Privacy policy
1. General information
Thank you for your interest in the website(s) of Asseco Solutions AG (hereinafter referred to as the “Company”). We take the issues of data protection and confidentiality very seriously and follow the applicable national and European data protection regulations, in particular the EU-GDPR.
For this reason, we would like to use this statement to inform you about our data protection measures and what personal data we may store and how we use this data.
The person responsible for data processing on this website within the meaning of the General Data Protection Regulation (GDPR) is
Asseco Solutions AG
Amalienbadstraße 41c
76227 Karlsruhe
Phone.: +49 721 91432-900
info@assecosol.com
2. What data is collected and how is it used?
2.1 Data collection through this website
Each time a user accesses the website, the user’s internet browser automatically transmits the following data to the Company’s web server for technical reasons:
- IP address of the requesting computer
- Date and time of access
- Name and URL of the retrieved file
- Transmitted data volume
- Access status (file transferred, file not found etc.)
- Recognition data of the browser and operating system used
- Name of the provider of the user’s Internet access
- Website from which the access is made
The collection, processing and use of this data is for the purpose of enabling the use of the website (connection establishment), system security and the technical administration of the network infrastructure. There will be no comparison with other data or disclosure to third parties, not even in extracts. The legal basis of the processing is Art. 6 para. 1 b GDPR.
The data collected in the context of the voluntary entries under “Contact” will be used and processed exclusively for the purposes of processing the enquiry and for carrying out the services you may have requested via it.
2.2 Use of Google Analytics
This website uses Google Analytics, a web analytics service provided by Google, Inc. („Google“). Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. In the event that IP anonymisation is activated on this website, your IP address will, however, be truncated beforehand by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) by Google and the processing of this data by Google by downloading and installing the browser plugin available at the following link http://tools.google.com/dlpage/gaoptout?hl=de. You can prevent the collection by Google Analytics by clicking on the following link. An opt-out cookie will be set to prevent future collection of your data when visiting this website:
Nähere Informationen zu Nutzungsbedingungen und Datenschutz finden Sie unter http://www.google.com/analytics/terms/de.html bzw. unter https://www.google.de/intl/de/policies/. Wir weisen Sie darauf hin, dass auf dieser Webseite Google Analytics um den Code „anonymizeIp“ erweitert wurde, um eine anonymisierte Erfassung von IP-Adressen (sog. IP-Masking) zu gewährleisten.
The legal basis for the processing is Art. 6 para. 1 f GDPR, whereby the Company’s authorisation results from the fact that, on the one hand, there is an interest on the part of the Company in the evaluation of the website data for the purposes of page optimisation and, on the other hand, a data subject can reasonably foresee at the time of the collection of the personal data and in view of the circumstances in which it takes place (in particular the measures mentioned above) that processing for this purpose will possibly take place.
3. Which cookies are used?
We use cookies on our website. If you wish to forego the benefits of our cookies, then you can refer to the help function of your browser to find out how to set your browser to prevent it from accepting new cookies or deleting existing cookies. There you can also find out how to block your browser for all new cookies or which settings you have to make in order to receive a notification of new cookies.
The cookies that we currently use on this website are listed in the cookie list available here: Cookie list
The legal basis for the processing is Art. 6 para. 1 f GDPR, whereby the Company’s authorisation results from the fact that, on the one hand, there is an interest on the part of the Company in evaluating the website data for page optimisation purposes and, on the other hand, a data subject can reasonably foresee at the time of collection of the personal data and in view of the circumstances in which it takes place (in particular the measures mentioned above) that processing may possibly take place for this purpose.
4. use of social media plug-ins
We currently use the following social media plug-ins: Facebook, Google+, Twitter, Xing, LinkedIn.
We use the so-called two-click solution. This means that when you visit our site, no personal data is initially passed on to the providers of the plug-ins. You can recognise the provider of the plug-in by the mark on the box above its initial letter or logo. We open up the possibility for you to communicate directly with the provider of the plug-in via the button. Only if you click on the marked field and thereby activate it, will the plug-in provider receive the information that you have accessed the corresponding website of our online offer. In addition, the provisions set out under para. 2.1 of this declaration. In the case of Facebook and Xing, according to the respective providers in Germany, the IP address is anonymised immediately after collection.
By activating the plug-in, your personal data is transmitted to the respective plug-in provider and stored there (in the case of US providers, in the USA). Since the plug-in provider collects data in particular via cookies, we recommend that you delete all cookies via your browser’s security settings before clicking on the greyed-out box or the logo of the plug-in provider.
We have no influence on the data collected and data processing operations, nor are we aware of the full extent of the data collection, the purposes of the processing, the storage periods. We also have no information on the deletion of the collected data by the plug-in provider.
The plug-in provider stores the data collected about you as a usage profile and uses it for the purposes of advertising, market research and/or designing its website to meet your needs. Such an evaluation is carried out in particular (also for users who are not logged in) for the display of needs-based advertising and to inform other users of the social network about your activities on our website.
You have the right to object to the creation of these user profiles, whereby you must contact the respective plug-in provider to exercise this right.
Via the plug-ins, we offer you the opportunity to interact with the social networks and other users so that we can improve our offer and make it more interesting for you as a user. The legal basis for the provision and use of the plug-ins is Art. 6 para. 1 S. 1 lit. f GDPR.
The data transfer takes place regardless of whether you have an account with the plug-in provider and are logged in there. If you are logged in to the plug-in provider, the data we collect is directly assigned to your account with the plug-in provider. If you click the activated button and link to the page, for example, the plug-in provider also saves this information in your user account and shares it publicly with your contacts. We recommend that you log out regularly after using a social network, but especially before activating the button, as this will help you to avoid an assignment to your profile with the plug-in provider.
For further information on the purpose and scope of data collection and processing by the plug-in provider, please refer to the data protection declarations of these providers provided below. There you will also receive further information about your rights in this regard and setting options for protecting your privacy.
Addresses of the respective plug-in providers and URL with their data protection notices:
a) [Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA; http://www.facebook.com/policy.php; more information on data collection: http://www.facebook.com/help/186325668085084, http://www.facebook.com/about/privacy/your-info-on… and http://www.facebook.com/about/privacy/your-info#everyoneinfo. Facebook has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
b) Google Inc., 1600 Amphitheater Parkway, Mountainview, California 94043, USA; https://www.google.com/policies/privacy/partners/?hl=de. Google has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
c) Twitter, Inc., 1355 Market St, Suite 900, San Francisco, California 94103, USA; https://twitter.com/privacy. Twitter has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
d) Xing AG, Gänsemarkt 43, 20354 Hamburg, DE; http://www.xing.com/privacy.
e) LinkedIn Corporation, 2029 Stierlin Court, Mountain View, California 94043, USA; http://www.linkedin.com/legal/privacy-policy. LinkedIn has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
5. integration of YouTube videos
We have integrated YouTube videos into our online offer, which are stored on http://www.YouTube.com and can be played directly from our website.
By visiting the website or clicking on the YouTube logo, YouTube receives the information that you have accessed the corresponding sub-page of our website. In addition, the provisions set out under para. 2.1 of this declaration. This takes place regardless of whether YouTube provides a user account via which you are logged in or whether no user account exists.
If you are logged in to Google, your data will be directly assigned to your account. If you do not wish to be associated with your YouTube profile, you must log out before activating the button. YouTube stores your data as usage profiles and uses them for the purposes of advertising, market research and/or designing its website according to needs. Such an evaluation is carried out in particular (even for users who are not logged in) for the provision of needs-based advertising and to inform other users of the social network about your activities on our website.
You have the right to object to the creation of these user profiles, and you must contact YouTube to exercise this right.
For more information on the purpose and scope of data collection and processing by YouTube, please see the privacy policy. There you can also obtain further information on your rights and setting options for protecting your privacy: https://www.google.de/intl/de/policies/privacy. Google also processes your personal data in the USA and has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
Via the plug-in, we offer you the opportunity to interact with YouTube and other users so that we can improve our offer and make it more interesting for you as a user. The legal basis for the provision and use of the plug-in is Art. 6 para. 1 S. 1 lit. f GDPR.
6. newsletter
We offer you the possibility to subscribe to our newsletter on our website. With our newsletter we inform you about our offers at regular intervals. To receive our newsletter, you must provide us with a valid email address. All other data that you provide to us in the course of registering for the newsletter are voluntary and have no influence on the possibility of receiving the newsletter.
When you register for our newsletter, we will save your IP address and the date and time of your registration. We will then check the e-mail address you provided during registration by sending a separate e-mail as part of the so-called double opt-in procedure to ensure that you are actually the owner of the e-mail address provided. If a third party misuses your e-mail address and uses your data without your knowledge in the context of registering for the newsletter, we will delete this data after 24 hours. If you confirm to us that you are indeed the owner of the email address provided, we will save your data and store it for the purpose of sending you our newsletter. The legal basis for the processing is Art. 6 para. 1 a GDPR.
Your data will not be passed on to third parties. You can cancel your subscription to our newsletter at any time. You can find details of this in the confirmation email and in each individual newsletter.
7. are other personal data collected and processed?
We only collect and process your personal data if you request certain services and we require your data for this purpose or if you have voluntarily given us your express consent to do so. The legal bases for the processing are Art. 6 para. 1 b GDPR or Art. 6 para. 1 a GDPR.
You can do this, for example, by filling in a registration form or sending us an email, ordering products or services, making enquiries or requesting materials, or registering. Unless otherwise required by law, we will only use your personal data for the purposes for which you have given your consent.
8. will my data be passed on to third parties, e.g. to authorities?
Within the company, your data will be passed on to those departments that need it to fulfil our contractual and legal obligations. Some data must be shared under strict contractual and legal requirements:
- Due to legal obligation:
- To external service providers for data processing:
- To group companies of the Company:
In certain cases, we are legally obliged to transmit data to a requesting government agency.
Upon presentation of a court order, we are obliged under Section 101 of the Copyright Act to provide owners of copyrights and ancillary copyrights with information about customers who are alleged to have offered copyrighted works on Internet file-sharing networks. In these cases, our information contains the user ID of an IP address allocated at the time requested and, if known, the name and address of the customer.
Apart from that, personal data is only transferred to state institutions and authorities within the framework of mandatory national legal provisions or if the transfer is necessary for legal or criminal prosecution in the event of attacks on the network infrastructure. The legal basis for the processing is Art. 6 para. 1 c GDPR bzw. § 24 para. 2 Nr. 1 BDSG.
If service providers come into contact with your personal data, this is usually done within the framework of a so-called commissioned processing of personal data. This is expressly provided for by law. The Company shall nevertheless remain responsible for the protection of your data in this case as well – if applicable, alongside the processor. The processor works exclusively in accordance with our instructions, which we ensure through corresponding contractual regulations, through technical and organisational measures and through supplementary controls.
The company uses service providers as processors, in particular in the categories of IT services (e.g. for technical-administrative tasks and for usage analysis), telecommunications, consulting and advisory services as well as sales and marketing.
The data protection requirements for commissioned processing of personal data in accordance with instructions are complied with.
The Company may transfer your personal data to group companies of the Company in order to carry out any business relationship that may exist with you or to protect its legitimate interests.
If data transfers take place abroad, they shall be based within the EU or the EEA or in a state that has an adequate level of data protection in accordance with a decision of the EU Commission. In the case of data transfers to group companies of the Company with registered offices in other countries, the Company shall ensure by way of guarantees that the group company importing the data has been committed to an appropriate level of data protection.
Beyond this, we do not pass on any data to third parties unless you have expressly consented, the transfer is recognisably necessary for the implementation of an offer or service requested by you or this is provided for by law. We also do not intend to transfer your data to a third country or an international organisation.
9. how long will my data be kept?
We store data for as long as is legally necessary or required to provide the service you have requested or as specified in the consent you have given.
10. Do I have the right to information and correction of my stored data? What other rights do I have with regard to my stored data?
You can request information free of charge at any time about the scope, origin and recipients of the stored data as well as the purpose of the storage; in addition, you have the right to correction, deletion or restriction of the processing of your data, a right to object to the processing as well as a right to data portability in accordance with the provisions of data protection law. Reference is made to the existence of a right of appeal to a supervisory authority.
11. Can I revoke any consent I may have given for the use of my data?
You have the right to revoke your consent to the use of your data at any time. To do so, simply send an e-mail to datenschutz@assecosol.com or send a message to the following address:
Asseco Solutions AG
Amalienbadstraße 41, Bau 54
76227 Karlsruhe
Phone.: +49 721 91432-900
info@assecosol.com
Die aufgrund Ihrer Einwilligung erfolgende Datenverarbeitung ist bis zum Zeitpunkt des Widerrufs rechtmäßig.
12. Who is my contact person if I have questions about data protection?
If you have any questions or suggestions, you can contact the Company’s Data Protection Officer at any time:
Asseco Solutions AG
Data Protection Officer
Amalienbadstraße 41c
76227 Karlsruhe
Phone.: +49 721 91432-900
datenschutz@assecosol.com
13. How long is this privacy policy valid?
This Privacy Policy is current and dated 24.05.2018. We reserve the right to amend the Privacy Policy at any time with effect for the future if necessary, in particular to adapt it to a further development of the website or implementation of new technologies.