Privacy policy

We ask that you read this website privacy policy carefully as it contains important information: who we are; how and why we collect, store, use and share personal information; your rights in relation to your personal information; how to contact us and supervisory authorities in the event you have a complaint.

INTRODUCTION:

This privacy policy tells you what to expect us to do with the personal data we collect when you browse our website, or contact us through our website www.cosworth.com (the Website).

WE WILL TELL YOU:

• Who we are
• How to contact us
• Our website
• The personal data we collect
• The personal data we collect
• How we collect personal data
• Why we collect and use personal data
• Whether we share your personal data with others
• Transferring personal data overseas
• How long we hold personal data
• How we keep your personal data secure
• The rights you have in respect of your personal data

WHO WE ARE:
Cosworth is a worldwide group of engineering companies and we specialise in delivering pro- pulsion and intelligent solutions; for automotive, aerospace, motorsport and marine industries.

LAA Global Ltd, a third-party agent, operates this website on behalf of Cosworth Group Holdings Limited, a company registered in England and Wales with company number 06442393 whose registered office is at The Octagon, St. James Mill Road, Northampton, Northamptonshire, NN5 5RA.

Please contact us using the details below if you have any questions about these terms or the products and service that we provide. All references to “us” or “we” throughout this policy is to Cosworth Group Holdings Limited, its subsidiaries and group companies.

Cosworth is registered with the UK Information Commissioner’s Office with the following registration numbers:

• Cosworth Group Holdings ZA334077
• Cosworth Limited ZA330159
• Cosworth Electronics Limited Z8921672

We have entities who operate in the U.S. namely:

• Cosworth Electronics LLC, USA 5355 W, 86th St. Indianapolis, IN 46268, United States.

HOW TO CONTACT US

If you have any questions about this privacy policy or the personal data, we hold about you please contact us at Address

We have appointed GRCI Law as our Data Protection Officer, and you can contact our DPO at:

GRCI Law
Unit 3 Clive Court Bartholomews Walk Cambridgeshire Business Park Ely, Cambridgeshire
CB7 4EA, UK dpoaas@grcilaw.com
+44 (0) 333 800 7000

EU REPRESENTATIVE

We have appointed IT Governance Europe Limited to act as our EU Representative. If you wish to exercise your rights under the EU General Data Protection Regulation (EU GDPR), or have any queries in relation to your rights or general pri- vacy matters, please email our Representative at eurep@itgovernance.eu. Please ensure to include our company name in any correspondence you send to our Representative.

OUR WEBSITE

This Policy sets forth how we collect and use information we gather while you are visiting our Website.

Throughout our Website we may link to other websites owned and operated by certain trusted third parties, for example, to provide our website to you. These other third-party websites may also gather information about you in accordance with their own separate privacy policies. For privacy information relating to these other third-party websites, please consult their privacy policies as appropriate. Cosworth is not responsible for the content or practices of any linked third parties and we provide third party links merely for the convenience and information of visitors to our website.

THE PERSONAL DATA WE COLLECT

We may collect, use, store and/or transfer different kinds of personal data about you. We collect this personal data from you either directly, such as when you contact us, send us feedback, post ma- terial to our Website, register a product, purchase a product or service, request a service, download software, complete a survey, participate in com- petitions or engage in certain other activities on our Website.

What we mean by personal data is any informa- tion about an individual from which that person can be identified directly or indirectly (either by itself or when combined with other information).

We will limit the collection and processing of personal data to what is necessary to achieve one or more purpose(s) as identified in this notice. The personal data we collect about you will include the following depending on our interaction with you:

• Basic personal data to identify you such as your first name, maiden name, last name, username or similar identifier, marital status, title, occupa- tion, date of birth;
• Your contact information including your email address, postal address and telephone numbers;
• Your CV or resume, qualifications, skills, expri- ence and such role related information as may be required to complete a job application via our website;
• Online information and online activity based on your interaction with us, our Website and applications for example your internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types, searches, site visits and versions, operating system and platform, and other technology on the devices you use to access this website;Usage data including statistical data including information about how you use our website and services

Examples include:

• If you request support by email, telephone or participate in our support forum, we will ask you for information such as your product registra- tion details, username or other identifier and the nature of the problem you are experiencing.
• If you download software through the Website, such as the “Cosworth Toolbox”, we will ask for your name and e-mail address.

We may also process other information relevant to feedback regarding our Website.

Please keep us informed if your personal data changes during your relationship with us. It is important that the personal data we hold about you is accurate and current.

You make all decisions regarding whether to pro- ceed with any activity or transaction that requests your personal information. However, please note that if you do not wish to provide the requested information, you may not be able to complete the transaction or carry on with the activity on our Website.

Our Website is not intended for use by children and we do not knowingly collect or use personal information relating to children.

HOW WE COLLECT PERSONAL DATA

• Your personal data includes:
  • Data you give to us directly where you:
  • Contact us directly via telephone, post or email;
  • Use our online customer support forms, contact forms, or apply for a job with us online;
  • Search for our services;
  • Request services electronically or otherwise;
  • Request marketing material to be sent to you;
  • Give us feedback or contact us.
• Information we learn about you through our relationship and the way you interact with us;
• Information we may receive from third parties;
• Information we gather using technology, which you may use to access our website (e.g. an IP address or telephone number), and how you use technology (e.g. recognising behavioural patterns).

WHY WE COLLECT AND USE YOUR PERSONAL DATA

We will only use your personal data where it is necessary to carry out our business activities and we are required to have one or more of the following reasons for using your personal data:

• Performance of a contract – the personal data we may need to deliver our services to you;
• Legal obligation – where we are required by law to process your personal data;
• Legitimate interest – where we are permitted to use your personal data where, on balance, the benefits of us doing so is not outweighed by your legal rights;
• Consent – where your agreement is sought prior to utilising your personal data. Wherever consent is the only reason for using your person- al data you have the right to change your mind and/or withdraw your consent.

Throughout your relationship with us, we are required to collect and process certain personal data about you. We will mainly use your personal data in the following ways:

• To contact you as a prospective customer and provide requested sales information and quotations;
• To contact you as a prospective
  supplier of goods and services being offered to analyse and discuss the suitability of the offering before entering into a transactional relationship;
• Register you as a customer, to identify you and the accounts you hold with us and/or contact you to understand your requirements;
• To meet our contractual obligations to you, for example to process an order made by you;
• To provide you with information about new products and services;
• To provide you with special offers that may be of interest to you;
• To assist us in creating better products and services to meet your needs;
• To comply with our legal obligations;
• To help us improve our services;
• To deliver relevant website content and to help you quickly find information relevant to you on our Website;
• To notify you of updates to software you have downloaded through the Website;
• To use data analytics to improve our website, client relationships and experiences through research, statistical analysis and behavioural analysis.
• To register you as an employment candidate and communicate with you regarding your job application in accordance with our recruitment process;
• To manage our relationship with you including:
  • Notifying you of changes to our Website;
  • Notifying you of changes to this privacy policy;
  • Asking you to leave a review;
  • Answering any queries or help resolve any problems or complaints you may have.

Please note that if you do not agree to provide personal data requested, it may affect how we interact with you, and how we deliver certain aspects of our service. For instance, we may not be able to assist you with your request, our website may not function as we would normally expect and therefore we may be unable to meet your requirements.

WHETHER WE SHARE YOUR PERSONAL DATA WITH OTHERS

We may from time to time share your personal data with the following organisations who are also required to keep your information confidential, safe and secure:

• Other companies within the Cosworth Group;
• Third parties including agents, service companies, professionals, subcontractors and contractors who provide services such as distributing our products, providing support or managing order processing and other ancillary administrative support necessary to provide our products and/or our website to you;
• Our business partners and other organisations whose products incorporate Cosworth products and features (in some cases, you may be presented with an option to have your personal information shared with these organisations to receive additional information about certain products and services);
• Where we are required to do so we will share your information with law enforcement agencies, judicial bodies, fraud prevention agencies, governmental entities, or regulatory bodies around the world;
• Where required as part of any proposed sale, reorganisation, transfer, financial arrangement, asset disposal or other transaction relating to our business and/or business assets;
• Anyone else with your permission.
• Where you have agreed, we may contact you for marketing purposes concerning our goods or services and/or sending you our newsletter. This may include information concerning promotions or offers which could benefit you. We will only contact you using the methods that you agree when you provide your information to us.

MARKETING AND OPTING OUT

We will only contact you by post, email, phone or SMS about our products, services or promotions if you have asked us to do so. If you have changed your mind and would prefer us not to contact you, then you can opt out at any time by contacting us using the details above or by accessing the link on the email sent to you and updating your preferences.

We will not provide your information to third parties other than as set out below.

TRANSFERRING PERSONAL DATA OVERSEAS

Cosworth is an international company, and we may need to provide your personal information to other companies within our group or contrac- tors located outside of the United Kingdom (UK) and/or the European Economic Area (EEA), for the purposes of collection, transferring, storing and processing of your information to fulfil our contract with you.

We may need to transfer your information in this way to carry out our contract with you, to fulfil
a legal obligation, to protect the public interest and/or for our legitimate interests.

When we do this, we will ensure that your per- sonal data has an appropriate level of protection and that the transfer is in accordance with data protection laws. We will transfer of data to an organisation based in a country with an adequacy decision issued by the European Commission.

Where personal data is shared with a country without an adequacy decision, we will ensure an appropriate safeguard such as standard contractu- al clauses are in place.

If you would like further information, please email us at dpoaas@grcilaw.com.

HOW LONG DO WE HOLD PERSONAL DATA?

We retain your personal data for no longer than is necessary. The time periods for retaining data

are determined by several factors including but not limited to the nature and type of record, the nature of the activity, the product or service and any applicable legal or regulatory requirements.

It is usual for us to retain personal data for up to six years after your relationship with us ends however some exceptions may apply. Our retention periods may be subject to change from time to time based on commercial, legal or regulatory requirements.

KEEPING YOUR PERSONAL INFORMATION SECURE

We have appropriate security measures in place to prevent personal information from being accidentally lost or used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.

YOUR RIGHTS

You have several important rights in respect of the personal data we hold about you. In summary, those include rights:

• To be given information on how we use your use personal information
• To access to your personal data
• To request that we correct any mistakes in your information which we hold
• To request the erasure of personal data concerning you in certain situations
• To receive the personal data concerning you which you have provided to us, in a structured, commonly used and machine- readable format and have the right to transmit those data to a third party in certain situations
• To object to decisions being taken by automated means which produce legal effects concerning you or similarly significantly affect you
• To object in certain other situations to our continued processing of your personal information
• To otherwise restrict our processing
  of your personal information in certain circumstances
• To withdraw consent to processing your personal data for example providing you with direct marketing material

If you would like to exercise any of those rights, please email, us at dpoaas@grcilaw.com We ask that you:

• Provide enough information to identify you (reference number);
• Let us have proof of your identity and address (a certified copy of your utility bill, bank statement or credit card bill (no less than three months old);
• Let us know the information to which your request relates.

HOW TO COMPLAIN

We hope that we can resolve any query or concern you raise about our use of your personal data whether it is in relation to this privacy policy, our handling of personal data or any other privacy matter and therefore ask that you contact us in the first instance using the details above.

However, you may also contact the supervisory authority where you reside at any time or are dissatisfied with our response to your complaint. In the UK, this will be the Information Commissioner who may be contacted at https://ico.org.uk/concerns.

CHANGES TO THIS WEBSITE PRIVACY POLICY

We keep our privacy policy under regular review. Any changes to our privacy policy in the future will be posted on this page. We encourage you to review this page regularly to identify any updates or changes to our privacy policy.

Hal Reisiger, CEO