Borgstena Group Companies
Identification of the Group companies covered by the Data Protection Platform, in their capacity as controllers of personal data processing.
The Borgstena Group is an international business group operating in the technical textiles sector for the automotive industry, comprising nine companies established in seven countries, distributed between the Textile and the Cut and Sew (Trim) Divisions.
This page identifies the Group companies covered by the Data Protection Platform. Identifying these companies is relevant because each of them determines, within the scope of its activity, the purposes and means of the processing of personal data it carries out, thereby assuming the capacity of controller.
1. Group structure and data protection
The Borgstena Group originated in Sweden, where it was founded in 1925 in the locality of Borgstena, and carries out its activity in the fields of textile production and cut-and-sew solutions for the automotive sector, organised respectively into the Textile Division and the Cut and Sew (Trim) Division. The internationalisation of the Group has led to the establishment of companies in several European countries, as well as in Brazil, the United States of America and Tunisia.
Each Group company, as a legally autonomous entity, is responsible for the processing of personal data it carries out in the exercise of its activity. The Data Protection Platform serves all of these companies on a cross-cutting basis, ensuring a coherent, harmonised and centralised approach to compliance, without prejudice to the individual responsibility of each company. Whenever two or more Group companies jointly determine the purposes and means of a processing operation, they may assume the capacity of joint controllers under Article 26 of the GDPR.
2. List of Group companies
The nine companies of the Borgstena Group covered by the Platform are set out below, with the identification of the company name, registered office, tax identification number and the Division to which they belong. The data have been confirmed from the Group's official registration documentation.
- Registered office
- Bryggaregatan 19-21, 503 38 Borås, Sweden
- Tax identification number
- SE556135069401
- Registered office
- EN 234, km 87.7, Chão do Pisco, Apartado 35, 3521-909 Nelas, Portugal
- Tax identification number
- PT502355409
- Registered office
- Otín 427, 37701 Jindřichův Hradec 1, Czech Republic
- Tax identification number
- CZ01507206
- Registered office
- Na Příkopě 1175, 73801 Frýdek-Místek, Czech Republic
- Tax identification number
- CZ29446457
- Registered office
- Drum Gladnei, no. 16, 305300 Făget — Timiș, Romania
- Tax identification number
- RO26873696
- Registered office
- Avenida Augusto Simoneti, 80, Portal dos Hibiscos, 18530-000 Tietê, SP, Brazil
- Tax identification number
- CNPJ 16.732.361/0001-62
- Registered office
- Avenida Augusto Simoneti, 80, Portal dos Hibiscos, 18530-000 Tietê, SP, Brazil
- Tax identification number
- CNPJ 13.864.184/0001-80
- Registered office
- 111 East Wade Street, PO Box 828, Wadesboro, NC 28170, United States of America
- Tax identification number
- 384111445
- Registered office
- Croisement Aousja, El Alia, 7014 Aousja, Tunisia
- Tax identification number
- 1876310L
3. Jurisdictional framework
The geographical distribution of the Group companies directly affects the applicable data protection regime. The companies established within the European Union — in Portugal, the Czech Republic, Romania and Sweden — are subject to Regulation (EU) 2016/679 (GDPR) and to the national implementing legislation of each Member State, the competent supervisory authority in Portugal being the National Data Protection Commission (CNPD).
The companies established outside the European Union observe, when processing personal data, the applicable local legislation: in Brazil, the General Personal Data Protection Law (Law No. 13,709/2018), under the supervision of the National Data Protection Authority (ANPD); in the United States of America, the applicable set of federal sectoral laws and state laws on consumer privacy; in Tunisia, the national legislation on the protection of personal data. Whenever personal data are transferred between Group companies located in different countries, namely outside the European Economic Area, the transfer mechanisms provided for in Chapter V of the GDPR are adopted — adequacy decisions or, in their absence, appropriate safeguards, namely standard contractual clauses approved by the European Commission.
4. Identifying the controller for the exercise of rights
For the exercise of data protection rights, the data subject should, wherever possible, identify the Group company with which they have a relationship — for example, the company that employs them, to which they applied or of which they are a supplier. Should the data subject be unable to determine the responsible company, the Data Protection Officer provides the necessary assistance and ensures that the request is forwarded to the competent entity, guaranteeing that no request goes unanswered due to uncertainty as to the responsible company.
