service employees receive access to data about the goods you are looking for in the online shop). For the sake of simplicity, we will subsequently refer only to “data processing for contractual purposes”.

Article 4 – Types of Personal Data

As part of our services, we collect and process various categories of Personal Data. These data may relate to you in your capacity as a customer, supplier, service provider, current or former employee, interested party and other business partner. The relevant Personal Data includes all Personal Data necessary to fulfill the respective purpose. The specific data of the data subjects that are processed is explained in detail below. We differentiate between Personal Data that you expressly and knowingly provide to us and Personal Data that is automatically transmitted to us when you use our Application (usage data).

Data that you expressly and knowingly provide to us

For example, when you register, place an order, add something to your shopping cart, participate in competitions, or contact us via the feedback function, we collect all the Personal Data you provide to us (e.g., by filling out the relevant fields). This includes, for example, data such as:

• Your name
• Your email address
• Your customer and partner number
• The password you have chosen (which will of course be stored encrypted)
• Your address
• Your profile picture

Providing data is voluntary. Whether the provision of specific information is required to use the Application's functions (mandatory information) will be clearly indicated by a corresponding label.

Usage data

If you use our Application and have given your consent in the privacy settings, technical data will be automatically transferred to us. This includes data such as:

• Identifiers/device identifiers (e.g. Android Advertising ID (AdID) and iOS Identifier for Advertisers (IDFA))
• Device used
• Operating system and version used
• Application version
• Language settings
• Date and time

Article 5 - Transfer of Personal Data

Potential recipients of data transmission

The potential recipients of transmitted Personal Data are:

• Public bodies, provided there is a legal obligation
• Service providers and other business partners, insofar as this is necessary to fulfil the respective purpose and a legal provision permits or requires this or the data subject has consented

Data transfer to third countries or international organizations We will not transfer any Personal Data to third parties located outside the European Economic Area. Exceptions may include subcontractors or employees who (i) are located in a country that the European Commission or the Minister of Justice recognizes as having an adequate level of protection for the processing of Personal Data, or (ii) store the Personal Data in accordance with the Standard Contractual Clauses of the European Commission, thus ensuring an adequate level of security for the processing of Personal Data.

Furthermore, we will not transfer Personal Data to other parties within the European Economic Area without your consent, unless:

• (i) The transfer is necessary to allow affiliated companies, employees, agents, or subcontractors to provide a service or perform a task on our behalf, which is necessary for the execution of the contract we have with you or within the scope of our legitimate interest (including, but not limited to, providing marketing support, conducting market research, or providing customer service);
• (ii) It is required by law.

Any transfer of Personal Data to a recipient as outlined above will be in compliance with the provisions of the General Data Protection Regulation 2016/679. We ensure that measures are in place so that recipients do not use the Personal Data for purposes other than those explicitly listed in Article 3, and that recipients have implemented adequate technical and organizational measures to protect the data. To ensure the security of Personal Data, we will always enter into a data processing agreement with the aforementioned recipients of the Personal Data. We will take all necessary precautions to ensure that employees and personnel who have access to the Personal Data process it exclusively in accordance with this privacy statement and the legal obligations under the General Data Protection Regulation 2016/679.

Article 6 – How do we collect your Personal Data and how long will it be retained?

Data collection

We collect your Personal Data - without limitation - in the following cases:

• When you register in the Application
• When you log in with your (private) email address and/or phone number in the Application
• When we synchronize data related to segmentations (such as customer number and business sector) with the Application, so that you receive personalized news, documents, and links in the Application
• When you take part in competitions through the Application
• When you place an order in the Application
• When you add something to your shopping cart in the Application
• When you submit a complaint or request for information via the feedback function provided in the Application

We avoid the collection of Personal Data that is not relevant for the purposes as set out in Article 3.

Data Retention

Personal Data will be retained and processed by us for a period necessary to fulfill the purposes of the processing and will be deleted in accordance with the applicable statutory or contractual regulations regarding data deletion, taking into account statutory or contractual retention periods. Such statutory obligations arise, among other things, from the Belgian social and accounting legislation and the Belgian Tax Code. Customer data and supplier or subcontractor data will, in any case, be deleted from our systems after a period of 7 (seven) years following the termination of the agreement, unless there is an ongoing dispute in which the Personal Data is still required. Other data will not be retained for more than 2 (two) years after the last meaningful contact with you, unless explicit consent has been obtained to retain this data for a longer period. We would like to inform you that deleting the Application from your device does not result in the deletion or anonymization of your Personal Data. You should contact us if you wish for your Personal Data to be deleted.

Article 7 - Confidentiality of Personal Data

Whenever you provide Personal Data to us, we will handle this information in accordance with the provisions of this privacy statement and the legal obligations related to the processing of Personal Data, including the General Data Protection Regulation (GDPR) 2016/679. We implement appropriate measures and procedures to secure and protect the Personal Data we collect via the Application. In this way, we commit ourselves, to the extent reasonably expected, to prevent unlawful processing of Personal Data and inadvertent loss or destruction of your Personal Data. However, despite these precautions, we cannot guarantee that your Personal Data will be protected if this data is transmitted or communicated outside the Application through insecure channels or in another manner. We aim to optimize the security of your Personal Data by limiting access to your Personal Data to persons with a "need-to-know" basis (for example: only WÜRTH BELUX and its employees, personnel, or subcontractors who need your Personal Data for the purposes described in Article 3 will have access to the data).

Article 8 – Rights of the Data Subject

Under both Belgian and European data protection legislation, you have the rights described below. If you wish to exercise any of these rights, you must send us a written request at privacy@wurth.be. We will inform you of the action to be taken within 1 (one) month of receiving your request. This period may be extended by up to 2 (two) months if the request is complex, in which case we will inform you within 1 (one) month of the original request about the reasons for the delay. If we decide not to comply with your request, we will notify you within 1 (one) month of receiving the request about why it remains unfulfilled.

Right to information (Art. 15 GDPR), rectification (Art. 16 GDPR), restriction of processing (Art. 18 GDPR) and erasure (Art. 17 GDPR)

Within the framework of the applicable legal provisions, you have the right at any time to obtain free information about the Personal Data concerning you stored by the Controller, its origin and recipient and the purpose of the data processing and, if applicable, a right to correction, blocking or deletion of this data. You have the right to request that we provide all the Personal Data we hold about you and to request a free copy of this data, provided that the rights of other data subjects are not affected. If you request additional copies, we may charge you a reasonable fee equal to the administrative cost of making these copies. We kindly ask you to ensure that the Personal Data in our database is as accurate and complete as possible. If you believe that the data we have is incorrect or incomplete, you are asked to notify us as described above. We will then correct or supplement your Personal Data as soon as possible. In the following cases, you have the right to restrict the processing of your Personal Data:

1. If you contest the accuracy of your Personal Data
2. When the processing is unlawful, but you do not want the Personal Data to be erased
3. If you object to the processing of your Personal Data, pending the verification of that objection

If the processing is restricted on this basis, we may continue to store your Personal Data. However, we will only process the data with your explicit consent for the establishment, exercise, or defense of legal claims, to protect the rights of another natural or legal person, or for reasons of substantial public interest. You have the right to request the erasure of your Personal Data without undue delay in the following cases:

1. If it is no longer necessary to retain the Personal Data for the purposes for which it was collected or otherwise processed
2. If it is legally required
3. If the Personal Data was obtained when you were a minor
4. If the Personal Data was obtained without your explicit consent
5. If you withdraw your consent for processing based on consent
6. However, there are certain general exclusions to the right to erasure

These exclusions include situations where processing is necessary for:

1. Compliance with a legal obligation
2. The establishment, exercise, or defense of legal claims

Right of objection (Art. 21 GDPR)

Every data subject has the right to object to the processing of their data if the data processing is based on Art. 6 (1) (f) GDPR or for direct marketing purposes. If you object to the processing of your Personal Data, we will examine your objection on a case-by-case basis. If we are obligated to delete your Personal Data under data protection law due to your objection, we will delete your data, taking into account statutory retention periods. The objection does not affect the legality of the processing carried out up to the time of the objection.

Right to data portability (Article 20 GDPR)

You have the right to have data that we process automatically based on your consent or in fulfillment of a contract transferred to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done if technically feasible.

Obligation to disclose data

Every data subject has the right to know whether the provision of Personal Data is required by law or contract or is necessary to enter into a contract, whether the data subject is obliged to provide the Personal Data and what possible consequences non-provision would have.

Right to lodge a complaint with the competent supervisory authority

The data subject has the right to lodge a complaint with the competent supervisory authority if they believe one of their rights has been violated. You can contact the Data Protection Authority at any time by sending an email to contact@apd-gba.be or by mailing a written request to the Data Protection Authority, located at 1000 Brussels (Belgium), Drukpersstraat 35. You have the right to lodge a complaint with the competent court.

Revocation of your consent to data processing

Some data processing operations are only possible with your consent. You can revoke your previously granted consent at any time. To do so, simply change your selection in the Application's privacy settings. The legality of the data processing carried out up to the time of revocation remains unaffected by the revocation.

Use of your data for (direct) marketing purposes

Regardless of whether you subscribe to our newsletter, we may use your data, in particular your email address, for (direct) marketing purposes. We will only use your data for this purpose unless you have objected. We hereby inform you, as well as whenever you contact us, that you can object to the use of your data for (direct) marketing purposes at any time, without incurring any costs other than the transmission costs at the basic rates.

Article 9 – Modifications

We reserve the right to amend this privacy statement at any time by publishing a new version on our Application. We recommend that you regularly check the Application to verify whether you agree with any changes to this privacy statement. In any case, you will be informed of any changes to this privacy statement by email, provided we have your email address.

Article 10 – Cookies

WÜRTH BELUX uses "cookies" whenever you use the Application. A "cookie" is information sent from the server to your device and stored on the device's hard drive. Cookies help WÜRTH BELUX recognize your device when you use the Application. This allows WÜRTH BELUX to make the experience more user-friendly and provide you with personalized service. For more information, please refer to our cookie statement, which you can find on our Website.

B. Data collection in our Application

Würth IT – The global IT service provider for the Würth Group

We process your Personal Data in the data centers of Würth IT. Würth IT's services are used to provide our services. We have concluded a contract for data processing with Würth IT.

Further information on how Würth IT handles Personal Data can be found in the privacy policy at https://www.wuerth-it.com/de/it/datenschutz.php .

Tracking tools

This Application uses various tracking tools to make our service more user-friendly, effective, and secure. You can decide at any time which tracking tools you want to enable or disable in the Application's privacy settings. Disabling tools may limit the functionality of this Application. Unless technically necessary, tracking tools are treated separately in the privacy settings and only activated with your prior consent. You can find an overview of the tracking tools used further down in this privacy statement.

Server log files

When you visit our Application and access our online shop interfaces, we process information in so-called server log files, which your device automatically transmits to us. The purpose of this data processing is to ensure the secure operation of the interfaces.

Categories of data processed

The categories of data collected are:

• User Agent
• Time of server request
• IP address
• URL accessed
• Session ID
• Search terms

Legal basis

The legal basis for data processing is Art. 6 (1) (f) GDPR. As the Application operator, we have a legitimate interest in the secure operation of the Application.

Storage period

The data processed in connection with the collection of server log files will be automatically deleted after 14 days.

Contact form

You can send us your inquiries by mail, telephone, or email. Your information, including the contact details you provide, will be stored by us for the purpose of processing your inquiry and in case of follow-up questions.

Categories of Personal Data

As part of an inquiry, we process the following categories of Personal Data, depending on your information:

• Customer number
• Name
• E-mail address
• Telephone number
• Address
• Your message

Legal basis

The mandatory data is processed for contractual purposes. The processing of the data you provide voluntarily is based on Art. 6 (1) (f) GDPR. This permits processing that is necessary to protect our legitimate interests. Our legitimate interest lies in maintaining contact with you, our customers, improving the quality of our advice, and being able to contact you more easily in case of any queries.

Storage period

The data you provide will remain with us until you request its deletion or the purpose for storing it no longer applies (e.g., after your request has been processed). Exceptions to this may be legal retention requirements.

Competition form

If you fill out a contact form to participate in a competition, your details from the form, including the contact details you provided there, will be stored by us for the purpose of conducting the competition, determining the winner and subsequently notifying you of the winner.

Categories of Personal Data

Depending on the competition, the following categories of Personal Data may be processed via the competition form:

• Customer number
• Partner number
• Company name
• First name
• Last name
• E-mail address
• Address

Legal basis

Your data will be processed on the basis of Art. 6 (1) (a) GDPR and your consent.

Storage period

The data you enter in the competition form will remain with us until you request its deletion or the purpose for storing it no longer applies (e.g., after the competition ends). Exceptions to this may be legal retention requirements.

Online shop

You can register in our online shop via the Application to use additional features. We use the data you enter only for the purpose of using the respective offer or service for which you have registered. The mandatory information requested during registration must be provided in full. Otherwise, we will reject your registration.

Categories of data processed

The following data is processed when using the online shop:

Company information

• Company name*
• Name of owner of sole proprietorship
• Street, house number*
• Country*
• Postal code*
• Location*
• Website
• Industry*
• Number of people working with Würth products*
• VAT identification number

Personal information

• Salutation*
• First name*
• Last name*
• Language
• Position*
• E-mail*
• Phone*
• Mobile
• Fax

Legal basis

The processing of mandatory information (marked with “*”) when registering in our online shop is for data processing for contractual purposes.
The processing of the data you voluntarily provide is based on Art. 6 (1) (f) GDPR. This permits processing that is necessary to protect our legitimate interests. Our legitimate interest lies in improving the quality of our consulting services and being able to contact you more easily in case of any queries.

Contact via email

For important changes, such as changes to the scope of our services or technically necessary changes, we will use the email address you provided during registration to inform you.

Storage period

We will store the collected data for as long as you have a business relationship with us. After the business relationship ends, your data will be deleted. After your access to the online shop is deleted, your Würth customer account will remain active and your customer data will continue to be stored. Statutory retention periods remain unaffected.

Profile picture

The Application allows you to upload a personal profile picture. When you create your profile picture, it will be saved on our server along with your customer and partner number. This allows us to provide you with the same picture when you log into the Application on a different device. You also have the option of deleting your profile picture. In this case, the picture will also be deleted from our server.

Legal basis

The processing of the Personal Data you voluntarily provide is based on Art. 6 (1) (f) GDPR. This allows processing that is necessary to protect our legitimate interests. Our legitimate interest is to enable you to use the Application in a customer-friendly manner.

Storage period

We will store the collected data for as long as you have a business relationship with us. After the business relationship ends, your data will be deleted. You can also delete your profile picture yourself at any time.

Cross-contact point linking of customer activities

When you, as a customer or interested party, or their employees, carry out activities at one of our contact points, we aggregate data stored and processed in our central systems via the various communication channels (in particular field service, branch, telephone sales, online shop and Application) and also use the data when contacting you via another communication channel (e.g. our field service employees receive access to data about the goods you are looking for in the Application).

Categories of data processed

• The data you provided during registration (in the online shop or another contact point)
• Activity-related information (e.g., purchased items, items marked as favorites, items saved in the shopping cart, and items viewed)

Legal basis

The processing serves to process data for contractual purposes.

Storage period

We will store the collected data for as long as you have a business relationship with us. After the business relationship ends, your Personal Data will be deleted. After your access to the online shop is deleted, your Würth customer account will remain active and your customer data will continue to be stored. Statutory retention periods remain unaffected.

Personal product recommendations

If you have consented to the use of tools for personalized product recommendations in our Application, we will use your browsing behavior for product recommendations after you register. This includes, in particular, the article pages and product categories you have visited or searched for. You can revoke your consent to the analysis of your browsing behavior at any time. Please note that we will then no longer be able to offer you product recommendations tailored to your browsing behavior.

Legal basis

The use of tools to create personal product recommendations is based on Art. 6 (1) (a) GDPR, your consent.
You can prevent this use by not giving us your consent. However, please note that if you do, you may not be able to use all of this Application's features to their full extent. If you do not give your consent, product recommendations will still be active in pseudonymized form. These recommendations are based solely on actions from your current session. If you close the Application or are inactive for 30 minutes, the session will end, and the actions will no longer be accessible.

The information generated by tools for personal product recommendations will not be passed on to third parties.

Storage period

If you do not or no longer agree to the storage and use of your data, you can deactivate the storage and use in the settings. In this case, your decision will be saved locally on your device. If you uninstall the Application or delete saved data, these settings will also be deleted. When you reinstall or restart the Application, you will be asked again whether you want to use such tools.

Jumps to other websites

The Application may redirect you to other websites. This occurs either by switching to your browser or by displaying the website within the Application. Please note that in both cases, your data may be processed by the website. However, this processing is not governed by our Application's privacy statement, but rather by that of the respective website operator.

C. Analysis tools and advertising

Countly
We use features of the application analysis tool Countly to statistically evaluate the use of our Application. The provider is Countly Ltd, 100 Avebury Boulevard, Milton Keynes, United Kingdom, MK9 1FH. If you consent to the use of Countly, a user ID will be created and stored on your device. This user ID is used for recognition and enables an analysis of your use of the Application. For this purpose, the information generated by Countly about the use of this Application is stored on our server.

Legal basis
The use of Countly for the statistical evaluation of our Application is based on Art. 6 (1) (a) GDPR, your consent.
You can prevent the use of this tool by not granting us your consent. However, please note that if you do so, you may not be able to use all of the Application's features to their full extent.
If you do not or no longer consent to the storage and use of your data, you can revoke your consent to storage and processing in the settings. In this case, your consent will be saved on your device. If you delete the Application's storage data or uninstall it, this consent will also be deleted. When you restart the Application, you will be asked again whether you want to activate the tool.

Categories of data processed

• Installation ID (UUID)
• IP address
• Customer number*
• Partner number*
• Operating system
• Device
• Resolution
• App version
• Network operator
• Language
• Country
• Place of residence
• SDK
• Salutation*
• First name*
• Last name*
• Company*
• Interactions in the Application (e.g. page view, product search)

Data marked with “*” can only be processed after prior login.

Google Analytics for Firebase
We use functions of the application analysis service Google Analytics for Firebase to statistically evaluate the use of our Application. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. When using Google Analytics for Firebase, Personal Data may also be transferred to Google LLC's servers in the USA. Google LLC has concluded standard contractual clauses of the European Commission with us for the transfer of Personal Data to Google LLC, based in the USA. The data processing agreement we have concluded with Google, as well as further information on data protection, can be found in Firebase's privacy policy at: https://business.safety.google/adsprocessorterms/ and https://firebase.google.com/terms/data-processing-terms.

IP anonymization
We have activated the IP anonymization function for Google Analytics for Firebase. This means that your IP address will be shortened by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.

Demographic characteristics in Google Analytics
We also use the "demographics" feature of Google Analytics for Firebase. This allows reports to be created that contain information about the age, gender, and interests of Application users. This data is derived from the Android Advertising ID (AdID) or the iOS Identifier for Advertisers (IDFA). Analytics creates an identifier based on the respective ID. This identifier contains information about demographic data and interests that arise from various Application activities of users. The data cannot therefore be assigned to a specific person. You can deactivate this function at any time via the ad settings in your Google Account or generally prohibit the collection of your data by Google Analytics for Firebase in our Application.

Legal basis
The use of Google Analytics for Firebase for the statistical evaluation of our Application is based on Art. 6 (1) (a) GDPR, your consent.
You can prevent the use of this tool by not granting us your consent. However, please note that if you do this, you may not be able to use all of the Application's features to their full extent.
If you do not or no longer consent to the storage and use of your data, you can revoke your consent to storage and processing in the settings. In this case, your consent will be saved on your device. If you delete the Application's storage data or uninstall it, this consent will also be deleted. When you restart or reinstall the Application, you will be asked again whether the tool can be activated.

Categories of data processed

• Advertising ID (AdID/IDFA)*
• IDFV/Android ID
• Firebase installation ID
• Analytics App Instance ID
• Age*
• App version
• Country*
• Device
• Gender*
• Interests*
• Language
• Operating system
• Interactions in the Application (e.g. page view, product search)

Data marked with “*” will only be processed on iOS if you have previously agreed to the transmission of the IDFA.

Use of Google Ads in our Application
Our Application uses Google Ads, an online advertising program provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter "Google Ireland"). Google Ads also uses conversion tracking. This may result in the transmission of Personal Data to servers of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google Ireland has concluded the EU Commission's standard contractual clauses with Google LLC to ensure an appropriate level of data protection when transferring data to third countries.

What data is collected?
If you click on an ad placed by Google and are redirected to our Application, conversion tracking takes place. The following data is processed:

• Information about your device (e.g. device ID, operating system, app version)
• Your interaction with the ad (e.g., time of click, ad ID)
• Your IP address (shortened if necessary)
• App-related activities (e.g., installation, in-app purchases, use of certain features)

This information enables us to analyze the effectiveness of our advertising campaigns and to specifically improve our offerings. Google provides us with aggregated evaluations in this context. Personal identification by us is not possible.

Legal basis
Processing is based on your consent in accordance with Art. 6 (1) (a) GDPR. Consent is obtained via the Application consent management (e.g., when the Application is first launched or in the settings) and can be revoked there at any time.

Control & Contradiction
You can prevent Google Ads from collecting your data at any time by adjusting the relevant consent options in the Application or by deactivating personalized advertising in the device settings of your mobile device:

• Android: Settings > Google > Advertising > Disable personalized advertising
• iOS: Settings > Privacy > Tracking > Disable App Tracking

Further information For more information about Google’s privacy practices, please visit:

• https://www.google.com/policies/privacy/
• https://policies.google.com/technologies/ads
• https://business.safety.google/privacy/

Use of Google Ads Remarketing in our Application
Our Application uses features from Google Ads Remarketing, a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland ("Google Ireland"). Google Ads Remarketing allows users of our Application to be assigned to specific target groups in order to display tailored, interest-based advertising in the Google advertising network – even across devices.

What data is collected?
As part of Google Ads Remarketing, the following data may be collected and processed, among others:

• Device information (e.g., device ID, operating system, app version)
• IP address (shortened if necessary)
• Interactions in the Application (e.g., content accessed, usage behavior)
• Google Advertising ID (Android) or IDFA (iOS) if applicable

If you have a Google Account and have given your consent to Google, Google can link your Application usage behavior with other activities from your Google Account to run cross-device remarketing campaigns.

Legal basis
The processing is carried out on the basis of your consent in accordance with Art. 6 (1) (a) GDPR.

Control & objection options
You can object to interest-based advertising by Google at any time:

• Via your smartphone's device settings (e.g., "Disable personalized advertising" on Android or "Disable app tracking" on iOS)
• Via your Google Account at: https://policies.google.com/technologies/ads

Data transfer to third countries
When using Google Ads Remarketing, Personal Data may be transferred to servers of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google Ireland has entered into standard contractual clauses with Google LLC to ensure an appropriate level of data protection.

Further information

• Google General Privacy Policy
• Google Services Terms of Use
• Use of cookies by Google
• Privacy for business data at Google

Firebase Crashlytics
This Application uses features of the crash reporting tool Firebase Crashlytics. In the event of a crash, anonymous information is transferred to Google's servers in the USA. This information does not contain any Personal Data. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (hereinafter "Google Ireland"). We have concluded a data processing agreement with Google Ireland. When using Google Analytics for Firebase, Personal Data may also be transferred to the servers of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA (hereinafter "Google LLC") in the USA. For the transfer of Personal Data to Google LLC, based in the USA, Google Ireland has concluded so-called standard contractual clauses of the Commission of the European Union with Google LLC. Further information on data protection can be found in the Firebase Crashlytics privacy policy at: https://firebase.google.com/terms/data-processing-terms and https://firebase.google.com/support/privacy.

Legal basis
The use of Firebase Crashlytics for crash reporting in our Application is based on Art. 6 (1) (a) GDPR, your consent.
You can prevent the use of the tool by not giving us your consent.
If you do not or no longer consent to the storage and use of your data, you can revoke your consent to storage and processing in the settings. In this case, your consent will be saved on your device. If you delete the Application's storage data or uninstall it, this consent will also be deleted. When you restart the Application, you will be asked again whether you want to activate the tool.

Categories of data processed

• State of the Application and the device at the time of the crash
• Crashlytics installation ID
• Stack trace
• Time of crash
• Application version
• Information about jailbreak/root access
• End device
• Free RAM
• Free hard disk space
• Operating system
• Customer number
• Partner number
• Language
• Last log messages (e.g. page view, product search)

Firebase Performance Monitoring
This Application uses functions of the application analysis tool Firebase Performance Monitoring to statistically evaluate the performance of our Application. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (hereinafter "Google Ireland"). We have concluded a contract processing agreement with Google Ireland. When using Firebase Performance Monitoring, Personal Data may also be transferred to the servers of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA (hereinafter "Google LLC") in the USA. For the transfer of Personal Data to Google LLC based in the USA, Google Ireland has concluded so-called standard contractual clauses of the Commission of the European Union with Google LLC.
The order processing agreement we have concluded with Google and further information on data protection can be found in Firebase's privacy policy at: https://firebase.google.com/terms/data-processing-terms and https://firebase.google.com/support/privacy.

Legal basis
The use of Firebase Performance Monitoring to evaluate our Application is based on Art. 6 (1) (a) GDPR, your consent.
You can prevent the use of this tool by not giving us your consent.
If you do not or no longer consent to the storage and use of your data, you can revoke your consent to storage and processing in the settings. In this case, your consent will be saved on your device. If you delete the Application's storage data or uninstall it, this consent will also be deleted. When you restart the Application, you will be asked again whether you want to activate the tool.

Categories of data processed

• Firebase installation ID
• IP address
• Device
• Operating system
• Free RAM
• Free hard disk space
• Processor utilization
• Network operator
• Network information (e.g. WiFi, LTE, 3G)
• Country
• Language
• App version

Würth Analytics
This Application uses functions of the Würth web analytics service based on the open source software Matomo/Piwik. If you consent to the use of Würth Analytics, a user ID will be created and stored on your device. This user ID is used for recognition and enables an analysis of your Application usage. For this purpose, the information generated by the tool about your Application usage is stored on our server.

Legal basis
The use of Würth Analytics for the statistical evaluation of our Application is based on Art. 6 (1) (a) GDPR, your consent.
You can prevent the use of this tool by not granting us your consent. However, please note that if you do so, you may not be able to fully use all of this Application's features. If you do not give your consent, Würth Analytics will still remain active anonymously. This means that the data processed will not be linked to your customer or partner number.
If you do not or no longer consent to the storage and use of your data, you can revoke your consent to storage and processing in the settings. In this case, your consent will be saved on your device. If you delete the Application's storage data or uninstall it, this consent will also be deleted. When you restart the Application, you will be asked again whether you want to activate the tool.

IP anonymization
We have activated the IP anonymization function for this tool. This means that your IP address will be shortened by Würth.

Categories of data processed

• IP address
• Customer number*
• Partner number*
• Device
• Resolution
• Country
• Place of residence
• Salutation*
• First name*
• Last name*
• Company*
• Interactions in the Application (e.g. page view, product search)

The processing of data marked with “*” can only take place with prior login.

App Events (Meta)
For statistical evaluation of the use of our Application, we use functions of the application analysis service App Events from Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland (hereinafter “Meta”).
This allows the behavior of Application users to be tracked, especially after they have been redirected to the Application by clicking on a Facebook ad. This allows the effectiveness of Facebook ads to be evaluated for statistical and market research purposes and future advertising measures to be optimized.

The data collected is anonymous to us as the operator of this Application; we cannot draw any conclusions about the identity of the users. However, the data is stored and processed by Meta, allowing a connection to the respective user profile and allowing Meta to use the data for its own advertising purposes, in accordance with the Meta Data Usage Policy. This allows Meta to enable the placement of advertisements on Meta's websites. We, as the Application operator, cannot influence this use of the data.

You can find further information on protecting your privacy in Meta's privacy policy: https://www.facebook.com/about/privacy/.
You can also deactivate the "Custom Audiences" remarketing feature in the Ad Settings section at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. You must be logged in to Facebook to do so. If you do not have a Facebook account, you can deactivate usage-based advertising from Facebook on the website of the European Interactive Digital Advertising Alliance: http://www.youronlinechoices.com/de/praferenzmanagement/.

Legal basis
The use of App Events for the statistical evaluation of our Application is based on Art. 6 (1) (a) GDPR, your consent.
You can prevent the use of this tool by not giving us your consent.
If you do not or no longer consent to the storage and use of your data, you can revoke your consent to storage and processing in the settings. In this case, your consent will be saved on your device. If you delete the Application's storage data or uninstall it, this consent will also be deleted. When you restart the Application, you will be asked again whether you want to activate the tool.

Categories of data processed

• Advertising ID (IDFA)*
• Device ID
• Device
• Resolution
• Processor
• Available hard disk space
• SDK
• Operating system
• App version
• Network operator
• IP address
• Interactions in the Application (e.g. page view, product search)

* Only on devices with iOS 14 or later, if the dialog for accessing the advertising ID has been agreed to.

D. Newsletter and electronic communication

Data processing for newsletter registration

If you would like to receive the newsletter offered in the Application, we require an email address from you as well as information that allows us to verify that you are the owner of the specified email address and that you agree to receive the newsletter. No further data will be collected or will only be collected on a voluntary basis.

The data entered into the newsletter registration form will be processed exclusively on the basis of your consent (Art. 6 (1) (a) GDPR). You can revoke your consent to the processing of data for sending the newsletter at any time, e.g., via the "unsubscribe" link in the newsletter. The legality of the data processing operations already carried out remains unaffected by the revocation.

Newsletter distribution via Inxmail

WÜRTH BELUX uses the Inxmail service to send newsletters. The provider is Inxmail GmbH, Wentzingerstr. 17, 79106 Freiburg, Germany.

Inxmail is a service that, among other things, can be used to organize and analyze the distribution of newsletters. The data processed for the purpose of subscribing to the newsletter is stored on Inxmail's servers in Germany.

Data analysis by Inxmail

To analyze the success of our newsletter, the emails sent with Inxmail contain a so-called web beacon or "tracking pixel" that reacts to interactions with the newsletter. This allows us to determine whether a newsletter has been opened, whether links have been clicked, or at what time the newsletter was read.

As part of the success analysis, the following data is processed by Inxmail:

• Master data (e.g. name, address)
• Contact details (e.g. email address, telephone number)
• Meta and communication data (e.g. device information, IP address)
• Usage data (e.g. interests, access times)

You can also revoke your consent to the performance analysis separately. If you do not wish to be analyzed by Inxmail, you can deactivate the analysis in the respective newsletter. We provide a corresponding link in every newsletter for this purpose.

Legal basis

Data processing is based on your consent (Art. 6 (1) (a) GDPR). You can revoke this consent at any time. The legality of the data processing operations already carried out remains unaffected by the revocation.

Storage period

The data you provide us with for the purpose of subscribing to the newsletter will be stored by us until you unsubscribe from the newsletter and will be deleted after you unsubscribe. Data stored by us for other purposes (e.g., email addresses for registration in our online shop) remains unaffected.

Conclusion of a contract for order processing

We have concluded a contract with Inxmail in accordance with Art. 28 (3) GDPR, in which we oblige Inxmail to protect our customers' data and not to pass it on to third parties.

Shopping cart reminders

Data processing for shopping cart reminders

When you place products in your shopping cart in our online shop, we offer you the option of sending you shopping cart reminders.

The processing of shopping cart reminders is based on your consent (Art. 6 (1) (a) GDPR). You can revoke your consent to the processing of data for sending shopping cart reminders at any time, for example, via the "unsubscribe" link in the email. The legality of the data processing operations already carried out remains unaffected by the revocation.

Shopping cart reminders by email sent by Inxmail

WÜRTH BELUX uses the Inxmail service to send shopping cart reminders via email. The provider is Inxmail GmbH, Wentzingerstr. 17, 79106 Freiburg, Germany.

Inxmail is a service that, among other things, can be used to organize and analyze the distribution of newsletters. The data processed for the purpose of subscribing to the newsletter is stored on Inxmail's servers in Germany.

Data analysis by Inxmail

To analyze the success of our shopping cart reminders, the emails sent with Inxmail contain a so-called web beacon or "tracking pixel" that reacts to interactions with the email. This allows us to determine whether a shopping cart reminder was opened, whether links were clicked, or at what time the email was read.

As part of the success analysis, the following data is processed by Inxmail:

• Master data (e.g. name, address)
• Contact details (e.g. email address, telephone number)
• Meta and communication data (e.g. device information, IP address)
• Usage data (e.g. interests, access times)

You can also revoke your consent to the performance analysis separately. If you do not wish to be analyzed by Inxmail, you can deactivate the analysis in the respective newsletter. We provide a corresponding link in every shopping cart reminder.

Legal basis
Data processing is based on your consent (Art. 6 (1) (a) GDPR). You can revoke this consent at any time. The legality of the data processing operations already carried out remains unaffected by the revocation.

Storage period
The data you process for the purpose of receiving shopping cart reminders will be stored by us until you unsubscribe from the shopping cart reminder recipient list and will be deleted after you unsubscribe. Data stored by us for other purposes (e.g., email addresses for online store registration) remains unaffected.

Conclusion of a contract for order processing
We have concluded a contract with Inxmail in accordance with Art. 28 (3) GDPR, in which we oblige Inxmail to protect our customers' data and not to pass it on to third parties.

Transactional emails
WÜRTH BELUX uses Inxmail to send transactional emails related to your orders. Transactional emails are emails that are sent automatically after certain business transactions, such as order confirmations or delivery notifications.
The provider is Inxmail GmbH, Wentzingerstr. 17, 79106 Freiburg, Germany.

As part of the transactional email sending, the following data is processed by Inxmail:

• Technical information about the recipient’s end device: operating system, information about the browser used, IP address of the recipient, further information about the end device and the internet connection
• Recipient’s contact details: email address, name if applicable
• Data about user interactions: Information about opened newsletters, clicked links, date and time of interaction

Legal basis
The data processing for sending transaction emails related to your orders is carried out to fulfill contractual purposes.
Data processing for the purpose of documenting the fulfillment of information obligations is based on Art. 6 (1) (f) GDPR (processing to protect the legitimate interests of the controller).

Storage period
The data you have stored with us for the purpose of receiving transactional emails will be deleted from both our servers and the Inxmail servers as part of the regular deletion routine after they have been sent.
The data we store for the purpose of documenting the fulfillment of information obligations will be deleted from both our servers and the Inxmail servers as part of the regular deletion routine six months after the email was sent.

Automated internal forwarding of emails as part of a contact
When contacting our service team via email, the contact information provided by the customer may be used for the current inquiry and other digitally transmitted transactions to automatically forward the inquiry to the appropriate internal department, if possible. This is intended to ensure the proper processing of these business transactions and the faster processing of customer inquiries. The contact information provided will be transferred to our customer database and stored there.

Legal basis
The processing of the data you provide in this context is based on our legitimate interest in accelerating and further optimizing our processes for our customers (Art. 6 (1) (f) GDPR).

Storage period
The Personal Data processed in this context will be retained for the duration of your business relationship with us or until you request deletion. Statutory retention periods remain unaffected.

E. Plugins and tools

YouTube
We have integrated YouTube videos into our online offering, which are stored on www.youtube.com.
If you select the videos, you will be automatically redirected to www.youtube.com or the corresponding app. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. Using YouTube may also result in the transmission of Personal Data to Google LLC servers in the USA.
Further information about YouTube and Google’s privacy policy can be found at:

• Google General Privacy Policy
• Google Services Terms of Use
• YouTube Terms of Use

Meta Messenger
We have integrated links to Meta Messenger within the Application.
If you click on such a link, you will be automatically redirected to www.messenger.com or the corresponding application. The provider is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland.

Google Maps
In this Application, we use Google Maps. This allows us to show you interactive maps directly in the Application and enables you to conveniently use the map function. The provider is Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. We have concluded a data processing agreement with Google Ireland.
Further information about Google Maps and Google’s privacy policy can be found at:

• Google General Privacy Policy
• Google Services Terms of Use

Legal basis
The use of Google Maps is based on Art. 6 (1) (a) GDPR, your consent. You can prevent the use of this tool by not granting us your consent.

Apple Maps (iOS App Only)
This Application uses Apple Maps to display interactive maps directly within the Application. The provider is Apple Inc., One Apple Park Way, Cupertino, CA 95014, USA. When you use Apple Maps, Apple receives certain information about your use of the service.
Further information on the purpose and scope of data collection and processing by Apple Maps can be found in the privacy policy: Apple Maps Privacy Policy.

Legal basis
The use of Apple Maps is based on Art. 6 (1) (a) GDPR, your consent. You can prevent the use of this tool by not granting us your consent.

Friendly Captcha
We use Friendly Captcha in our Application. The provider is Friendly Captcha GmbH, Am Anger 3-5, 82237 Wörthsee, Germany. Friendly Captcha is designed to verify whether the data entered in this Application is being entered by a human or an automated program.
Further information can be found at: Friendly Captcha Privacy Policy.

Conclusion of a contract for order processing
We have concluded a contract with Friendly Captcha GmbH in accordance with Art. 28 (3) GDPR, in which we oblige Friendly Captcha GmbH to protect our customers' data and not to pass it on to third parties.

Payment Providers

PayPal
In our Application, we offer payment via PayPal. The provider of this payment service is PayPal (Europe) S.à.rl et Cie, SCA, 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter "PayPal"). If you choose to pay via PayPal, the payment details you enter will be transmitted to PayPal.

Further information on how PayPal handles Personal Data can be found in its privacy policy at: PayPal Privacy Policy.

Credit Card
In our Application, we offer, among other options, payment via credit card through our payment service provider Ingenico Payment Services GmbH, Daniel-Goldbach-Str. 17-19, 40880 Ratingen. If you choose to pay by credit card, the personal and payment-related data will be transmitted directly to your bank, credit card company, or Ingenico.

Further information on how Ingenico handles Personal Data can be found in its privacy policy at: Ingenico Privacy Policy.

Instant Bank Transfer
In our Application, we offer payment via Sofortüberweisung (instant bank transfer). The provider of this payment service is Sofort GmbH, Theresienhöhe 12, 80339 Munich. We do not collect or store the data ourselves. If you choose to pay via Sofortüberweisung, Sofort GmbH requires the IBAN as well as the PIN and TAN of your online banking access.

G. Processing outside the online shop

Processing of customer data WÜRTH BELUX offers you the opportunity to register as a customer even without access to the online shop. For this purpose, we collect, process, and use Personal Data for contractual purposes.

Categories of data

We need the following information to register you as a customer:

• Company name with legal form (e.g. GmbH)
• Company headquarters (street / house number / postal code / city)
• First and last name of the contact person
• Phone
• Surname and first name of the managing director/owner of the business

You can voluntarily provide us with the following data:

• Email address – Please note, however, that we absolutely need this to access our online shop
• Fax
• Different billing address if applicable
• Mobile phone
• Date of birth of the managing director/owner of the business

Storage period
We will store the collected data for as long as you have a business relationship with us. After the business relationship ends, your data will be deleted. Statutory retention periods remain unaffected.

Microsoft 365
WÜRTH BELUX uses the productivity, collaboration, and exchange platform Microsoft 365. The provider is Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA (hereinafter “Microsoft”).
Microsoft 365 is a service that connects various platforms, including online meetings, telephony solutions, surveys, document exchange and editing, and email communication, and enables easy exchange between the platforms.

Legal basis
The processing of Personal Data with Microsoft 365 is carried out for contractual purposes (in the case of processing for the purpose of executing the contract or pre-contractual measures) or, if Personal Data is processed as part of an employment relationship or application process, on the basis of Art. 6 (1) (b) GDPR and Art. 88 GDPR. We also process the Personal Data on the basis of our legitimate interests (Art. 6 (1) (f) GDPR). Our legitimate interest in the processing is to enable effective and efficient communication and collaboration between our employees, applicants, interested parties, customers, suppliers, service providers, and other business and communication partners. These interests are derived from our right to entrepreneurial freedom and freedom of occupation.

Categories of Personal Data processed
The following categories of Personal Data are processed when using Microsoft 365:

• Communication data (company, name, telephone, email (if personal), address)
• Contract master data (contractual relationship, product or contract interest)
• Log files, protocol data
• Metadata (e.g. IP address, duration of participation in a meeting, etc.)
• Content data (documents, photos, videos, audio, document-specific)

Storage period
The data processed in connection with the use of Microsoft 365 will be stored for as long as necessary for the stated purposes.

Conclusion of a contract for order processing
A data processing agreement has been concluded with Microsoft. The most recent version can be accessed at the following link: Microsoft Data Protection Addendum.

Cross-border pickups
As a registered customer, we offer you the opportunity to use your WÜRTH account to purchase goods from branches of Würth subsidiaries in other EU countries. For this purpose, we provide the participating Würth subsidiaries with Personal Data for contractual purposes.

Categories of data
The following data is provided by WÜRTH BELUX to the participating Würth subsidiaries in other EU countries and processed by them:

• Company name with legal form
• Company headquarters (street / house number / postal code / city)
• First and last name of the contact person
• Phone
• Surname and first name of the managing director/owner of the business

You can voluntarily provide us with the following data:

• E-mail address
• Fax
• Different billing address if applicable
• Mobile phone
• Date of birth of the managing director/owner of the business

Storage period
We will store the collected data for as long as you have a business relationship with us. During this time, it will also be accessible to Würth subsidiaries in other EU countries. Upon termination of the business relationship, your data will be deleted. Statutory retention periods remain unaffected.

Google Pay
In our branches, we offer payment via Google Pay, among other options. This payment service is provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter "Google"). Payment is processed via the "Google Pay" function on your device by charging a payment card stored with Google Pay. Google Pay uses security features integrated into your device's hardware and software to protect your transactions.
To authorize your payment, you must enter a code you previously specified or verify it using a biometric feature on your device. For the purpose of payment processing, the information you provided during the ordering process, along with information about your order, will be transmitted to Google in encrypted form.
After the payment has been made, Google will send your device account number and a transaction-specific, dynamic security code to the device used for payment at our branch to confirm the payment success.
For more information on how Google processes Personal Data within the framework of Google Pay, please see the privacy policy at: Google Privacy Policy

Legal basis
Your data will be transmitted to Google for contractual purposes.

Apple Pay
In our branches, we offer payment via Apple Pay, among other options. This payment service is provided by Apple Distribution International Limited, Hollyhill Industrial Estate, Hollyhill, Cork, Ireland (hereinafter "Apple Distribution International"). Payment is processed via the "Apple Pay" function of your device by charging a payment card stored with Apple Pay. Apple Pay uses security features integrated into your device's hardware and software to protect your transactions.
To authorize your payment, you will need to enter a code you previously specified or verify it using your device's "Face ID" or "Touch ID" function. For the purpose of payment processing, the information you provided during the ordering process, along with information about your order, will be transmitted to Apple in encrypted form.
After the payment has been made, Apple will send your device account number and a transaction-specific, dynamic security code to the device used for payment at our location to confirm the payment.
For more information about how Apple Distribution International processes Personal Data within the framework of Apple Pay, please see the privacy policy at: Apple Privacy Policy

Legal basis
Your data will be transmitted to Apple Distribution International for contractual purposes.

Credit reports
We conduct a credit check before concluding a contract if we plan to provide services that are to be paid for later. This is to protect ourselves against payment defaults. To check your creditworthiness, we obtain information from Companyweb (a company organized and existing under Belgian law, with registered office at 1800 Vilvoorde, Leuvensesteenweg 248D and with company number 0869.703.978). For this purpose, we transmit your name, address, and date of birth to them. If we receive data from credit agencies or debt collection agencies, we also use the creditworthiness index. This calculates the probability that a customer will fulfill their payment obligations in accordance with the contract. The scoring is based on a mathematically and statistically recognized and proven procedure.
Legal basis
The legal basis for this processing is Art. 6 (1) (f) GDPR. Our legitimate interest lies in assessing your creditworthiness and reducing the risk of payment defaults.

Storage period
We will store the collected data for as long as you have a business relationship with us. After the business relationship ends, your data will be deleted. Statutory retention periods remain unaffected.

Further information on the credit agencies listed and their data protection information can be found at: Companyweb Privacy Policy.

Exchange of payment experiences
In order to check your creditworthiness and improve the quality of the information on your creditworthiness, we transmit the Personal Data collected within the framework of the contractual relationship as well as data on non-contractual or fraudulent behavior to Companyweb.

Categories of data processed
As part of the exchange of payment experiences, we store or transmit the following Personal Data: address details, application for a payment order or lawsuit against the customer in the case of an undisputed claim (with date of submission to the court), application for insolvency (with date of application), decisions of the insolvency court regarding the application for insolvency (with date), enforcement proceedings already carried out (date of the respective application, type of measure), issuance of an arrest warrant as part of the enforcement proceedings (with date), ordering of an appointment for the submission of the affidavit or the acceptance of the same already carried out (with date), number of days by which the agreed payment deadline has been exceeded, existence of an arrest warrant for property-related offenses.

Legal basis
The legal basis for this processing is Art. 6 (1) (f) GDPR. Our legitimate interest, as well as the legitimate interests of other economic operators and the general public, lies in assessing your creditworthiness and reducing the risk of payment defaults. The credit agencies store this data and, after prior verification of the credibility of a legitimate interest, pass it on exclusively to their contractual partners.

Further information on the credit agencies listed and their data protection information can be found at: Companyweb Privacy Policy.

Target customer form
We offer interested customers the opportunity to register with other companies, particularly those within the Würth Group, together with our sales staff. For this purpose, we transmit the data required to contact the customer to the desired company.

Categories of data
When submitting the target customer form, the following categories of Personal Data are processed:

• Customer number
• Pursue
• Street
• House number
• Postal code
• Location
• Contact person
• Function
• Phone
• E-mail

Legal basis
The Personal Data is processed for contractual purposes.

Storage period
We will store the collected data for as long as you have a business relationship with us. After the business relationship ends, your data will be deleted. Statutory retention periods remain unaffected. The storage period by the receiving companies is determined by their privacy policies.

H. Third party links

The privacy statement of WÜRTH BELUX does not apply to third-party applications, products, services, websites, or social media features that can be accessed via links we provide for information purposes. When you use these links, you leave the Application, so there is a possibility that information about you may be collected or shared by third parties. WÜRTH BELUX has no influence on third-party websites and makes no recommendations or representations about these websites or their data protection practices. We therefore encourage you to carefully read and review the privacy policies of any website with which you may interact before you allow them to collect, process, and use your Personal Data.
We ask you to inform yourself regularly about the content of our privacy statement. We will adapt this privacy statement as soon as changes to the data processing we carry out make this necessary. If we provide addresses and contact information of companies and organizations in this privacy statement, please note that these addresses may change over time and ask you to check the information before contacting us.