Privacy Notice
1. Data Controller
The data controller for data processing on this website is:
OSxCAR Consortium Project – Optimized Software-defined Car Architectures (“Controller”, “we”, “us”)
c/o Aptiv Services Deutschland GmbH
Am Technologiepark 1
42119 Wuppertal
E-Mail: osxcar.info@aptiv.com
Telefon: +49 202 291 3924
2. Data Protection Officer
You can contact our data protection officer at:
Norbert Nagel, Norbert.Nagel@aptiv.com, +49.202.291.4345
3. General Information on Data Processing
3.1 Scope of Processing Personal Data
In connection with this website, we only process personal data that we need to provide you with the website and that you provide to us when you contact us.
This includes the following categories of data which we collect directly from you:
• Website Data: IP address (anonymized or automatically deleted after the session), date and time of access, requested page/file, HTTP status code, browser type and version, operating system, referrer URL.
• Communication Data: email address, content of your communication with us (e.g., name, your inquiry, your company, your position, contact details).
3.2 Purposes of processing, legal basis and legitimate interests
We may process your personal data for the purposes listed in the table below. There you will also find the legal basis relevant to the respective processing and, where relevant, our legitimate interest in the processing.
| Purposes of processing | Legal basis | Data categories |
|---|---|---|
| Provision of the website When you visit our website, our web hosting provider may automatically collect certain technical data for the purpose of providing the website to your browser. This data processing is limited to what is technically necessary for our hosting provider to deliver the website content to your browser. | Legitimate interest (Art. 6(1)(f) of the General Data Protection Regulation ("GDPR")) in providing and maintaining a (legal compliant) website in order to present our projects and content on the Internet | Website Data |
| Communication with you If you contact us in connection with the website, we will process the personal data and contact details contained in your communication in order to respond to you. | Legitimate interest (Art. 6(1)(f) GDPR) in responding to your contact and answering your inquiries. | Communication Data |
| Safeguarding our rights | Legitimate interest (Art. 6(1)(f) GDPR) in establishing, exercising and/or defending legal claims. | Website Data, Communication Data |
| Compliance with legal obligations (e.g., binding requests from authorities) | Compliance with legal obligations (Art. 6(1)(c) GDPR) | Website Data, Communication Data |
3.3 Categories of recipients
We may share your personal data with service providers who process personal data on our behalf and on the basis of our instructions (so-called processors) in order to provide their services to us:
• IT service provider (website hosting provider) (EU)
• IT service provider (email provider) (EU).
We may share your personal data with the following third parties, if necessary:
• Government authorities for the purpose of safeguarding our rights or complying with legal obligations;
• Advisors (e.g., lawyers and/or auditors) for the purpose of safeguarding our rights or complying with legal obligations;
• Courts for the purpose of protecting our rights.
3.4 Duration of Storage
We store website data for a period of seven to ten days and then delete it.
We store communication data for the period during which we process your request and for up to three years from the end of the calendar year in which we responded to it.
In exceptional cases, we may store your personal data for longer if this is necessary to fulfill a legal obligation or to establish, exercise, or defend legal claims.
4. Use of Cookies
If at all, this website uses cookies which are required to make the website available to you.
5. Web Analytics Services
This website does not use web analytics services such as Google Analytics or similar tracking tools. No personal data is collected for analytics purposes.
6. Rights of the Data Subject
You have the following rights, provided that the relevant legal requirements are met:
6.1 Right of access (Art. 15 GDPR)
You may request confirmation from the Controller as to whether personal data concerning you is being processed by them (Article 15 GDPR). In addition, they may request a copy of the personal data that is being processed, provided that such a copy does not adversely affect the rights and freedoms of others.
6.2 Right to Rectification (Art. 16 GDPR)
You have a right to rectification and/or completion vis-à-vis the Controller if the processed personal data concerning you is incorrect or incomplete.
6.3 Right to Erasure (Art. 17 GDPR)
You may request that the Controller delete personal data concerning you without delay. However, the right to erasure does not apply in particular if the processing of your personal data is necessary to fulfill a legal obligation or to establish, exercise, or defend legal claims.
6.4 Right to Restriction of Processing (Art. 18 GDPR)
You have the right to request restriction of processing from the Controller.
6.5 Right to Data Portability (Art. 20 GDPR)
You have the right to receive personal data concerning you that you have provided to the Controller in a structured, commonly used and machine-readable format insofar as the processing is based on the performance of a contract (Art. 6(1)(b) GDPR) or your consent (Art. 6(1)(a) GDPR). You have the right to have the personal data transferred directly to another controller, insofar as this is technically feasible.
6.6 Right to Object (Art. 21 GDPR)
You have the right to object at any time to the processing of personal data concerning you that is based on legitimate interests (Art. 6(1)(f) GDPR for reasons arising from your particular situation.
You have the right to object at any time to the processing of personal data concerning you for the purpose of direct marketing.
6.7 Right to Withdraw Data Protection Consent (Art. 7(3) GDPR)
You have the right to withdraw your data protection consent at any time with effect for the future.
6.8 Right to Lodge a Complaint with a Supervisory Authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, particularly in the EU Member State of your habitual residence, place of work or place of the alleged infringement, if you consider that the processing of personal data relating to you infringes the GDPR.