Privacy Statement

Controller within the meaning of the General Data Protection Regulation (“GDPR”) is:

Daimler AG Chief Officer Corporate Data Protection HPC G353 D-70546 Stuttgart Germany

E-Mail: data.protection@daimler.com

Processor within the meaning of the General Data Protection Regulation (“GDPR”) is:

Snap-on Business Solutions Ltd (SBS) Imperium. Imperial Way, Reading, Berkshire RG2 0TD United Kingdom

E-Mail: EuropeanHelpDesk@snapon.com

1. Data protection

We are pleased about your visit on our web pages and your in-terest in our offers. The protection of your personal data is an important concern for us. In these Privacy Statement we explain how we collect your personal data, what we do with it, for what purposes and on what legal basis this is done, and which rights and claims are associated with it for you. In addition, we refer to the Daimler Data Protection Policy:

Daimler Data Protection Policy.

Our Privacy Statement for the use of our websites and the Data Protection Policy of Daimler AG do not apply to your activities on the websites of social networks or other providers that you can reach via the links on our websites. Please check the websites of these providers for their data protection regulations.

2. Collection and processing of your personal data

a. When you visit our website, we store certain information about the browser and operating system you use, the date and time of your visit, the access status (e.g. whether you were able to access a website or received an error mes-sage), the use of website functions, the search terms you may have entered, the frequency with which you access in-dividual websites, the designation of files accessed, the amount of data transferred, the website from which you ac-cessed our websites and the website which you visit from our websites, either by clicking on links on our websites or by entering a do-main directly in the input field of the same tab (or the same window) of your browser in which you opened our websites. We also store your IP ad-dress in particular to prevent and detect attacks on our websites or attempts at fraud.

b. We only store other personal data if you provide this data, e.g. as part of a registration, a contact form, a survey, a price competition or for the execution of a contract, and even in these cases only insofar as this is permitted to us on the basis of a consent given by you or in accordance with the applicable legal provisions (further information on this can be found below in the section "Legal basis of pro-cessing").

c. You are not legally or contractually obliged to make availa-ble your personal data. However, it is possible that certain functions of our websites depend on the availability of per-sonal data. If you do not make available personal data in these cases, this may result in functions not being available or only being available to a limited extent.

3. Purposes of use

a. We use the personal data collected when you visit our website in order to operate it in the most convenient manner for your use and to protect our IT systems from attacks and other ille-gal activities.

b. If you provide us with further personal data, e.g. within the scope of a registration, a contact form, a survey or for the ex-ecution of a contract, we use this data for the purposes men-tioned, for the purposes of customer administration and - if necessary - for the purposes of processing and accounting of any business transactions, in each case to the extent required for this.

4. Security

We use technical and organizational security measures to pro-tect your data managed by us against manipulation, loss, de-struction and against access by unauthorized persons. We are constantly improving our security measures in line with techno-logical developments.

5. Legal bases of processing

a. Insofar as you have given us your consent for the processing of your personal data, that consent is the legal basis for the processing (Art. 6 para. 1 letter a GDPR).

b. For the processing of personal data for the purposes of initiat-ing or fulfilling a contract with you, Art. 6 para. 1 letter b GDPR is the legal basis.

c. Insofar as the processing of your personal data is necessary for the fulfilment of our legal obligations (e.g. for the retention of data), we are authorized to do so pursuant to Art. 6 para. 1 letter c GDPR.

d. In addition, we process personal data for the purposes of safeguarding our legitimate interests and the legitimate inter-ests of third parties pursuant to Art. 6 para. 1 letter f GDPR. Maintaining the functionality of our IT systems, marketing our own and third-party products and services as well as docu-menting business contacts as required by law are such legiti-mate interests.

6. Deletion of your personal data

Your IP address, will be stored for security reasons. Otherwise, we delete your personal data as soon as the purpose for which we have collected and processed the data ceases to apply. Be-yond this point in time, data is only stored if this is required by the laws, regulations or other legal provisions of the European Union or of a member state of the European Union to which we are subject.

7. Rights of the data subject

a. As a data subject, you have the right of access (Art. 15 GDPR), right to rectification (Art. 16 GDPR), right to erasure (Art. 17 GDPR), right to restriction of processing (Art. 18 GDPR) and right to data portability (Art. 20 GDPR).

b. If you have consented to the processing of your personal data by us, you have the right to revoke your consent at any time. The legality of processing your personal data before revoca-tion remains unaffected. We may further process such data pursuant to another applicable legal basis, e.g. for the fulfil-ment of our legal obligations (cf. section "Legal bases of pro-cessing").

c. Right to object

You have the right to object at any time to the processing of your person-al data pursuant to Art. 6 para. 1 letter e GDPR (data processing in the public interest) or Art. 6 para. 1 letter f GDPR (data processing on the ba-sis of a balance of interests) on grounds relating to your particular situa-tion. If you object, we will only process your personal data if we can prove compelling legitimate reasons that outweigh your interests, rights and freedoms, or for the establishment, exercise or defense of legal claims.

d. We ask you to address your claims or declarations to the fol-lowing contact address if possible:

EuropeanHelpDesk@snapon.com

e. If you believe that the processing of your personal data violates legal requirements, you have the right to lodge a complaint with a competent data protection supervisory authority (Art. 77 GDPR). of Use of the Central Access Service of Daimler AG

8. Cookies

Information on the cookies we use and their functions can be found in our Cookie Statement.

Cookie Statement

Status: May 2018