Privacy policy according to GDPR of StatSoft GmbH

We tre­at your per­so­nal data con­fi­den­ti­al­ly and in accordance with the sta­tu­to­ry data pro­tec­tion regu­la­ti­ons and this data pro­tec­tion decla­ra­ti­on. In the fol­lo­wing, we would like to inform you about the pro­ces­sing of per­so­nal data.

Coll­ec­tion and pro­ces­sing of per­so­nal data

In prin­ci­ple, you can use our online ser­vice wit­hout dis­clo­sing your iden­ti­ty. If we request per­so­nal data (such as name, address or e‑mail address) on the web­site, e.g. in the con­text of cont­act forms or during regis­tra­ti­on, this is done on a vol­un­t­a­ry basis. We use this infor­ma­ti­on for our own busi­ness pur­po­ses (such as sen­ding the reques­ted materials/information).

If you have any ques­ti­ons, we offer you the pos­si­bi­li­ty of cont­ac­ting us via a form pro­vi­ded on our web­site. The data mark­ed as man­da­to­ry are requi­red in order to be able to allo­ca­te and ans­wer the enquiry. Fur­ther infor­ma­ti­on can be pro­vi­ded vol­un­t­a­ri­ly. Data pro­ces­sing for the pur­po­se of cont­ac­ting us is car­ri­ed out in accordance with Art. 6 Para. 1 S. 1 lit. a EU-DSGVO on the basis of your vol­un­t­a­ri­ly given con­sent.

The per­so­nal data coll­ec­ted by us for the use of the cont­act form will be dele­ted after the enquiry you have made has been dealt with and after expiry of the reten­ti­on obli­ga­ti­ons under tax and com­mer­cial law.

Once you have given your con­sent — for exam­p­le, for the pur­po­se of recei­ving a news­let­ter or other inte­res­t­ing infor­ma­ti­on from our com­pa­ny — you can revo­ke it at any time wit­hout giving reasons with effect for the future. To do so, you can use the abo­ve-men­tio­ned cont­act form or ano­ther method men­tio­ned in the news­let­ter.

Coo­kies

Some of the Inter­net pages use so-cal­led coo­kies. Coo­kies do not dama­ge your com­pu­ter and do not con­tain viru­s­es. Coo­kies ser­ve to make our offer more user-fri­end­ly, more effec­ti­ve and safer. Coo­kies are small text files that are stored on your com­pu­ter and saved by your brow­ser.

Most of the coo­kies we use are so-cal­led “ses­si­on coo­kies”. They are auto­ma­ti­cal­ly dele­ted at the end of your visit. Other coo­kies remain stored on your end device until you dele­te them. The­se coo­kies enable us to reco­g­ni­se your brow­ser on your next visit.

You can set your brow­ser so that you are infor­med about the set­ting of coo­kies and only allow coo­kies in indi­vi­du­al cases, exclude the accep­tance of coo­kies for cer­tain cases or in gene­ral and acti­va­te the auto­ma­tic dele­ti­on of coo­kies when clo­sing the brow­ser. If you deac­ti­va­te coo­kies, the func­tion­a­li­ty of this web­site may be limi­t­ed.

Log­ging

Each time the web­site is acces­sed, logs are crea­ted and pro­ces­sed for sta­tis­ti­cal pur­po­ses, wher­eby the indi­vi­du­al user remains anony­mous:

  • Name of the reques­ted file / web­site
  • Date and time of access” Volu­me of data trans­fer­red
  • Refer­rer (page from who­se link you arri­ved at this web­site)
  • Search terms (used by search engi­nes as refer­rer)
  • IP address (used to deter­mi­ne the coun­try of ori­gin and the pro­vi­der)
  • Brow­ser, ope­ra­ting sys­tem, instal­led plug-ins and screen reso­lu­ti­on
  • Time spent on the pages

The afo­re­men­tio­ned data are pro­ces­sed by us on the basis of our legi­ti­ma­te inte­rest pur­su­ant to Art. 6 (1) p. 1 lit. f EU-DSGVO for the fol­lo­wing pur­po­ses:

  • Ensu­ring a smooth con­nec­tion set­up of the inter­net pre­sence,
  • Ensu­ring a com­for­ta­ble use of our Inter­net pre­sence,
  • Eva­lua­ti­on of sys­tem secu­ri­ty and sta­bi­li­ty as well as
    for fur­ther admi­nis­tra­ti­ve pur­po­ses.

We reser­ve the right to check this data retro­s­pec­tively if we beco­me awa­re of spe­ci­fic indi­ca­ti­ons of unlawful use. The data will be dele­ted imme­dia­te­ly if it is no lon­ger requi­red to achie­ve the pur­po­se, but at the latest after six months

Pas­sing on of data

As a mat­ter of prin­ci­ple, data will not be pas­sed on to third par­ties for com­mer­cial or non-com­mer­cial pur­po­ses wit­hout your express con­sent. We only pass on your per­so­nal data to third par­ties if this is legal­ly per­mis­si­ble [such as on the basis of Artic­le 6 EU-DSGVO] and/or neces­sa­ry. We would like to point out that we may also pass on your per­so­nal data to other com­pa­nies within our group for the abo­ve-men­tio­ned pur­po­ses [see “About us”]. The data trans­fer takes place on the basis of a legi­ti­ma­te inte­rest in order to be able to offer you a com­pre­hen­si­ve ran­ge of our ser­vices. In some cases, we use ser­vice pro­vi­ders for the legal­ly requi­red com­mis­sio­ned pro­ces­sing of data; for exam­p­le, the web­site is hos­ted by Hetz­ner Online GmbH (https://www.hetzner.com) and main­tai­ned by Com­li­ne AG (https://www.comline.de/). We retain full respon­si­bi­li­ty for data pro­ces­sing. Fur­ther­mo­re, we use plug-ins from other pro­vi­ders on our web­site; more details can be found below.

Lia­bi­li­ty for own con­tents

The con­tents of the­se pages were crea­ted with the utmost care. Howe­ver, we can­not assu­me any lia­bi­li­ty for the cor­rect­ness, com­ple­ten­ess and up-to-daten­ess of the con­tents. As a ser­vice pro­vi­der, we are respon­si­ble for our own con­tent on the­se pages in accordance with gene­ral laws.

Lia­bi­li­ty for links (con­tents of exter­nal pro­vi­ders)

A distinc­tion must be made bet­ween our own con­tent and cross-refe­ren­ces (“links”) to con­tent pro­vi­ded by other pro­vi­ders. We have no influence on their con­tent; the respec­ti­ve pro­vi­der or ope­ra­tor of the pages is always respon­si­ble for the con­tent of the lin­ked pages.

Rights of the data sub­jects

We her­eby inform you that pur­su­ant to Artic­le 15 et seq. EU-DSGVO, you have the right to infor­ma­ti­on about the per­so­nal data con­cer­ned, as well as the right to rec­ti­fi­ca­ti­on or dele­ti­on or to rest­ric­tion of pro­ces­sing or the right to object to pro­ces­sing, as well as the right to data por­ta­bi­li­ty, sub­ject to the con­di­ti­ons defi­ned the­r­ein. You also have the right to lodge a com­plaint with a data pro­tec­tion super­vi­so­ry aut­ho­ri­ty pur­su­ant to Artic­le 77 EU GDPR if you con­sider that the pro­ces­sing of per­so­nal data con­cer­ning you inf­rin­ges this Regu­la­ti­on. Fur­ther­mo­re, if the pro­ces­sing is based on Artic­le 6(1)(a) EU GDPR or Artic­le 9(2)(a) EU GDPR (con­sent), you have the right to with­draw your con­sent at any time wit­hout affec­ting the lawful­ness of the pro­ces­sing car­ri­ed out on the basis of the con­sent until the with­dra­wal.

Chan­ges to our data pro­tec­tion poli­cy

We reser­ve the right to amend this data pro­tec­tion state­ment from time to time so that it always com­pli­es with the cur­rent legal requi­re­ments or in order to imple­ment chan­ges to our ser­vices in the data pro­tec­tion state­ment, e.g. when intro­du­cing new ser­vices. The new data pro­tec­tion state­ment will then app­ly to your next visit.

Use of Sales­View­er® tech­no­lo­gy

On this web­site, data is coll­ec­ted and stored for mar­ke­ting, mar­ket rese­arch and opti­mi­sa­ti­on pur­po­ses using the Sales­View­er® tech­no­lo­gy of Sales­View­er® GmbH on the basis of the legi­ti­ma­te inte­rests of the web­site ope­ra­tor (Art. 6 para.1 lit.f DSGVO). For this pur­po­se, a java­script-based code is used to coll­ect com­pa­ny-rela­ted data and the cor­re­spon­ding use. The data coll­ec­ted with this tech­no­lo­gy is encrypt­ed via a non-rever­si­ble one-way func­tion (so-cal­led hash­ing). The data is imme­dia­te­ly pseud­ony­mi­sed and not used to per­so­nal­ly iden­ti­fy the visi­tor to this web­site. The data stored within the frame­work of Sales­view­er will be dele­ted as soon as it is no lon­ger requi­red for its inten­ded pur­po­se and the­re are no legal obli­ga­ti­ons to retain data to pre­vent its dele­ti­on. You can object to the coll­ec­tion and sto­rage of data at any time with effect for the future by cli­cking on this link https://www.salesviewer.com/opt-out in order to pre­vent the coll­ec­tion of data by Sales­View­er® within this web­site in the future. This will place an opt-out coo­kie for this web­site on your device. If you dele­te your coo­kies in this brow­ser, you will need to click this link again.

Ques­ti­ons

If you have any ques­ti­ons regar­ding the pro­ces­sing of your per­so­nal data, you can cont­act our data pro­tec­tion offi­cer direct­ly, who is also available with his team in the event of requests for infor­ma­ti­on, appli­ca­ti­ons or com­plaints.

You can reach our data pro­tec­tion offi­cer at datenschutz@statsoft.de or at our pos­tal address with the addi­ti­on of “the data pro­tec­tion offi­cer”.

Infor­ma­ti­on sheet accor­ding to DSGVO

 

Data protection declaration

We are very plea­sed about your inte­rest in our com­pa­ny. Data pro­tec­tion is of a par­ti­cu­lar­ly high prio­ri­ty for the manage­ment of Stat­Soft GmbH. The use of the Inter­net pages of the Stat­Soft GmbH is pos­si­ble wit­hout any indi­ca­ti­on of per­so­nal data. Howe­ver, if a data sub­ject wants to use spe­cial ser­vices pro­vi­ded by our enter­pri­se via our web­site, pro­ces­sing of per­so­nal data could beco­me neces­sa­ry. If pro­ces­sing of per­so­nal data is neces­sa­ry and if the­re is no legal basis for such pro­ces­sing, we will gene­ral­ly obtain the con­sent of the data sub­ject.

The pro­ces­sing of per­so­nal data, such as the name, address, e‑mail address, or tele­pho­ne num­ber of a data sub­ject shall always be in line with the coun­try-spe­ci­fic data pro­tec­tion regu­la­ti­ons appli­ca­ble to the Stat­Soft GmbH. By means of this data pro­tec­tion decla­ra­ti­on, our com­pa­ny would like to inform the public about the type, scope and pur­po­se of the per­so­nal data we coll­ect, use and pro­cess. Fur­ther­mo­re, data sub­jects are infor­med of their rights by means of this data pro­tec­tion decla­ra­ti­on.

As the con­trol­ler, Stat­Soft GmbH has imple­men­ted num­e­rous tech­ni­cal and orga­ni­sa­tio­nal mea­su­res to ensu­re the most com­ple­te pro­tec­tion of per­so­nal data pro­ces­sed through this web­site. Nevert­hel­ess, Inter­net-based data trans­mis­si­ons can always be sub­ject to secu­ri­ty vul­nerabi­li­ties, so that abso­lu­te pro­tec­tion can­not be gua­ran­teed. For this reason, every data sub­ject is free to trans­mit per­so­nal data to us by alter­na­ti­ve means, for exam­p­le by tele­pho­ne.

1. Defi­ni­ti­ons of terms

The data pro­tec­tion decla­ra­ti­on of Stat­Soft GmbH is based on the terms used by the Euro­pean Direc­ti­ve and Ordi­nan­ce Maker when issuing the Data Pro­tec­tion Regu­la­ti­on (DS-GVO). Our data pro­tec­tion decla­ra­ti­on should be easy to read and under­stand for the public as well as for our cus­to­mers and busi­ness part­ners. To ensu­re this, we would like to explain the terms used in advan­ce.

We use the fol­lo­wing terms, among others, in this data pro­tec­tion decla­ra­ti­on:

a) per­so­nal data

Per­so­nal data means any infor­ma­ti­on rela­ting to an iden­ti­fied or iden­ti­fia­ble natu­ral per­son (her­ein­af­ter “data sub­ject”). An iden­ti­fia­ble natu­ral per­son is one who can be iden­ti­fied, direct­ly or indi­rect­ly, in par­ti­cu­lar by refe­rence to an iden­ti­fier such as a name, an iden­ti­fi­ca­ti­on num­ber, loca­ti­on data, an online iden­ti­fier or to one or more fac­tors spe­ci­fic to the phy­si­cal, phy­sio­lo­gi­cal, gene­tic, men­tal, eco­no­mic, cul­tu­ral or social iden­ti­ty of that natu­ral per­son.

b) Data sub­ject

Data sub­ject means any iden­ti­fied or iden­ti­fia­ble natu­ral per­son who­se per­so­nal data are pro­ces­sed by the con­trol­ler.

c) pro­ces­sing

Pro­ces­sing means any ope­ra­ti­on or set of ope­ra­ti­ons which is per­for­med upon per­so­nal data, whe­ther or not by auto­ma­tic means, such as coll­ec­tion, recor­ding, orga­ni­sa­ti­on, fil­ing, sto­rage, adapt­a­ti­on or altera­ti­on, retrie­val, con­sul­ta­ti­on, use, dis­clo­sure by trans­mis­si­on, dis­se­mi­na­ti­on or other­wi­se making available, ali­gnment or com­bi­na­ti­on, rest­ric­tion, era­su­re or des­truc­tion.

d) Rest­ric­tion of pro­ces­sing

Rest­ric­tion of pro­ces­sing is the mar­king of stored per­so­nal data with the aim of limi­ting their future pro­ces­sing.

e) Pro­fil­ing

Pro­fil­ing shall mean any auto­ma­ted pro­ces­sing of per­so­nal data which con­sists in using such per­so­nal data to eva­lua­te cer­tain per­so­nal aspects rela­ting to a natu­ral per­son, in par­ti­cu­lar to ana­ly­se or pre­dict aspects rela­ting to that natu­ral person’s per­for­mance at work, eco­no­mic situa­ti­on, health, per­so­nal pre­fe­ren­ces, inte­rests, relia­bi­li­ty, beha­viour, loca­ti­on or chan­ge of loca­ti­on.

f) Pseud­ony­mi­sa­ti­on

Pseud­ony­mi­sa­ti­on is the pro­ces­sing of per­so­nal data in such a way that the per­so­nal data can no lon­ger be attri­bu­ted to a spe­ci­fic data sub­ject wit­hout the use of addi­tio­nal infor­ma­ti­on, pro­vi­ded that such addi­tio­nal infor­ma­ti­on is kept sepa­ra­te­ly and is sub­ject to tech­ni­cal and orga­ni­sa­tio­nal mea­su­res which ensu­re that the per­so­nal data are not attri­bu­ted to an iden­ti­fied or iden­ti­fia­ble natu­ral per­son.

g) Con­trol­ler or data con­trol­ler

The con­trol­ler or per­son respon­si­ble for pro­ces­sing is the natu­ral or legal per­son, public aut­ho­ri­ty, agen­cy or other body which alo­ne or joint­ly with others deter­mi­nes the pur­po­ses and means of the pro­ces­sing of per­so­nal data. Whe­re the pur­po­ses and means of such pro­ces­sing are deter­mi­ned by Uni­on or Mem­ber Sta­te law, the con­trol­ler or the spe­ci­fic cri­te­ria for its desi­gna­ti­on may be pro­vi­ded for under Uni­on or Mem­ber Sta­te law.

h) Pro­ces­sor

Pro­ces­sor means a natu­ral or legal per­son, public aut­ho­ri­ty, agen­cy or other body which pro­ces­ses per­so­nal data on behalf of the con­trol­ler.

i) Reci­pi­ent

Reci­pi­ent means a natu­ral or legal per­son, public aut­ho­ri­ty, agen­cy or other body to whom per­so­nal data are dis­c­lo­sed, whe­ther or not a third par­ty. Howe­ver, public aut­ho­ri­ties that may recei­ve per­so­nal data in the con­text of a spe­ci­fic inves­ti­ga­ti­ve task under Uni­on or Mem­ber Sta­te law shall not be con­side­red as reci­pi­ents.

j) third par­ty

Third par­ty means a natu­ral or legal per­son, public aut­ho­ri­ty, agen­cy or other body other than the data sub­ject, the con­trol­ler, the pro­ces­sor and the per­sons aut­ho­ri­sed to pro­cess the per­so­nal data under the direct respon­si­bi­li­ty of the con­trol­ler or the pro­ces­sor.

k) Con­sent

Con­sent is any free­ly given spe­ci­fic and infor­med indi­ca­ti­on of his or her wis­hes, in the form of a state­ment or other unam­bi­guous affir­ma­ti­ve act, by which the data sub­ject signi­fies his or her agree­ment to the pro­ces­sing of per­so­nal data rela­ting to him or her. 2.

2. Name and address of the data con­trol­ler

The con­trol­ler within the mea­ning of the Gene­ral Data Pro­tec­tion Regu­la­ti­on, other data pro­tec­tion laws appli­ca­ble in the Mem­ber Sta­tes of the Euro­pean Uni­on and other pro­vi­si­ons of a data pro­tec­tion natu­re is:

Stat­Soft GmbH
Her­mann­str. 13
20095 Ham­burg
Ger­ma­ny

Tel.: +494022859000
E‑mail: info@statsoft.de
Web­site: www.statsoft.de

3. Name and address of the data pro­tec­tion offi­cer

The data pro­tec­tion offi­cer of the con­trol­ler is:

And­re Schul­te
Pran­ge Daten­schutz GmbH
Reichs­stra­ße 78
58840 Plet­ten­berg
Ger­ma­ny

Tel.: 023919592449
E‑Mail: schulte@prangedatenschutz.de
Web­site: prange.org

Any data sub­ject may cont­act our data pro­tec­tion offi­cer direct­ly at any time with any ques­ti­ons or sug­ges­ti­ons regar­ding data pro­tec­tion.

4. Coo­kies

The Inter­net pages of Stat­Soft GmbH use coo­kies. Coo­kies are text files that are stored on a com­pu­ter sys­tem via an Inter­net brow­ser.

Num­e­rous Inter­net pages and ser­vers use coo­kies. Many coo­kies con­tain a so-cal­led coo­kie ID. A coo­kie ID is a uni­que iden­ti­fier of the coo­kie. It con­sists of a string of cha­rac­ters by which Inter­net pages and ser­vers can be assi­gned to the spe­ci­fic Inter­net brow­ser in which the coo­kie was stored. This enables the web­sites and ser­vers visi­ted to distin­gu­ish the indi­vi­du­al brow­ser of the per­son con­cer­ned from other inter­net brow­sers that con­tain other coo­kies. A spe­ci­fic inter­net brow­ser can be reco­g­nis­ed and iden­ti­fied via the uni­que coo­kie ID.

Through the use of coo­kies, the Stat­Soft GmbH can pro­vi­de the users of this web­site with more user-fri­end­ly ser­vices that would not be pos­si­ble wit­hout the coo­kie set­ting.

By means of a coo­kie, the infor­ma­ti­on and offers on our web­site can be opti­mi­sed for the bene­fit of the user. As alre­a­dy men­tio­ned, coo­kies enable us to reco­g­ni­se the users of our web­site. The pur­po­se of this reco­gni­ti­on is to make it easier for users to use our web­site. For exam­p­le, the user of a web­site that uses coo­kies does not have to re-enter his or her access data each time he or she visits the web­site, becau­se this is done by the web­site and the coo­kie stored on the user’s com­pu­ter sys­tem. Ano­ther exam­p­le is the coo­kie of a shop­ping bas­ket in an online shop. The online shop remem­bers the items that a cus­to­mer has pla­ced in the vir­tu­al shop­ping bas­ket via a coo­kie.

The data sub­ject can pre­vent the set­ting of coo­kies by our web­site at any time by means of an appro­pria­te set­ting of the Inter­net brow­ser used and thus per­ma­nent­ly object to the set­ting of coo­kies. Fur­ther­mo­re, coo­kies that have alre­a­dy been set can be dele­ted at any time via an inter­net brow­ser or other soft­ware pro­grams. This is pos­si­ble in all com­mon inter­net brow­sers. If the data sub­ject deac­ti­va­tes the set­ting of coo­kies in the Inter­net brow­ser used, not all func­tions of our web­site may be ful­ly usable.

5. Coll­ec­tion of gene­ral data and infor­ma­ti­on

The web­site of the Stat­Soft GmbH coll­ects a series of gene­ral data and infor­ma­ti­on every time a data sub­ject or auto­ma­ted sys­tem calls up the web­site. This gene­ral data and infor­ma­ti­on is stored in the log files of the ser­ver. The fol­lo­wing data may be coll­ec­ted: (1) the brow­ser types and ver­si­ons used, (2) the ope­ra­ting sys­tem used by the acces­sing sys­tem, (3) the web­site from which an acces­sing sys­tem acces­ses our web­site (so-cal­led refer­rer), (4) the sub-web­sites that are acces­sed via an acces­sing sys­tem on our web­site, (5) the date and time of an access to the web­site, (6) an Inter­net pro­to­col address (IP address), (7) the Inter­net ser­vice pro­vi­der of the acces­sing sys­tem and (8) other simi­lar data and infor­ma­ti­on that ser­ve to avert dan­ger in the event of attacks on our infor­ma­ti­on tech­no­lo­gy sys­tems.

When using the­se gene­ral data and infor­ma­ti­on, the Stat­Soft GmbH does not draw any con­clu­si­ons about the data sub­ject. Rather, this infor­ma­ti­on is nee­ded (1) to deli­ver the con­tents of our web­site cor­rect­ly, (2) to opti­mi­se the con­tents of our web­site and the adver­ti­sing for the­se, (3) to ensu­re the long-term func­tion­a­li­ty of our infor­ma­ti­on tech­no­lo­gy sys­tems and the tech­no­lo­gy of our web­site, and (4) to pro­vi­de law enforce­ment aut­ho­ri­ties with the infor­ma­ti­on neces­sa­ry for pro­se­cu­ti­on in the event of a cyber attack. The­r­e­fo­re, the Stat­Soft GmbH ana­ly­zes anony­mously coll­ec­ted data and infor­ma­ti­on on one hand, and on the other hand, with the aim of incre­asing the data pro­tec­tion and data secu­ri­ty of our enter­pri­se, so that we can ulti­m­ate­ly ensu­re an opti­mal level of pro­tec­tion for the per­so­nal data we pro­cess. The anony­mous data of the ser­ver log files are stored sepa­ra­te­ly from any per­so­nal data pro­vi­ded by a data sub­ject.

6. Sub­scrip­ti­on to our news­let­ter

On the web­site of the Stat­Soft GmbH, users are given the oppor­tu­ni­ty to sub­scri­be to our enterprise’s news­let­ter. The per­so­nal data trans­mit­ted to the con­trol­ler when the news­let­ter is sub­scri­bed to is spe­ci­fied in the input mask used for this pur­po­se.

The Stat­Soft GmbH informs its cus­to­mers and busi­ness part­ners at regu­lar inter­vals by means of a news­let­ter about enter­pri­se offers. The news­let­ter of our enter­pri­se can basi­cal­ly only be recei­ved by the data sub­ject, if (1) the data sub­ject has a valid e‑mail address and (2) the data sub­ject regis­ters for the news­let­ter mai­ling. For legal reasons, a con­fir­ma­ti­on e‑mail is sent to the e‑mail address regis­tered by a data sub­ject for the first time for the news­let­ter dis­patch using the dou­ble opt-in pro­ce­du­re. This con­fir­ma­ti­on e‑mail ser­ves to veri­fy whe­ther the owner of the e‑mail address as the data sub­ject has aut­ho­ri­sed the receipt of the news­let­ter.

When regis­tering for the news­let­ter, we also store the IP address of the com­pu­ter sys­tem used by the data sub­ject at the time of regis­tra­ti­on as well as the date and time of regis­tra­ti­on, which is assi­gned by the Inter­net ser­vice pro­vi­der (ISP). The coll­ec­tion of this data is neces­sa­ry in order to be able to trace the (pos­si­ble) misu­se of the e‑mail address of a data sub­ject at a later point in time and the­r­e­fo­re ser­ves as a legal safe­guard for the con­trol­ler.

The per­so­nal data coll­ec­ted in the con­text of a regis­tra­ti­on for the news­let­ter are used exclu­si­ve­ly for sen­ding our news­let­ter. Fur­ther­mo­re, sub­scri­bers to the news­let­ter could be infor­med by e‑mail if this is neces­sa­ry for the ope­ra­ti­on of the news­let­ter ser­vice or a rela­ted regis­tra­ti­on, as could be the case in the event of chan­ges to the news­let­ter offer or chan­ges in the tech­ni­cal cir­cum­s­tances. No per­so­nal data coll­ec­ted as part of the news­let­ter ser­vice will be pas­sed on to third par­ties. The sub­scrip­ti­on to our news­let­ter can be can­cel­led by the data sub­ject at any time. The con­sent to the sto­rage of per­so­nal data, which the data sub­ject has given us for the news­let­ter dis­patch, can be revo­ked at any time. For the pur­po­se of revo­king con­sent, a cor­re­spon­ding link can be found in each news­let­ter. Fur­ther­mo­re, it is also pos­si­ble to unsub­scri­be from the news­let­ter mai­ling direct­ly on the web­site of the con­trol­ler at any time or to inform the con­trol­ler of this in ano­ther way.

7. News­let­ter-Track­ing

The news­let­ters of Stat­Soft GmbH con­tain so-cal­led track­ing pixels. A track­ing pixel is a minia­tu­re gra­phic that is embedded in such emails that are sent in HTML for­mat to enable log file recor­ding and log file ana­ly­sis. This allows a sta­tis­ti­cal eva­lua­ti­on of the suc­cess or fail­ure of online mar­ke­ting cam­paigns. Based on the embedded track­ing pixel, the Stat­Soft GmbH may see if and when an e‑mail was ope­ned by a data sub­ject, and which links in the e‑mail were cal­led up by the data sub­ject.

Such per­so­nal data coll­ec­ted via the track­ing pixels con­tai­ned in the news­let­ters are stored and ana­ly­sed by the con­trol­ler in order to opti­mi­se the news­let­ter dis­patch and to bet­ter adapt the con­tent of future news­let­ters to the inte­rests of the data sub­ject. This per­so­nal data will not be dis­c­lo­sed to third par­ties. Data sub­jects are entit­led at any time to revo­ke the sepa­ra­te decla­ra­ti­on of con­sent given in this regard via the dou­ble opt-in pro­ce­du­re. After a revo­ca­ti­on, this per­so­nal data will be dele­ted by the data con­trol­ler. Stat­Soft GmbH auto­ma­ti­cal­ly regards a with­dra­wal from the receipt of the news­let­ter as a revo­ca­ti­on.

8. Cont­act pos­si­bi­li­ty via the web­site

Based on sta­tu­to­ry pro­vi­si­ons, the web­site of the Stat­Soft GmbH con­ta­ins data that enable a quick elec­tro­nic cont­act to our enter­pri­se, as well as direct com­mu­ni­ca­ti­on with us, which also includes a gene­ral address of the so-cal­led elec­tro­nic mail (e‑mail address). If a data sub­ject cont­acts the con­trol­ler by e‑mail or by using a cont­act form, the per­so­nal data trans­mit­ted by the data sub­ject will be stored auto­ma­ti­cal­ly. Such per­so­nal data trans­mit­ted on a vol­un­t­a­ry basis by a data sub­ject to the con­trol­ler will be stored for the pur­po­ses of pro­ces­sing or cont­ac­ting the data sub­ject. This per­so­nal data is not pas­sed on to third par­ties.

9. Com­ment func­tion in the blog on the web­site

The Stat­Soft GmbH offers users the pos­si­bi­li­ty to lea­ve indi­vi­du­al comm­ents on indi­vi­du­al blog con­tri­bu­ti­ons on a blog, which is on the web­site of the con­trol­ler. A blog is a por­tal main­tai­ned on a web­site, usual­ly publicly viewa­ble, in which one or more per­sons, cal­led blog­gers or web blog­gers, can post artic­les or wri­te down thoughts in so-cal­led blog­posts. The blog­posts can usual­ly be com­men­ted on by third par­ties.

If a data sub­ject lea­ves a com­ment on the blog published on this web­site, in addi­ti­on to the comm­ents left by the data sub­ject, details of the time the com­ment was ente­red and the user name (pseud­onym) cho­sen by the data sub­ject will be stored and published. Fur­ther­mo­re, the IP address assi­gned by the Inter­net ser­vice pro­vi­der (ISP) of the per­son con­cer­ned is also log­ged. This sto­rage of the IP address takes place for secu­ri­ty reasons and in the event that the per­son con­cer­ned inf­rin­ges the rights of third par­ties or posts ille­gal con­tent through a com­ment made. The sto­rage of this per­so­nal data is the­r­e­fo­re in the controller’s own inte­rest, so that the con­trol­ler could excul­pa­te its­elf if neces­sa­ry in the event of an inf­rin­ge­ment. The­re will be no dis­clo­sure of this coll­ec­ted per­so­nal data to third par­ties, unless such dis­clo­sure is requi­red by law or ser­ves the legal defence of the con­trol­ler.

10. Rou­ti­ne era­su­re and blo­cking of per­so­nal data

The con­trol­ler shall pro­cess and store per­so­nal data of the data sub­ject only for the peri­od of time neces­sa­ry to achie­ve the pur­po­se of sto­rage or whe­re pro­vi­ded for by the Euro­pean Direc­ti­ve and Regu­la­ti­on or other legis­la­tor in laws or regu­la­ti­ons to which the con­trol­ler is sub­ject.

If the sto­rage pur­po­se cea­ses to app­ly or if a sto­rage peri­od pre­scri­bed by the Euro­pean Direc­ti­ve and Regu­la­ti­on Maker or ano­ther com­pe­tent legis­la­tor expi­res, the per­so­nal data will be rou­ti­ne­ly blo­cked or dele­ted in accordance with the sta­tu­to­ry pro­vi­si­ons.

11. Rights of the data sub­ject

a) Right to con­fir­ma­ti­on

Every data sub­ject has the right gran­ted by the Euro­pean Direc­ti­ve and Regu­la­ti­on to obtain con­fir­ma­ti­on from the con­trol­ler as to whe­ther per­so­nal data con­cer­ning him or her are being pro­ces­sed. If a data sub­ject wis­hes to exer­cise this right of con­fir­ma­ti­on, he or she may, at any time, cont­act any employee of the con­trol­ler.

b) Right of access

Any per­son con­cer­ned by the pro­ces­sing of per­so­nal data has the right gran­ted by the Euro­pean Direc­ti­ve and Regu­la­ti­on to obtain at any time from the con­trol­ler, free of char­ge, infor­ma­ti­on about the per­so­nal data stored about him or her and a copy of that infor­ma­ti­on. In addi­ti­on, the Euro­pean Direc­ti­ve and Regu­la­ti­on Body has gran­ted the data sub­ject access to the fol­lo­wing infor­ma­ti­on:

  • the pur­po­ses of the pro­ces­sing
  • the cate­go­ries of per­so­nal data pro­ces­sed
  • the reci­pi­ents or cate­go­ries of reci­pi­ents to whom the per­so­nal data have been or will be dis­c­lo­sed, in par­ti­cu­lar in the case of reci­pi­ents in third count­ries or inter­na­tio­nal orga­ni­sa­ti­ons
  • if pos­si­ble, the plan­ned dura­ti­on for which the per­so­nal data will be stored or, if this is not pos­si­ble, the cri­te­ria for deter­mi­ning this dura­ti­on
    the exis­tence of the right to obtain the rec­ti­fi­ca­ti­on or era­su­re of per­so­nal data con­cer­ning him or her, or the rest­ric­tion of pro­ces­sing by the con­trol­ler, or the right to object to such pro­ces­sing
  • the exis­tence of a right of appeal to a super­vi­so­ry aut­ho­ri­ty
  • if the per­so­nal data are not coll­ec­ted from the data sub­ject: Any available infor­ma­ti­on on the ori­gin of the data
  • the exis­tence of auto­ma­ted decis­i­on-making, inclu­ding pro­fil­ing, pur­su­ant to Artic­le 22(1) and (4) of the GDPR and, at least in the­se cases, meaningful infor­ma­ti­on about the logic invol­ved and the scope and inten­ded effects of such pro­ces­sing for the data sub­ject.

Fur­ther­mo­re, the data sub­ject shall have the right to obtain infor­ma­ti­on as to whe­ther per­so­nal data have been trans­fer­red to a third coun­try or to an inter­na­tio­nal orga­ni­sa­ti­on. If this is the case, the data sub­ject shall also have the right to obtain infor­ma­ti­on on the appro­pria­te safe­guards in rela­ti­on to the trans­fer.

If a data sub­ject wis­hes to exer­cise this right of access, he or she may cont­act an employee of the con­trol­ler at any time.

c) Right of rec­ti­fi­ca­ti­on

Any per­son con­cer­ned by the pro­ces­sing of per­so­nal data has the right, gran­ted by the Euro­pean Direc­ti­ve and Regu­la­ti­on, to obtain the rec­ti­fi­ca­ti­on wit­hout delay of inac­cu­ra­te per­so­nal data con­cer­ning him or her. Fur­ther­mo­re, the data sub­ject has the right to request the com­ple­ti­on of incom­ple­te per­so­nal data, inclu­ding by means of a sup­ple­men­ta­ry decla­ra­ti­on, taking into account the pur­po­ses of the pro­ces­sing.

If a data sub­ject wis­hes to exer­cise this right of rec­ti­fi­ca­ti­on, he or she may, at any time, cont­act any employee of the con­trol­ler.

d) Right to era­su­re (right to be for­got­ten)

Any per­son con­cer­ned by the pro­ces­sing of per­so­nal data has the right, gran­ted by the Euro­pean Direc­ti­ve and Regu­la­ti­on, to obtain from the con­trol­ler the era­su­re wit­hout delay of per­so­nal data con­cer­ning him or her, whe­re one of the fol­lo­wing grounds appli­es and inso­far as the pro­ces­sing is not neces­sa­ry:

  • The per­so­nal data were coll­ec­ted or other­wi­se pro­ces­sed for pur­po­ses for which they are no lon­ger neces­sa­ry.
  • The data sub­ject with­draws the con­sent on which the pro­ces­sing was based pur­su­ant to Artic­le 6(1)(a) of the GDPR or Artic­le 9(2)(a) of the GDPR and the­re is no other legal basis for the pro­ces­sing.
  • The data sub­ject objects to the pro­ces­sing pur­su­ant to Artic­le 21(1) GDPR and the­re are no over­ri­ding legi­ti­ma­te grounds for the pro­ces­sing, or the data sub­ject objects to the pro­ces­sing pur­su­ant to Artic­le 21(2) GDPR.
  • The per­so­nal data have been pro­ces­sed unlawful­ly.
  • The era­su­re of the per­so­nal data is neces­sa­ry for com­pli­ance with a legal obli­ga­ti­on under Uni­on or Mem­ber Sta­te law to which the con­trol­ler is sub­ject.
  • The per­so­nal data have been coll­ec­ted in rela­ti­on to infor­ma­ti­on socie­ty ser­vices offe­red pur­su­ant to Artic­le 8(1) of the GDPR.

If one of the afo­re­men­tio­ned reasons appli­es, and a data sub­ject wis­hes to arran­ge for the dele­ti­on of per­so­nal data stored by the Stat­Soft GmbH, he or she may, at any time, cont­act any employee of the con­trol­ler. The employee of the Stat­Soft GmbH will arran­ge for the dele­ti­on request to be com­pli­ed with imme­dia­te­ly.

If the per­so­nal data has been made public by the Stat­Soft GmbH and our com­pa­ny is respon­si­ble pur­su­ant to Art. 17 Para. 1 DS-GVO to era­se the per­so­nal data, Stat­Soft GmbH shall imple­ment reasonable mea­su­res, inclu­ding tech­ni­cal mea­su­res, taking into account the available tech­no­lo­gy and the cost of imple­men­ta­ti­on, in order to inform other data con­trol­lers which pro­cess the published per­so­nal data that the data sub­ject has reques­ted from tho­se other data con­trol­lers to era­se all links to or copies or repli­ca­ti­ons of the per­so­nal data, unless the pro­ces­sing is neces­sa­ry. The employee of the Stat­Soft GmbH will arran­ge the neces­sa­ry in indi­vi­du­al cases.

e) Right to rest­ric­tion of pro­ces­sing

Any per­son con­cer­ned by the pro­ces­sing of per­so­nal data has the right, gran­ted by the Euro­pean Direc­ti­ve and Regu­la­ti­on, to obtain from the con­trol­ler the rest­ric­tion of pro­ces­sing whe­re one of the fol­lo­wing con­di­ti­ons is met:

  • The accu­ra­cy of the per­so­nal data is con­tes­ted by the data sub­ject for a peri­od enab­ling the con­trol­ler to veri­fy the accu­ra­cy of the per­so­nal data.
    The pro­ces­sing is unlawful, the data sub­ject objects to the era­su­re of the per­so­nal data and requests ins­tead the rest­ric­tion of the use of the per­so­nal data.
  • The con­trol­ler no lon­ger needs the per­so­nal data for the pur­po­ses of the pro­ces­sing, but the data sub­ject needs it for the asser­ti­on, exer­cise or defence of legal claims.
  • The data sub­ject has objec­ted to the pro­ces­sing pur­su­ant to Artic­le 21(1) of the GDPR and it is not yet clear whe­ther the legi­ti­ma­te grounds of the con­trol­ler over­ri­de tho­se of the data sub­ject.

If one of the afo­re­men­tio­ned con­di­ti­ons is met, and a data sub­ject wis­hes to request the rest­ric­tion of per­so­nal data stored by the Stat­Soft GmbH, he or she may, at any time, cont­act any employee of the con­trol­ler. The employee of the Stat­Soft GmbH will arran­ge the rest­ric­tion of the pro­ces­sing.

f) Right to data por­ta­bi­li­ty

Any per­son con­cer­ned by the pro­ces­sing of per­so­nal data has the right, gran­ted by the Euro­pean Direc­ti­ve and Regu­la­ti­on, to recei­ve the per­so­nal data con­cer­ning him or her, which have been pro­vi­ded by the data sub­ject to a con­trol­ler, in a struc­tu­red, com­mon­ly used and machi­ne-rea­da­ble for­mat. The data sub­ject shall also have the right to trans­mit such data to ano­ther con­trol­ler wit­hout hin­drance from the con­trol­ler to whom the per­so­nal data have been pro­vi­ded, pro­vi­ded that the pro­ces­sing is based on con­sent pur­su­ant to Artic­le 6(1)(a) of the GDPR or Artic­le 9(2)(a) of the GDPR or on a con­tract pur­su­ant to Artic­le 6(1)(b) of the GDPR and the pro­ces­sing is car­ri­ed out by auto­ma­ted means, unless the pro­ces­sing is neces­sa­ry for the per­for­mance of a task car­ri­ed out in the public inte­rest or in the exer­cise of offi­ci­al aut­ho­ri­ty ves­ted in the con­trol­ler.

Fur­ther­mo­re, when exer­cis­ing the right to data por­ta­bi­li­ty pur­su­ant to Artic­le 20(1) of the GDPR, the data sub­ject shall have the right to obtain the direct trans­fer of per­so­nal data from one con­trol­ler to ano­ther con­trol­ler whe­re tech­ni­cal­ly fea­si­ble and pro­vi­ded that this does not adver­se­ly affect the rights and free­doms of other per­sons.

In order to assert the right to data por­ta­bi­li­ty, the data sub­ject may at any time cont­act any employee of the Stat­Soft GmbH.

g) Right to object

Any per­son affec­ted by the pro­ces­sing of per­so­nal data shall have the right gran­ted by the Euro­pean Direc­ti­ve and Regu­la­ti­on to object at any time, on grounds rela­ting to his or her par­ti­cu­lar situa­ti­on, to the pro­ces­sing of per­so­nal data con­cer­ning him or her which is car­ri­ed out on the basis of Artic­le 6(1)(e) or (f) of the DS-GVO. This also appli­es to pro­fil­ing based on the­se pro­vi­si­ons.

The Stat­Soft GmbH shall no lon­ger pro­cess the per­so­nal data in the event of the objec­tion, unless we can demons­tra­te com­pel­ling legi­ti­ma­te grounds for the pro­ces­sing which over­ri­de the inte­rests, rights and free­doms of the data sub­ject, or for the asser­ti­on, exer­cise or defence of legal claims.

If the Stat­Soft GmbH pro­ces­ses per­so­nal data for direct mar­ke­ting pur­po­ses, the data sub­ject shall have the right to object at any time to pro­ces­sing of per­so­nal data for such mar­ke­ting. This also appli­es to the pro­fil­ing, inso­far as it is rela­ted to such direct mar­ke­ting. If the data sub­ject objects to Stat­Soft GmbH to the pro­ces­sing for direct mar­ke­ting pur­po­ses, Stat­Soft GmbH will no lon­ger pro­cess the per­so­nal data for the­se pur­po­ses.

In addi­ti­on, the data sub­ject has the right, on grounds rela­ting to his or her par­ti­cu­lar situa­ti­on, to object to pro­ces­sing of per­so­nal data con­cer­ning him or her which is car­ri­ed out by the Stat­Soft GmbH for sci­en­ti­fic or his­to­ri­cal rese­arch pur­po­ses, or for sta­tis­ti­cal pur­po­ses pur­su­ant to Artic­le 89(1) of the Data Pro­tec­tion Regu­la­ti­on, unless such pro­ces­sing is neces­sa­ry for the per­for­mance of a task car­ri­ed out in the public inte­rest.

In order to exer­cise the right to object, the data sub­ject may direct­ly cont­act any employee of the Stat­Soft GmbH or ano­ther employee. The data sub­ject is also free to exer­cise his/her right to object by means of auto­ma­ted pro­ce­du­res using tech­ni­cal spe­ci­fi­ca­ti­ons in con­nec­tion with the use of infor­ma­ti­on socie­ty ser­vices, not­wi­th­stan­ding Direc­ti­ve 2002/58/EC.

h) Auto­ma­ted decis­i­ons in indi­vi­du­al cases, inclu­ding pro­fil­ing.

Any data sub­ject con­cer­ned by the pro­ces­sing of per­so­nal data shall have the right, gran­ted by the Euro­pean Direc­ti­ve and the Regu­la­ti­on, not to be sub­ject to a decis­i­on based sole­ly on auto­ma­ted pro­ces­sing, inclu­ding pro­fil­ing, which pro­du­ces legal effects con­cer­ning him or her or simi­lar­ly signi­fi­cant­ly affects him or her, pro­vi­ded that the decis­i­on (1) is not neces­sa­ry for ente­ring into, or the per­for­mance of, a con­tract bet­ween the data sub­ject and the con­trol­ler, or (2) is aut­ho­ri­sed by Uni­on or Mem­ber Sta­te law to which the con­trol­ler is sub­ject and that such law lays down appro­pria­te mea­su­res to safe­guard the data subject’s rights and free­doms and legi­ti­ma­te inte­rests, or (3) is made with the data subject’s expli­cit con­sent.

If the decis­i­on (1) is neces­sa­ry for ente­ring into, or the per­for­mance of, a con­tract bet­ween the data sub­ject and the data con­trol­ler, or (2) it is made with the data subject’s expli­cit con­sent, the Stat­Soft GmbH shall imple­ment sui­ta­ble mea­su­res to safe­guard the data subject’s rights and free­doms and legi­ti­ma­te inte­rests, which include at least the right to obtain the data subject’s invol­vement on the part of the con­trol­ler, to express his or her point of view and con­test the decis­i­on.

If the data sub­ject wis­hes to exer­cise the rights con­cer­ning auto­ma­ted decis­i­ons, he or she may, at any time, cont­act any employee of the con­trol­ler.

i) Right to with­draw con­sent under data pro­tec­tion law

Any per­son affec­ted by the pro­ces­sing of per­so­nal data has the right gran­ted by the Euro­pean Direc­ti­ve and Regu­la­ti­on to with­draw con­sent to the pro­ces­sing of per­so­nal data at any time.

If the data sub­ject wis­hes to exer­cise the right to with­draw con­sent, he or she may, at any time, cont­act any employee of the con­trol­ler.

12. data pro­tec­tion during appli­ca­ti­ons and the appli­ca­ti­on pro­ce­du­re

The con­trol­ler coll­ects and pro­ces­ses the per­so­nal data of appli­cants for the pur­po­se of hand­ling the appli­ca­ti­on pro­ce­du­re. The pro­ces­sing may also be car­ri­ed out by elec­tro­nic means. This is in par­ti­cu­lar the case when an appli­cant sub­mits rele­vant appli­ca­ti­on docu­ments to the con­trol­ler by elec­tro­nic means, for exam­p­le by e‑mail or via a web form loca­ted on the web­site. If the con­trol­ler con­cludes an employ­ment con­tract with an appli­cant, the trans­mit­ted data will be stored for the pur­po­se of pro­ces­sing the employ­ment rela­ti­onship in com­pli­ance with the sta­tu­to­ry pro­vi­si­ons. If the con­trol­ler does not con­clude an employ­ment con­tract with the appli­cant, the appli­ca­ti­on docu­ments are auto­ma­ti­cal­ly dele­ted two months after the noti­fi­ca­ti­on of the rejec­tion decis­i­on, pro­vi­ded that no other legi­ti­ma­te inte­rests of the con­trol­ler con­flict with such dele­ti­on. Other legi­ti­ma­te inte­rest in this sen­se is, for exam­p­le, a duty to pro­vi­de evi­dence in pro­cee­dings under the Gene­ral Equal Tre­at­ment Act.

13. Data pro­tec­tion pro­vi­si­ons on the use and appli­ca­ti­on of Goog­le Ana­ly­tics (with anony­mi­sa­ti­on func­tion).

The con­trol­ler has inte­gra­ted the Goog­le Ana­ly­tics com­po­nent (with anony­mi­sa­ti­on func­tion) on this web­site. Goog­le Ana­ly­tics is a web ana­ly­sis ser­vice. Web ana­ly­sis is the coll­ec­tion, com­pi­la­ti­on and eva­lua­ti­on of data about the beha­viour of visi­tors to web­sites. Among other things, a web ana­ly­sis ser­vice coll­ects data on the web­site from which a data sub­ject has acces­sed a web­site (so-cal­led refer­rers), which sub-pages of the web­site have been acces­sed or how often and for how long a sub-page has been view­ed. A web ana­ly­sis is main­ly used to opti­mi­se a web­site and to ana­ly­se the cos­ts and bene­fits of inter­net adver­ti­sing.

The ope­ra­ting com­pa­ny of the Goog­le Ana­ly­tics com­po­nent is Goog­le Ire­land Limi­t­ed, Gor­don House, Bar­row Street, Dub­lin, D04 E5W5, Ire­land.

The con­trol­ler uses the add-on “_gat._anonymizeIp” for web ana­ly­sis via Goog­le Ana­ly­tics. By means of this addi­ti­on, the IP address of the Inter­net con­nec­tion of the data sub­ject is shor­ten­ed and anony­mi­sed by Goog­le if access to our Inter­net pages is from a Mem­ber Sta­te of the Euro­pean Uni­on or from ano­ther Sta­te par­ty to the Agree­ment on the Euro­pean Eco­no­mic Area.

The pur­po­se of the Goog­le Ana­ly­tics com­po­nent is to ana­ly­se the flow of visi­tors to our web­site. Goog­le uses the data and infor­ma­ti­on obtai­ned, among other things, to eva­lua­te the use of our web­site, to com­pi­le online reports for us show­ing the acti­vi­ties on our web­site and to pro­vi­de other ser­vices in con­nec­tion with the use of our web­site.

Goog­le Ana­ly­tics sets a coo­kie on the infor­ma­ti­on tech­no­lo­gy sys­tem of the data sub­ject. What coo­kies are has alre­a­dy been explai­ned abo­ve. By set­ting the coo­kie, Goog­le is enab­led to ana­ly­se the use of our web­site. Each time one of the indi­vi­du­al pages of this web­site ope­ra­ted by the data con­trol­ler is cal­led up and on which a Goog­le Ana­ly­tics com­po­nent has been inte­gra­ted, the inter­net brow­ser on the data subject’s infor­ma­ti­on tech­no­lo­gy sys­tem is auto­ma­ti­cal­ly cau­sed by the respec­ti­ve Goog­le Ana­ly­tics com­po­nent to trans­mit data to Goog­le for the pur­po­se of online ana­ly­sis. As part of this tech­ni­cal pro­cess, Goog­le obta­ins know­ledge of per­so­nal data, such as the IP address of the data sub­ject, which Goog­le uses, among other things, to track the ori­gin of visi­tors and clicks and sub­se­quent­ly to enable com­mis­si­on cal­cu­la­ti­ons.

By means of the coo­kie, per­so­nal infor­ma­ti­on such as the time of access, the loca­ti­on from which access ori­gi­na­ted and the fre­quen­cy of visits to our web­site by the data sub­ject are stored. Each time the data sub­ject visits our web­site, this per­so­nal data, inclu­ding the IP address of the inter­net con­nec­tion used by the data sub­ject, is trans­mit­ted to Goog­le in the United Sta­tes of Ame­ri­ca. This per­so­nal data is stored by Goog­le in the United Sta­tes of Ame­ri­ca. Goog­le may share this per­so­nal data coll­ec­ted via the tech­ni­cal pro­cess with third par­ties.

The data sub­ject can pre­vent the set­ting of coo­kies by our web­site at any time by means of an appro­pria­te set­ting of the Inter­net brow­ser used, as alre­a­dy descri­bed abo­ve, and thus per­ma­nent­ly object to the set­ting of coo­kies. Such a set­ting of the Inter­net brow­ser used would also pre­vent Goog­le from set­ting a coo­kie on the infor­ma­ti­on tech­no­lo­gy sys­tem of the data sub­ject. In addi­ti­on, a coo­kie alre­a­dy set by Goog­le Ana­ly­tics can be dele­ted at any time via the inter­net brow­ser or other soft­ware pro­grams.

Fur­ther­mo­re, the data sub­ject has the opti­on to object to the coll­ec­tion of data gene­ra­ted by Goog­le Ana­ly­tics and rela­ted to the use of this web­site as well as to the pro­ces­sing of this data by Goog­le and to pre­vent such pro­ces­sing. For this pur­po­se, the data sub­ject must down­load and install a brow­ser add-on at the link tools.google.com/dlpage/gaoptout. This brow­ser add-on informs Goog­le Ana­ly­tics via Java­Script that no data and infor­ma­ti­on on visits to web­sites may be trans­mit­ted to Goog­le Ana­ly­tics. The instal­la­ti­on of the brow­ser add-on is con­side­red by Goog­le as an objec­tion. If the data subject’s infor­ma­ti­on tech­no­lo­gy sys­tem is dele­ted, for­mat­ted or reinstal­led at a later date, the data sub­ject must reinstall the brow­ser add-on in order to deac­ti­va­te Goog­le Ana­ly­tics. If the brow­ser add-on is unin­stal­led or deac­ti­va­ted by the data sub­ject or ano­ther per­son within his or her con­trol, the brow­ser add-on can be reinstal­led or reac­ti­va­ted.

Fur­ther infor­ma­ti­on and the appli­ca­ble data pro­tec­tion pro­vi­si­ons of Goog­le can be found at www.google.de/intl/de/policies/privacy/ and at www.google.com/analytics/terms/de.html. Goog­le Ana­ly­tics is explai­ned in more detail under this link www.google.com/intl/de_de/analytics/.

14. Data pro­tec­tion pro­vi­si­ons on the use and appli­ca­ti­on of Goog­le AdWords

The con­trol­ler has inte­gra­ted Goog­le AdWords on this web­site. Goog­le AdWords is an inter­net adver­ti­sing ser­vice that allows adver­ti­sers to place ads in Google’s search engi­ne results as well as in the Goog­le adver­ti­sing net­work. Goog­le AdWords allows an adver­ti­ser to spe­ci­fy cer­tain key­words in advan­ce, by means of which an ad is dis­play­ed in Google’s search engi­ne results exclu­si­ve­ly when the user retrie­ves a key­word-rele­vant search result with the search engi­ne. In the Goog­le adver­ti­sing net­work, the ads are dis­tri­bu­ted on topic-rele­vant web­sites by means of an auto­ma­tic algo­rithm and in com­pli­ance with the pre­vious­ly defi­ned key­words.

The com­pa­ny ope­ra­ting the Goog­le AdWords ser­vices is Goog­le Ire­land Limi­t­ed, Gor­don House, Bar­row Street, Dub­lin, D04 E5W5, Ire­land.

The pur­po­se of Goog­le AdWords is to adver­ti­se our web­site by dis­play­ing inte­rest-rele­vant adver­ti­sing on the web­sites of third-par­ty com­pa­nies and in the search engi­ne results of the Goog­le search engi­ne and to dis­play third-par­ty adver­ti­sing on our web­site.

If a data sub­ject acces­ses our web­site via a Goog­le adver­ti­se­ment, a so-cal­led con­ver­si­on coo­kie will be stored by Goog­le on the data subject’s infor­ma­ti­on tech­no­lo­gy sys­tem. What coo­kies are has alre­a­dy been explai­ned abo­ve. A con­ver­si­on coo­kie loses its vali­di­ty after thir­ty days and does not ser­ve to iden­ti­fy the data sub­ject. The con­ver­si­on coo­kie is used to track whe­ther cer­tain sub-pages, for exam­p­le the shop­ping bas­ket of an online shop sys­tem, have been cal­led up on our web­site, pro­vi­ded the coo­kie has not yet expi­red. The con­ver­si­on coo­kie enables both us and Goog­le to track whe­ther a data sub­ject who has acces­sed our web­site via an AdWords ad has gene­ra­ted a tur­no­ver, i.e. has com­ple­ted or can­cel­led a purcha­se of goods.

The data and infor­ma­ti­on coll­ec­ted through the use of the con­ver­si­on coo­kie are used by Goog­le to com­pi­le visit sta­tis­tics for our web­site. The­se visit sta­tis­tics are in turn used by us to deter­mi­ne the total num­ber of users who were refer­red to us via AdWords ads, i.e. to deter­mi­ne the suc­cess or fail­ure of the respec­ti­ve AdWords ad and to opti­mi­se our AdWords ads for the future. Neither our com­pa­ny nor other adver­ti­sers of Goog­le AdWords recei­ve infor­ma­ti­on from Goog­le by means of which the data sub­ject could be iden­ti­fied.

The data and infor­ma­ti­on coll­ec­ted through the use of the con­ver­si­on coo­kie are used by Goog­le to crea­te visit sta­tis­tics for our web­site. The­se visit sta­tis­tics are in turn used by us to deter­mi­ne the total num­ber of users who were refer­red to us via AdWords ads, i.e. to deter­mi­ne the suc­cess or fail­ure of the respec­ti­ve AdWords ad and to opti­mi­se our AdWords ads for the future. Neither our com­pa­ny nor other adver­ti­sers of Goog­le AdWords recei­ve infor­ma­ti­on from Goog­le by means of which the data sub­ject could be iden­ti­fied.

By means of the con­ver­si­on coo­kie, per­so­nal infor­ma­ti­on, such as the web­sites visi­ted by the data sub­ject, is stored. Each time the data sub­ject visits our web­site, per­so­nal data, inclu­ding the IP address of the inter­net con­nec­tion used by the data sub­ject, is trans­mit­ted to Goog­le in the United Sta­tes of Ame­ri­ca. This per­so­nal data is stored by Goog­le in the United Sta­tes of Ame­ri­ca. Goog­le may share this per­so­nal data coll­ec­ted via the tech­ni­cal pro­cess with third par­ties.

The data sub­ject can pre­vent the set­ting of coo­kies by our web­site at any time by means of an appro­pria­te set­ting of the Inter­net brow­ser used, as alre­a­dy descri­bed abo­ve, and thus per­ma­nent­ly object to the set­ting of coo­kies. Such a set­ting of the inter­net brow­ser used would also pre­vent Goog­le from set­ting a con­ver­si­on coo­kie on the infor­ma­ti­on tech­no­lo­gy sys­tem of the data sub­ject. In addi­ti­on, a coo­kie alre­a­dy set by Goog­le AdWords can be dele­ted at any time via the inter­net brow­ser or other soft­ware pro­gram­mes.

Fur­ther­mo­re, the data sub­ject has the opti­on to object to inte­rest-based adver­ti­sing by Goog­le. To do this, the data sub­ject must call up the link www.google.de/settings/ads from any of the inter­net brow­sers he or she uses and make the desi­red set­tings the­re.

Fur­ther infor­ma­ti­on and the appli­ca­ble data pro­tec­tion pro­vi­si­ons of Goog­le can be found at www.google.de/intl/de/policies/privacy/.

15. Data pro­tec­tion pro­vi­si­ons on the use and appli­ca­ti­on of Lin­ke­dIn

The con­trol­ler has inte­gra­ted com­pon­ents of the Lin­ke­dIn Cor­po­ra­ti­on on this web­site. Lin­ke­dIn is an Inter­net-based social net­work that allows users to con­nect with exis­ting busi­ness cont­acts and to make new busi­ness cont­acts. Over 400 mil­li­on regis­tered peo­p­le use Lin­ke­dIn in more than 200 count­ries. This makes Lin­ke­dIn curr­ent­ly the lar­gest plat­form for busi­ness cont­acts and one of the most visi­ted web­sites in the world.

The ope­ra­ting com­pa­ny of Lin­ke­dIn is Lin­ke­dIn Cor­po­ra­ti­on, 2029 Stier­lin Court Moun­tain View, CA 94043, USA. For data pro­tec­tion issues out­side the USA, Lin­ke­dIn Ire­land, Pri­va­cy Poli­cy Issues, Wil­ton Pla­za, Wil­ton Place, Dub­lin 2, Ire­land, is respon­si­ble.

With each indi­vi­du­al call-up of our web­site that is equip­ped with a Lin­ke­dIn com­po­nent (Lin­ke­dIn plug-in), this com­po­nent cau­ses the brow­ser used by the data sub­ject to down­load a cor­re­spon­ding repre­sen­ta­ti­on of the com­po­nent from Lin­ke­dIn. Fur­ther infor­ma­ti­on on Lin­ke­dIn plug-ins can be found at developer.linkedin.com/plugins. Within the scope of this tech­ni­cal pro­ce­du­re, Lin­ke­dIn recei­ves know­ledge of which spe­ci­fic sub-page of our web­site is visi­ted by the data sub­ject.

If the data sub­ject is log­ged in to Lin­ke­dIn at the same time, Lin­ke­dIn reco­g­ni­s­es which spe­ci­fic sub-page of our web­site the data sub­ject is visi­ting with each call-up of our web­site by the data sub­ject and for the enti­re dura­ti­on of the respec­ti­ve stay on our web­site. This infor­ma­ti­on is coll­ec­ted by the Lin­ke­dIn com­po­nent and assi­gned by Lin­ke­dIn to the respec­ti­ve Lin­ke­dIn account of the data sub­ject. If the data sub­ject acti­va­tes a Lin­ke­dIn but­ton inte­gra­ted on our web­site, Lin­ke­dIn assigns this infor­ma­ti­on to the per­so­nal Lin­ke­dIn user account of the data sub­ject and stores this per­so­nal data.

Lin­ke­dIn always recei­ves infor­ma­ti­on via the Lin­ke­dIn com­po­nent that the data sub­ject has visi­ted our web­site if the data sub­ject is simul­ta­neous­ly log­ged into Lin­ke­dIn at the time of cal­ling up our web­site; this takes place regard­less of whe­ther the data sub­ject clicks on the Lin­ke­dIn com­po­nent or not. If the data sub­ject does not want this infor­ma­ti­on to be trans­mit­ted to Lin­ke­dIn, he or she can pre­vent the trans­mis­si­on by log­ging out of his or her Lin­ke­dIn account befo­re acces­sing our web­site.

Lin­ke­dIn offers the abili­ty to unsub­scri­be from email mes­sa­ges, SMS mes­sa­ges and tar­ge­ted ads, as well as mana­ge ad set­tings at www.linkedin.com/psettings/guest-controls. Lin­ke­dIn also uses part­ners such as Quant­cast, Goog­le Ana­ly­tics, Blue­Kai, Dou­ble­Click, Niel­sen, Comscore, Elo­qua and Lota­me, which may set coo­kies. Such coo­kies can be rejec­ted at www.linkedin.com/legal/cookie-policy. LinkedIn’s appli­ca­ble pri­va­cy poli­cy is available at www.linkedin.com/legal/privacy-policy. LinkedIn’s coo­kie poli­cy is available at www.linkedin.com/legal/cookie-policy.

16. Data pro­tec­tion pro­vi­si­ons on the use and appli­ca­ti­on of Xing

The con­trol­ler has inte­gra­ted com­pon­ents of Xing on this web­site. Xing is an Inter­net-based social net­work that allows users to con­nect with exis­ting busi­ness cont­acts and to make new busi­ness cont­acts. Indi­vi­du­al users can crea­te a per­so­nal pro­fi­le of them­sel­ves on Xing. Com­pa­nies can, for exam­p­le, crea­te com­pa­ny pro­files or publish job offers on Xing.

The ope­ra­ting com­pa­ny of Xing is XING SE, Damm­tor­stra­ße 30, 20354 Ham­burg, Ger­ma­ny.

Each time one of the indi­vi­du­al pages of this web­site ope­ra­ted by the con­trol­ler is cal­led up and on which a Xing com­po­nent (Xing plug-in) has been inte­gra­ted, the inter­net brow­ser on the infor­ma­ti­on tech­no­lo­gy sys­tem of the data sub­ject is auto­ma­ti­cal­ly prompt­ed by the respec­ti­ve Xing com­po­nent to down­load a repre­sen­ta­ti­on of the cor­re­spon­ding Xing com­po­nent from Xing. Fur­ther infor­ma­ti­on on the Xing plug-ins can be found at dev.xing.com/plugins. Within the scope of this tech­ni­cal pro­ce­du­re, Xing recei­ves infor­ma­ti­on about which spe­ci­fic sub-page of our web­site is visi­ted by the data sub­ject.

If the data sub­ject is log­ged in to Xing at the same time, Xing reco­g­ni­s­es which spe­ci­fic sub-page of our web­site the data sub­ject is visi­ting each time the data sub­ject calls up our web­site and for the enti­re dura­ti­on of the respec­ti­ve stay on our web­site. This infor­ma­ti­on is coll­ec­ted by the Xing com­po­nent and assi­gned by Xing to the respec­ti­ve Xing account of the data sub­ject. If the data sub­ject acti­va­tes one of the Xing but­tons inte­gra­ted on our web­site, for exam­p­le the “Share” but­ton, Xing assigns this infor­ma­ti­on to the per­so­nal Xing user account of the data sub­ject and stores this per­so­nal data.

Xing always recei­ves infor­ma­ti­on via the Xing com­po­nent that the data sub­ject has visi­ted our web­site if the data sub­ject is simul­ta­neous­ly log­ged into Xing at the time of cal­ling up our web­site; this takes place regard­less of whe­ther the data sub­ject clicks on the Xing com­po­nent or not. If the data sub­ject does not want this infor­ma­ti­on to be trans­mit­ted to Xing, he or she can pre­vent the trans­mis­si­on by log­ging out of his or her Xing account befo­re acces­sing our web­site.

The data pro­tec­tion pro­vi­si­ons published by Xing, which can be acces­sed at www.xing.com/privacy, pro­vi­de infor­ma­ti­on on the coll­ec­tion, pro­ces­sing and use of per­so­nal data by Xing. Fur­ther­mo­re, Xing has published data pro­tec­tion infor­ma­ti­on for the XING Share but­ton at www.xing.com/app/share.

17. Data pro­tec­tion pro­vi­si­ons on the use and appli­ca­ti­on of You­Tube

The con­trol­ler has inte­gra­ted You­Tube com­pon­ents on this web­site. You­Tube is an Inter­net video por­tal that allows video publishers to post video clips free of char­ge and other users to view, rate and com­ment on them, also free of char­ge. You­Tube allows the publi­ca­ti­on of all kinds of vide­os, which is why com­ple­te film and tele­vi­si­on pro­gram­mes, but also music vide­os, trai­lers or vide­os made by users them­sel­ves can be acces­sed via the Inter­net por­tal.

The ope­ra­ting com­pa­ny of You­Tube is Goog­le Ire­land Limi­t­ed, Gor­don House, Bar­row Street, Dub­lin, D04 E5W5, Ire­land.

Each time one of the indi­vi­du­al pages of this web­site ope­ra­ted by the data con­trol­ler is cal­led up and on which a You­Tube com­po­nent (You­Tube video) has been inte­gra­ted, the inter­net brow­ser on the infor­ma­ti­on tech­no­lo­gy sys­tem of the data sub­ject is auto­ma­ti­cal­ly cau­sed by the respec­ti­ve You­Tube com­po­nent to down­load a repre­sen­ta­ti­on of the cor­re­spon­ding You­Tube com­po­nent from You­Tube. Fur­ther infor­ma­ti­on on You­Tube can be found at www.youtube.com/yt/about/de/. Within the scope of this tech­ni­cal pro­ce­du­re, You­Tube and Goog­le recei­ve infor­ma­ti­on about which spe­ci­fic sub-page of our web­site is visi­ted by the data sub­ject.

If the data sub­ject is log­ged into You­Tube at the same time, You­Tube reco­g­ni­s­es which spe­ci­fic sub-page of our web­site the data sub­ject is visi­ting when a sub-page con­tai­ning a You­Tube video is cal­led up. This infor­ma­ti­on is coll­ec­ted by You­Tube and Goog­le and assi­gned to the respec­ti­ve You­Tube account of the data sub­ject.

You­Tube and Goog­le always recei­ve infor­ma­ti­on via the You­Tube com­po­nent that the data sub­ject has visi­ted our web­site if the data sub­ject is log­ged into You­Tube at the same time as cal­ling up our web­site; this takes place regard­less of whe­ther the data sub­ject clicks on a You­Tube video or not. If the data sub­ject does not want this infor­ma­ti­on to be trans­mit­ted to You­Tube and Goog­le, he or she can pre­vent the trans­mis­si­on by log­ging out of his or her You­Tube account befo­re acces­sing our web­site.

The data pro­tec­tion pro­vi­si­ons published by You­Tube, which can be acces­sed at www.google.de/intl/de/policies/privacy/, pro­vi­de infor­ma­ti­on on the coll­ec­tion, pro­ces­sing and use of per­so­nal data by You­Tube and Goog­le.

18. Legal basis for pro­ces­sing

Artic­le 6 I lit. a DS-GVO ser­ves as the legal basis for our com­pa­ny for pro­ces­sing ope­ra­ti­ons in which we obtain con­sent for a spe­ci­fic pro­ces­sing pur­po­se. If the pro­ces­sing of per­so­nal data is neces­sa­ry for the per­for­mance of a con­tract to which the data sub­ject is a par­ty, as is the case, for exam­p­le, with pro­ces­sing ope­ra­ti­ons that are neces­sa­ry for the deli­very of goods or the pro­vi­si­on of ano­ther ser­vice or con­side­ra­ti­on, the pro­ces­sing is based on Artic­le 6 I lit. b DS-GVO. The same appli­es to pro­ces­sing ope­ra­ti­ons that are neces­sa­ry for the imple­men­ta­ti­on of pre-con­trac­tu­al mea­su­res, for exam­p­le in the case of enqui­ries about our pro­ducts or ser­vices. If our com­pa­ny is sub­ject to a legal obli­ga­ti­on by which the pro­ces­sing of per­so­nal data beco­mes neces­sa­ry, such as for the ful­film­ent of tax obli­ga­ti­ons, the pro­ces­sing is based on Art. 6 I lit. c DS-GVO. In rare cases, the pro­ces­sing of per­so­nal data might beco­me neces­sa­ry in order to pro­tect the vital inte­rests of the data sub­ject or ano­ther natu­ral per­son. This would be the case, for exam­p­le, if a visi­tor were to be inju­red on our pre­mi­ses and as a result his or her name, age, health insu­rance details or other vital infor­ma­ti­on had to be pas­sed on to a doc­tor, hos­pi­tal or other third par­ty. Then the pro­ces­sing would be based on Art. 6 I lit. d DS-GVO. Final­ly, pro­ces­sing ope­ra­ti­ons could be based on Art. 6 I lit. f DS-GVO. Pro­ces­sing ope­ra­ti­ons which are not cover­ed by any of the afo­re­men­tio­ned legal bases are based on this legal basis if the pro­ces­sing is neces­sa­ry to pro­tect a legi­ti­ma­te inte­rest of our com­pa­ny or a third par­ty, pro­vi­ded that the inte­rests, fun­da­men­tal rights and free­doms of the data sub­ject are not over­ridden. Such pro­ces­sing ope­ra­ti­ons are per­mit­ted to us in par­ti­cu­lar becau­se they were spe­ci­fi­cal­ly men­tio­ned by the Euro­pean legis­la­tor. In this respect, it took the view that a legi­ti­ma­te inte­rest could be assu­med if the data sub­ject is a cus­to­mer of the con­trol­ler (reci­tal 47, sen­tence 2 of the GDPR).

19. Legi­ti­ma­te inte­rests in the pro­ces­sing pur­sued by the con­trol­ler or a third par­ty.

Whe­re the pro­ces­sing of per­so­nal data is based on Artic­le 6 I lit. f GDPR, our legi­ti­ma­te inte­rest is the con­duct of our busi­ness for the bene­fit of the wel­fa­re of all our employees and our share­hol­ders.

20. Dura­ti­on for which the per­so­nal data is stored

The cri­ter­ion for the dura­ti­on of the sto­rage of per­so­nal data is the respec­ti­ve sta­tu­to­ry reten­ti­on peri­od. After the expiry of the peri­od, the cor­re­spon­ding data is rou­ti­ne­ly dele­ted, pro­vi­ded that it is no lon­ger requi­red for the ful­film­ent of the con­tract or the initia­ti­on of the con­tract.

21. Legal or con­trac­tu­al pro­vi­si­ons for the pro­vi­si­on of per­so­nal data; neces­si­ty for the con­clu­si­on of the con­tract; obli­ga­ti­on of the data sub­ject to pro­vi­de the per­so­nal data; pos­si­ble con­se­quen­ces of non-pro­vi­si­on

We inform you that the pro­vi­si­on of per­so­nal data is some­ti­mes requi­red by law (e.g. tax regu­la­ti­ons) or may also result from con­trac­tu­al regu­la­ti­ons (e.g. infor­ma­ti­on on the con­trac­tu­al part­ner). Some­ti­mes, in order to con­clude a con­tract, it may be neces­sa­ry for a data sub­ject to pro­vi­de us with per­so­nal data that must sub­se­quent­ly be pro­ces­sed by us. For exam­p­le, the data sub­ject is obli­ged to pro­vi­de us with per­so­nal data if our com­pa­ny con­cludes a con­tract with him or her. Fail­ure to pro­vi­de the per­so­nal data would mean that the con­tract with the data sub­ject could not be con­cluded. Befo­re pro­vi­ding per­so­nal data by the data sub­ject, the data sub­ject must cont­act one of our employees. Our employee will explain to the data sub­ject on a case-by-case basis whe­ther the pro­vi­si­on of the per­so­nal data is requi­red by law or by con­tract or is neces­sa­ry for the con­clu­si­on of the con­tract, whe­ther the­re is an obli­ga­ti­on to pro­vi­de the per­so­nal data and what the con­se­quen­ces of not pro­vi­ding the per­so­nal data would be. 22.

22. exis­tence of auto­ma­ted decis­i­on-making

As a respon­si­ble com­pa­ny, we do not use auto­ma­ted decis­i­on-making or pro­fil­ing.

This data pro­tec­tion decla­ra­ti­on was crea­ted by the data pro­tec­tion decla­ra­ti­on gene­ra­tor of the DGD Deut­sche Gesell­schaft für Daten­schutz GmbH, which acts as the Exter­nal Data Pro­tec­tion Offi­cer Munich, in coope­ra­ti­on with the lawy­er for data pro­tec­tion law Chris­ti­an Sol­me­cke.