Skip to main content
The engine company. DEUTZ®

Data Protection Information | Business Partner Compliance

We, DEUTZ AG (referred to below as DEUTZ or we), take the protection of your personal data very seriously. For this reason, we adhere strictly to the provisions of applicable data protection law. We have provided you below with answers to important questions about how we process and handle your personal data and with information about your rights under data protection law.

DEUTZ places great importance to ensure that all official and legal requirements are met and adhered to by its employees, also by our business partners. The focus is on compliance with the lawful and fair competition and zero tolerance of corruption or bribery. Therefore, our business partners are also subjected to a further compliance check. The test is based on national and international guidelines - e.g. anti-corruption laws, anti-money laundering laws and the fight against terrorism etc. .   

Consequently, DEUTZ has a legitimate interest in ensuring compliance with these statutory requirements. We therefore conduct due diligence reviews of our business partners at regular intervals. The personal data (master data, address data, and contact details) provided by our business partners in the context of these reviews is checked against global published blacklists and sanction lists and screened for general negative news to ensure that no money or other financial resources are being made available for the purpose of terrorism.

The provision of data is therefore essential to establishing or continuing a business relationship with DEUTZ. If the required data is not provided, the business relationship cannot be established or continued.

Access to personal data is provided only to those persons and departments within DEUTZ that need this data in order to meet our contractual and legal obligations.

DEUTZ uses a cloud-based software solution to conduct the business partner reviews. It has entered into an agreement on commissioned processing.

The personal data of members of the business partner's governing bodies and its employees in key positions that is provided by the business partner will be stored for three years after the end of the business relationship.

DEUTZ has taken appropriate technical and organizational measures to sufficiently protect the data against unauthorized access and against accidental destruction or loss.

Data subjects affected by the business partner review have the right to request information from DEUTZ at any time about their personal data, to obtain the data in a structured, machine-readable format, and to send this data to a different controller. They can also demand that the data be corrected or erased and that the processing of the data be restricted. Furthermore, they have the right to object at any time, on grounds relating to their particular situation, to the processing of the data.

To exercise the aforementioned rights, the data subjects can contact the controller directly (

If you have any questions about how DEUTZ handles your personal data, please contact the DEUTZ AG data protection officer (

You also have the option to lodge a complaint with a supervisory authority. However, we would be grateful if you contacted us in the first instance so that we can try to resolve your complaint.

The competent data protection supervisory authority for us is: Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen (North Rhine-Westphalia state commissioner for data protection and freedom of information), Kavalleriestrasse 2–4, 40213 Düsseldorf, Germany.

Transfers to recipients in third countries without an appropriate level of data protection only take place if an adequate level of data protection is guaranteed (Article 44 et seq. of the General Data Protection Regulation, GDPR).

The following are deemed to be sufficient guarantees:

Transfers to recipients in the United States of America (USA) can also be authorized if the recipient