At SAP Group, we know you care about how your personal information is used and shared, and we take your privacy seriously. Please read the following to learn more about how we collect, store, use and disclose information about you when you interact or use our Websites or any related events, trade shows, sales or marketing, and/or if you use any of our products or services in any manner.
For clarity, SAP Group refers to SAP Holdings Ltd., comprising of SAP Landscapes Ltd., SAP Nurseries Ltd., and SAP Holland B.V..
What information does SAP Group collect?
Information you provide to us:
When you use the Website: We may collect any Personal Information that you choose to send to us or provide to us, for example, on our “Request Information” (or similar) online form. If you contact us through the Website, we will keep a record of our correspondence.
When you use our Services: We receive and store information you provide directly to us. For example, when setting up a new contract, we collect personal information, such as name and e-mail address, to provide you with Services. The types of information we may collect directly from our customers include: names, email addresses, postal addresses, phone numbers, job titles, transactional information (including Services purchased), as well as any other contact or other information they choose to provide us in connection with the Services.
Information we automatically collect:
When you use our Websites: When you visit our Websites, we collect certain information related to your device, such as your device’s IP address, referring Website, what pages your device visited, and the time that your device visited our Website. For further information, please see the section below headed “Cookies and other Tracking Technologies”.
How do we use the information?
Websites: We will use the information we collect via our Websites:
- To administer our Website, our events and for internal operations, including troubleshooting, data analysis, testing, statistical and survey purposes;
- To improve our Website to ensure that content is presented in the most effective manner for you and for your computer;
- Analyze customers’ use of the Websites for trend monitoring, marketing and advertising purposes;
- For purposes made clear to you at the time you submit your information – for example, to fulfill your request for more information you have requested about our Services; and
- As part of our efforts to keep our Websites safe and secure.
Services: We may use the information we collect from our customers in connection with the Services we provide for a range of reasons, including to:
- To set up an account;
- Provide, operate and maintain the Services;
- Process and complete transactions, and send related information, including transaction confirmations and invoices;
- Manage our customers’ use of the Services, respond to enquiries and comments and provide customer service and support;
- Send customers technical alerts, updates, security notifications, and administrative communications;
- For any other purposes about which we notify customers.
We may also use the information you send to us via the Websites and/or Services, to communicate with you via email and, possibly, other means, regarding products, services, offers, promotions and events we think may be of interest to you or to send you our newsletter, if this is in accordance with your marketing preferences. However, you will always be able to opt-out of such communications at any time (see the “Your Choices” section below).
How do we share and disclose information to third parties?
We do not rent or sell your Personal Information to anyone. We may share and disclose information (including Personal Information) about our customers in the following limited circumstances:
Vendors, consultants and other service providers: We may share your information with third party vendors, consultants and other service providers who we employ to perform tasks on our behalf. These companies include (for example) our payment processing providers, website analytics companies (e.g., Google Analytics), marketing, website design and development companies (e.g. Tomorrow Studios), web hosting (e.g. Siteground), product feedback or help desk software providers (e.g. InterCom), CRM service providers (e.g., HubSpot), email service providers (e.g., MailChimp) and others.
If SAP Group, has received your Personal Information in the Republic of Ireland and subsequently transfers that information to a third party agent or service provider in the United States for processing, SAP Group shall remain responsible for ensuring that such third party agent or service provider processes your Personal Information to the standard required by our Privacy Shield commitments (see the sections below headed “Additional Information for Users in the European Economic Area (“EEA”)” and “International Data Transfers”). Unless we tell you differently and you consent, our agents do not have any right to use the Personal Information we share with them beyond what is necessary to assist us.
Business Transfers: We may choose to buy or sell assets, and may share and/or transfer customer information in connection with the evaluation of and entry into such transactions. Also, if we (or our assets) are acquired, or if we go out of business, enter bankruptcy, or go through some other change of control, Personal Information could be one of the assets transferred to or acquired by a third party.
Protection of SAP Group and Others: We reserve the right to access, read, preserve, and disclose any information as necessary to comply with law or court order; enforce or apply our agreements with you and other agreements; or protect the rights, property, or safety of SAP Group, our staff and clients, or others.
Disclosures for National Security or Law Enforcement: Under certain circumstances, we may be required to disclose your Personal Information in response to valid requests by public authorities, including to meet national security or law enforcement requirements.
Is Personal Information about me secure?
We use appropriate technical, organisational and administrative security measures to protect any information we hold in our records from loss, misuse, and unauthorised access, disclosure, alteration and destruction. Unfortunately, no company or service can guarantee complete security. Unauthorised entry or use, hardware or software failure, and other factors, may compromise the security of user information at any time. Among other practices, our computers and systems are protected by a password for your privacy and security. You must prevent unauthorised access to your email account and Personal Information by selecting and protecting your password appropriately and limiting access to your computer or device and browser by signing off after you have finished accessing your account
Cookies and other tracking technologies
- Assisting you in navigation;
- Assisting in your ability to provide feedback;
- Analyzing your use of our products, services and;
- Assisting with our promotional and marketing efforts (including behavioural advertising).
We also may use clear gifs in HTML-based emails sent to our users to track which emails are opened by recipients. This information is used to enable more accurate reporting, improve the effectiveness of our marketing, and make our Services and Websites better for our customers.
Note: Our Google Analytics implementation does not track your IP address identifier.
Your Privacy Rights
What choices do I have?
You can always opt not to disclose information to us, but keep in mind some information may be needed to register with us or to take advantage of some of our features.
You can opt-out of receiving certain promotional or marketing communications from us at any time, by using the unsubscribe link in the emails communications we send, or fill out this Web Form directly.
If you have any Client Record for our Services, we will still send you non-promotional communications, like service related emails.
How can I update and access my information (Exercise my Data Subject Rights)?
If you would like to access, review, update, rectify, and delete any Personal Information we hold about you, or exercise any other data subject right available to you under the EU General Data Protection Regulation (GDPR), you can fill out this Web Form directly.
Our Privacy team will examine your request and respond to you as quickly as possible!
Please note that we may still use any aggregated and de-identified Personal Information that does not identify any individual, and may also retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
If you are a resident of the European Economic Area, please see the section below headed “Additional Information for users in the European Economic Area” for further information about your privacy rights.
International Data Transfers
International Data Transfers – Additional information for users in the European Economic Area (“EEA”)
Our website hosting company’s server is located in the EEA (Amsterdam, Netherlands), and our marketing service providers are all self-certified to the EU-US Privacy Shield Framework
This section sets out the privacy principles we follow with respect to transfers of Personal Information from the EEA to the United States, including Personal Information we receive from individuals residing in the EEA who visit our Website and/or who may use of our Services or otherwise interact with us.
Please note that for website users and customers located in the EEA, the term Personal Information used in this policy is equivalent to the term “personal data” under applicable European data protection laws.
To learn more about the Privacy Shield program, see the US Department of Commerce’s Privacy Shield website located at https://www.privacyshield.gov. To view our marketing services certifications on the Privacy Shield list, please select a service to view:
We will investigate and attempt to resolve any complaints or disputes regarding the use or disclosure of personal data within 45 days of receiving your complaint. SAP Group has further committed to refer unresolved privacy complaints under the EU-U.S. Privacy Shield Principles BBB EU PRIVACY SHIELD, a non-profit alternative dispute resolution provider located in the United States and operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit www.bbb.org/EU-privacy-shield/for-eu-consumers/ for more information and to file a complaint.
Under certain limited circumstances, individuals in the EEA may invoke binding Privacy Shield arbitration as a last resort if all other forms of dispute resolution (discussed above) have been unsuccessful. To learn more about this method of resolution and its availability to you, please visit https://www.privacyshield.gov/.
SAP Group is subject to the jurisdiction of the Irish Department of Foreign Affairs and Trade for purposes of Privacy Shield enforcement.
Please note that SAP Group is required to disclose Personal Information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.