1. 誰負責處理我的個人資料及資料保護相關問題我可以聯繫誰？
負責處理您的個人資料以在網站上進行共享市場控管、商業經營分析和行銷活動的（聯合）控管者是：Who is responsible for processing my personal data, and whom can I contact on the topic of data protection?
The (joint) controllers responsible for processing your personal data for shared market control, business and profitability analysis, and marketing activities on this specific website are:

台灣賓士股份有限公司
台灣台北市松山區民生東路三段129號13樓
Email: csm_crm@mercedes-benz.com
Mercedes-Benz Taiwan13 F., No. 129, Mingsheng E. Rd., Sec. 3, Taipei 105, Taiwan, R.O.C
E-mail: csm_crm@mercedes-benz.com

Mercedes-Benz AG (Mercedes-Benz AG)
Mercedesstr. 12070372 Stuttgart, Germany
E-mail: dialog.mb@mercedes-benz.com
Mercedes-Benz AG
Mercedesstr. 12070372 Stuttgart, Germany
E-mail: dialog.mb@mercedes-benz.com

Mercedes-Benz Mobility AG (Mercedes-Benz Mobility AG)
Siemensstr. 770469 Stuttgart, Germany
E-mail: mbm@mercedes-benz.com
Mercedes-Benz Mobility AG
Siemensstr. 770469 Stuttgart, Germany
E-mail: mbm@mercedes-benz.com

Mercedes-Benz AG 及 Mercedes-Benz Mobility AG
資料保護負責人:Data protection officer for MBAG and MBM:

Mercedes-Benz AG 集團資料保護長
HPC E600
D-70546 Stuttgart, Germany
E-mail: data.protection@mercedes-benz.com
Mercedes-Benz Group AG Group Data Protection Officer
HPC E600
D-70546 Stuttgart, Germany
E-mail: data.protection@mercedes-benz.com

台灣賓士、Mercedes-Benz AG 及 Mercedes-Benz Mobility AG 已依 GDPR 第 26 條達成共同控管協議 (joint controllership agreements)。 欲了解更多訊息，請參閱下表。
MOC and MBAG as well as MBAG and MBM have concluded joint controllership agreements according to Art. 26 GDPR. For more information, please see the table below.

2. 我的資料從哪裡來及那些資料已經被處理？
Where does my data come from and what data is processed?

每當您訪問此網站時，如果您同意，以下類別的資料將被儲存並與 Mercedes-Benz AG 及 Mercedes-Benz Mobility AG 共享：
Whenever you visit this specific website and if you have consented the following categories of data are stored and shared with MBAG and MBM:

a. 服務器日誌文件：有關您正在使用的瀏覽器、操作系統和 IP 位置（僅非常短期）的某些資訊； 您訪問的日期和時間； 互動狀態（例如您是否能夠訪問網站或收到錯誤訊息）
Server-Logfiles: Certain information about the browser, operating system and IP address (only very short-term) you are using; the date and time of your visit; the status of the interaction (e.g. whether you were able to access the website or received an error messages)

b. 點擊資料：您對網站及其功能的使用； 您輸入的任何搜尋詞句； 您訪問該網站的頻率及您訪問該網站的活動
Clickstream Data: Your usage of the website and its features; any search phrases you entered; how often you visit the website and the campaign from which you accessed this specific website

c. 在線識別功能：您的 Cookie ID、Web 客戶端或/和 App ID
Online identification features:  Your Cookie ID, Web Client or/and App ID

d. 地理位置資料：您訪問該網站時所在國家和城市（源自 IP 地址）
Geo-location data: The country and the city from where you accessed our website (derived from the IP address)

e. 付款訊息：您在此網站上購買商品時使用的付款方式
Payment information: Payment method you used while purchasing something on this specific website

f. 您在註冊帳戶、填寫問卷或參加競賽、填寫聯絡表單、或簽訂合約等情境下提供的額外個人資料也將被蒐集與利用。這些資料會依據蒐集時所標註的使用目的進行利用，包含客戶管理、市場控管與商業經營分析，並在必要時，用於相關交易處理與帳務作業。這些資料僅於達成該等目的必要範圍內使用。
If you provide us with additional personal data, e.g., during registration, a chat, a contact form, a survey, a competition, or for the execution of a contract, we use this data for the stated purposes, for customer management, market control, business and profitability analysis, and – if necessary – for the processing and billing of any business transactions, each to the extent required for these purposes.

在您的同意之下，台灣賓士使用以下技術與其他控管者共同處理有關您訪問該網站的資料：
MOC processes that data about your visit on this specific website together with the other controllers depending on your consent- using the following technologies:

•出於市場控管與商業經營分析目的
For market control and business and profitability analysis:
- Google Analytics 360

•出於行銷目的：
For marketing purposes:
- Salesforce Interaction Studio
- Salesforce Audience Studio
- Adobe Target

3. 您的個人資料是以何種目的和法律依據進行處理的？
For what purpose and on what legal basis is your personal data processed?

在您訪問此網站期間所蒐集的個人資料，將用於個人化與目標性廣告推播。網站使用行為亦會被分析，以優化網站可用性、提升數位產品與活動成效，並進行市場控管、商業經營分析與統計報告。
The personal data collected during your visit on this website is used for conducting personalization and targeted advertising measures. Moreover, the website usage behavior is analyzed to improve website usability and enhance digital products and campaigns. In addition, that data is used for market control, business and profitability analysis, and statistical reports.

在共同控管範圍內，您的個人資料之處理是基於您依 GDPR 第 6 條第 1 款（a）所作之同意。您可以選擇是否同意，並可以通過此網站的同意管理平台隨時撤回您的同意。撤回前的資料處理的合法性並不受撤回的影響。
Within the scope of the joint controllership, your personal data is processed based on your consent according to Art. 6 (1) (a) GDPR. Your consent is optional and may be withdrawn at any time through the Consent Management Platform of this specific website. The lawfulness of data processing before such withdrawal remains unaffected by the withdrawal.

依據GDPR 第 6 條第 1 款（f），台灣賓士、Mercedes-Benz AG 及 Mercedes-Benz Mobility AG或第三方，得基於合法利益處理您的個人資料。這些合法利益包括：維持資訊系統功能、對台灣賓士、Mercedes-Benz AG 及 Mercedes-Benz Mobility AG或第三方產品與服務進行直接行銷（在未要求您同意的範圍內）、市場控管與商業經營分析、以及依法保存商業聯繫相關文件之需求。在進行利益衡量時，我們將特別考量個人資料之性質、處理目的、處理情境及資料機密性。
Furthermore, we process personal data for the purposes of pursuing our legitimate interests as well as the legitimate interests of third parties in accordance with Art. 6(1)(f) GDPR. Maintaining the functionality of our IT systems, (direct) marketing of our own and third-party products and services (insofar as this is not done with your consent), market control, business and profitability analysis, and legally required documentation of business contacts are such legitimate interests. In the context of the necessary balancing of interests, we particularly consider the nature of the personal data, the purpose of processing, the circumstances of processing, and your interest in the confidentiality of your personal data.

4. 我的資料會被傳送到第三個國家嗎？
Will my data be sent to a third country?

當根據您的同意將資料傳遞給第三方時，個人資料可能會從歐盟或歐洲經濟區內提供給位於歐盟或歐洲經濟區以外的國家，即所謂的第三個國家。
When passing on data to third parties based on your consent, personal data may be provided from within the European Union ("EU") or the European Economic Area (“EEA”) to recipients in countries outside the EU or EEA, i. e., in a so-called third country.

從歐洲經濟區角度來看，在某些第三個國家，具有符合歐盟標準的個人資料保護層級（所謂的「適當性」）存在。對於第三個國家的接收者，Mercedes-Benz AG 及 Mercedes-Benz Mobility AG 同意使用歐盟標準協議、具約束力的企業規則或其他適用的工具來滿足法律要求的「適當保護層級」。如需更多訊息，請聯繫其中一個控管者。
In some third countries, from the EEA's point of view, an adequate level of personal data protection (so-called "adequacy") exists, in compliance with EU standards. With recipients in third countries, MBAG and MBM agree on the use of EU standard contractual clauses, binding corporate rules or other applicable instruments to create an "adequate level of protection" according to legal requirements. For more information, please contact one of the controllers.

5. 我的資料將被儲存多久？
How long will my data be stored?

您的個人資料將被儲存直到蒐集和處理資料的目的實現為止。 在此之後，資料儲存僅在歐洲經濟區或第三國的適用法律、法規或其他法律規定所必需的範圍內進行，前提是這些國家/地區具有適當的資料保護層級。如果必須在此基礎上保留個人資料，則會標記相關個人資料以限制進一步處理。
Your personal data will be stored until the purpose for which it was collected and processed has been fulfilled. Beyond this period, data storage only takes place to the extent made necessary by applicable legislation, regulations or other legal provisions in the European Economic Area or in third countries if these have an adequate level of data protection. If personal data must be retained on such basis, the relevant personal data are flagged to restrict their further processing.

6.根據 GDPR，我擁有哪些權利？
What rights do I have under GDPR?

根據 GDPR，您在個人資料處理方面擁有某些權利，我們非常重視讓您了解這些權利：
According to GDPR, you have certain rights regarding the processing of your personal data. Making you aware of these rights is very important to Mercedes-Benz:

a. 查閱權：您可以要求查閱我們處理的您的個人資料（GDPR 第 15 條）。
Right of access: You can request access to your personal data processed by us (Art. 15 GDPR).

b. 更正權：如果您的個人資料有誤，您有權請求更正（GDPR 第 16 條）。
Right to correction of inaccurate data: You have a right to request correction of your personal data, in case it is inaccurate (Art. 16 GDPR).

c. 刪除權：如果您的個人資料不再需要用於原蒐集或處理目的，或者因為違法處理、正當理由反對、撤回同意或有法定義務刪除，您有權請求刪除您的個人資料（GDPR 第 17 條）。
Right to deletion: You have the right to request deletion of your personal data. The criteria allow you to request the deletion of your personal data if, for example, it is no longer needed for the purposes for which it was collected or otherwise processed. You can also demand the deletion of your personal data if it is unlawfully processed, or if you have rightfully objected to the processing of your data, revoked your consent to the same or there is a legal obligation to delete it (Art. 17 GDPR).

d. 處理限制權：您有權要求限制您的資料處理。如果您對個人資料的準確性提出異議，或者在使用刪除權時，要求限制處理而非刪除，本權利尤其適用於審查期間。此外，如果該資料不再需要用於法律目的，但您仍需要該資料來主張、行使或捍衛權利，以及如果成功主張反對權利與台灣賓士、Mercedes-Benz AG 及 Mercedes-Benz Mobility AG 間存在爭議，將進行限制處理（GDPR 第 18 條）。
Right to restriction of processing: You have the right to demand a restriction of the processing of your data. This right especially applies for the duration of the review if you have disputed the accuracy of your personal data, as well as in the case that, for an existing right to deletion, you request restricted processing instead of erasure. Furthermore, there will be restricted processing if the data is no longer required for legitimate purposes, but you still need the data in order to assert, exercise or defend legal rights, as well as if the successful assertion of an objection is in dispute between you and MOC, MBAG and/or MBM (Art. 18 GDPR).

e. 資料可攜權：您有權以結構化、常規、機讀格式接收您提供的個人資料（GDPR 第 20 條），前提是該資料尚未被刪除。
Right to data portability: You have the right to receive the personal data you have provided in a structured, common, machine-readable format (Art. 20 GDPR), insofar as the data has not been deleted already.

f. 向監管機構申訴的權利：如果您認為您的資料處理不符合 GDPR 規範，您有權向歐盟成員國的監管機構提出申訴，例如負責您居住地、工作場所或涉嫌違反資料保護地的資料保護監管機構（GDPR 第 77 條）。
Right to lodge a complaint with a supervisory authority: If you feel that processing of your data is not in line with the GDPR, you have the right to lodge a complaint with a supervisory authority in an EU member state, e.g., a data protection agency responsible for your place of residence, workplace or location where the alleged data protection violation occurred (Art. 77 GDPR).

如果您希望行使其中一項權利或獲得更多訊息，請聯繫上述控管者之一。
If you wish to assert one of your rights or receive more information, please contact the one of the controllers stated above.