Data Protection Declaration

We at Liebherr-Hausgeräte GmbH are pleased to welcome you to our web pages (hereinafter also referred to collectively as
“website”) and thank you for your interest in the Liebherr Group.
The protection and security of your personal data is extremely important to us. We therefore consider it essential that we
inform you below about the types of personal data we collect concerning you, the purposes for which we process this and
the rights you have in relation to your personal data.

General information

What is personal data and what does processing mean?

– “Personal data” (hereinafter also referred to as “data”) are all the details that make a statement about a natural person.
Personal data are not just details that allow a direct conclusion to be drawn about a certain person (such as the name or
e-mail address of a person), but also information with which with suitable additional knowledge a connection can be
made with a certain person.
– “Processing” means any action taken with your personal data (such as collection, recording, organisation, structuring,
storage, use or erasure of data).

Who is the controller for the processing of your data?
The controller for the processing of your data is:
The controller for the processing of your data is:
Liebherr-Hausgeräte GmbH
Memminger Straße 77-79
88416 Ochsenhausen
Germany
E-mail: [email protected]

How can you reach our data protection officer?
Our data protection officer can be reached using the following contact details:
Corporate Privacy
Liebherr-IT Services GmbH
St. Vitus 1
88457 Kirchdorf an der Iller
Germany
E-mail: [email protected]

What rights do you have as a data subject?
As a data subject, you have the right, within the legal scope, to:
– Information about your data;
– Rectification of inaccurate data and completion of incomplete data;
– Erasure of your data, particularly if (1) they are no longer necessary for the purposes stated in this Data Protection
Declaration, (2) you have withdrawn your consent and there is no other legal ground for the processing, (3) your data
have been unlawfully processed, or (4) you have objected to the processing and there are no overriding legitimate
grounds for the processing;
– Restriction of the processing of your data, particularly if the accuracy of the data is contested by you or the processing
of your data is unlawful and instead of deletion you demand restriction of use;

– Object to processing of your data based on legitimate interests, on grounds relating to your particular situation, or,
without specific justification, to processing of your data carried out for direct marketing purposes; unless it is an
objection to direct marketing, we ask that you explain the reasons why we should not process your data as we may do,
when you lodge an objection. In the event of your reasoned objection, we will examine the merits of the case and cease
processing unless we can demonstrate compelling legitimate grounds for the processing which override your interests,
rights and freedoms or for the establishment, exercise or defence of legal claims;
– Receive your data in a structured, commonly used and machine-readable format and to have your data transmitted from
us directly to another controller;
– Withdraw consent, if you have given us consent for processing. Please note that the lawfulness of processing based on
consent before its withdrawal will not be affected by your withdrawal.

If you assert any of the above-stated rights, please understand that we may require you to provide evidence showing that
you are the person you claim to be.
Furthermore, you have the right to lodge a complaint with a supervisory authority if you consider that the processing of your
data infringes the GDPR.

Links to other websites
Our website may contain links to and from websites of other providers not affiliated with us (“third parties”). After clicking
on the link, we no longer have any influence on the processing of any data transmitted to the third party when the link is
clicked (such as the IP address or the URL on which the link is located), as the behaviour of third parties is naturally beyond
our control. Therefore, we cannot assume any responsibility for the processing of such data by third parties.

Links to social networks and messenger services
Our website may contain links to share content from our website on various social networks and/or messenger services.
The established links do not result in any data being transmitted to providers of social networks or messenger services
while you are using our website. Only when you click on one of the links to share content from our website will data (such as
your IP address or the URL on which the link is located) be transmitted to the respective provider of the social network or
messenger service. We have no influence on further data processing by the respective provider of the social network or
messenger service.

Data processing

Log files
Each time you access and use our website, the web browser used on your terminal equipment (computer, smartphone or
similar) automatically sends information to our web servers, which we store in so-called log files.

What data do we process and for what purposes?
We process the following data:
– Your (external) IP address
– Date and time of access
– Domain name of your internet access provider
– The type and version of browser you are using and the operating system you are using
– URL (address on the internet) of the web page you were on at the time of the access
– The files you retrieve via the respective web page (type of access, name of the retrieved file, URL of the retrieved file,
success of the retrieval)
– The amount of data transmitted to you when visiting the respective web page
– If applicable, date and time of submission when using web forms
These data are in principle processed by us solely for the purpose of ensuring stability as well as network and information
security.

Processing for other purposes may only be considered if the necessary legal requirements pursuant to Article 6 para. 4
GDPR are met. In that case, we will of course comply with any information obligations pursuant to Article 13 para. 3 GDPR
and Article 14 para. 4 GDPR.

On what legal basis do we process your data?
The processing of your data is carried out for purposes of legitimate interests pursuant to Article 6 para. 1 point f GDPR.
Our legitimate interests pursued are the improvement and maintenance of the stability or functionality and the security of
our website.
You have the right to object, on grounds relating to your particular situation, at any time to processing based on Article 6
para. 1 point f GDPR.

Authentication/Authorisation

Authentication on our website is by means of a “MyLiebherr account”.
The “MyLiebherr account” is your main user account at Liebherr-Hausgeräte GmbH. To create a MyLiebherr account, you
need to register. To register, go to (https://home.myliebherr.com). When registering, we will send you an email with a
confirmation link at the end of the registration process. You will need to click the confirmation link to complete the
registration process. Alternatively, you can also register for the MyLiebherr account using your Google, Meta or Microsoft
account (hereinafter referred to as “social login”). Please note that we have no influence on the processing of your personal
data at Google, Meta and Microsoft. You can use the single sign-on service of Liebherr-Hausgeräte GmbH (hereinafter
referred to as “SSO”) with your MyLiebherr account. SSO permits you to use other access-restricted digital services
(hereinafter referred to as “modules”) connected to SSO using uniform access data. With SSO, you can navigate between
modules without a separate registration and sign-on process being required. SSO automatically transmits the data saved in
your MyLiebherr account that is required for the use of the respective modules to the respective provider of the modules for
your utmost convenience. The modules are operated either by Liebherr-Hausgeräte GmbH or by subsidiaries of Liebherr-
Hausgeräte GmbH.

What data do we process and for what purpose?
We process the following data:
• User Principal Name (UPN)
Note: This data is transferred to us during the process of authentication of a Liebherr account by Liebherr-IT Services GmbH.
• Your email address
• Your first and last name [optional]
• Your address (street address, postcode, city) [optional]
• Your telephone number [optional]
We generally only process this data for the purpose of authentication on our website or the central authentication as part of
using content which is not publicly available.
Processing for other purposes occurs only if the requisite legal conditions pursuant to Art. 6(4) GDPR have been met. In this
case, we will of course comply with any information obligations pursuant to Art. 13(3) GDPR and Art. 14(4) GDPR.
On what legal basis do we process your data?
Your data is processed for the performance of a contract or to take steps prior to entering into a contract in accordance
with Art. 6(1)(b) GDPR.

Chatbot

On our website, you have the option of receiving advice from our chatbot with regard to our product world and products. Our
chatbot is a virtual product advisor that can provide information about products in an interactive online conversation,
answer questions that arise and provide you with advice to assist you in making your purchasing decision.
What data do we process and for what purpose?
We process the following data:

• Cookie ID

• Free text that is used in the chat process for advice on products
This data is only processed for the following purposes:

• Product advice to our website visitors

Processing for other purposes occurs only if the requisite legal conditions pursuant to Art. 6(4) GDPR have been met. In this
case, we will of course comply with any information obligations pursuant to Art. 13(3) GDPR and Art. 14(4) GDPR.
On what legal basis do we process your data?
Your data is processed based on your consent pursuant to Art. 6(1)(a) GDPR in conjunction with Art. 7 GDPR.
You have the right to withdraw your consent at any time with effect for the future. The lawfulness of processing based on
your consent up to the point of withdrawal remains unaffected by your withdrawal.

Use of web forms

– Contact forms

On our website, you have the option of sending messages or requests to us or to other companies via web forms. If you
make use of this option, we will transfer your data that was collected via the respective form by email to the addressee
selected by you. If we ourselves are the addressee of your message or request, we will also process your data in order to
process your message or request and to contact you.

What data do we process and for what purpose?
We process the following data:

• Name, first name
• Email address
• Content data (your message/request)
• If applicable, address (street address, postcode, place and country)
• If applicable, telephone number
• If applicable, serial number
• If applicable, an individual error specification / the description of an incident or request for a courtesy to be
granted
• If applicable, bank details (IBAN or bank sort code / account number)

This data is only processed for the following purposes:

• Providing the service (transmitting your message or request to the addressee)
• Replying to and subsequent processing of your message or request if we are the addressee of your message or
request

On what legal basis do we process your data?

Your data is processed for the performance of a contract or to take steps prior to entering into a contract in accordance
with Art. 6(1)(b) GDPR or to preserve legitimate interests in accordance with Art. 6(1)(f) GDPR.
If we are the addressee of your message or request, the legitimate interest that we pursue is in providing a proper response
to and in processing your message or request.
You have the right to object to processing at any time on the basis of Art. 6(1)(f) GDPR for reasons arising from your specific
situation.

– Email newsletter

On our website, we offer you the option of subscribing to our e-mail newsletter via web forms.

What data do we process and for what purposes?

We may process the following data

– Salutation
– Name, first name
– E-mail address
– Your (external) IP address
– Date and time of subscription and reconfirmation of subscription
– Date and time of the newsletter retrieval

The data provided by you are in principle processed by us solely in order to regularly send you our newsletter (if
applicable with a personal address) by e-mail and to provide you with marketing information on our products or service
offerings or about corresponding promotions, events, competitions, articles, etc.

The data collected in the course of newsletter subscription, including the so-called double opt-in procedure, are in
principle processed by us solely for the protection of the offer and for the compliance with our legal obligations to
provide proof. With the double opt-in procedure, you will receive an e-mail in the course of the newsletter subscription
with a request to reconfirm your subscription to our newsletter. If you do not confirm your subscription by clicking on the
confirmation link sent to you, you will not be subscribed for our e-mail newsletter and therefore will not receive it.

In addition, we track and analyse your interactions with our newsletter (measurement of opening and click rates) and
store this information in your recipient profile in order to measure the success of our newsletter and to be able to
continuously improve it and design it as needs dictate. Opening rates are measured with the help of a so-called pixel, a
small, invisible image file that is automatically loaded by the web server when the newsletter is opened and thereby
provides information that the newsletter was actually opened. The measurement of click rates, on the other hand, is
carried out in such a way that after clicking on a web link contained in the newsletter, you are first directed to a web
server where your click is registered; only then do you reach the actual target page.

On what legal basis do we process your data?

The processing of your data is based on your consent pursuant to Article 6 para. 1 point a in conjunction with Article 7
GDPR resp. for the compliance with a legal obligation pursuant to Article 6 para. 1 point c, para. 3 point a GDPR in
conjunction with Article 32 GDPR (security) resp. Article 7 para. 1 GDPR (obligation to provide evidence).

You have the right to withdraw given consent at any time with effect for the future and/or to object at any time to
processing of your data for marketing purposes. The withdrawal/objection does not affect the lawfulness of the
processing before the withdrawal/objection. An isolated withdrawal/objection regarding only the measurement of
opening and click rates and/or the storage of the measurement results in recipient profiles is not possible, which means
that you will have to unsubscribe from the newsletter as a whole for that. You can unsubscribe from the newsletter at
any time by sending an e-mail to [email protected] or by clicking on the unsubscribe link at the end of
each newsletter.

– E-mail newsletter[other sender]

On our website, we offer you the option of subscribing to e-mail newsletters from various senders via web forms. If you
make use of this option, we will transmit your data collected via the respective form to the designated sender of the email
newsletter. For further processing of your data, the sender is responsible. For details on the further processing of
your data, please refer to the respective data protection declaration of the sender, provided to you at the time when your
data are obtained.

What data do we process and for what purposes?

We typically process the following data:

– Salutation
– Name, first name
– E-mail address

These data are in principle processed by us solely for the purpose of providing the service (transmission of your data to
the sender).

On what legal basis do we process your data?

The processing of your data is carried out for the performance of a contract or in order to take steps prior to entering
into a contract pursuant to Article 6 para. 1 point b GDPR.

– Competitions

On our website, we offer you the option of participating in various competitions of different organisers via web forms. If
you make use of this option, we will transmit your data collected via the respective form to the designated competition
organiser. For further processing of your data, the organiser is responsible. For details on the further processing of your
data, please refer to the respective data protection declaration of the organizer, provided to you at the time when your
data are obtained, and, if applicable, the participation conditions for the respective competition.

What data do we process and for what purposes?

We typically process the following data:

– Salutation
– Name, first name
– E-mail address
– Address
– Content data (your answers to the competition)

These data are in principle processed by us solely for the purpose of providing the service (transmission of your data to
the organiser).

On what legal basis do we process your data?

The processing of your data is carried out for the performance of a contract or in order to take steps prior to entering
into a contract pursuant to Article 6 para. 1 point b GDPR.

– Cashback sales promotions

On our website, you have the option of taking part via web forms in various cashback sales promotions offered by different
organizers. If you take advantage of this option, we will transfer your data that was collected via the respective form to the
designated organizer of the cashback sales promotion. The organizer is responsible for the subsequent processing of your
data. For details on the subsequent processing of your data, please refer to the respective data protection declaration of the
organizer, which will be provided to you at the time that your data is collected, and to any terms and conditions of
participation for the respective cashback sales promotion.

What data do we process and for what purpose?

We generally process the following data:

• Salutation
• Name, first name
• Email address and/or telephone number
• Address
• Serial number of your Liebherr refrigerator or freezer
• Model of your Liebherr refrigerator or freezer
• Date of purchase/invoice
• Proof of invoice
• Bank details (IBAN)

We generally only process this data for the purpose of providing the service (transferring your data to the organizer).
Processing for other purposes occurs only if the requisite legal conditions pursuant to Art. 6(4) GDPR have been met. In this
case, we will of course comply with any information obligations pursuant to Art. 13(3) GDPR and Art. 14(4) GDPR.

On what legal basis do we process your data?
Your data is processed for the performance of a contract or to take steps prior to entering into a contract in accordance
with Art. 6(1)(b) GDPR.

– Digital contents

On our website, we offer you the option of accessing or downloading digital contents such as white papers and similar
documents from various providers via web forms. If you make use of this option, we will transmit your data collected via
the respective form to the designated provider of the digital content. For further processing of your data, the provider is
responsible. For details on the further processing of your data, please refer to the respective data protection declaration
of the provider, provided to you at the time when your data are obtained.

What data do we process and for what purposes?

We typically process the following data:

– Salutation
– Name, first name
– Business e-mail address

These data are in principle processed by us solely for the purpose of providing the service (transmission of your data to
the provider).

On what legal basis do we process your data?

The processing of your data is carried out for the performance of a contract or in order to take steps prior to entering
into a contract pursuant to Article 6 para. 1 point b GDPR.

– Warranty extensions

On our website, we offer you the option of requesting the extension of a warranty via web forms. If you make use of this
option, we will transmit your data collected via the respective form to the designated warrantor. For further processing
of your data, the warrantor is responsible. For details on the further processing of your data, please refer to the
respective data protection declaration of the warrantor, provided to you at the time when your data are obtained, and, if
applicable, the warranty conditions for the respective warranty extension.

What data do we process and for what purposes?

We typically process the following data:

– Email address
– Purchase date
– Serial number
– Resp. salutation
– Resp. name, first name
– Resp. address
– Resp. telephone number
– Resp. company
– Resp. invoice
– Resp. invoice number
– Resp. number of Smart Monitoring licence

These data are in principle processed by us solely for the purpose of providing the service (transmission of your data to
the warrantor).

On what legal basis do we process your data?

The processing of your data is carried out for the performance of a contract or in order to take steps prior to entering
into a contract pursuant to Article 6 para. 1 point b GDPR.

Use of cookies and other technologies

A. General

In providing our website, we use cookies and other technologies. In the following cookie notices we provide you – as a user
of our website – with additional information on data processing via the use of cookies and other technologies.

I. What are cookies and other technologies?

Cookies are small text files that a web server can store and read on your terminal equipment (computer, smartphone or
similar) by means of the web browser that you use. Cookies contain individual, alphanumeric character strings that enable
identification of the web browser that you are using and may also contain information on user-specific settings.

In addition to cookies, we use other technologies as follows:

– Using so-called “local storage technology”, data is only stored locally, i.e. solely on your terminal equipment and not on
the web server, in the so-called “local storage” of your web browser. In contrast to cookies, data stored using local
storage technology does not possess an expiry date and is not automatically deleted without further action; you can,
however, delete this data yourself via your web browser. Please refer to the instructions of your web browser
manufacturer on how to delete data stored using local storage technology.

– In addition, we have integrated so-called “tracking pixels” (also called “pixels”, “pixel tags” or “web beacons”) on our
website. Tracking pixels are small, usually invisible, image files that are automatically loaded by a web server and can
provide information about your web browser or terminal equipment as well as your use of our website. This information
can in turn be used to create a profile that is recognised when you visit our website again.

The aforementioned cookies and other technologies are hereinafter collectively referred to as “cookies”.

II. What types of cookies and other technologies exist?

We distinguish between essential cookies on the one hand and optional cookies on the other:

– Essential cookies are those that are technically necessary for the functionality as well as for ensuring the security and
stability of our website and information technology systems. We also assign to this category those cookies that store
certain settings that you have made, options selected or information entered until you close your web browser (at the
latest), in order to provide the desired function that you have requested (e.g. login status, language setting etc.). Your
consent is not required to store or read essential cookies. You cannot, therefore, manage essential cookies via the
settings of the consent management service that we use, but only via your web browser and delete cookies stored there
or block storage of cookies.

– Optional Cookies are those that are not essential for functionality nor to ensure the security and stability of our website
and information technology systems, but are used for analysis or marketing purposes. These cookies can, for example,
be used to compile anonymous statistics and collect information on how you use our website, which enables us to
analyse the use of our website and thereby optimise it. We also assign to this category those cookies that store certain
settings that you have made, options selected or information entered; these remain after you have closed your web
browser in order to provide the desired function that you have requested (e.g. login status by selecting “Remember my email
address”, wish list, compare list etc.) over a longer term. To store or read optional cookies, your prior consent is
generally required. You can consent to the use of optional cookies and withdraw any consent that you have granted at
any time with future effect via the settings of the consent management service that we use.

Both essential and optional cookies may be so-called “session cookies” or “persistent cookies”, which differ in their
intended lifetime or functional life:

– Session cookies are stored on your terminal equipment and are automatically deleted when you close your web browser.
– Persistent cookies (or permanent cookies) are stored on your terminal equipment and are not automatically deleted
when you close your web browser, but remain on your terminal equipment for a predefined period of time.
– Data stored using local storage technology does not have an expiry date and therefore has unlimited functional life.

Note: You can generally delete cookies and data stored using local storage technology yourself via your web browser. For
details, please refer to the instructions of your web browser manufacturer.

B. Use of cookies on our website

I. Essential Cookies

1. Which essential cookies are used for what purpose and for how long?

Service	Purpose	Service provider	Functional life
Consent management	Obtaining and managing consent and storing information about consent decisions	Usercentrics GmbH, Sendlinger Straße 7, 80331 München, Germany	unlimited
Content Delivery Network	Security and stability	Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA	30 days
Load Balancer	Security and stability	-	8 hours
Language detection	Language detection for user-specific language display of the website	-	Until your web browser is closed

– Consent management

Open settings
In order for you to manage the use of optional cookies on our website, we have implemented a consent management
service. Via the consent management service, the first time you access our website, you will be presented with a
previously defined query (“Cookies, other technologies and miscellaneous services”), which allows you to accept or
decline the use of optional cookies by clicking the appropriate button. In addition, clicking on “settings” will take you to
the settings of the consent management service, where you will find inter alia a simplified cookie list, classified by type.
With the consent management service, you can inter alia find out about the purposes of the cookies that we use, the
data processed in each case as well as any data recipients and, in the case of optional cookies, you can give or withdraw
your consent at any time by selecting or deselecting the relevant box.
Please note that essential cookies are already stored upon accessing our website and that the relevant box is
preselected. It is not possible to deselect essential cookies via the consent management service. The functionality of
the consent management service itself requires the use of certain cookies.

Service provider information:
Usercentrics GmbH, Sendlinger Straße 7, 80331 München, Germany

Website:
https://usercentrics.com/

General Terms and Conditions:
https://usercentrics.com/terms-and-conditions/

Privacy Policy:
https://usercentrics.com/privacy-policy/

– Content Delivery Network

To optimise the loading times of our website, we use a so-called “Content Delivery Network” (hereinafter “CDN”) of the
service provider Cloudflare, Inc, 101 Townsend St, San Francisco, CA 94107, USA. A CDN is a network of geographically
distributed servers connected via the Internet that can be used to deliver web content faster and more securely. Against
this background, personal data may also be stored and processed by the service provider outside the EU or the EEA and
thus in a third country, in particular in the USA.
For a data transfer to a third country, pursuant to the GDPR, additional conditions are to be complied with in order to
ensure that the level of data protection guaranteed in the EU is not undermined. In this case, the data transfer to the
USA takes place on the basis of the European Commission’s adequacy decision of 10 July 2023. According to this
adequacy decision, the USA ensures an adequate level of protection within the meaning of Article 45 GDPR for personal
data transferred from the EU to organisations in the USA that are certified under the “EU-U.S. Data Privacy Framework”
(hereinafter “DPF”) and included in the “Data Privacy Framework List” (https://www.dataprivacyframework.gov/list),
maintained and made publicly available by the U.S. Department of Commerce.

Cloudflare, Inc. is certified under the DPF and included in the Data Privacy Framework List.

Service provider information:
Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA

Representative in the European Union:
Cloudflare Portugal, Unipessoal Lda., Largo Rafael Bordalo Pinheiro 29, 1200-369 Lisboa, Portugal

Website:
https://www.cloudflare.com

Privacy Policy:
https://www.cloudflare.com/privacypolicy/

– Load Balancer

For load distribution we use a so-called “load balancer”. With a load balancer, web requests are sent to a load balancing
server, which in turn redirects the web request to an internal server. To avoid being routed back and forth between
different servers within a session and to ensure uniform processing, your web requests are forwarded to the same
server. To identify that server and to ensure correct redirection, we use a cookie with a lifetime or functional life of eight
hours.

– Language detection

We use a session cookie to enable user-specific language display of our website. In so doing, the language of your web
browser will be detected and our website displayed for you in the same language.

2. On which legal basis are essential cookies used?

In order to be able to demonstrate that – or whether – you have consented to the use of optional cookies requiring your
consent, we store the information about your consent, whether given or not, in order to fulfil our legal obligation to provide
evidence in accordance with Article 6 para. 1 point c and Article 6 para. 3 point a GDPR in conjunction with Article 7 para. 1
GDPR.

Furthermore, we use essential cookies for the purposes of legitimate interests in accordance with Article 6 para. 1 point f
GDPR.

Our legitimate interests pursued are:

– Ensuring the security and stability of our website and information technology systems, for example by protecting
against attacks in the form of targeted server overloads (Denial of Service attacks) or by using optimal load distribution
on servers
– Establishment, exercise or defence of legal claims
– Providing and guaranteeing the proper functionalities of our website.

3. How can I object to the use of essential cookies?

You can exercise your right to object by means of the blocking options described below under “Deletion/Blocking of
Cookies” (cf. Article 21 para. 5 GDPR), i.e. by blocking essential cookies via your web browser settings.
Please note that if you delete without blocking, essential cookies will be used once again when you access our website at a
later date. Please also note that deactivating or deleting or blocking essential cookies may affect the performance and
functionality of our website and may cause certain features and functions to be unavailable.

II. Optional cookies

Using the following information, we would like to enable you to make a well-founded decision for or against the use of
optional cookies and the associated data processing.

1. Which optional cookies are used for what purpose and for how long?

Service	Purpose	Service provider	Functional life
Google Analytics	Web analysis	Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland	Up to 2 years
Kameleoon	Web analysis	Kameleoon SAS, 12 rue de la Chaussée d'Antin, 75009 Paris, France	Up to 380 days
Google Ads Conversion Tracking	Marketing	Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland	Up to 2 years
Google Ads Remarketing	Marketing	Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland	Up to 2 years
Google Ad Manager	Marketing	Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland	Up to 2 years
Microsoft Advertising	Marketing	Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland	Up to 390 days

Web Analysis

Subject to your consent, we use web analysis cookies in order to analyse the use of our website and thereby be able to
improve it continuously. The anonymised user statistics obtained (e.g. number and origin of website visitors) enable us to
optimise our website and improve its design – such as by placing frequently accessed information or topics on our website
at the right location to meet demand.

Against this background, we use the services detailed hereafter:

– Google Analytics

For web analysis we use “Google Analytics”, a web analysis service of Google Ireland Limited, Gordon House, Barrow
Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
(hereinafter collectively “Google”), with the “IP anonymization” extension (also called “IP masking method”). To this end,
we have concluded a data processing agreement with Google in accordance with Article 28 GDPR. Google will
accordingly process the data collected (data about your terminal equipment or web browser, IP addresses and your
website or application activities) on our behalf for the purposes of evaluating your use of our website, compiling reports
on website activity and providing other services relating to website and internet usage.

Data collected within the context of Google Analytics may be stored and processed by Google or subprocessors of
Google outside the EU or the EEA and thus in a third country, in particular in the USA. The IP masking method that we
use ensures that before the IP address is transferred to a Google server in the USA and stored there, it is shortened
within EU member states or in other EEA member states so that no IP address is transferred in its entirety, thereby
preventing or considerably complicating identification of a person. Only in exceptional cases will the complete, i.e. entire,
IP address be transferred to a Google server in the USA and only shortened there.

For a data transfer to a third country, pursuant to the GDPR, additional conditions are to be complied with in order to
ensure that the level of data protection guaranteed in the EU is not undermined. In this case, the data transfer to the
USA takes place on the basis of the European Commission’s adequacy decision of 10 July 2023. According to this
adequacy decision, the USA ensures an adequate level of protection within the meaning of Article 45 GDPR for personal
data transferred from the EU to organisations in the USA that are certified under the “EU-U.S. Data Privacy Framework”
(hereinafter “DPF”) and included in the “Data Privacy Framework List” (https://www.dataprivacyframework.gov/list),
maintained and made publicly available by the U.S. Department of Commerce.

Google LLC is certified under the DPF and included in the Data Privacy Framework List.

Service provider information:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre
Parkway, Mountain View, CA 94043, USA

Google Ads Data Processing Terms:
https://privacy.google.com/businesses/processorterms/
Terms of Service:
https://marketingplatform.google.com/about/analytics/terms/us/
Overview of data usage in Google Analytics:
https://support.google.com/analytics/answer/6004245?hl=en
Privacy Policy:
https://policies.google.com/privacy
Technical explanation of “IP Anonymization (or IP masking) in Google Analytics”
https://support.google.com/analytics/answer/2763052?hl=en
Additional note:
If you wish to deactivate Google Analytics across all websites, you can download and install the “Google Analytics Optout
Browser Add-on” at https://tools.google.com/dlpage/gaoptout?hl=en. This option only disables web analysis as
long as you are using a web browser for which you have installed the add-on.

- Kameleoon

For web analysis we use “Kameleoon”, a test and personalisation service of Kameleoon SAS, 12 rue de la Chaussée
d'Antin, 75009 Paris, France, with which we in this respect have concluded a data processing agreement in accordance
with Article 28 GDPR.

This service enables us to perform so-called A/B testing procedures, through which we can test and optimise different
versions of our website. To this end, we analyse the behaviour of users who are assigned to a specific user segment
based on defined criteria, such as the terminal equipment and web browser used, to which a randomly selected version
of our website is displayed over a certain period of time. In this context, various information is accessed from or stored
on your terminal equipment, in particular in the local storage of your web browser. In addition to data about your terminal
equipment (device type, operating system, web browser used, screen/window size, language setting, activated
adblocker, etc.), the information accessed or stored includes, in particular, a unique identifier (unique ID) by means of a
pseudonymous visitor identifier (kameleoonVisitorCode), which can be used to uniquely recognise your terminal
equipment and thus ensure continuous tracking of your user activities, including the duration of your visit and the areas
of our website accessed.

Service provider information:
Kameleoon SAS, 12 rue de la Chaussée d'Antin, 75009 Paris, France
Overview of data collection by the service provider:
https://developers.kameleoon.com/privacy-and-compliance/data-collection-client-side
Privacy Policy:
https://www.kameleoon.com/en/privacy-policy

Marketing
Subject to your consent, we use marketing cookies. Marketing cookies can detect whether you have accessed an advertised
website and what content has been – and is being – used by you to display advertising content that is relevant to you and
tailored to your interests, to limit the frequency with which advertisements appear and to measure the success or
effectiveness of advertising campaigns.

Against this background, we use the services detailed hereafter:

– Google Advertising Products

For marketing purposes, we use the following advertising products of Google Ireland Limited, Gordon House, Barrow
Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
(hereinafter collectively “Google”).
We use the advertising product “Google Ads” (formerly: “AdWords”), which enables us to display advertisements inter
alia in Google search results, in the Google partner network or on other Google platforms. When you interact with an
advertisement placed through Google Ads, such as by clicking on an advertisement, “Google Ads Conversion Tracking”
uses a cookie to track whether you have subsequently completed an action (“conversion”) defined by us, such as
subscribing to a newsletter. The information collected with the help of the cookie involved is provided to us by Google in
the form of so-called conversion statistics, from which we can read, for example, the total number of anonymous users
who have clicked on our advertisement. We do not ourselves receive any information that would enable personal
identification. In addition to Google Ads Conversion Tracking, we use “Google Ads Remarketing”, which enables
advertisements to be displayed in the Google partner network during your subsequent internet usage, after you have
visited our website. To this end, Google records your usage behaviour when you visit various websites in the Google
partner network, whereby, according to Google, pseudonymisation is used. One further advertising product that we use
is “Google Ad Manager” (formerly: “DoubleClick”) to present targeted advertisements to you based on your perceived
interests. A pseudonymous identification number is assigned to the web browser that you are using in order to check
which advertisements have already been displayed in your web browser and which of them you have accessed.

Data collected within the context of Google Advertising Products may be stored and processed by Google, also for its
own purposes, outside the EU or the EEA and thus in a third country, in particular in the USA. We have no influence on
further data processing by Google.

Google LLC is certified under the DPF and included in the Data Privacy Framework List.

Service provider information:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre
Parkway, Mountain View, CA 94043, USA

Website:
https://marketingplatform.google.com
Privacy Policy:
https://policies.google.com/privacy

– Microsoft Advertising

For marketing purposes, we use “Microsoft Advertising” (formerly: “Bing Ads”), an online advertising program of
Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18,
Ireland; parent company: Microsoft Corporation, One Microsoft Way Redmond, WA 98052-6399, USA (hereinafter
collectively “Microsoft”).

Within this advertising program, we have the option of placing advertising content and advertisements in the service
provider’s advertising network (Microsoft Audience Network) or also in search results of the internet search engine
“Microsoft Bing”, which can be displayed to you specifically on the basis of your presumed interests (personalised ads).
In addition, using so-called Universal Event Tracking (UET), we can set and track whether and how our content and ads
placed via Microsoft Advertising are interacted with. This means, for example, that if users access our website via such
content or ads, we can also track user activity on the respective website, including the length of time spent on the
website and which areas of the website were accessed. This is done by using various cookies, some with unique
identifiers (unique IDs), and by collecting various data, including IP addresses, which are stored by Microsoft for up to
390 days. Data collected by Microsoft Advertising is also processed by Microsoft for its own purposes, including
improving its own services and for reporting and performance analysis purposes. We ourselves, in principle, only receive
anonymised statistics from Microsoft from which we can read, for example, the total number of users who have clicked
on one of our advertisements. For us, it is not possible to identify you personally.

Data collected within the context of Microsoft Advertising may be stored and processed by Microsoft, also for its own
purposes, outside the EU or the EEA and thus in a third country, in particular in the USA. We have no influence on further
data processing by Microsoft.

Microsoft Corporation is certified under the DPF and included in the Data Privacy Framework List.

Service provider information:
Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18,
Ireland; parent company: Microsoft Corporation, One Microsoft Way Redmond, WA 98052-6399, USA

Website:
https://about.ads.microsoft.com
Privacy Policy:
https://privacy.microsoft.com/privacystatement
Additional note:
If you wish to turn off personalised ads by Microsoft, you can set the respective setting at
https://account.microsoft.com/privacy/ad-settings.

Tag management system

For the management and control of the web analysis and marketing services described in more detail above, we use a socalled
tag management system on our website. This enables us to integrate the aforementioned web analysis and
marketing services on our website and to manage and control their use without having to change the source code of the
website. The tag management system itself does not store any information on your terminal equipment and is only
executed, i.e. only processes and transmits or transfers data, if you have consented to the use of at least one of the web
analysis and/or marketing services integrated via the tag management system.

Against this background, we use the services detailed hereafter:

– Google Tag Manager

We use the “Google Tag Manager”, a tag management system of Google Ireland Limited, Gordon House, Barrow Street,
Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter
collectively “Google”). In this respect, we have concluded a data processing agreement with Google in accordance with
Article 28 GDPR.

Data transmitted to Google within the context of the Google Tag Manager may be stored and processed by Google or
subprocessors of Google outside the EU or the EEA and thus in a third country, in particular in the USA.

Google LLC is certified under the DPF and included in the Data Privacy Framework List.

Service provider information:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre
Parkway, Mountain View, CA 94043, USA

2. On which legal basis are optional cookies used?

We use optional cookies on the basis of the consent pursuant to Article 6 para. 1 point a in conjunction with Article 7 GDPR.

3. How can I withdraw the consent that I have given to the use of optional cookies?

When you (first) access our website, we request inter alia your consent for the use of optional cookies by means of a
predefined query (“Cookies, other technologies and miscellaneous services”). You can withdraw the consent that you have
given at any time with effect for the future and thereby prevent further collection of your data by deselecting optional
cookies (web analysis, marketing) in the settings of the consent management service.

If and insofar as you do not consent or withdraw consent already given (further) data collection by means of optional
cookies requiring consent and the associated data processing will cease. This presents no drawbacks when using the
website, unless you also deactivate the cookie functions for essential cookies.

The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

As an alternative to withdrawing your consent, you can also make use of the options described below under
“Deletion/Blocking of Cookies” to delete or block cookies using the information provided there.

C. Deletion/Blocking of Cookies

Cookies are stored on your terminal equipment, so you have the control over them. If you do not want us to recognise your
terminal equipment, you can deactivate or delete cookies already stored on your terminal equipment – manually or
automatically – at any time and/or block storage of cookies with future effect by making the appropriate setting in your web
browser software, e.g. “do not accept cookies” or similar. Most web browsers can also be configured in such a way that
cookie storage is only accepted if you agree to this separately on a case-by-case basis. If you do not wish to accept cookies
from our service providers and partners, you should have your web browser set to “block third-party cookies” or similar.
Usually, the “Help” function in the menu bar of your web browser shows you how to deactivate or delete cookies already
stored there and how to decline new cookies. For details of the options described, please refer to the instructions provided
by your web browser manufacturer.

Please note that if you delete without blocking, any essential cookies will be used the next time and we may ask you once
again for your consent to optional cookies when you access our website at a later date. Please also note that deactivating
or deleting or blocking essential cookies may affect the performance and functionality of our website and may cause
certain features and functions to be unavailable.

You can manage the settings for the use of optional cookies and the associated data processing at any time in the settings
of the consent management service.

Integration of third-party services

In providing our website, we integrate various content and functional elements (hereinafter also referred to collectively as
“services”) that are obtained from the web servers of their respective providers (hereinafter referred to as “third-party
providers”). For the proper presentation and provision of the services, it is always necessary that your IP address is
transmitted to the respective third-party provider. Although we endeavour to only integrate services where the respective
third-party provider only uses the IP address to deliver the services, we have no influence on the further processing by thirdparty
providers.

When you access our website for the first time, we also ask you for your consent to the transmission of data to third-party
providers associated with the use of miscellaneous services with a previously defined query (“Cookies, other technologies
and miscellaneous services”). If you do not already give your consent with this previously defined query, third-party services
requiring your consent will be blocked on our website and no data will be transmitted to third-party providers. Instead, you
can give your consent separately for individual third-party services in each case by clicking on “Accept” in the respective
blocker. If you do not want to consent to each third-party service individually in the future and want to be able to load them
without the respective blocker, you have the option of additionally selecting “always accept” or similar and thus also
consenting to the respectively associated data transmissions for all other relevant third-party services that you will access
on our website in the future.

You can withdraw given consents at any time with effect for the future and thus prevent the further transmission of your
data by deselecting the respective service under “Miscellaneous services (optional)” in the settings of the consent
management service.

Against this background, we use the services detailed hereafter:

- YouTube videos

We integrate videos from “YouTube” on our website, a service of Google Ireland Limited, Gordon House, Barrow Street,
Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter
collectively “Google”). For the integrated YouTube videos, the “privacy-enhanced mode” is turned on, so that no cookies
for analysing user behaviour are used.

Subject to your consent, we transmit your data, including your IP address, to Google when you load a YouTube video. Data
transmitted within this context may be stored and processed by Google, also for its own purposes, outside the EU or the
EEA and thus in a third country, in particular in the USA. We have no influence on further data processing by Google.

Google LLC is certified under the DPF and included in the Data Privacy Framework List.

Third-party provider information:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre
Parkway, Mountain View, CA 94043, USA

Website:
https://www.youtube.com
Privacy Policy:
https://policies.google.com/privacy

– Google Maps

We integrate map material from “Google Maps” on our website, a service of Google Ireland Limited, Gordon House,
Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043,
USA (hereinafter collectively “Google”).

Subject to your consent, we transmit your data, including your IP address, to Google when you load Google Maps
material. Data transmitted within this context may be stored and processed by Google, also for its own purposes,
outside the EU or the EEA and thus in a third country, in particular in the USA. We have no influence on further data
processing by Google.

Google LLC is certified under the DPF and included in the Data Privacy Framework List.

Third-party provider information:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre
Parkway, Mountain View, CA 94043, USA
Website:
https://cloud.google.com/maps-platform
Privacy Policy:
https://policies.google.com/privacy

- Google Charts

We integrate charts from “Google Charts” on our website, a service of Google Ireland Limited, Gordon House, Barrow
Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
(hereinafter collectively “Google”).

Subject to your consent, we transmit your data, including your IP address, to Google when you load Google Charts. Data
transmitted within this context may be stored and processed by Google, also for its own purposes, outside the EU or the
EEA and thus in a third country, in particular in the USA. We have no influence on further data processing by Google.

Google LLC is certified under the DPF and included in the Data Privacy Framework List.

Third-party provider information:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre
Parkway, Mountain View, CA 94043, USA

Website:
https://developers.google.com/chart
Privacy Policy:
https://policies.google.com/privacy

Data recipients

We may transmit your data to:

– Other companies of the Liebherr Group, provided this is necessary to initiate, perform or terminate a contract, or for our
part we have a legitimate interest in the transmission and your predominant legitimate interest is not opposed to this;
– The providers of the functions and any other services you actively use;
– Our service providers that we use in order to achieve the above-stated purposes;
– The recipient or recipients you specify;
– Courts of law, courts of arbitration, authorities or legal advisers, if this is necessary to comply with current law or for the
establishment, exercise or defence of legal claims.

Data transfers to third countries

The transfer of data to bodies in countries outside the European Union or the European Economic Area (so-called third
countries) or to international organisations is only permissible (1) if you have given us your consent or (2) if the European
Commission has decided that an adequate level of protection exists in a third country (Article 45 GDPR). If the Commission
has not made such a decision, we may only transfer your data to recipients located in a third country if appropriate
safeguards are in place (e.g., standard data protection clauses adopted by the Commission or the supervisory authority
following a specific procedure) and the enforcement of your data subject rights is ensured or the transfer is permissible in
individual cases on the grounds of other legal bases (Article 49 GDPR).

Where we transfer your data to third countries, we will inform you of the respective details of the transfer at the relevant
points in this data protection declaration.

Data erasure and storage period

We will process your data as long as this is necessary for the respective purpose, unless you have effectively objected to
the processing of your data or effectively withdrawn any consent you may have given.

Insofar as statutory retention obligations exist, we will be bound to store the data in question for the duration of the
retention obligation. Upon expiry of the retention obligation, we will check whether there is any further necessity for the
processing. If there is no longer such a necessity, your data will be deleted.

Data security

We use technical and organisational security measures to ensure that your data is protected against loss, inaccurate
alteration or unauthorised access by third parties. Moreover, for our part in every case, only authorised persons have access
to your data, and this only insofar as it is necessary within the scope of the above-stated purposes. The transmission of all
data is encrypted.

As of: July 2024

Data Protection Declaration

General information

​Data processing

​Authentication/Authorisation

Chatbot

Use of web forms

Use of cookies and other technologies

B. Use of cookies on our website

Integration of third-party services

Data recipients

Data transfers to third countries

Data erasure and storage period

Data security

Data processing

Authentication/Authorisation