Privacy Policy

With the help of this privacy policy we inform you comprehensively about the processing of your personal data by the company Comosoft GmbH and the rights to which you are entitled.

Personal data is the information that makes it possible to identify a natural person. This includes in particular name, date of birth, address, telephone number, e-mail address but also your IP address.

Anonymous data is available if no personal reference to the user can be made.

Responsible authority and data protection officer

Comosoft GmbH
Hindenburgstraße 49
22297 Hamburg

Tel. +49 40 853318-0
Fax. +49 40 853318-99

datenschutz@comosoft.de

 

Your rights as a data subject

First, we would like to inform you about your rights as a data subject. These rights are standardized in Art. 15 – 22 EU GDPR. This includes:

  • Right of access (Art. 15 EU GDPR),
  • Right to erasure (Art. 17 EU GDPR),
  • Right to rectification (Art. 16 EU GDPR),
  • Right to data portability (Art. 20 EU GDPR),
  • Right to restriction of processing (Art. 18 EU GDPR),
  • Right to object to data processing of your data (Art. 21 EU GDPR).

To claim these rights, please contact: datenschutz@comosoft.de

The same applies if you have questions about data processing in our company. You also have a right of appeal to a data protection supervisory authority.

 

Rights to object

Please note the following in relation to the rights to object:

If we process your personal data for the purpose of direct advertising, you have the right disagree with this data processing at any time without giving reasons.

This also applies to profiling as far as it’s associated with direct advertising.

If you object to the processing for direct marketing purposes, we will no longer process your personal data for these purposes. The objection is free of charge and can be made free of charge, if possible to: datenschutz@comosoft.de

In case we process your data to protect legitimate interests, you may object to such processing at any time for reasons that arise from your particular situation; this also applies to profiling based on these provisions.

We will then no longer process your personal information unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is intended to assert, exercise or defend legal claims.

 

Purposes and legal bases of data processing

The processing of your personal data complies with the provisions of the EU GDPR and all other applicable data protection regulations. Legal bases for data processing arise in particular from Article 6 EU GDPR.

We use your data to initiate business, to fulfill contractual and legal obligations, to execute the contractual relationship, to offer products and services and for marketing purposes in the area of newsletter distribution.

Your consent also constitutes a data protection regulation. We will inform you about the purposes of data processing and your right of withdrawal. If the consent also relates to the processing of special categories of personal data, we will expressly inform you in the consent, Article 88 (1) EU GDPR.

Processing of special categories of personal data according to Article 9 (1) of the EU GDPR only applies if it is required by law and there is no reason to believe that your legitimate interest in excluding the processing predominates, Article 88 (1) EU GDPR.

 

Transfer to third parties

We will only pass on your data to third parties within the scope of the statutory provisions or with the appropriate consent. Otherwise, it will not be passed on to third parties unless we are obliged to do so due to mandatory legal regulations (disclosure to external bodies such as supervisory authorities or law enforcement authorities).

 

Recipients of data / Categories of recipients

Within our organization, we ensure that only those individuals receive the data they need to fulfill their contractual and legal obligations. In many cases, service providers support our specialist departments in fulfilling their tasks. The necessary data protection contract (AV contracts, standard contractual clauses) was concluded with all relevant service providers.

 

Third country transmission

A transfer of data to third countries (outside the European Union or the European Economic Area) only takes place, if required by law, or if you have given us your consent to do so. We transfer your personal data to a service provider or to group companies outside the European Economic Area: USA

Compliance with data protection standards is ensured by the closure of a EU standard contractual clause with Comosoft Inc., 7250 Dallas PKWY, Plano, Texas 75024-4931.

 

Storage duration of the data

We store your data as long as they are needed for the respective processing purpose. Please note that numerous retention periods require that data continue to be stored. This concerns in particular commercial or fiscal retention obligations (for example, commercial code, tax code, etc.). Unless there are further retention requirements, the data will be routinely deleted after use.

In addition, if you have given us your permission to do so, or if there are legal disputes, and we use evidence within the statutory limitation period, which may be up to thirty years, we may retain the information; the regular limitation period is three years.

 

Secure transfer of your data

In order to best protect the data stored by us against accidental or intentional manipulation, loss, destruction or access by unauthorized persons, we employ appropriate technical and organizational security measures. The security levels are continuously reviewed in cooperation with security experts and adapted to new security standards.

The data exchange from and to our website takes place encrypted. As a transmission protocol, we offer for our website HTTPS, each using the current encryption protocol SSL. In addition, we offer our users content encryption as part of the contact forms and applications.

On our career page (https://www.comosoft.eu/career), applicants have the option to securely communicate with us via the address career@comosoft.com.

The decryption of this data is only possible for us. In addition, it is possible to use alternative communication channels (e.g. the postal service).

 

Obligation to provide the data

Various personal data is necessary for the establishment, implementation and termination of the obligation and the fulfillment of the associated contractual and legal obligations. The same applies to the use of our website and the various functions that make this available.

In certain cases, data must also be collected or made available due to legal regulations. Please note that it is not possible to process your request or execute the underlying obligation without providing this information.

 

When visiting our website, we collect and process the following data

The provider of this website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us.

This is:

  • IP address
  • time
  • activity/resource
  • http response
  • file size
  • referrer
  • user agent

The legal basis for data processing is Article 6 (1) lit. b EU GDPR, which allows the processing of data to fulfill a contract or precontractual measures.
A merge of this data with other data sources does not take place. In addition, we have concluded a contract data processing contract with the provider.

 

As part of a contact request, we collect and process the following data:

  • Name
  • Company
  • E-Mail-Address
  • Company Name
  • Message
  • Phone (just in case you type in)

For newsletters, we collect and process the following data:

  • E-Mail-Adress

If you would like to receive the newsletter offered on the website, we need an e-mail address from you, as well as information that allows us to verify that you are the owner of the specified e-mail address and that you agree to receive the newsletter, further data is not collected. We use this data exclusively for the delivery of the requested information and do not pass it on to third parties.

The granted consent to the storage of the data, the e-mail address and their use for sending the newsletter can be revoked at any time, for example via the “unsubscribe” link in the newsletter.

To conduct a webinar or digital event, we process the following data:

  • E-mail address
  • First and last name

If you would like to participate in one of our webinars or digital events, we require an e-mail address and your first and last name. No other data will be collected. This data is used to register your participation in the event and to send you event-related e-mails.
If you have agreed to receive advertising-related e-mails after participating in the event by activating the opt-in checkbox during registration, the data protection provisions for receiving our newsletter apply.

 

Contact form / contact by e-mail (Article 6 (1) lit. a, b EU GDPR)

On our website there is a contact form available, which can be used for electronic contact. If you contact us using the contact form, we will process your data provided in the contact form to contact you and answer your questions and requests.

In doing so, we respect the principle of data minimization and data avoidance by providing only the information we need to contact you. This is your name, e-mail address, company name and the message field itself. All other data are optional fields and can optionally be specified (for example, to answer your questions more individually). If you only provide us with the mandatory information, this will not cause any disadvantages. Unfortunately, if you do not provide us with the required information, you will not be able to contact us via our contact form.

If you contact us via e-mail, we will process the personal information provided in the e-mail solely for the purpose of processing your request. If you do not use the forms offered to contact, there will be no further data collection.

Upon completion of the registration process, your data will be deposited with us for the use of the protected areas. Your assigned passwords are encrypted and inaccessible to us. If you have forgotten your password, please use the “Reset password” function.

 

Electronic application form on our website

By actively submitting the application data and activating the checkbox under our application form, you give your consent to the processing of the submitted and collected data for the application procedure as defined in this declaration. We collect your data for the purpose of carrying out the applicant management on the basis of Article 6 (1) a of the EU General Data Protection Regulation (DSGVO). If you submit your application via our application form or send it by e-mail to career@comosoft.de, your data will only be accessible to those employees at Comosoft GmbH who are entrusted with processing and assessing your application.

You can revoke this consent with Comosoft GmbH at any time in writing or by email (for contact details, see the imprint of this website). If you are unable to accept individual components of this declaration, please send your application by post, which we will of course treat equally.

 

Customer Area / Helpdesk (Article 6 (1) lit. a, b EU GDPR)

On our website, we offer customers to register with their personal details for our customer area and our help desk. Here, the principle of data economy and data avoidance is respected, since we only process information which is necessary for registration. In case of our customer area, your e-mail address and, in the case of our helpdesk, your name, e-mail address and company.

Unless you provide us with the required mandatory information, you can not log in to our customer area. An alternative way to contact the help desk is our support phone number +49 40 85331840.

 

Advertising purposes for existing customers (Article 6 (1) lit. f EU GDPR)

Comosoft GmbH is interested in maintaining the customer relationship with you and to provide you with information and offers about our products / services (newsletter, product data sheets). Therefore, we process your data in order to send you the corresponding information and offers by e-mail.

If you do not wish this, you may at any time object to the use of your personal information for the purpose of direct marketing; this also applies to profiling insofar as it is connected with direct mail. If you object, we will stop processing your data for this purpose.

The objection can be made free of charge and informally without giving reasons and should be directed by e-mail to datenschutz@comosoft.de. Alternatively you can use the telephone contact form via +49 40 8533180.

 

Automated decision-making

We do not use purely automated processing operations to make a decision.

 

Cookies (Article 6 (1) lit. f of the EU GDPR / Article 6 (1) lit. a of the EU GDPR, if agreed)

Our website uses so-called cookies at several locations. They serve to make our offer more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and stored by your browser (locally on your hard disk).

Most of the cookies we use are so-called “session cookies”. These will be deleted automatically after your visit. Persistent cookies are automatically deleted from your computer if they have expired (up to fourteen months) or if you delete them yourself before the expiration date.

Most web browsers accept cookies automatically. You can usually change your browser’s settings if you prefer not to send the information. You can still use the offers of our website without restrictions (exception: configurators).

Cookies are stored on the computer of the user and transmitted by this on our side. Therefore, as a user, you have full control over the use of cookies. By changing the settings in your internet browser, you can disable or restrict the transmission of cookies. Furthermore, already set cookies can be deleted at any time via an internet browser or other software programs. This is possible in all common internet browsers.

Disabling cookies may limit the functionality of this website.

Cookies that are required to carry out the electronic communication process or to provide certain functions that you wish to use (such as the registration function) are processed on the basis of Article 6 (1) lit. f EU GDPR saved.

Online offers for children

Persons under the age of 16 may not submit any personal data to us without the consent of the legal guardian or give a declaration of consent. We encourage parents and guardians to actively participate in the online activities and interests of their children.

 

Newsletter

MailChimp
We use the services of Mailchimp for sending our online-newsletter. MailChimp is a platform-solution for sending newsletters offered by the US-based Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA.

E-Mail-addresses of persons having subscribed to our newsletter as well as the further data described within this privacy statement, are stored on servers of MailChimp in the US. MailChimp uses this data for the purposes of sending and evaluating newsletters on our behalf. MailChimp may -according to information provided by MaiChimp itself- also use this data to optimize or improve their own service, e.g. for the technical optimization and the presentation of newsletters or for commercial purposes, to determine where the recipients are geographically originating from. MailChimp, however, does not use our subscribers´data to send them information on MailChimp´s own behalf or to transfer their data to third parties. We are using MailChimp to improve our online services, as the service provides us information about the the opening rate of our newsletters or which links attracted our subscribers attention. The appropriate level of data protection is guaranteed as MailChimp is certified under the EU-US Privacy Shield. In addition, we have entered into a privacy agreement with MailChimp. The legal basis to use your data is your consent, Art. 6 I 1 a GDPR. You are entitled to revoke your consent any time. If you wish to do so, you just have to unsubscribe. For that purpose, any of our newsletters contains an unsubscribe-link.

MailChimp´s privacy statement can be found here: https://mailchimp.com/legal/privacy

Statistics: surveys and analyses

The newsletters are containing a so called web-beacon. That is a pixel-sized file, received from a MailCimp server whenver a newsletter is opened. Together with retrieving this file, technical information like information on your browser and your system as well as your IP-address and the time of retrieving the file is tracked. This information is made use of to technically improve services by evaluating the technical data of target groups and their reading preferences by determining the locations the file is retrieved from (these places may be determined by your IP-address) as well as the time the file has been retrieved. Statistics do also cover information on whether the newsletters are opened, when they are opened and which links are klicked. That information for technical reasons may be assigned to the single subscriber. However we do not intend to observe single users. We moreover use the evaluation described to experience our subscribers´ reading preferences in order to adjust our content or to distribute it accordingly.

 

Plugins and Tools

YouTube

Information about our YouTube channel

Data processed by YouTube:

Comosoft GmbH uses a YouTube channel owned by Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. We would like to point out that you use the YouTube channel offered here and its functions on your own responsibility. Information on which data is processed by Google and for which purposes can be found in Google’s privacy policy: https://policies.google.com/privacy?hl=de&gl=de#infocollect

Comosoft GmbH has no influence on the type and scope of the data processed by Google, the way in which it is processed and used or the transfer of this data to third parties. It also has no effective means of control in this respect.

By using Google, your personal data will be collected, transferred, stored, disclosed and used by Google and transferred to, and stored and used in, the United States, Ireland and any other country in which Google does business, regardless of your country of residence. There is a transfer to Google-affiliated companies as well as to other trustworthy companies or persons who process them on behalf of Google. Google processes your voluntarily entered data such as name and user name, email address and telephone number. Google also processes the content that you create, upload or receive from others when using the services. This includes, for example, photos and videos that you save, documents and spreadsheets that you create, and comments that you write on YouTube videos.

Google also evaluates the content you share to determine what topics you are interested in, stores and processes confidential messages you send directly to other users, and may use GPS data, wireless network information or your IP address to determine your location in order to serve you advertising or other content.

For evaluation purposes, Google may use analysis tools such as Google Analytics. Comosoft GmbH has no influence on the use of such tools by Google and has not been informed about such potential use. If tools of this kind are used by Google for the YouTube channel of Comosoft GmbH, Comosoft GmbH has neither commissioned this nor supported it in any other way. Nor will the data obtained during the analysis be made available to it. Only certain subscriber profiles can be viewed by Comosoft GmbH via its account. Moreover, Comosoft GmbH has no way of preventing or turning off the use of such tools on its YouTube channel. Finally, Google also receives information when you view content, for example, even if you have not created an account. This so-called “log data” may be the IP address, browser type, operating system, information about the website you visited previously and the pages you viewed, your location, your mobile provider, the terminal device you use (including device ID and application ID), the search terms you used and cookie information. You have options to limit the processing of your data in the general settings of your Google account. In addition to these tools, Google also offers privacy settings specific to YouTube. You can find out more about this in Google’s guide to privacy in Google products: https://policies.google.com/technologies/product-privacy?hl=de&gl=de

You can find more information on these points in Google’s privacy policy under the term “Privacy settings”: https://policies.google.com/privacy?hl=de&gl=de#infochoices

Furthermore, you have the option of requesting information via the Google privacy form: https://support.google.com/policies/troubleshooter/7575787visit_id=637054532384299914-2421490167&hl=de&rd=2

Embedded YouTube videos

You can find out what kind of data Google collects when you call up our embedded videos and for what purpose it is processed under the item “YouTube”. For the uniform display of fonts, so-called web fonts are used when using YouTube, which are provided by Google.

When you call up a page, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly. For this purpose, the browser you use must connect to Google’s servers. This informs Google that your IP address has been used to access this website. Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy: https://policies.google.com/privacy?hl=de.

You can prevent the embedded videos from being called up on our website by rejecting all cookies in our cookie banner.

Privacy Policy for the use of Google Analytics

This website uses functions of the web analytics service Google Analytics. Provider is Google Inc., 1600 Amphitheater Parkway Mountain View, CA 94043, USA.

Google Analytics uses so-called “cookies”. These are text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.

For more information on how to handle user data on Google Analytics, please refer to the Google Privacy Policy: https://support.google.com/analytics/answer/6004245?hl=en

In addition, we point out that Google Analytics has been enhanced on this website by an IP anonymization, in order to ensure an anonymous collection of IP addresses.

Browser Plugin

You can prevent the storage of cookies by a corresponding setting of your browser software; however, please note that if you do this, you may not be able to use all the features of this website to the fullest extent possible. In addition, you may prevent the collection by Google of the data generated by the cookie and related to your use of the website (including your IP address) as well as the processing of this data by Google by downloading the browser plug-in available under the following link and install: https://tools.google.com/dlpage/gaoptout?hl=en

Borlabs Cookie

This website uses Borlabs Cookie, which sets a technically necessary cookie (borlabs-cookie) to store your cookie consents. Borlabs cookie does not process any personal data. The borlabs-cookie stores the consent you gave when you entered the website. If you wish to revoke these consents, simply delete the cookie in your browser. When you re-enter/reload the website, you will be asked again for your cookie consent.

Opposition to data collection

You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie will be set which prevents the collection of your data on future visits to this website:  disable Google Analytics

 

Links to other providers

Our website contains – clearly recognizable – also links to the Internet sites of other companies. As far as links to websites of other providers are available, we have no influence on their content. Therefore, no guarantee and liability can be assumed for this content. The content of these pages is always the responsibility of the respective provider or operator of the pages.

The linked pages were checked at the time of linking for possible legal violations and identifiable infringements. Illegal content was not recognizable at the time of linking. However, a permanent content control of the linked pages is not reasonable without concrete evidence of an infringement. Upon notification of rights violations, such links will be removed promptly.