1. Data Collection and Processing, Use of Personal Data
Florian Schreiner, Innolytics AG, has been appointed as the Head of Responsible Entity and Data Processing. Florian Schreiner can be reached at firstname.lastname@example.org.
Any personal data (such as names, functions or e-mail addresses) collected on our web pages is provided on a voluntary basis.
For the purpose of further developing our software, marketing and website optimization, we collect navigation information from website visitors. This is data about the visits to our website, in particular IP address, operating system, device type (e.g. desktop, mobile), referral source, the length of the visit and the pages opened.
Personal data is collected within the context of the following tasks:
- administration of user contributions, sending notifications of the customer platform,
- delivery of expert information,
- maintenance of inventory and usage data,
- customer acquisition,
- preparation and answering of inquiries,
- further services for customers.
2. Description of the affected categories of individuals
In order to fulfil the above-mentioned purposes, personal data or categories of data are collected, processed and used from the following groups:
- Customer data, in particular contact data, such as telephone, fax and e-mail data, contact history and other data necessary for the fulfilment of the contract.
- Interested party data, in particular contact data and preferences (websites visited, information viewed).
- Users of Innolytics AG, especially contact data and activities on the respective customer platforms.
3. Regulatory Timeframes for the Deletion of Data
Legislators have issued a wide range of storage obligations and periods. After these time periods have expired, corresponding data is routinely deleted.
4.1 Use of Third-party Services and Software Solutions on the Dicis Website
In order to be able to be accessed quickly worldwide, the website dicis.org uses the Google Cloud service. Google Cloud makes the website available worldwide via proxy servers. When you visit the website dicis.org, the data will be provided to you via the nearest access of the worldwide Google network.
The provider of Google Cloud is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
Google actively endorses the requirements of the European GDPR and provides information on the company’s website. Information about the measures taken by Google to protect privacy can be found here.
We have signed a contract with Google for the processing of data on behalf and fully implement the strict requirements of the German data protection authorities when using Google Cloud.
The website dicis.org uses functions of the web analytics service Google Analytics. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
Google Analytics uses so-called “cookies”. These are text files that are stored on your computer and enable an analysis of the use of the website. The information generated by the cookie about the use of this website is usually transferred to a Google server in the USA and stored there.
The storage of Google Analytics cookies is based on Art. 6 paragraph 1 of the GDPR (European General Data Protection Regulation). The website operator has a legitimate interest in the analysis of user behaviors in order to optimize both the website and the advertising.
The storage of cookies can be prevented by a corresponding setting in the browser software. However, we would like to point out that in this case, not all functions of this website may be used to their full extent. In addition, the collection of the data generated by the cookie and transferred to Google for the use of website related data (including your IP address) and the processing of this data by Google can be prevented by users downloading and installing the browser plugin available at the following link.
The collection of data by Google Analytics can be prevented by clicking on a link provided by Google. An opt-out cookie is set to prevent the collection of personal data during future visits to this website.
We have signed a contract with Google for the processing of data on behalf and fully implement the strict requirements of the German data protection authorities when using Google Analytics.
HubSpot is a software company based in the USA with an office in Ireland.
Contact HubSpot: HubSpot, 2nd Floor 30 North Wall Quay, Dublin 1, Ireland, telephone: +353 1 5187500 HubSpot is subject to TRUSTe ‘s Privacy Seal and the U.S. – EU Safe Harbor Framework and the U.S. – Swiss Safe Harbor Framework.
We have signed a contract with HubSpot for the processing of data on behalf and fully implement the strict requirements of the German data protection authorities when using HubSpot.
This site uses Tawk.to for the offered live chat. This provides us with an external platform for the administration of the chats. Via a script the chat is integrated into the source code on dicis.org. By using the chat you automatically use the services of Tawk.to. Data is transferred which serves the security and documentation of Innolytics AG. The collected data includes: Chat history, given name, IP address at the time of the chat and country of origin. This data is not passed on to third parties and is only used for protection and internal statistics. By using the chat, you agree that you are in agreement with this. Here you can find more information from Tawk.to! Please make sure you read them.
Our website uses plugins from the YouTube site operated by Google. The operator of the site is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you visit one of our sites equipped with a YouTube plugin, a connection to the servers of YouTube is established. This tells the YouTube server which of our pages you have visited.
If you are logged in to your YouTube account, you allow YouTube to match your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.
4.2 Use of Third-party Services and Software Solutions for the Operation of the Innolytics AG Software
Hetzner Online GmbH
Our software is stored on several separate servers of Hetzner Online GmbH (Industriestr. 25, D-91710 Gunzenhausen).
When using our software a connection is established to servers in the Hetzner Online GmbH computer centre. All user ore data listed in this data protection declaration is stored on Hetzner’s servers.
We have signed a contract with Hetzner Online GmbH for the processing of outsourced data and fully implement the strict requirements of the German data protection authorities in the use of the software.
Further information can be found in the data protection declaration of Hetzner Online GmbH.
Amazon Web Services (AWS)
Our software uses functions of Amazon Web Services located in Frankfurt. This concerns the storage of pictures and files, the conversion and storage of videos as well as the sending of mails. When using our software, a connection to servers of AWS is established. AWS is informed that users have visited our software using their IP address.
We have signed a contract with Amazon Web Servcies for the processing of outsourced data and fully implement the strict requirements of the German data protection authorities when using our software.
For further information, please refer to the AWS Privacy FAQ.
Our software uses functions of Microsoft Azure located in Frankfurt/Main, Germany. This concerns the processing of requests from the web via a load balancing service, the backup system and the storage of images and files. When using our software, a connection to Microsoft Azure servers is established. Microsoft is informed that users have visited our software with their IP address.
We have concluded a contract with Microsoft for the processing of outsourced data and fully implement the strict requirements of the German data protection authorities in the use of our software.
Our software uses web servers of Strato AG (Pascalstraße 10, D-10587 Berlin) as backup for platforms and content. Several times a day an automatic connection is established between Strato AG servers and our servers at Hetzner Online GmbH. Strato receives all data stored on the servers of Hetzner Online GmbH in encrypted form as a backup.
We have signed a contract with Strato AG for the processing of outsourced data and fully implement the strict requirements of the German data protection authorities when using the data.
Further information can be found in the Strato AG data protection declaration.
Sentry Error Tracking
Our software uses functions of the automatic error and bug tracking system Sentry of the US company Functional Software Inc. (132 Hawthorne St, San Francisco, CA 94107). When errors occur in software functions, selected data is transferred to the company’s servers. This is data that makes it possible for Innolytics AG developers to reconstruct the error. As a global company with numerous customers within the EU, Sentry has subjected itself to the strict rules of the GDPR.
Further information on this and on the data transferred in the event of an error can be found in the company’s data privacy statement.
5. Information, Deletion, Blocking
Innolytics AG potential customers and platform users have the right to receive information free of charge at any time about their stored personal data, its origin and recipients and the purpose of data processing, as well as the right to correct, block or delete this data. For this purpose, as well as for further questions on the subject of personal data, those affected can contact us at any time at the address given in the imprint.
Users have the right to receive data which we process automatically on the basis of consent or in fulfilment of a contract, either to themselves or to a third party in a common, machine-readable format. If users request the direct transfer of the data to another responsible party, this will only take place to the extent that it is technically feasible.
Most of the cookies we use are so-called “session cookies”. They are automatically deleted at the end of a visit. Other cookies remain stored on the end device until they are deleted. These cookies enable us to recognize browsers during the next visit. Cookies also enable users to log in to Innolytics AG software more quickly.
Users can set their browser so that they are informed about the setting of cookies and allow cookies only in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website and our software may be limited.
7. Contact Form
If users or potential customers send us enquiries via the contact form, information from the enquiry form, including the contact data provided there, will be stored by us for the purpose of processing the enquiry and in the event of follow-up questions. We do not pass on this data without consent.
8. Data Required for Obtaining Specialized Information and Using the Software
If interested parties wish to receive specialist information on a regular basis or create a platform, we require an e-mail address and information that allows us to check that the users concerned are the owners of the e-mail address provided and agree to receive the professional information. Further data is not collected or only collected on a voluntary basis. We use these data exclusively for sending the requested information and do not pass them on to third parties.
The processing of the data entered in the registration form is based exclusively on consent (Art. 6 paragraph 1 GDPR). The consent given for the storage of the data, the e-mail address and its use for sending specialized information can be revoked at any time, for example by using the “unsubscribe” link in every e-mail. When creating platforms, users who have been written to or invited against their will can also have themselves placed on a blacklist via a link. The legality of the data processing operations already carried out remains unaffected by the revocation.
The data provided by users for the purpose of obtaining specialized information or using our software will be stored by us until they are removed from the distribution list and deleted after the cancellation of the specialized information or deactivation of the platform.
We use the service provider HubSpot to manage the specialized information and create landing pages. The registration for our specialist information is carried out in a so-called double opt-in procedure. This means that interested parties receive an e-mail after registration asking them to confirm their registration. This confirmation is necessary so that nobody can register with a different e-mail address than his or her own.
Use of the delivery service provider “HubSpot”
Among other things we use the e-mail marketing service “HubSpot”. If users use an offer on our website that requires the entry of an e-mail address, this may be stored on the servers of HubSpot. HubSpot is subject to TRUSTe ‘s Privacy Seal and the U.S. – EU Safe Harbor Framework and the U.S. – Swiss Safe Harbor Framework. See notes under 4.
Statistical survey and analyses
The newsletters contain a so-called “web-beacon”, i.e. a pixel-sized file that is retrieved from HubSpot’s server when the newsletter is opened. In the context of this retrieval technical information, such as information about the browser and the system, as well as the IP address and time of the retrieval are collected. This information is used for technical improvement of the services based on the technical data or target groups and their reading behavior based on their retrieval locations (which can be determined using the IP address) or access times.
Statistical surveys also include determining whether the newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to individual newsletter recipients. However, it is neither our ambition nor that of HubSpot to monitor individual users. The analysis serves us much more to recognize the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.
9. Concluding Remarks: SSL or TLS Encryption
This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as orders or inquiries that users send to us as site operator. Users can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in the browser line. If SSL or TLS encryption is activated, the data that users transmit to us cannot be read by third parties. For the record, we would like to point out that data transmission over the Internet (e.g. when communicating by e-mail) can have security gaps. A complete protection of data against access by third parties is not possible.