Privacy Policy

DATA PRIVACY POLICY

 

The protection of your personal data is of particular importance to us. We therefore process your data exclusively on the basis of legal provisions, and observing the applicable data protection regulations. In this data privacy statement, we notify you of the data processing done within the scope of our website www.isystem.com.

 

1 Data Controller

Responsible authority:
iSYSTEM AG für Informatiksysteme
Carl-Zeiss-Str. 1
85247 Schwabhausen

Germany Tel.: +49 (8138) 6971-0
Fax: +49 (8138) 6971-46

www.isystem.com
info@isystem.com

You can contact the Data Protection Officer responsible for data processing at the following address:
T-Systems Multimedia Solutions GmbH
Postfach 10 02 24
01072 Dresden
E-Mail: privacy@isystem.com

 

2 Processing of data

2.1 General, deletion

Personal data comprises all data which makes you identifiable as a person, such as your name, address, e-mail address and online credentials.

The personal data of our users is used as follows:

  1. To provide our services,
  2. To ensure technical support.

We only transfer personal data to third parties if this is done on the basis of their consent, and is necessary for invoicing purposes (executing bank transactions), the delivery of goods (delivery by postal service operators) or for any other reason, to fulfil our contractual obligations to you.

Personal data is deleted as soon it has fulfilled its purpose and provided the deletion does not conflict with storage obligations.

2.2 Informational use of our website

The pure informational use of our website, i.e. if you do not register or login to use the website, or if you transfer information to us in any other way, we will not collect any personal data, except for data transmitted by your browser, to make it possible to visit the website.
This data is:

  • The IP address
  • The date and time of request
  • Time zone difference to Greenwich Mean Time (GMT)
  • Content of the request (specific page)
  • Access status/HTTP status code
  • The quantity of any data transferred
  • The website from which the request comes
  • The browser
  • The operating system and its interface
  • The language and version of the browser software.

We save this data in the form of log files for a limited period of time, so that we can analyse and rectify any technical problems. The legal basis for this is Art. 6, paragraph 1f, GDPR. Due to the nature of the internet, it is necessary for this data to be processed on a range of servers, before your request reaches our web server. Consequently, the collection and use of data in "third-party countries" (e.g. in the USA) is also possible. Our company has no influence on this process. Aside from reasons of technical necessity, the provider of this website does not transfer any personal data to countries outside of the area of application of the EU Data Protection Regulation, or without a suitable level of data protection.
In addition to the pure informational use of our website, we also offer a range of services which you can use if you are interested. To do so, you normally have to provide personal data, which we will use to provide the respective service. If additional voluntary details are possible, they are marked accordingly.

2.3 Contact form

If you want to contact us via this website or by e-mail, your e-mail address, name, address, telephone number and other details you have specified, are saved by us to answer your questions. Queries are answered by unencrypted e-mail. The data collected in accordance with this is deleted six months after contact, provided there is no need to save it for longer. Provided no legal storage periods apply, the data is blocked.

The data processing is done on the basis of legal provisions of Art. 6, paragraph 1a (consent) and b (execution of contract), EU-GDPR. The processing, in particular communication by non-encrypted e-mail, is legal, provided you have given your consent for it. You can reject your consent at any time with effect for the future.

2.4 Newsletter

If you want to receive the newsletter that we offer on our website, we need your email address as well as information that allows us to verify that you are the owner of the email address provided and that you agree to receive the newsletter. Further data are not collected or only collected on a voluntary basis. We use these data only for the dispatch of the requested information and we do not transmit the data to any third party.

To register for our newsletter, we use the so-called double-opt-in process. This means that after you register, we send an email to the email address you gave asking for confirmation that you wish to receive the newsletter. If you do not confirm your registration within [24 hours], your information is locked and automatically deleted after a month. In addition, we save the IP addresses you used and the times of registration and confirmation. The purpose of the process is to prove your registration and, if necessary, to investigate possible misuse of your personal information.

The legal basis for the processing of the data you enter into the registration form for the newsletter is your consent only (Art. 6 (1) sentence 1 lit. a GDPR). You can withdraw your consent to the storage of the data, your email address as well as their usage for the transmission of the newsletter at any time either by clicking the “unsubscribe” link in the newsletter or via the post address or the email address that is stated in the website’s imprint. The lawfulness of data processing operations already performed remains unaffected from a withdrawal.

We store the data you provided us for the purpose of receiving the newsletter until you unsubscribe from the newsletter and we delete the data after your unsubscription from the newsletter. Data that we saved for other purposes remain unaffected from the withdrawal.

2.5 Newsletter dispatch via CleverReach

The email newsletter is sent via the technical service provider CleverReach GmbH & Co. KG Mühlenstr. 43, 26180 Rastede (“CleverReach“), to whom we transmit the data provided when subscribing to the newsletter. This transmission is carried out pursuant to Art. 6 (1) letter f GDPR and serves our legitimate interest in using a promotionally effective, secure and user-friendly newsletter system. The data you entered for the purpose of receiving the newsletter (e.g. email address) is stored on the servers of CleverReach in Germany and/or Ireland.

CleverReach uses this information to send and statistically analyse the newsletters on our behalf. For the analysis, the sent emails contain so-called web beacons and/or tracking pixels which represent one-pixel image files stored on our website. This enables us to determine whether a newsletter email was opened and which links were clicked, if applicable. With the so-called conversion tracking we can also analyse whether a pre-defined action was carried out after the link in the newsletter was clicked. Technical information is also collected (e.g. time of access, IP address, browser type and operating system). The data are solely collected in pseudonymised form and are not linked with your other personal data; a direct link to an individual person cannot be established. This data is solely used for the statistical analysis of newsletter campaigns. The results of such analyses can be used to better adapt future newsletters to the interests of the recipients.

If you would like to object to the data analysis for statistical analysis purposes, you have to unsubscribe the newsletter.

We concluded a commissioned-processing contract with CleverReach, in which we oblige CleverReach to protect our clients’ data and not to disclose the data to third parties.

You can find further information about the CleverReach data analysis here.

You can read the CleverReach data privacy statement here.

2.6 Transfer of Data within the iSYSTEM Group

The transfer of personal data within the companies of the iSYSTEM Group is done for internal administrative purposes concerning central customer support and order processing. The recipients of personal data for processing are the companie iSYSTEM Labs d.o.o. at Slowenia. The iSYSTEM Group obliges its companies, by internal guidelines, to implement technical-organisational measures in order to guarantee safe processing.

2.7 Data privacy for application and application procedure

We collect and process the personal data of applicants for the purpose of processing the application procedure. The processing may be done electronically. In particular this is the case when the applicant submits his application documents by electronic means, for example by e-mail. If we conclude a contract of employment with an applicant, the transmitted data will be stored, in consideration of the legal requirements, for the purpose of the execution of the employment relationship. If no contract of employment is concluded with the applicant, the application documents shall be deleted six months after the announcement of the decision of rejection, provided that the deletion does not oppose the legitimate interests of the controller of the data processing. Other legitimate interests in this sense are for example, a burden of proof in an action according to the Allgemeinen Gleichbehandlungsgesetz (AGG).

2.8 Use of winIDEA and winIDEA Community Edition

Our products winIDEA and winIDEA Community Edition are downloadable free of charge, without an registration and are valid for an unlimited period of time. Depending on the product, usage scenario respectively functional range of use, licensing may be necessary, in which personal data (name, first name, contact details, company) will be processed for the purpose of fulfilling the contract.

2.9 Use of GoToWebinar to host and perform webinars

We offer webinars and use the software solution "GoToWebinar" from the webinar technology provider LogMeIn, Inc. The webinar invitations, planning, performing and moderating is executed through the GoToWebinar website and/or the client software. In this respect, they take place computer-/software-supported via an encrypted connection on the Internet. You can participate in one of our "Live Webinars" if you have registered for it before.

The following data is required and requested during the registration process to enable you participating in the webinar as well as to follow-up on your questions during and after the webinar: name, first name, e-mail address, country.

Confirming the registration by clicking the appropriate button, the data will be provided to us for the following use:

You will receive a personalized registration confirmation, reminders to the webinar and possible date changes via the e-mail address provided. You can easily cancel or cancel your registration for the webinar itself as well as this service in any mail by clicking on the corresponding links at the bottom of the mail.

The legal basis for the processing of your data in conjunction with the webinar also via the platform "GoToWebinar" is Art. 6Abs. 1 lit. b) DSGVO. In case no contract has been concluded with you for participation in a webinar, Article 6 Abs. 1 lit. f) DSGVO provides the necessary legal basis, whereby the legitimate interest is then based on performing the webinar. In addition to performing webinars, it also includes the follow-up of statistical participation data for further customer support or the expansion of the user experience. This means that statistics data is collected and stored during and after the webinar is performed.

The processing of your data via the platform of the service provider and processor LogMeIn, Inc. (as our processor) is based on Art. 28 DSGVO. The data will be processed in Germany, the European Union and the USA within the legal scope of the law. An adequate level of data protection is guaranteed by various measures:

  1. LogMeIn, Inc. is certified under the Privacy Shield (verifiable here).
  2. We have been concluded a contract on order data processing with LogMeIn, Inc. based on the EU standard contractual clauses.

Please also refer to the privacy information of LogMeIn, Inc.

By registering for a webinar, you will transmit your details to us for the purpose of participation at and performing the webinar in general as well as execution follow-up activities afterwards. We only use the data for purposes other than the aforementioned purposes or transfer it to other third parties, if this is permitted by law or if the user has explicitly agreed on it. In addition, our other data protection notices apply.

 

3 Cookies

These websites use so-called cookies. Cookies are used to make our website more user-friendly, effective and safer. Cookies are small text files which are stored on your computer and are saved by your browser.

We use cookies to be able to reidentify you on your next visit, if you have an account with us. Otherwise, you would have to log in again each time you visit. The legal basis for this is Art. 6, paragraph 1f, GDPR.
This website uses the following cookies:

  • Transient cookies (for temporary use)
  • Persistent cookies (for time-limited use)

Transient cookies are deleted automatically, when you close the browser. In particular, they include session cookies. They save a so-called session ID, which allows the various requests of your browser to be allocated to a common session. This allows your computer to be recognised when you return to the website. Session cookies are deleted when you log out or close the browser.

Persistent cookies are deleted automatically after a specified period of time, which can differ per cookie.

You can delete the cookies in the security settings of your browser at any time. You can configure your browser settings as you wish and, for example, reject the acceptance of third party cookies or all cookies. We would, however, like to point out that doing so may mean that you are unable to use all of the functions of this website.

This saved information is stored separately from any other data provided to us. In particular, the data of the cookies is not linked with any other data of yours.

You can make settings in your browser so that you are notified about the setting of cookies, only allow cookies in individual cases, reject the acceptance of cookies for particular cases or in general, as well as automatically delete cookies when the browser is closed. If cookies are deactivated, the functioning of this website may be restricted.

Detailed information on the use of cookies can be found in our cookie policy and settings for cookies can be customized here

 

4 Google Analytics

Our websites use Google Analytics, a web analyst service of Google Inc., Amphitheatre Parkway, Mountain View, CA 94043, USA. ("Google"). Google Analytics uses "cookies", text files which are saved on your computer and which allow an analysis of the use of the websites by you. The information generated by the cookie about your use of these websites is normally transferred to a server of Google in the USA and saved there. We use IP anonymisation on our websites. In this process, your IP address is first shortened by Google within member states of the European Union or in other EEA countries. Only in exceptions is the full IP address first sent to a server of Google in the USA, and shortened there. On behalf of the website operator, Google will use this information to evaluate your use of the website, to compile reports about the website activities and to provide other services for the website operator associated with the use of the website and the internet.

The IP address transferred by your browser due to Google Analytics is not consolidated with other data of Google.

You can prevent the saving of cookies by making corresponding settings in your browser software; we would, however, like to point out that in this case all of the functions of this websites many not be able to be used.

You can also prevent the recording of data generated by the cookies and related to your use of the website (incl. your IP address) by Google, as well as the processing of this data by Google, by downloading and installing the browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout.

More information about the handling of user data by Google Analytics can be found in Google's data privacy statement: https://support.google.com/analytics/answer/6004245.

The use of Google Analytics is done in accordance with the prerequisites that the German data protection authorities have agreed with Google.

Information about the third party provider: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001

The data privacy statement: https://policies.google.com/privacy

Overview data privacy: https://support.google.com/analytics/answer/6004245?hl=de

Terms of Service: https://www.google.de/analytics/terms/de.html

Google is subject to the EU-US Privacy Shield: https://www.privacyshield.gov/EU-US-Framework.

 

5 Social Media

We use the following social media platforms for corporate presentation and communication. For this purpose, our website contains links (and not embedded links!) to LinkedIn and YouTube. The links to the websites of the social media platforms can be identified by the respective company logo. When you click on the icons, no data is processed, but you are forwarded to the company appearance of iSYSTEM AG on the respective social media platform. Only then data will be processed from the respective provider in his/her responsibility. Information on the processing of your personal data when using the website of the provider can be found here or in the information on the data protection of the respective provider. The following linked data protection notices and OptOut options are expressly referred to. We have no influence on the compliance of the providers of the social media platforms with the data protection regulations.

 

These social media platforms may process personal data outside the EU. In this respect, we refer to the above data protection notices of the social media platforms. The respective social media platforms may be able to create user profiles and store cookies on your computer from your usage behavior and the resulting interests and activities on your part. If you have an account on the respective social media platform and are logged in, your usage behavior can even be stored independently of the device. Your usage profile can be used, for example, to place advertisements that are presumed to be in your interests. If you log out before pressing the link, you can at least partially avoid data processing. 

We process the personal data exclusively for communication with you via the social media platform you have chosen and for optimizing our online presence. We make sure that no interests on your part are affected here, which outweigh this legitimate interest on our part (Art. 6 I p. 1 f GDPR). Thus, as you have already given effective consent about the corresponding data processing to the respective provider of the social media platform, the processing of your personal data also takes place on the basis of this consent (Art. 6 I p. 1 a GDPR). 

 

6 Rights of affected people

You have the right

  • to request information about the categories of processed data, the processing purposes, any recipients of data, the planned duration of storage (Art.15 EU-GDPR);
  • to request the correction or supplementation of incorrect or incomplete data (Art. 16 EU-GDPR);
  • to revoke any consent given, with effect for the future (Art. 7, paragraph 3, EU-GDPR);
  • to reject the processing of data, based on a justified interest, for reasons which arise due to your own special situation (Art. 21, paragraph 1, EU-GDPR);
  • in specific cases within the scope of Art. 17 EU-GDPR, to request the deletion of data - in particular if the data is no longer required for the intended purpose or is processed illegally, if you have revoked your consent as per (c) or have declared your rejection as per (d) above;
  • to request the restriction of data under certain conditions, if a deletion is not possible or the obligation to delete is disputed (Art. 18 EU-GDPR);
  • to request the transfer of data, i.e. you can receive the data which you have provided to us in a normal machine-readable format, such as CSV, and where necessary transfer it to others (Art. 20 EU-GDPR).

If you have provided consent for the use of your data, you can revoke this at any time with effect for the future.

Please send all information, deletion and correction requests, requests for information, requests for data transfer, rejections of data processing etc. by e-mail to privacy@isystem.com.

If you are of the opinion that the processing of your data violates the data protection right, or that your data protection law claims have been violated in any other way, you can also contact the responsible data protection supervisory authorities, https://www.lda.bayern.de/de/index.html.

 

7 Indicative time-limit for the deletion and blocking of personal data

Your personal data will only be stored for as long as it is necessary to achieve the storage purpose or if the storage of the data is required by law. If the purpose of the storage is omitted or if a indicative time-limit required by law for the storage of the data expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions.

 

8 Data Security

We undertake the latest technical and organizational measures to ensure the processing is safe, in particular to protect your personal data from hazards due to the transfer of data as well as to prevent third parties gaining knowledge of it. They are adjusted to meet the latest state of technology, the need to protect personal data and the risks to your rights and freedoms.

 

9 Change to data protection guidelines

We reserve the right to change the data protection guidelines, to adjust them to the altered legal situation or changes to our offers.