Privacy Policy

With the help of this privacy policy we inform you comprehensively about the processing of your personal data by the company Comosoft GmbH and the rights to which you are entitled.

Personal data is the information that makes it possible to identify a natural person. This includes in particular name, date of birth, address, telephone number, e-mail address but also your IP address.

Anonymous data is available if no personal reference to the user can be made.

Responsible authority and data protection officer

Comosoft GmbH
Hindenburgstraße 49
22297 Hamburg

Tel. +49 40 853318-0
Fax. +49 40 853318-99

datenschutz@comosoft.de

 

Your rights as a data subject

First, we would like to inform you about your rights as a data subject. These rights are standardized in Art. 15 – 22 EU GDPR. This includes:

  • Right of access (Art. 15 EU GDPR),
  • Right to erasure (Art. 17 EU GDPR),
  • Right to rectification (Art. 16 EU GDPR),
  • Right to data portability (Art. 20 EU GDPR),
  • Right to restriction of processing (Art. 18 EU GDPR),
  • Right to object to data processing of your data (Art. 21 EU GDPR).

To claim these rights, please contact: datenschutz@comosoft.de

The same applies if you have questions about data processing in our company. You also have a right of appeal to a data protection supervisory authority.

 

Rights to object

Please note the following in relation to the rights to object:

If we process your personal data for the purpose of direct advertising, you have the right disagree with this data processing at any time without giving reasons.

This also applies to profiling as far as it’s associated with direct advertising.

If you object to the processing for direct marketing purposes, we will no longer process your personal data for these purposes. The objection is free of charge and can be made free of charge, if possible to: datenschutz@comosoft.de

In case we process your data to protect legitimate interests, you may object to such processing at any time for reasons that arise from your particular situation; this also applies to profiling based on these provisions.

We will then no longer process your personal information unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is intended to assert, exercise or defend legal claims.

 

Purposes and legal bases of data processing

The processing of your personal data complies with the provisions of the EU GDPR and all other applicable data protection regulations. Legal bases for data processing arise in particular from Article 6 EU GDPR.

We use your data to initiate business, to fulfill contractual and legal obligations, to execute the contractual relationship, to offer products and services and for marketing purposes in the area of newsletter distribution.

Your consent also constitutes a data protection regulation. We will inform you about the purposes of data processing and your right of withdrawal. If the consent also relates to the processing of special categories of personal data, we will expressly inform you in the consent, Article 88 (1) EU GDPR.

Processing of special categories of personal data according to Article 9 (1) of the EU GDPR only applies if it is required by law and there is no reason to believe that your legitimate interest in excluding the processing predominates, Article 88 (1) EU GDPR.

 

Transfer to third parties

We will only pass on your data to third parties within the scope of the statutory provisions or with the appropriate consent. Otherwise, it will not be passed on to third parties unless we are obliged to do so due to mandatory legal regulations (disclosure to external bodies such as supervisory authorities or law enforcement authorities).

 

Recipients of data / Categories of recipients

Within our organization, we ensure that only those individuals receive the data they need to fulfill their contractual and legal obligations. In many cases, service providers support our specialist departments in fulfilling their tasks. The necessary data protection contract (AV contracts, standard contractual clauses) was concluded with all relevant service providers.

 

Third country transmission

A transfer of data to third countries (outside the European Union or the European Economic Area) only takes place, if required by law, or if you have given us your consent to do so. We transfer your personal data to a service provider or to group companies outside the European Economic Area: USA

Compliance with data protection standards is ensured by the closure of a EU standard contractual clause with Comosoft Inc., 2601 Network Boulevard, Suite 430, Frisco, Texas 75034.

 

Storage duration of the data

We store your data as long as they are needed for the respective processing purpose. Please note that numerous retention periods require that data continue to be stored. This concerns in particular commercial or fiscal retention obligations (for example, commercial code, tax code, etc.). Unless there are further retention requirements, the data will be routinely deleted after use.

In addition, if you have given us your permission to do so, or if there are legal disputes, and we use evidence within the statutory limitation period, which may be up to thirty years, we may retain the information; the regular limitation period is three years.

 

Secure transfer of your data

In order to best protect the data stored by us against accidental or intentional manipulation, loss, destruction or access by unauthorized persons, we employ appropriate technical and organizational security measures. The security levels are continuously reviewed in cooperation with security experts and adapted to new security standards.

The data exchange from and to our website takes place encrypted. As a transmission protocol, we offer for our website HTTPS, each using the current encryption protocol SSL. In addition, we offer our users content encryption as part of the contact forms and applications.

On our career page (https://www.comosoft.com/career), applicants have the option to securely communicate with us via the address career@comosoft.com.

The decryption of this data is only possible for us. In addition, it is possible to use alternative communication channels (e.g. the postal service).

 

Obligation to provide the data

Various personal data is necessary for the establishment, implementation and termination of the obligation and the fulfillment of the associated contractual and legal obligations. The same applies to the use of our website and the various functions that make this available.

In certain cases, data must also be collected or made available due to legal regulations. Please note that it is not possible to process your request or execute the underlying obligation without providing this information.

 

When visiting our website, we collect and process the following data

The provider of this website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us.

This is:

  • IP address
  • time
  • activity/resource
  • http response
  • file size
  • referrer
  • user agent

The legal basis for data processing is Article 6 (1) lit. b EU GDPR, which allows the processing of data to fulfill a contract or precontractual measures.
A merge of this data with other data sources does not take place. In addition, we have concluded a contract data processing contract with the provider.

 

As part of a contact request, we collect and process the following data:

  • Name
  • Company
  • E-Mail-Address
  • Company Name
  • Message
  • Phone (just in case you type in)

For newsletters, we collect and process the following data:

  • E-Mail-Adress

If you would like to receive the newsletter offered on the website, we need an e-mail address from you, as well as information that allows us to verify that you are the owner of the specified e-mail address and that you agree to receive the newsletter, further data is not collected. We use this data exclusively for the delivery of the requested information and do not pass it on to third parties.

The granted consent to the storage of the data, the e-mail address and their use for sending the newsletter can be revoked at any time, for example via the “unsubscribe” link in the newsletter. More information about our newsletter service tool rapidmail can be found at https://www.rapidmail.de/datensicherheit

 

Contact form / contact by e-mail (Article 6 (1) lit. a, b EU GDPR)

On our website there is a contact form available, which can be used for electronic contact. If you contact us using the contact form, we will process your data provided in the contact form to contact you and answer your questions and requests.

In doing so, we respect the principle of data minimization and data avoidance by providing only the information we need to contact you. This is your name, e-mail address, company name and the message field itself. All other data are optional fields and can optionally be specified (for example, to answer your questions more individually). If you only provide us with the mandatory information, this will not cause any disadvantages. Unfortunately, if you do not provide us with the required information, you will not be able to contact us via our contact form.

If you contact us via e-mail, we will process the personal information provided in the e-mail solely for the purpose of processing your request. If you do not use the forms offered to contact, there will be no further data collection.

Upon completion of the registration process, your data will be deposited with us for the use of the protected areas. Your assigned passwords are encrypted and inaccessible to us. If you have forgotten your password, please use the “Reset password” function.

 

Customer Area / Helpdesk (Article 6 (1) lit. a, b EU GDPR)

On our website, we offer customers to register with their personal details for our customer area and our help desk. Here, the principle of data economy and data avoidance is respected, since we only process information which is necessary for registration. In case of our customer area, your e-mail address and, in the case of our helpdesk, your name, e-mail address and company.

Unless you provide us with the required mandatory information, you can not log in to our customer area. An alternative way to contact the help desk is our support phone number +49 40 85331840.

 

Advertising purposes for existing customers (Article 6 (1) lit. f EU GDPR)

Comosoft GmbH is interested in maintaining the customer relationship with you and to provide you with information and offers about our products / services (newsletter, product data sheets). Therefore, we process your data in order to send you the corresponding information and offers by e-mail.

If you do not wish this, you may at any time object to the use of your personal information for the purpose of direct marketing; this also applies to profiling insofar as it is connected with direct mail. If you object, we will stop processing your data for this purpose.

The objection can be made free of charge and informally without giving reasons and should be directed by e-mail to datenschutz@comosoft.de. Alternatively you can use the telephone contact form via +49 40 8533180.

 

Automated decision-making

We do not use purely automated processing operations to make a decision.

 

Cookies (Article 6 (1) lit. f of the EU GDPR / Article 6 (1) lit. a of the EU GDPR, if agreed)

Our website uses so-called cookies at several locations. They serve to make our offer more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and stored by your browser (locally on your hard disk).

Most of the cookies we use are so-called “session cookies”. These will be deleted automatically after your visit. Persistent cookies are automatically deleted from your computer if they have expired (up to fourteen months) or if you delete them yourself before the expiration date.

Most web browsers accept cookies automatically. You can usually change your browser’s settings if you prefer not to send the information. You can still use the offers of our website without restrictions (exception: configurators).

Cookies are stored on the computer of the user and transmitted by this on our side. Therefore, as a user, you have full control over the use of cookies. By changing the settings in your internet browser, you can disable or restrict the transmission of cookies. Furthermore, already set cookies can be deleted at any time via an internet browser or other software programs. This is possible in all common internet browsers.

Disabling cookies may limit the functionality of this website.

Cookies that are required to carry out the electronic communication process or to provide certain functions that you wish to use (such as the registration function) are processed on the basis of Article 6 (1) lit. f EU GDPR saved.

Online offers for children

Persons under the age of 16 may not submit any personal data to us without the consent of the legal guardian or give a declaration of consent. We encourage parents and guardians to actively participate in the online activities and interests of their children.

 

Plugins and Tools

YouTube

Our website uses plugins from the Google-powered YouTube page. Site operator is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.

When you visit one of our YouTube plug-in-enabled sites, you will be connected to the servers of YouTube. It tells the YouTube server which of our pages you’ve visited.

If you’re logged into your YouTube account, YouTube will allow you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.

The use of YouTube is in the interest of an attractive presentation of our online offers. This constitutes a legitimate interest within the meaning of Article 6 (1) lit. f EU GDPR.

For more information about how to handle user data, please refer to the YouTube Privacy Policy at https://www.google.com/intl/en/policies/privacy

 

Google Web Fonts

This site uses so-called web fonts, provided by Google, for the uniform representation of fonts. When you call up a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly.

To do this, the browser you use must connect to Google’s servers. As a result, Google learns that our website has been accessed via your IP address. The use of Google Web Fonts is in the interest of a consistent and attractive presentation of our online services. This constitutes a legitimate interest within the meaning of Article 6 (1) lit. f EU GDPR.

If your browser does not support web fonts, a default font will be used by your computer.

More information about Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google’s Privacy Policy: https://www.google.com/policies/privacy/.

 

Google Maps

This site uses the mapping service Google Maps via an API. Provider is Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.

To use the features of Google Maps, it is necessary to save your IP address. This information is usually transmitted to and stored on a Google server in the United States. The provider of this site has no influence on this data transfer.

The use of Google Maps is in the interest of an attractive presentation of our online offers and an easy findability of the places we have indicated on the website. This constitutes a legitimate interest within the meaning of Article 6 (1) lit. f EU GDPR.

For more information on how to handle user data, please refer to Google’s Privacy Policy: https://www.google.com/intl/en/policies/privacy/.

A merge of this data with other data sources will not be done.

The basis for data processing is Article 6 (1) lit. b EU GDPR, which allows the processing of data to fulfill a contract or pre-contractual measures.

 

Privacy Policy for the use of Google Analytics

This website uses functions of the web analytics service Google Analytics. Provider is Google Inc., 1600 Amphitheater Parkway Mountain View, CA 94043, USA.

Google Analytics uses so-called “cookies”. These are text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.

For more information on how to handle user data on Google Analytics, please refer to the Google Privacy Policy: https://support.google.com/analytics/answer/6004245?hl=en

In addition, we point out that Google Analytics has been enhanced on this website by an IP anonymization, in order to ensure an anonymous collection of IP addresses.

Browser Plugin

You can prevent the storage of cookies by a corresponding setting of your browser software; however, please note that if you do this, you may not be able to use all the features of this website to the fullest extent possible. In addition, you may prevent the collection by Google of the data generated by the cookie and related to your use of the website (including your IP address) as well as the processing of this data by Google by downloading the browser plug-in available under the following link and install: https://tools.google.com/dlpage/gaoptout?hl=en

 

Opposition to data collection

You can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie will be set which prevents the collection of your data on future visits to this website:  disable Google Analytics

 

Links to other providers

Our website contains – clearly recognizable – also links to the Internet sites of other companies. As far as links to websites of other providers are available, we have no influence on their content. Therefore, no guarantee and liability can be assumed for this content. The content of these pages is always the responsibility of the respective provider or operator of the pages.

The linked pages were checked at the time of linking for possible legal violations and identifiable infringements. Illegal content was not recognizable at the time of linking. However, a permanent content control of the linked pages is not reasonable without concrete evidence of an infringement. Upon notification of rights violations, such links will be removed promptly.