Aydınlatma Metinleri

Reference to the responsible body:

ORGADATA AG
Am Nesseufer 14
26789 Leer

We attach particular importance to the protection of your personal data. Your personal data will be processed in accordance with the data protection regulations, in particular the European General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (FDPA).

General information on data processing

The following information provides an overview of the type, scope and purpose of the collection, processing and transmission of personal data as well as the security measures used to protect this data.

Personal data are individual details about the personal or factual circumstances of an identified or identifiable natural person, such as your name, address, telephone number, date of birth, e-mail address and IP address.

Legal basis for the processing of personal data

• Insofar as we obtain the consent of the data subject for the processing of personal data, Art. 6 para. 1 lit. a GDPR serves as the legal basis. You can withdraw this processing at any time for the future in accordance with Art. 7 para. 3 GDPR.
• When processing personal data that is necessary for the fulfilment of a contract or for the implementation of pre-contractual measures, Art. 6 para. 1 lit. b GDPR serves as the legal basis.
• Insofar as the processing of personal data is necessary to fulfil a legal obligation to which our company is subject, Art. 6 para. 1 lit. c GDPR serves as the legal basis.
• If processing is necessary for the purposes of the legitimate interests pursued by our company or by a third party and such interests are not overridden by the interests or fundamental rights and freedoms of the data subject, the legal basis for processing is Article 6(1)(f) GDPR. In this case, you have a right to object in accordance with Art. 21 GDPR.

Data erasure and storage duration

Personal data will be deleted as soon as the purpose of storage no longer applies. Data may also be stored if this is provided for by statutory retention obligations to which our company is subject (e.g. retention periods of up to 10 years under accounting and tax law in accordance with the German Fiscal Code (AO) and German Commercial Code (HGB)).

Provision of the website

Use of hosting service providers

Our website is hosted on servers of a hosting service provider located in the EU on the basis of order processing in accordance with Art. 28 GDPR. As part of its services, the hosting service provider may have access to personal data of our users, in particular to technical data that is generated as part of the technical communication between you and our website (e.g. server log files). They may not use this data for their own purposes. The use of a hosting service provider is based on our legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR in the provision of infrastructure and platform services, computing capacity, e-mail dispatch and security services.

Server log files

When you visit our website or use its services, the device you use to access the site automatically transmits log data (connection data) to our server. The corresponding information consists of

• Type and version of the browser you are using,
• Type and version of the operating system you are using,
• Referrer URL of the page from which you accessed our website,
• Date and time of access to our website,
• Name of the subpages you accessed,
• IP address of your computer system,
• Amount of data transferred in each case.

The data collected is used exclusively for statistical evaluations for the purpose of the operation, security and optimisation of the website. For security reasons, however, we reserve the right to check the log data retrospectively if there is a justified suspicion of unlawful use based on concrete evidence. The data will not be stored for longer than necessary for this purpose. This collection is based on our legitimate interests in accordance with Art. 6 para. 1 lit. f GDPR.

Cookies

We use so-called cookies in some areas of the website in order to recognise visitor preferences and to be able to design the website in an optimal and attractive way. This facilitates navigation and a high degree of user-friendliness of the website. The processing by cookies represents a legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR / § 25 para. 2 TDDDG (optimisation and economic operation of our online offer). In addition, the legal basis is Art. 6 para. 1 lit. a GDPR or § 25 para. 1 TDDDG if we require your consent for the use of cookies (e.g. for marketing or analysis purposes).

Cookies are small text files that your browser automatically creates and that are stored on your end device when you visit our website. Cookies do not cause any damage to your computer and do not contain viruses. Most of the cookies we use are deleted again at the end of the browser session (so-called session cookies). Other cookies remain on your computer and enable us to recognise your computer on your next visit (so-called persistent or cross-session cookies). Thanks to these files, is able, for example, to display information on the site that is specifically tailored to your interests.

You can set your browser to inform you about the placement of cookies. This makes the use of cookies transparent for you. If you completely exclude the use of cookies, you may not be able to use individual functions of this website.

Usercentrics

We use the Usercentrics consent banner to obtain consent for the use of cookies and tools on our website in accordance with data protection regulations. This is a service provided by Usercentrics GmbH, Sendlinger Straße 7, 80331 Munich Germany ("Usercentrics"). 

You can find more information about this company at https://usercentrics.com/de/. The Consent Banner records and stores the decision of the respective user of our website. Our consent banner ensures that statistical and marketing cookies are only set if the user has expressly consented to their use. 

To this end, we store information on the extent to which the user has confirmed the use of cookies. The user's decision can be revoked at any time by accessing the cookie settings and managing the declaration of consent. Existing cookies are deleted after consent is revoked. A cookie is also set to store information about the status of the user's consent, which is indicated in the cookie details. In addition, the IP address of the respective user is transmitted to Usercentrics servers when this service is accessed. The IP address is neither stored nor associated with any other data of the user, it is only used for the correct execution of the services. The use of the above-mentioned data is therefore based on our legitimate interest in the legally compliant design of our website in accordance with Art. 6 para. 1 lit. f GDPR and Art. 6 para. 1 lit. c GDPR to comply with legal obligations and to provide evidence of the consent given.

Further information can be found in the Usercentrics privacy policy at https://usercentrics.com/de/datenschutzerklaerung/

Security of your data

We use technical and organisational security measures to adequately protect the data provided by you against accidental or intentional manipulation, loss, destruction or access by unauthorised persons. We therefore use SSL encryption for the transmission of confidential content, such as enquiries that you send to us as the site operator. You can recognise an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line. If SSL encryption is activated, the data you transmit to us cannot be read by third parties. Our security measures are developed in line with the state of the art.

Contacting us

If you contact us (e.g. via contact form, e-mail, telephone, social media), your personal data will be stored and processed by us for the purpose of processing the enquiry and any associated follow-up questions in accordance with Art. 6 para. 1 lit. b GDPR (in the context of pre-contractual/contractual measures) or in accordance with Art. 6 para. 1 lit. f GDPR (general enquiries). We will not pass on this data without your consent.

The data you provide will remain with us until you request us to delete it, object to its storage or the purpose for which it was stored no longer applies (i.e. after your enquiry has been processed), provided that there are no statutory retention obligations to the contrary.

Pipedrive Webforms

If you contact us (e.g. via contact form, email, telephone, social media), your personal data will be processed for the purpose of processing the enquiry and any associated follow-up questions. In order to process and respond to your enquiries and messages as quickly as possible, we have connected our contact form on the website to our CRM service "Pipedrive". The provider is Pipedrive OÜ, Mustamäe tee 3a, 10615 Tallinn, Estonia. We use the Pipedrive CRM system on the basis of our legitimate interests (efficient and fast processing of user enquiries, existing customer management, new customer business). If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information in the user's terminal device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time. We have concluded an order processing contract with Pipedrive in accordance with Art. 28 GDPR. Further information on data processing at Pipedrive can be found in Pipedrive's privacy policy: https://www.pipedrive.com/en/privacy .

Registration for the webinar "GoToWebinar"

If you register for a webinar on our website, personal data will be collected. This includes your name, address, company, sector, telephone number and email address as contact and communication data. Your data is processed exclusively for the purpose of handling the registration process. For this purpose, we use "GoToWebinar", a service of LogMeIn Ireland Limited, Bloodstone Building Block C, 70 Sir John Rogerson's Quay, Dublin 2, Ireland. LogMeIn processes your data on our behalf. Your data will not be passed on to third parties beyond this. The processing of your personal data is carried out on the basis of contract processing (pursuant to Art. 6 para. 1 lit. b GDPR). This data will be deleted in accordance with the statutory retention obligations. 

Registration form

If you register on our website in order to order goods, services and information in our online portal, personal data will be collected. Registration enables access to services and content that are only available to registered users. If required, registered users have the option of changing or deleting the data provided during registration at any time. Your data may be passed on to shipping and payment service providers commissioned by us to process the order process. Your data will not be passed on to third parties beyond this. The processing of your personal data is carried out on the basis of contract processing (in accordance with Art. 6 para. 1 lit. b GDPR). This data is deleted in accordance with the statutory retention obligations.

Dialogue marketing for existing customers

As an existing customer, you will regularly receive information about our software products and services. This processing is carried out on the basis of our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR in direct advertising or to inform our customers about current topics and offers from our company. You can object to the use of your data for sending information at any time without giving reasons in accordance with Art. 21 GDPR, without incurring any costs other than the transmission costs according to the basic tariffs. You will find a cancellation link at the end of each newsletter.

Applicant management

The data transmitted as part of the application process will be used for the purposes of application processing. The processing is carried out on the basis of Art. 6 para. 1 lit. c, c GDPR in conjunction with § 26 FDPA. As part of the application process, the data you provide will be accessed by employees of the HR department and the office named in the job advertisement. The parties involved have been expressly obliged to maintain confidentiality. Your data will be treated as strictly confidential and will not be passed on to third parties without your consent. Your application data will be deleted 180 days after the position has been filled. If you are also interested in future vacancies, we require your written consent to store your application documents for a longer period of time. You can revoke this consent at any time for the future in accordance with Art. 7 para. 3 GDPR. To do so, please send an email with a corresponding note to the contact address given below.

If special categories of personal data within the meaning of Art. 9 para. 1 GDPR are voluntarily communicated as part of the application process, their processing is also carried out in accordance with Art. 9 para. 2 lit. b GDPR.

Google Analytics

This website uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4 Ireland. Google Analytics uses so-called "cookies". These are technologies that are stored on your computer and enable your use of the website to be analysed.

We have activated the IP anonymisation function on this website. This means that your IP address will be truncated by Google within member states of the European Union or in other signatory states to the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. Google uses this information to analyse your use of the website, to compile reports on website activity and to provide us with other services relating to website and Internet use for. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de

You can find more information on how Google Analytics handles user data in Google's privacy policy. We have concluded a contract with Google for commissioned data processing and implement the strict requirements of the German data protection authorities when using Google Analytics.

Google Ads

Our website uses the online advertising programme "Google Ads". The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4 Ireland. Google Ads enables us to draw attention to our attractive offers with the help of advertising material on external websites. This allows us to determine how successful individual advertising measures are. For this purpose, Google stores a cookie in your browser when you visit Google services or websites in the Google advertising network.

These cookies enable Google to recognise your internet browser. If a user visits certain pages of an Ads customer's website and the cookie stored on their computer has not yet expired, Google and the customer can recognise that the user clicked on the ad and was redirected to this page. A different cookie is assigned to each Ads customer. Cookies can therefore not be tracked via the websites of Ads customers. We ourselves do not collect and process any personal data in the aforementioned advertising measures. We only receive statistical analyses from Google. These analyses enable us to recognise which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising material; in particular, we cannot identify users on the basis of this information.

The legal basis for this processing is Art. 6 para. 1 lit. a GDPR (consent). You can deactivate the use of cookies by Google and thus revoke the consent you have given us for the use of the Google Ads service by following the following link and downloading and installing the plug-in provided there: www.google.com/settings/ads/plugin.

Further information on Google Ads and Google's privacy policy can be found at:www.google.com/privacy/ads/ and on the legal basis for third country transfers: Data Privacy Framework (DPF); data processing conditions between controllers and standard contractual clauses for third country transfers of data: https://business.safety.google/adscontrollerterms .

Google Tag Manager

Google Tag Manager is used on our website. Google Tag Manager is a solution from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4 Ireland that allows us to manage website tags via an interface. The tool itself (which implements the tags) is a cookie-free domain that does not collect any personal data. The Google Tag Manager triggers other tags, which in turn may collect data. The Google Tag Manager does not access this data. If deactivation has been carried out by the user at domain or cookie level, this remains in place for all tracking tags that are implemented with Google Tag Manager. The tags used are named separately below and can be individually edited by you in the data protection settings, for example by deactivating cookies for these elements. Further information: https://www.google.com/policies/privacy/ .

Meta Pixel

This website uses the visitor action pixel from Meta to measure conversions. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. However, according to Meta, the data collected is also transferred to the USA and other third countries.

This allows the behaviour of site visitors to be tracked after they have been redirected to the provider's website by clicking on a Meta ad. This allows the effectiveness of the meta adverts to be evaluated for statistical and market research purposes and future advertising measures to be optimised.

The data collected is anonymous to us as the operator of this website; we cannot draw any conclusions about the identity of the users. However, the data is stored and processed by Meta so that a connection to the respective user profile is possible and Meta can use the data for its own advertising purposes in accordance with the Meta Data Usage Policy. This enables Meta to place adverts on Meta pages and outside Meta. This use of the data cannot be influenced by us as the website operator.

The use of Meta pixels is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in effective advertising measures, including social media. A corresponding consent is requested for the processing of your data (e.g. consent to the storage of cookies). This processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR; consent can be revoked at any time.

You can find further information on the protection of your privacy in Meta's privacy policy: https://de-de.facebook.com/about/privacy/

You can also deactivate the remarketing function "Custom Audiences" in the ad settings section at https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen or on the website of the European Interactive Digital Advertising Alliance: https://www.youronlinechoices.com/de/praferenzmanagement/ .

LinkedIn Insight Tag

This website uses functions of the LinkedIn Insight Tag conversion tracking technology. The provider is LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland. LinkedIn uses so-called "cookies". These are text files that are stored on your computer and enable personalised advertisements on LinkedIn. We also receive anonymous reports on the performance of the adverts and information on website interaction. The LinkedIn Insight Tag establishes a connection to the LinkedIn server, stores your data in encrypted form and anonymises it within seven days.

Please note that LinkedIn is also based in the USA and also processes user data in the USA. LinkedIn only transfers user data to countries for which the European Commission has issued an adequacy decision in accordance with Art. 45 GDPR or on the basis of suitable guarantees in accordance with Art. 46 GDPR (e.g. standard contractual clauses). LinkedIn also undertakes to comply with the European level of data protection in the USA by providing appropriate guarantees. You can find more information on this at: https://de.linkedin.com/legal/l/dpa and https://www.linkedin.com/legal/l/eu-sccs .

For more information on the collection and processing of your data using conversion tracking technology, please refer to LinkedIn's privacy policy: https://www.linkedin.com/legal/privacy-policy . You can find further setting options to protect your privacy or opt-out in your user account at: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out .

YouTube

Videos from the YouTube platform are integrated on our website. YouTube is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4 Ireland. When you give your consent in accordance with Art. 6 para. 1 lit. a GDPR or when you play the videos, YouTube stores information about visitors to the website. However, like most websites, YouTube also uses cookies to collect information about visitors to its website. YouTube uses these to collect video statistics, prevent fraud and improve user-friendliness, among other things. 

You can find more information on data protection at YouTube in their privacy policy at: https://policies.google.com/privacy?hl=de. There you will also find further information on your rights and setting options to protect your privacy.

Links to third-party websites

On the basis of our legitimate interest, it may happen that links to other providers that supplement our offer are integrated within this online offer. When accessing websites linked to from this website, you may again be asked for information such as your name, IP address, browser properties, etc. This privacy policy does not regulate the collection, disclosure or handling of personal data by third parties. In this context, please note the special data protection declarations of the individual third-party providers and service providers whose links we include on our website.

Social media

We maintain publicly accessible online presences in social networks to communicate with the customers and interested parties active there and to present our services.

We would like to point out that user data may be processed outside the European Union. Furthermore, user data is generally processed for market research and advertising purposes. To the best of our knowledge, the providers also use cookies that store your usage behaviour (also across different end devices). This allows targeted advertising to be displayed on our own platform and on third-party sites.

The processing of users' personal data is based on our legitimate interests in effective user information and communication with users in accordance with Art. 6 para. 1 lit. f. GDPR. GDPR. If the users are asked by the respective providers of the platforms for consent to data processing or if the user voluntarily sends information to our online presences, the legal basis for processing is Art. 6 para. 1 lit. a GDPR in conjunction with Art. 7 GDPR. If this information contains contractually relevant content, Art. 6 para. 1 lit. b GDPR serves as the legal basis.

For a detailed description of the respective processing and the possibilities of objection (opt-out), we refer to the following linked information from the providers.

In the case of requests for information and the assertion of user rights, we would also like to point out that these can be asserted most effectively with the providers. Only the providers have access to the user's data and can take appropriate measures and provide information directly. If you still need help, you can contact us.

• Facebook: Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland, privacy policy: https://www.facebook.com/about/privacy/, opt-out: https://www.facebook.com/settings?tab=ads
• Instagram: Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. Privacy policy/opt-out: https://instagram.com/about/legal/privacy/.
• X: X International Company, One Cumberland Place, Fenian Street, Dublin 2 D02 AX07, Ireland. Privacy Policy: https://twitter.com/de/privacy. Opt-Out: https://twitter.com/personalization.
• LinkedIn: LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland. Privacy policy: HTTPS://WWW.LINKEDIN.COM/LEGAL/PRIVACY-POLICY. Opt-out: HTTPS://WWW.LINKEDIN.COM/PSETTINGS/GUEST-CONTROLS/RETARGETING-OPT-OUT.
• kununu: kununu GmbH, Neutorgasse 4-8, Top 3.02, A - 1010 Vienna. Privacy policy / opt-out: HTTPS://PRIVACY.XING.COM/DE/DATENSCHUTZERKLAERUNG.
• YouTube: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Privacy policy / opt-out: HTTPS://POLICIES.GOOGLE.COM/PRIVACY?HL=DE&GL=DE.
• Xing: New Work SE, Am Strandkai 1, 20457 Hamburg, Germany. Privacy policy /  opt-out: HTTPS://PRIVACY.XING.COM/DE/DATENSCHUTZERKLAERUNG.

Facebook and Instagram (Meta)

If you interact with our social media pages on Facebook and Instagram (comment, like posts or send us a message), your data will be stored by us. These social networks are operated by Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland (hereinafter: Meta).

When operating a company profile on these channels, Meta and our company are joint controllers under data protection law in accordance with Art. 26 GDPR. Accordingly, we have concluded an agreement with Meta in which the respective obligations under the GDPR are regulated: https://www.facebook.com/legal/terms/page_controller_addendum.

Meta provides the profile operators with statistics and insights into the types of actions of our profile visitors ("Page Insights"). We have no influence on the collection of this data by Meta. According to Meta, this data is only provided to us in anonymised form so that the user cannot be identified from the information.

Personal data is deleted as soon as the purpose of storage no longer applies. Data may also be stored if this is required by statutory retention obligations to which our company is subject.

Please note that when you use and access our Facebook and Instagram pages, your personal data will also be processed by the provider Meta. Meta is operated by Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland and the parent company based in the USA. Meta processes your data in addition to the above-mentioned processing for analysis and advertising purposes. To the best of our knowledge, Meta also uses cookies that store your usage behaviour (including across different end devices). This enables Meta to display targeted advertising on its own platform and on third-party sites. Further information can be found in Facebook's privacy policy: https://www.facebook.com/about/privacy/, Instagram https://help.instagram.com/519522125107875. Facebook and Instagram also offer the option to object to certain data processing; information and opt-out options in this regard can be found at: https://www.facebook.com/settings?tab=ads and https://www.instagram.com/accounts/privacy_and_security/. Please note that user data is also processed in the USA or other third countries in accordance with the Meta Privacy Policy. Meta only transfers user data to countries for which an adequacy decision has been issued by the European Commission in accordance with Art. 45 GDPR or on the basis of suitable guarantees in accordance with Art. 46 GDPR.

With regard to data processing via our Facebook and Instagram page, you also have the option of asserting your data subject rights against Meta. Further information on this can be found in Meta's privacy policy: https://www.facebook.com/about/privacy/.

Minors

Our online services are generally aimed at persons of legal age. Personal information of persons who have not yet reached the age of 16 may only be made available to us if the express consent of the legal guardian has been obtained (Art. 8 GDPR). Processing without the consent of the parent or guardian is not permitted. We therefore reserve the right to delete all data relating to minors if we do not have the consent of a parent or guardian.

Your rights

Upon written request, we will inform you in accordance with Art. 15 GDPR in accordance with our legal obligation under Art. 12 GDPR whether and which of your personal data is processed or stored by us. Furthermore, you have the right to rectification of inaccurate data in accordance with Art. 16 GDPR, data portability in accordance with Art. 20 GDPR, blocking and erasure of your personal data in accordance with Art. 17 GDPR - provided there are no statutory retention obligations to the contrary - and the right to restriction of processing in accordance with Art. 18 GDPR. Furthermore, you have the right to contact the competent supervisory authority in accordance with Art. 77 GDPR.

You also have the right to object in accordance with Art. 21 GDPR if the processing is based on legitimate interests in accordance with Art. 6 para. 1 lit. f GDPR.

In accordance with Art. 7 para. 3 GDPR, you can of course revoke your consent to us at any time for the future. To do so, please use the contact address below.

If you have any questions regarding the processing of your personal data, you can contact our data protection officer, who is also available to you in the event of requests for information, suggestions or complaints.  

Data Protection Officer of

ORGADATA AG
Am Nesseufer 14
26789 Leer
E-Mail: DATENSCHUTZ@ORGADATA.COM

Changes to our privacy policy

In order to ensure that our privacy policy always complies with the current legal requirements, we reserve the right to make changes at any time. This also applies in the event that the privacy policy has to be adapted due to new or revised services, for example new services.

Status: July 2025