Data Privacy Statement

Staus 11.9.2018

Preamble

The sections below contain information on the collection of personal data during use of our website. Personal data is defined as all specific information which can be traced back to you personally, e.g. name, address, e-mail addresses, user behaviour.

Responsible company / Data Protection Officer

Company responsible for data processing Data Protection Officer of the company responsible
Cyoss GmbH
Ganghoferstrasse 66
80339 Munich
Germany

Legal representative:
Horten, Kai, Board of Management and
Schwarz, Christian, Board of Management

Heussen Rechtsanwaltsgesellschaft mbH
Dr. Georg Schröder
Brienner Straße 9
80333 München

Germany

Contact data privacy

General data collection when our website is accessed

When you access our website merely for informational purposes, that is, if you do not register with us or otherwise submit information to us, we collect only the personal data transmitted to our server by your browser. If you wish to view our website, we collect the following data, which we require for technical reasons in order to display our website to you and to guarantee stability and security (the legal basis is legitimate interest in accordance with Art. 6 Paragraph. 1 S. 1 lit. f GDPR):

Data Purpose of processing Storage duration
Adress and full path of the requested website with optional request parameters in the URL Display of the website The data are deleted, at the end of the respective request
Operating system used Evaluation by device to ensure optimised display of the website The data are deleted at the end of the respective session.
Information on browser type and version used Evaluation of browsers in order to optimise our web pages for their use The data are deleted at the end of the respective session.
IP address Display of the website on the respective device The data are deleted at the end of the respective session.
Date and time of access Ensuring proper operation of the website The data are deleted at the end of the respective session.
Where applicable, manufacturer and type designation of smartphones, tablet computers or other end devices Evaluation of device manufacturers and end device types for statistical purposes The data are deleted at the end of the respective session.
Log files with response code of the request und all data in this table Ensuring proper operation of the website The data will be made anonymous after 7 days. The data will be deleted when the web servers are reset every few years.

The collection of data for provision of the website and the storage of data in log files is essential for operation of the website. Consequently, users have no right of objection to this use of their data.

 

 

Contact form and booking of training courses

You can contact us at any time via our e-mail address or the contact form or the booking form for training courses. The personal data submitted by you in this manner will, of course, be used exclusively for the purpose for which you provided it.

Data Purpose of processing Legal basis for processing Storage duration
IP address on registration Transmission of the content of the form to the web server Consent / initiation/performance of the contractual relationship / processing of the request Until connection is established
Message Processing the request Consent / initiation/performance of the contractual relationship / processing of the request Until purpose is achieved / end of obligation of verification
Title direct address Consent / initiation/performance of the contractual relationship / processing of the request Until purpose is achieved / end of obligation of verification
Surname direct address Consent / initiation/performance of the contractual relationship / processing of the request Until purpose is achieved / end of obligation of verification
Last name direct address Consent / initiation/performance of the contractual relationship / processing of the request Until purpose is achieved / end of obligation of verification
E-Mail-Address Responding to the inquiry Consent / initiation/performance of the contractual relationship / processing of the request Until purpose is achieved / end of obligation of verification
phone number Responding to the inquiry Consent / initiation/performance of the contractual relationship / processing of the request Until purpose is achieved / end of obligation of verification
Address Improvement in processing of enquiry Consent / initiation/performance of the contractual relationship / processing of the request Until purpose is achieved / end of obligation of verification
Business address Improvement in processing of enquiry Consent / initiation/performance of the contractual relationship / processing of the request Until purpose is achieved / end of obligation of verification
URL Improvement in processing of enquiry Consent / initiation/performance of the contractual relationship / processing of the request Until purpose is achieved / end of obligation of verification

 

YouTube is being used in extended privacy mode

We use YouTube to include videos. The videos were embedded with extended privacy made. Like most websites, YouTube uses cookies to gather information about visitors on their website. YouTube uses it, among other things, to capture video statistics, prevent fraud, and improve user friendliness. This also leads to an connection to the Google DoubleClick network. When you start the video, this could trigger further data processing operations. We have no influence on this. For more information about YouTube privacy, please refer to their privacy statement at: http://www.youtube.com/t/privacy_at_youtube

If you don't want to receive any user-based advertising, you can disable the placement of advertisements using Google's ad settings.

 

Disclosure of data

Your personal data will not be disclosed to third parties for any purpose other than those listed below.

We only pass on your personal data if:

  • you have expressly consented to this,
  • disclosure is required for the assertion, exercise or defence of legal claims and there is no reason to presume that you have an overriding legitimate interest in non-disclosure of your data,
  • we are under legal obligation to disclose the data, and
  • where this is legally permissible and necessary for the processing of contractual relationships with you.

 

Notification of data protection rights

All data subjects have the right to information in accordance with Art. 15 GDPR, the right to correction in accordance with Art. 16 GDPR, the right to deletion in accordance with Article 17 GDPR, the right to restrict processing in accordance with Art.18 GDPR, the right of objection from Art.21 GDPR and the right to data portability from Art. 20 GDPR. In the case of the right to information and to deletion, the restrictions in accordance with §§ 34 and 35 BDGS (German Federal Data Protection Act) apply.

 

Notification of possibility to lodge a complaint

In addition, you have the right to lodge a complaint with the responsible data protection supervisory authority regarding the processing of your personal data by us.

 

Notification of possibility to revoke consent

You are entitled to withdraw your consent to the processing of your personal data by us at any time. This also applies to the revocation of declarations of consent granted to us before the General Data Protection Regulation came into effect, that is, before 25 May 2018. Please note that such revocation is only effective for the future. It does not apply to processing of data which took place before consent was revoked.

 

Links to other websites

Our web pages may contain links to the websites of other providers. We expressly point out that this Data Privacy Statement applies exclusively to the websites of Cyoss. We have no control over nor do we monitor whether other providers comply with valid data protection regulations.

 

Changes to the Data Privacy Statement

We reserve the right to amend or adapt this Data Privacy Statement at any time, in compliance with the applicable data protection regulations.