/var/www/mmobile/c1/DataPrivacy-Tool/tmp/privacy_notice

Privacy Notice

for SIDRIVE IQ Troubleshoot App

Last update: October 2023

Protecting  the  security  and  privacy  of  your  personal  data  is  important  to
Innomotics  AG  ("Innomotics”).  Therefore,  Innomotics  operates  SIDRIVE  IQ
Troubleshoot ("App”) in compliance  with applicable  laws on data protection
and data security.

Categories of personal data processed and purpose of the processing

When visiting and using the App, Innomotics processes the following personal
data about you:

•

Personal data that you actively provide to us within the App. i.e.

information that you actively enter when

•

registering for the app or creating a user account, such as

• Email address
• Password

•  Given Name
•  Family Name and
•  Device ID.

We process your personal data for user authorization and authentication for
account creation and login to be able to view, manage, troubleshoot and monitor
your assets. Legal basis is exercising Innomotics rights and performing its

obligations in connection with any contract we make with you (Article 6 (1) (b)
General Data Protection Regulation). For the registration and authentication
process we use the services offered by Siemens AG.

•

When using contact and other forms offered within the App (for example,

in order to contact Innomotics with your enquiries and questions) we use

the above information for Serviceability Contact by Innomotics in case of

any issue with your assets as well as your Mailing address when instantiating

technical service support as part of our Customer Support. Legal basis is

exercising Innomotics rights and performing its obligations in connection with

any contract we make with you (Article 6 (1) (b) General Data Protection

Regulation). Otherwise, for the protection of our legitimate interests for the

appropriate response to customer/contact inquiries (Article 6 (1) (f) General

Data Protection Regulation).

App permissions

The use of certain functions of the app may require you to provide certain

App permissions. Those permissions will be collected when you use an

app feature that requires specific permissions, or you use the app for the
first time.

The App may ask you to grant the following permissions: Access to the

device's camera, fingerprint/biometric verification, geolocation and push

notifications. In order to enable push notification and geolocation tracking

we process Personal identifiable data, such as Device ID and IP address.

The permissions are required for the following purposes:

•

To add assets to user's asset list, so the user can manage their assets, e.g.

track their performance, identify any bottlenecks, troubleshoot issues, get
configuration data, etc.

•

Enabling biometric verification – to simplify the login process for the user after

the first login or registration

•

Track the specific location of the asset. This feature will enable the user to

identify their asset’s location in an efficient manner, e.g. in case of fault alarm,
performance degradation, serviceability, etc.

•

Send push notifications for user specified assets and enabled features, e.g.

in case of a fault alarm, health degradation, next scheduled maintenance,
etc.

•

Collect analytics of user sessions to enable a better user experience by

identifying session bottlenecks, app crashes, unresponsive features, etc.

This gives us access to the personal data covered by the permissions that

is located on your end device. We need these authorizations for the

provision of app functionalities. The legal basis for the data processing is

your consent (Article (6) (1) (a) General Data Protection Regulation). The

consent will be collected via a pop-up window or check box where the

user will be informed on why the permission is required.

You may manage the use of App permissions in the section "settings" of
your operating system or through the user profile area in the app. Please

note that the use of certain functions of the App may not or no longer be

possible if you do not grant or deactivate the respective App permission.

We delete your personal data that we process on the basis of the

authorizations granted as soon as they are no longer required to achieve

the purpose for which they were collected.

Transfer and disclosure of personal data

For the purposes mentioned above Innomotics may transfer or disclose
your personal data to:

•

Courts, law enforcement authorities, regulators or attorneys if necessary to

comply with the law or for the establishment, exercise or defense of legal
claims.

•

Service providers (so-called data processors), such as hosting or IT

maintenance service providers, which only act upon instructions of
Innomotics and are contractually bound to act in compliance with
applicable data protection law.

If you are located within European Economic Area, please be aware that

sometimes the recipients to whom Innomotics transfers or discloses your

personal data are located in countries in which applicable laws do not offer

the same level of data protection as the laws of your home country.

In such cases and if required by applicable law, Innomotics takes

measures to implement appropriate and suitable safeguards for the

protection of your personal data. In particular:

•

We share your personal data with Innomotics companies in such

countries only if they have implemented the Innomotics

Binding

Corporate Rules

BCR

”)

for the protection of personal data. Further

information about the BCR can be found

here

•

We transfer personal data to external recipients in third countries only if

the recipient has (i) entered into

EU Standard Contractual Clauses

with

Innomotics, (ii) implemented Binding Corporate Rules in its organization
or (iii) - in case of US recipients – if the recipient has certified under the
Data Privacy Framework (DPF). You may request further information
about the safeguards implemented in relation to specific transfers by
contacting

innomotics.legal-compliance@siemens.com

Retention Periods

Unless indicated otherwise at the time of the collection of your personal

data (e.g. within a form completed by you), we erase your personal data
if the retention of that personal data is no longer necessary (i) for the

purposes for which they were collected or otherwise processed, or (ii) to

comply with legal obligations.

Your rights

The data protection law applicable to Innomotics when processing your

personal data may entitle you to specific rights in relation to your personal

data. You can find out more about those rights by contacting

innomotics.legal-compliance@siemens.com

In particular and subject to the respective statutory requirements, if you

are located in the European Economic Area, you are entitled to:

•

Obtain from Innomotics confirmation as to whether or not personal data

concerning you are being processed, and where that is the case, access
to the personal data.

•

Obtain from Innomotics the rectification of inaccurate personal data

concerning you.

•

Obtain from Innomotics the erasure of your personal data.

•

Obtain from Innomotics restriction of processing regarding your personal

data.

•

Data portability concerning personal data, which you actively provided;

and

•

Object, on grounds relating to your particular situation, to processing of

personal data concerning you.

Data Privacy Contact

The Innomotics Data Privacy Organization provides support with any data

privacy related questions, comments, concerns or complaints or in case you
wish to exercise any of your data privacy related rights.

The Innomotics Data Privacy Organization may be contacted at:

innomotics.legal-compliance@siemens.com

The Innomotics Data Privacy Organization will always use best efforts to

address and settle any requests or complaints you bring to its attention.

Besides contacting the Innomotics Data Privacy Organization, you always
have the right to approach the competent data protection authority with

your request or complaint.

Security

In order to protect plants, systems, machines and networks against
cyber threats, it is necessary that you implement and continuously

maintain a holistic, state-of-the-art industrial security concept.
To protect your personal data against accidental or unlawful destruction, loss,
use, or alteration and against unauthorized disclosure or access, Innomotics

uses reasonable physical, technical and organizational security measures.
Unfortunately, there is no complete assurance of security in transit or storage

to any information that you transmit, no complete assurance that information
will not be accessed, disclosed, altered, or destroyed by a breach of any of our
physical, technical, or organizational measures.

Do not track

At this time our Internet sites do not recognize or respond to “Do Not

Track” browser signals.

Children

This Application is not directed to children under the age of thirteen. We

will not knowingly collect personal data via this Application from children
under the age of thirteen without insisting that they seek prior parental

consent if required by applicable law. We will only use or disclose personal
data about a child to the extent permitted by law, to seek parental consent,

pursuant to local law and regulations or to protect a child.

For US Residents only

There are special notices that may need to be given to, and rights that may

be available to, residents of certain US states. Please click

here

for those

notices.

---------------------

Innomotics publishes privacy notices for selected mobile applications,
including SIDRIVE IQ Troubleshoot App
here:

https://www.Innomotics.com/global/en/general/legal/app-privacy-

notices.html

We may update this Privacy Notice from time to time.