Note on the responsible body:
Am Nesseufer 14
We attach particular importance to the protection of your personal data. Your personal data will be processed in accordance with data protection regulations, in particular the European Data Protection Basic Regulation (EU DS-GVO) and the Federal Data Protection Act (BDSG-neu).
General information on data processing
The information below gives an overview of the type, extent and purpose of collection, processing and disclosure of personal data, as well as the security precautions taken to protect this data.
Personal data refers to individual information about the personal or material circumstances of a specific or identifiable natural person, such as name, address, telephone number, date of birth, as well as your email and IP address.
Legal basis for the processing of personal data
- Where we obtain the consent of the data subject for processing operations involving personal data, Art. 6 (1) lit. a EU DS-GVO serves as the legal basis. You can revoke this processing at any time in the future in accordance with Article 7 (3) EU DS-GVO.
- Article 6 (1) lit. b EU DS-GVO serves as the legal basis for the processing of personal data that is necessary for the performance of a contract or for the implementation of pre-contractual measures.
- Insofar as the processing of personal data is necessary for the fulfilment of a legal obligation to which our company is subject, Art. 6 (1) lit. c EU DS-GVO serves as the legal basis.
- If the processing is necessary to safeguard a legitimate interest of our company or of a third party and does not outweigh the interests, fundamental rights and freedoms of the data subject, Article 6 (1) lit. f EU DS-GVO serves as the legal basis for the processing. In this case, you have a right of objection under Article 21 EU DS-GVO.
Data deletion and storage period
Personal data will be deleted as soon as the purpose for which it was stored no longer applies. Furthermore, data may be stored if this was provided for by legally prescribed storage obligations to which our company is subject.
Provision of the Webseite
Use of hosting service providers
Our website is hosted on servers of a hosting service provider located in the EU on the basis of an order processing according to Art. 28 EU DS-GVO. Within the scope of its services, the hosting service provider may have access to personal data of our users, in particular to technical data that is generated in the course of technical communication between you and our website (e.g. server log files). He may not use these for his own purposes. The use of a hosting service provider is based on our legitimate interests in the provision of infrastructure and platform services, computing capacity, e-mail dispatch and security services in accordance with Art. 6 Para. 1 letter f EU DS-GVO.
Server log files
When you visit our website or use its services, the device with which you access the site automatically transmits log data (connection data) to our server. The corresponding information consists of:
- Type and version of the browser you are using,
- Type and version of the operating system you use,
- Referrer URL of the page from which you reached our website,
- Date and time of access to our website,
- Name of the subpages you have called up,
- IP address of your computer system,
- Amount of data transferred in each case.
The collected data is used exclusively for statistical evaluations for the purpose of operation, security and optimization of the offer. For security reasons, however, we reserve the right to subsequently check the log data if there is a justified suspicion of illegal use based on concrete evidence. The data will not be stored longer than necessary for this purpose. This collection is based on our legitimate interests in accordance with Art. 6 para. 1 lit. f EU DS-GVO.
Cookies are small text files that your browser automatically creates and stores on your device when you visit our website. Cookies do not damage your computer and do not contain viruses. Most of the cookies we use are deleted after the browser session ends (so-called session cookies). Other cookies remain on your computer and enable us to recognize your computer during your next visit (so-called permanent or session-spanning cookies). Thanks to these files, it is possible, for example, that you will be shown information on the site that is specifically tailored to your interests.
Further information can be found in the DataReporter data protection declaration at https://www.datareporter.eu/de/privacystatement.html Please feel free to send your enquiries about this service to email@example.com.
Security of your data
We use technical and organizational security measures to protect the data you provide us from accidental or intentional manipulation, loss, destruction or access by unauthorized persons. We therefore use SSL encryption for the transmission of confidential content, such as requests that you send to us as the site operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line. If the SSL encryption is activated, the data that you send to us cannot be read by third parties. Our security measures are developed further in accordance with the state of the art.
If you contact us (e.g. via contact form, e-mail, telephone, social media), your personal data will be stored and processed by us for the purpose of processing your enquiry and, if applicable, any related follow-up questions in accordance with Art. 6 Para. 1 letter b EU DS-GVO (in the context of pre-/contractual measures) or in accordance with Art. 6 Para. 1 letter f EU DS-GVO (general enquiries). We will not pass on this data without your respective consent.
The data provided by you will remain with us until you request us to delete it, object to its storage or until the purpose for which it was stored ceases to apply (i.e. after processing of your enquiry has been completed), unless this is contrary to any statutory storage obligations.
Dealing with business cards
In the context of accepting business cards, your personal data will be stored and processed by us for the purpose of contacting you at a later date in accordance with Art. 6 para. 1 lit. b EU DS-GVO (in the context of pre-/contractual measures) or in accordance with Art. 6 para. 1 lit. f EU DS-GVO (general communication). We will not pass on this data without your consent.
The data provided by you on your business card will remain with us until you request us to delete it or object to its storage, unless this is contrary to any legal storage obligations.
Dealing with photo and video recordings
If you have given us your consent to create and publish photographs or video recordings of yourself, this is done for the purpose of representing the company. The publication refers to our corporate communications in the press, on our website and on our company's own social media pages as well as in print media (flyers, brochures, etc.). The information is passed on within the company, to commissioned printing service providers and advertising agencies as well as publication on the Internet. No additional forwarding takes place without your consent. Your data will be deleted after revocation of your consent.
In accordance with Art. 7 Para. 3 EU DS-GVO, you have the possibility at any time to revoke your consent in writing without any disadvantageous consequences for you and with effect for the future. Please contact the central data protection contact address given below in this regard.
Registration for the "GoToWebinar" webinar
If you register for a webinar on our website, personal data will be collected. This includes the name, address, company, industry, telephone number and e-mail address as contact and communication data.
Your data will be used for the registration process, interest analysis and communication regarding the webinar and other topics. For this purpose we use "GoToWebinar", a service provided by LogMeIn Ireland Limited, Bloodstone Building Block C, 70 Sir John Rogerson's Quay, Dublin 2, Ireland. LogMeIn processes your information on our behalf. We will only share your information with third parties if they participate in the webinar. The processing of your personal data is carried out on the basis of the execution of the contract (according to article 6 paragraph 1 lit. b EU DS-GVO). This data will be deleted in accordance with the statutory storage obligations.
If you register on our website in order to order goods, services and information in our online portal, personal data is collected. Registration enables access to services and contents that are only available to registered users. If necessary, registered users have the possibility to change or delete the data provided during registration at any time. Your data may be passed on to shipping and payment service providers commissioned by us to process your order. Any further transfer to third parties will not take place. The processing of your personal data is carried out on the basis of contract processing (in accordance with Art. 6 Par. 1 lit. b EU DS-GVO). These data are deleted in accordance with the statutory storage obligations.
Dialogue marketing for existing customers
As an existing customer you will receive regular information about our software products and services. This processing is based on our legitimate interest in informing our customers about current topics and offers of our company. You can revoke the use of your data for sending information at any time without giving reasons. You will find a link for revocation at the end of each newsletter.
The data transmitted in the context of the application procedure will be used for the purposes of application processing. The processing is based on Art. 88 EU DS-GVO in conjunction with § 26 BDSG-neu. During the application process, employees of the Human Resources Department and the position named in the advertisement will have access to the data you have provided. The parties involved have been expressly obliged to maintain confidentiality. Your data will be treated as strictly confidential and will not be passed on to third parties without your respective consent. Your application data will be deleted 180 days after the position has been filled. If you are also interested in positions advertised in the future, we need your written consent to store your application documents for a longer period of time. You can revoke this consent at any time for the future in accordance with Art. 7 Para. 3 EU DS-GVO. To do so, please send an e-mail with a corresponding note to the contact address given below.
If special categories of personal data within the meaning of Art. 9 (1) EU DS-GVO are voluntarily communicated as part of the application procedure, they will also be processed in accordance with Art. 9 (2) b EU DS-GVO.
The analysis measures listed below and used by us are carried out on the basis of Art. 6 para. 1 lit. a EU DS-GVO (consent). With the use of these analysis measures, we want to ensure that our website is designed to meet your needs and is continuously optimised. By means of the analysis tools we record the use of our website pseudonymously and evaluate it for the purpose of optimising our offer.
You can withdraw your consent at any time with effect for the future.
The controller uses Adobe Analytics on the website, a web analytics service provided by Adobe Systems Software Ireland Limited, 4-6 Riverwalk, Citywest Business Campus, Dublin 24, Ireland (hereinafter: "Adobe"). In this context, pseudonymised usage profiles are created and cookies are used.
The information generated by the cookie about your use of our website will be transmitted to and stored by Adobe on servers in the United Kingdom. This information may also be transferred to third parties if this is required by law or if third parties process this data on our behalf. Under no circumstances will your IP address be merged with other Adobe data. The IP addresses are anonymised so that an allocation is not possible (IP masking).
If you log in to the website with access data, the controller combines the information collected via Adobe Analytics about your use of our website with other data relating to you that the controller has stored in its customer systems in order to be able to serve you optimised advertising content tailored to your needs, which is also in the legitimate interests of the controller.
You can allow the collection of the data generated by the cookie and related to your use of the website (incl. your IP address) as well as the processing of this data by Adobe by consenting to the collection by Adobe Analytics (opt-in cookie). You can revoke your consent once given at any time under the following link: https://www.adobe.com/de/privacy/opt-out.html
Further information on data protection in connection with Adobe Analytics can be found here.
The controller uses Adobe Target on the website, a web analytics service provided by Adobe Systems Software Ireland Limited, 4-6 Riverwalk, Citywest Business Campus, Dublin 24, Ireland (hereinafter: "Adobe"). In this context, pseudonymised usage profiles are created and cookies are used to enable tests of our site and to be able to offer you the appropriate content when you visit our website again.
The information generated by the cookie about your use of our website will be transmitted to and stored by Adobe on servers in London, England. This information may also be transferred to third parties if this is required by law or if third parties process this data on our behalf. Under no circumstances will your IP address be merged with other Adobe data.
You can allow the collection of data generated by the cookie and related to your use of the website by consenting to the collection by Adobe Target. Once you have given your consent, you can revoke it at any time using the following link: HTTPS://WWW.ADOBE.COM/DE/PRIVACY/OPT-OUT.HTML
Further information on data protection in connection with Adobe Target can be found here.
Third Party Content and Services
On the basis of our legitimate interest in accordance with Art. 6 Para. 1 lit. f EU DS-GVO, content, services and performances of other providers that supplement our offer are integrated within our online offer. With the use of the services listed below, we want to ensure that our website is designed to meet your needs and is continuously optimised.
Links to third party websites
We obtain your consent to process personal data on behalf of Albacross Nordic AB ("Albacross"). The information collected by cookies on your device, which may be referred to as personal data, is processed by Albacross, a company that provides lead identification and ad targeting through its offices in Stockholm and Krakow. Please see below for full contact details.
Through the processing of personal data, Albacross may improve a service provided by us and our website (e.g. lead generation service) by adding data to the database of companies.
You can withdraw your consent to this processing at any time. Please address your withdrawal either to us or directly to Albacross: Albacross Nordic AB, Company reg. no 556942-7338, Kungsgatan 26, 111 35 Stockholm, Sweden
Personal data is processed when you visit this website. Processed data categories: data for creating usage statistics. Purpose of processing: Anonymization and creation of statistics and analysis of user behavior.
The legal basis for processing:Your consent according to Art. 6 (1) a GDPR. Data is transmitted: to the data controller Microsoft Ireland Operations Ltd., One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland. The legal basis for the data transfer to Microsoft Ireland Operations Ltd. is Your consent according to Art. 6 (1) a GDPR. This may also mean a transfer of personal data to a country outside the European Union.
We maintain publicly accessible online presences in social networks to communicate with the customers and interested parties active there and to present our services.
The processing of users' personal data is based on our legitimate interest in effective information of users and communication with users in accordance with Art. 6 para. 1 lit. f. EU DS-GVO. If the users are asked by the respective platform providers for their consent to data processing or if the user voluntarily sends information to our online presences, the legal basis for processing is Art. 6 Para. 1 lit. a EU DS-GVO in conjunction with Art. 7 EU DS-GVO. If the information contains contractually relevant content, the legal basis is Art. 6 Paragraph 1 lit. b EU DS-GVO.
For a detailed presentation of the respective processing and the possibilities of objection (opt-out), we refer to the following linked information provided by the providers.
Also in the case of requests for information and the assertion of user rights, we would like to point out that these can most effectively be asserted with the providers. Only the providers have access to the data of the users and can directly take appropriate measures and provide information. Should you nevertheless require assistance, you can contact us.
Facebook Fan Page
When you interact with our Facebook fan page (make a comment, link to a post or send us a message) your data is stored by us.
The operation of a fan page is a joint responsibility under data protection law according to Art. 26 EU DS-GVO between Facebook Ireland Ltd. and our company. Accordingly, we have concluded an agreement with Facebook Ireland, in which the respective obligations under the EU DS-GVO are regulated: HTTPS://WWW.FACEBOOK.COM/LEGAL/TERMS/PAGE_CONTROLLER_ADDENDUM.
The legal basis for the processing of the data are:
- If you "link" to a contribution from us, comment on it or upload content to our Facebook page, Art. 6 para. 1 lit. a EU DS-GVO serves as the legal basis. You can revoke this processing for the future at any time in accordance with Art. 7 para. 3 EU DS-GVO by deleting the comment or content.
- If you send us an enquiry relevant to the contract, Art. 6 (1) lit. b EU DS-GVO serves as the legal basis.
Facebook provides the fan page operators with statistics and insights into the types of actions of our fan page visitors ("page insights"). We have no influence on Facebook collecting this data. According to Facebook, this data is only provided to us in anonymised form, so that the user cannot be identified from the information.
Personal data will be deleted as soon as the purpose of storage no longer applies. Storage may also take place if this was provided for by legally prescribed storage obligations to which our company is subject.
Our online offer is basically aimed at persons of full age. Personal information of persons who have not yet reached the age of 16 may only be made available to us if the express consent of a parent or guardian has been obtained (Art. 8 EU DS-GVO). Processing without the consent of a parent or guardian is not permitted. We therefore reserve the right to delete all data relating to minors, unless we have the consent of a parent or guardian.
Upon written request, we will inform you in accordance with Art. 15 EU DS-GVO and our legal obligation under Art. 12 EU DS-GVO whether and which of your personal data is processed or stored by us. Furthermore, you have the right to correct incorrect data in accordance with Art. 16 EU DS-GVO, data transferability in accordance with Art. 20 EU DS-GVO, blocking and deletion of your personal data in accordance with Art. 17 EU DS-GVO - provided there are no legal obligations to retain data - and the right to restrict processing in accordance with Art. 18 EU DS-GVO. You also have the right to contact the competent supervisory authority in accordance with Art. 77 EU DS-GVO.
You also have the right to object in accordance with Art. 21 EU DS-GVO.
Of course, you can revoke your consent for the future at any time in accordance with Art. 7 para. 3 EU DS-GVO. To do so, please contact us at the contact address given below.
If you have any questions regarding the processing of your personal data, you can contact our data protection officer, who is also available to you in the event of requests for information, suggestions or complaints.
Data protection officer of ORGADATA AG
Am Nesseufer 14
In order to ensure that our data protection declaration always complies with the current legal requirements, we reserve the right to make changes at any time. This also applies in the event that the data protection declaration has to be adapted due to new or revised services, for example new services.
Status: February 2023