Data protection declaration according to the GDPR

I. Name and address of the person responsible

The person responsible within the meaning of the Basic Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations is:

inPuncto GmbH
Fabrikstr. 5
73728 Esslingen
Germany
Phone: +49 (0)711 / 66188500
Mail: kontakt[at]inpuncto.com
Website: www.inpuncto.com

II. Name and address of the data protection officer

The data protection officer of the person responsible is:

Juergen Mueller
Robert Bosch Str. 3
72622 Nuertingen
Germany
Phone: +49 (0)173 3115137
Mail: dsb-mueller[at]gmx.de

III. General information about data processing

1. Scope of the processing of personal data
We only collect and use personal data of our users insofar as this is necessary to provide a functional website as well as our contents and services. The collection and use of personal data of our users takes place regularly only with the user’s consent. An exception applies in those cases where prior consent cannot be obtained for real reasons and the processing of the data is permitted by law.

The following types of data are processed:

– Inventory data (for example, person master data, names, or addresses).
– Contact data (e.g. e-mail, telephone numbers).
– Content data (e.g. text input, photographs, videos).
– Usage data (e.g. websites visited, interest in content, access times).
– Meta/communication data (e.g. device information, IP addresses).

The data will be processed for the following purposes:

– Provision of the online offer, its functions and contents.
– Answering contact requests and communicating with users.
– Security measures.
– Range measurement / marketing.

2. Legal basis for the processing of personal data
In accordance with Art. 13 GDPR we inform you about the legal basis of our data processing. If the legal basis is not mentioned in the data protection declaration, the following applies to users:
Insofar as we obtain the consent of the person concerned for the processing of personal data, Art. 6 para. 1 lit. a and Art. 7 GDPR serve as the legal basis.

Art. 6 para. 1 lit. b GDPR serves as a legal basis for the processing of personal data required for the performance of a contract to which the data subject is a party. This also applies to processing operations which are necessary for the implementation of pre-contractual measures (e.g. answering inquiries).

Insofar as the processing of personal data is necessary to fulfil a legal obligation to which our company is subject, Art. 6 para. 1 lit. c GDPR serves as the legal basis.

Art. 6 para. 1 lit. d GDPR serves as the legal basis in the event that vital interests of the data subject or another natural person necessitate the processing of personal data.

The legal basis for the processing necessary for the performance of a task which is in the public interest or is carried out in the exercise of official authority entrusted to the person responsible is Art. 6 para. 1 lit. e GDPR.

If the processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and fundamental freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 para. 1 lit. f GDPR serves as the legal basis for the processing.

The processing of data for purposes other than those for which they were collected is governed by the provisions of Art. 6 (4) GDPR.
The processing of special categories of data (pursuant to Art. 9 (1) GDPR) is governed by the provisions of Art. 9 (2) GDPR.

3. Data deletion and storage duration
The personal data of the person concerned will be deleted or blocked as soon as the purpose of storage ceases to apply. In addition, such storage may take place if provided for by the European or national legislator in EU regulations, laws or other regulations to which the controller is subject. Blocking or deletion of the data also takes place when a storage period prescribed by the standards mentioned expires, unless there is a need for further storage of the data for conclusion of a contract or fulfillment of the contract.

4. Security measures
We take appropriate technical and organisational measures in accordance with the statutory requirements in order to guarantee a level of protection appropriate to the risk.

5. Cooperation with contract processors, jointly responsible persons and third parties
In the event that data is disclosed, brokered or granted access to other persons and companies (e.g. contract processors, jointly responsible persons or third parties) or other companies of our group of companies within the framework of data processing, this is done on the basis of a legal permit, the consent of the users, a legal obligation or on the basis of our legitimate interest (e.g. when using agents, web hosts, etc.).

6. Transfers to third countries
If we process data in a third country (i.e. outside the European Union (EU), the European Economic Area (EEA) or the Swiss Confederation) or if this is done in the context of the use of third party services or disclosure or transfer of data to other persons or companies, this will only occur if it is done to fulfil our (pre)contractual obligations, on the basis of your consent, a legal obligation or on the basis of our legitimate interests. Subject to legal or contractual permissions, we process or leave the data in a third country only if the legal requirements are met. I.e. the processing takes place e.g. on basis of special guarantees, like the officially recognized statement of a data protection level corresponding to the EU (e.g. for the USA by the “Privacy Shield”) or observance of officially recognized special contractual obligations.

IV. Provision of the website and creation of log files

1. Description and scope of data processing
Every time you visit our website, our system automatically collects data and information from the computer system of the calling computer.

The following data is collected:

(1) Information about the browser type and version used
(2) The user’s operating system
(3) The IP address of the user
(4) Date and time of access
(5) Websites from which the user’s system reaches our website
(6) Websites accessed by the user’s system via our website
The data is also stored in the log files of our system. This data is not stored together with other personal data of the user.

2. Legal basis for data processing
The legal basis for the temporary storage of data and log files is Art. 6 para. 1 lit. f GDPR.

3 Purpose of data processing
The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user’s computer. To do this, the user’s IP address must be kept for the duration of the session.
The data is stored in log files to ensure the functionality of the website. In addition, the data is used to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context. For these purposes, our legitimate interest in the processing of data according to Art. 6 para. 1 lit. f GDPR.

4. Duration of storage
The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. In the case of the collection of data for the provision of the website, this is the case after 30 days at the latest. An assignment to a user is no longer possible with the stored information.

5. Opposition and removal possibility
The collection of data for the provision of the website and the storage of the data in log files is essential for the operation of the website Consequently, there is no possibility of objection on the part of the user.

V. Use of cookies

1. Description and scope of data processing
Our website uses cookies. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user’s computer system. If a user visits a website, a cookie may be stored on the user’s operating system. This cookie contains a characteristic character string that enables a unique identification of the browser when the website is called up again. Some of the cookies we use are deleted after the end of the browser session, i.e. after closing your browser (so-called session cookies). Other cookies remain on the user’s end device and enable us or our partner companies to recognize your browser on your next visit (persistent cookies). Persistent cookies are automatically deleted after a specified period, which may vary depending on the cookie.

We use cookies to make our website more user-friendly. Some elements of our website require that the calling browser can be identified even after a page change.
The following data is stored and transmitted in these cookies (so-called “first-party cookies”):

(1) Language settings
(2) Log-in information for customers

We also use cookies from third party providers on our website that enable us to analyse the surfing behaviour of users (so-called “third party cookies).
In this way, the following data can be transmitted:
(1) Entered search terms
(2) Frequency of page views
(3) Use of website functions
(4) Time
(5) Session duration

When accessing our website, the user is informed about the use of cookies for analytical purposes and his or her consent to the processing of personal data used in this context is obtained. In this context, reference is also made to this data protection declaration.

The user data collected in this way is pseudonymised by technical precautions. Therefore, it is no longer possible to assign the data to the calling user. The data will not be stored together with other personal data of the users.

2. Legal basis for data processing
The legal basis for the processing of personal data using technically necessary cookies is Article 6 (1) lit. f GDPRThe legal basis for the processing of personal data using cookies for analysis purposes is the consent of the user is Art. 6 para. 1 lit. a GDPR.

3. Purpose of the data processing
The purpose of using technically necessary cookies (first-party cookies) is to make the use of websites attractive and easier for users. Some functions of our website cannot be offered without the use of cookies. For this it is necessary that the browser is recognized even after a page change.

We need cookies for the following applications:

(1) Accepting language settings

The user data collected by technically necessary cookies are not used to create user profiles.
The use of the analysis cookies (third party cookies) takes place for the purpose of improving the quality of our website and its contents. Through the analysis cookies we learn how the website is used and can thus continuously optimize our offer. A web analysis collects, among other things, data on which website a person concerned came to a website from (the so-called referrer), which subpages of the website were accessed or how often and for how long a subpage was viewed.

For these purposes, our legitimate interest also lies in the processing of personal data in accordance with Art. 6 para. 1 lit. f GDPR.

4. Duration of storage, objection and disposal options
Cookies are stored on the user’s computer and transmitted to our site. Therefore, users also have full control over the use of cookies. By changing the settings in the Internet browser, users can set their browser so that they are informed about the setting of cookies and can decide individually whether to accept them or exclude the acceptance of cookies in certain cases or in general. Each browser differs in the way it manages the cookie settings.

This is described in the help menu of each browser, which explains how you can change your cookie settings. You will find these for the respective browsers under the following links:

• Internet Explorer: https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies
• Microsoft Edge: https://support.microsoft.com/de-de/help/10607/microsoft-edge-view-delete-browser-history
• Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen
• Chrome: https://support.google.com/chrome/bin/answer.py?hl=de&hlrm=en&answer=95647
• Safari: https://support.apple.com/kb/ph21411?locale=de_DE
• Opera: http://help.opera.com/Linux/12.10/de/deleteprivate.html
If cookies are disabled for our website, it may not be possible to use all the functions of the website.

VI. Registration for a download

1. Description and scope of data processing
Free downloads (PDF files) are available on our website. The download is sent based on the data that the user transmits to us via the input mask on the website.
The following data is collected during registration:

(1) Date and time of registration
(2) Name
(3) E-mail address
(4) Company

By sending the information, the user agrees that his data will be used to transmit the download link. Furthermore, when sending the download registration, the user can agree that his data may in future be used by us to transmit information about our company and our products to the e-mail address provided.
In connection with the data processing for the transmission of downloads, there is no disclosure of the data to third parties. The data will only be used to send the download and will only be used to provide information about the company and our products if the user has given us their consent.

2. Legal basis for data processing
The legal basis for processing the data after registration for download dispatch is Art. 6 para. 1 lit. a DSGVO.

3. Purpose of the data processing
The collection of the e-mail address serves to deliver the download. The collection of other personal data (name and company) as part of the registration process serves to prevent misuse of the services or the e-mail address used.

4. Duration of storage
The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. The user’s e-mail address, name and company will therefore only be stored for delivery of the download link and will be deleted after 7 days at the latest if the user has not agreed to the use of his data for sending information about our company and our products.

5. Possibility of opposition and elimination
The subscription to the newsletter can be cancelled by the user concerned at any time. For this purpose there is a corresponding link in every newsletter.
Objection is also by telephone at +49 711-66 188-500, in writing: Fabrikstr. 5 | 73728 Esslingen or by e-mail at: unsubscribe@inpuncto.com The user data will then be deleted.

VII. Newsletter

1. Description and scope of data processing
If you purchase goods or services on our website and provide us with your e-mail address, we may subsequently use it to send you a newsletter. In such a case, only information about our company and our products will be sent via the newsletter.

When contacting us via the contact form or requesting a download link, you can also specify that your data may be used to send you information about our company and our products by e-mail.
In connection with data processing for the dispatch of newsletters, no data is passed on to third parties. The data will be used exclusively for sending the newsletter.

2. Legal basis for data processing
The legal basis for sending the newsletter as a result of the sale of goods or services is Section 7 para. 3 UWG. The legal basis for processing the data after sending the contact form or requesting a download link by the user is Art. 6 para. 1 lit. a GDPR if the user has given his advertising consent.

3. Purpose of data processing
The collection of the user’s e-mail address serves to send the newsletter. The collection of other personal data as part of the registration process serves to prevent misuse of the services or the e-mail address used.

4. Duration of storage
The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. The user’s e-mail address will therefore be stored for as long as the subscription to the newsletter is active.

5. Possibility of opposition and elimination
The subscription to the newsletter can be cancelled by the user concerned at any time. For this purpose there is a corresponding link in every newsletter. We may store the deleted e-mail addresses for up to three years on the basis of our legitimate interests before deleting them in order to be able to prove a previously given consent. The processing of this data is limited to the purpose of a possible defence against claims. An individual request for deletion is possible at any time, provided that the former existence of a consent is confirmed at the same time.

VIII. Contact form and e-mail contact

1. Description and scope of data processing

There is a contact form on our website which can be used for electronic contact. If a user takes advantage of this possibility, the data entered in the input mask will be transmitted to us and stored. These data are:

(1) Name
(2) Company
(3) Telephone number
(4) E-mail address
(5) Subject
(6) Message
At the time the message is sent, the following data is also stored:
(1) Date and time of dispatch

The consent of the user is obtained for the processing of the data within the scope of the sending process and reference is made to this data protection declaration.
Alternatively, contact via the provided e-mail address is possible. In this case, the user’s personal data transmitted by e-mail will be stored.
In this context, it does not disclose the data to third parties. The data is used exclusively for processing the conversation.

2. Legal basis for data processing
The legal basis for the processing of data is Art. 6 para. 1 lit. a GDPR if the user has given his consent.
If the e-mail contact aims at the conclusion of a contract, then additional legal basis for the processing is Art. 6 exp. 1 lit. b GDPR.

3. Purpose of the data processing
The processing of the personal data from the input mask serves us only to process the contact. In the case of contact via e-mail, this also includes the required legitimate interest in the processing of the data.

The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.

4. Duration of storage
The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. For the personal data from the input mask of the contact form and those that were sent by e-mail, this is the case when the respective conversation with the user is finished. The conversation is terminated when it can be inferred from the circumstances that the facts in question have been finally clarified.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

5. Possibility of opposition and elimination
The user has the possibility to revoke his consent to the processing of personal data at any time. If the user contacts us by e-mail, he can object to the storage of his personal data at any time. In such a case, the conversation cannot be continued.
If you do not agree to this use, you can always call +49 711-66 188-500, in writing: Fabrikstr. 5 | 73728 Esslingen or by e-mail at: unsubscribe@inpuncto.com

All personal data stored in the course of contacting us will be deleted in this case.

IX. Integration of third-party services and content

1. Description and scope of data processing
Within our online offering, we use content or service offers from third parties to integrate their content and services, such as videos or fonts (hereinafter uniformly referred to as “content”). The third party providers of this content perceive the IP address of the users, as they cannot send the content to their browser without the IP address.
List of used services and contents of third parties:

(1) Google Tag Manager
(2) Google Analytics
(3) Google AdWords
(4) Google Fonts
(5) Google Maps
(6) YouTube
(7) Mailchimp
(8) Newsletter Performance Measurement
(9) LogMeIn

2. Legal basis for data processing
The legal basis for the processing of personal data using cookies is Art. 6 para. 1 letter f DSGVO (i.e. interest in the analysis, optimisation and economic operation of the online offer).

3. Purpose of data processing
The IP address is required to display the contents. We make every effort to use only those contents whose respective providers use the IP address only for the delivery of the contents.

4. Duration of storage, possibility of objection and elimination
The anonymous information may also be stored in cookies on the user’s device and may contain technical information about the browser and operating system, referring websites, visit time and other information about the use of our online offer, as well as be linked to such information from other sources.
Below you will find information on the individual services as well as on the possibilities of objection:

1) Google Tag Manager

With the Google Tag Manager we can manage so-called website tags via an interface (e.g. integrate Google Analytics and other Google services into our online offer). The Tag Manager only implements the tags, but does not process any personal user data. With regard to the processing of users’ personal data, we refer to the user guidelines: https://www.google.com/intl/de/tagmanager/use-policy.html.

2) Google Analytics

1. Description and scope of data processing
The web analysis service Google Analytics of Google LLC (“Google”) uses cookies. The information generated by the cookie about the use of the online offer by users is generally transferred to a Google server in the USA and stored there.

Google is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

2. Legal basis for data processing

The legal basis for the processing of personal data using cookies is Art. 6 para. 1 lit. f GDPR and an order processing contract with Google pursuant to Art. 28 para. 3 sentence 1 GDPR.

3. Purpose of data processing
Google will use this information on our behalf to evaluate the use of our online offer by users, to compile reports on the activities within this online offer and to provide us with further services associated with the use of this online offer and the use of the Internet. Pseudonymous user profiles can be created from the processed data. We only use Google Analytics with activated IP anonymization. This means that the IP address of the users will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there.
The IP address transmitted by the user’s browser is not merged with other Google data.

4. Duration of storage, objection and disposal options
The personal data of users will be deleted or anonymized after 14 months.
The user can prevent the storage of cookies by a corresponding setting of his browser software; In addition, the user can prevent the collection of the data generated by the cookie and its use of the online offer to Google and the processing of this data by Google by downloading and installing the browser plug-in available under the following link: https://tools.google.com/dlpage/gaoptout?hl=en

As an alternative to the browser add-on or within browsers on mobile devices, the user can click on this link to prevent future collection by Google Analytics within this website. An opt-out cookie is stored on the user’s device. If the user deletes his cookies, he must click this link again.

Further information on data use by Google, possible settings and objections, can be found out in Google’s data protection declaration (https://policies.google.com/technologies/ads) and in the settings for the display of advertisements by Google (https://adssettings.google.com/authenticated).

3) Google AdWords and conversion measurement

1. Description and scope of data processing
We use Google’s online marketing method “AdWords” to place ads on the Google advertising network. We will receive an individual “conversion cookie”. The information collected with the help of cookies is used by Google to generate conversion statistics for us. However, we only see the total number of anonymous users who clicked on our ad and were redirected to a page with a conversion tracking tag. However, we do not receive any information that personally identifies users.

User data is processed pseudonymously within the Google advertising network. This means that Google does not store and process, for example, the names or e-mail addresses of users, but processes the relevant data cookie-related within pseudonymous user profiles. This means from Google’s point of view, the ads are not managed and displayed for a specifically identified person, but for the cookie holder, regardless of who this cookie holder is. This does not apply if a user has expressly permitted Google to process the data without this pseudonymisation. The information collected about the users is transmitted to Google and stored on Google’s servers in the USA.

Google is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

2. Legal basis for data processing
The legal basis for the processing of personal data using cookies is Art. 6 para. 1 lit. f DSGVO.

3. Purpose of data processing
We use the online marketing process Google “AdWords” to place ads on Google’s advertising network (e.g., in search results, in videos, on websites, etc.) so that they are displayed to users who have a presumed interest in the ads. This allows us to display ads for and within our online offer more specifically in order to present users only ads that potentially correspond to their interests.

4. Information on data use by Google, setting and objection options
Further information on data use by Google, possible settings and objections can be found in Google’s data protection declaration (https://policies.google.com/technologies/ads) and in the settings for the display of advertisements by Google (https://adssettings.google.com/authenticated).

4) Google Fonts

1. Description and scope of data processing
We integrate the fonts (“Google Fonts”) of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. When a page is called up, the user’s browser loads the required web fonts into their browser cache to display texts and fonts correctly. For this purpose, the browser used by the user must connect to Google’s servers. This gives Google knowledge that our website has been accessed via the user’s IP address.

Google is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

2. legal basis for data processing
The legal basis for the use of Google Fonts is Art. 6 para. 1 lit. f GDPR

3. Purpose of data processing
The use of Google Web Fonts is in the interest of a uniform and appealing presentation of our online offers.

4. Information on data use by Google, setting and objection options
Further information about Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy: https://www.google.com/policies/privacy/
Opt-Out: https://adssettings.google.com/authenticated.

5) Google Maps

1. Description and scope of data processing
On our website we use Google Maps (API) from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). Google Maps is a web service for displaying interactive (country) maps in order to display geographical information visually. By using this service, users will be able to see our location and find their way to us more easily.

Users can activate Google Maps with a click, only then data processing takes place. The data can be processed in the USA. The processed data may include in particular IP addresses and location data of the users, which, however, are not collected without their consent (as a rule within the framework of the settings of their mobile devices). Google is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

2. Legal basis for data processing
The legal basis for the processing of personal data using cookies is Art. 6 para. 1 lit. f GDPR

3. Purpose of data processing
By using this service, users can see our location and find their way to us more easily.

4. information on data use by Google, setting and objection options
If you do not agree to the future transmission of your data to Google in the context of the use of Google Maps, it is also possible to completely deactivate the Google Maps web service by switching off the JavaScript application in your browser. Google Maps and therefore also the map display on this website cannot be used.

The Google Terms of Use can be found at https://policies.google.com/terms?hl=en&gl=en, the additional Terms of Use for Google Maps can be found at https://www.google.com/intl/de_US/help/terms_maps.html
Opt-Out: https://adssettings.google.com/authenticated.

6) YouTube

1. Description and scope of data processing
We integrate the videos of the platform “YouTube” of the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. When users visit one of our pages with an embedded YouTube video, a connection to YouTube’s servers may be established. In this case, information of the user of our website (such as his IP address) is transferred to Google servers in the USA and stored there.
Google is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

2. Legal basis for data processing
The legal basis for the processing of personal data using cookies is Art. 6 para. 1 lit. f GDPR

3. Purpose of data processing
We use YouTube to present our products in an appealing way and to inform interested parties about our products.

4. Information on data use by Google, setting and objection options
Privacy Policy: https://www.google.com/policies/privacy/
Opt-Out: https://adssettings.google.com/authenticated.

7) Newsletter by Mailchimp

1. Description and scope of data processing
The newsletter is sent by the mail service provider “MailChimp”, a newsletter delivery platform of the US provider Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA. The shipping service provider can use the recipient’s data in pseudonymous form, i.e. without assignment to a user, to optimize or improve its own services, e.g. to technically optimize the dispatch and presentation of the newsletter or for statistical purposes. However, the shipping service does not use the data of our newsletter recipients to write them down itself or to pass the data on to third parties. Users can view the data protection provisions of the shipping service provider here: https://mailchimp.com/legal/privacy/.
The Rocket Science Group LLC d/b/a MailChimp is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with the European data protection level (https://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAG&status=Active).

2. Legal basis for data processing
The dispatch service provider is used on the basis of our legitimate interests according to Art. 6 Para. 1 lit. f GDPR and an order processing contract according to Art. 28 Para. 3 S. 1 GDPR.

3. Purpose of data processing
Delivery of the newsletter.

4. Duration of storage
The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected.
5. Possibility of opposition and elimination
The subscription to the newsletter can be cancelled by the user concerned at any time. For this purpose there is a corresponding link in every newsletter. Objection is also by telephone at +49 711-66 188-500, in writing: Fabrikstr. 5 | 73728 Esslingen or by e-mail at: unsubscribe@inpuncto.com The user data will be deleted after 7 days at the latest.

8) Newsletter Success Measurement

1. Description and scope of data processing
The newsletters contain a so-called “web-beacon”, i.e. a pixel-sized file which is retrieved from the server of our mail service provider Mailchimp when the newsletter is opened. Within the scope of this retrieval, technical information such as information about the user’s browser and system as well as his IP address and the time of retrieval are initially collected. The statistical surveys also include determining whether the newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is neither our goal nor, if used, that of the shipping service provider to observe individual users.

2. Legal basis for data processing
The legal basis for recording the success measurement of the newsletter is our legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR.

3. Purpose of data processing
We use this information to technically improve the services based on the technical data or the target groups and their reading behaviour based on their retrieval locations (which can be determined using the IP address) or access times. The evaluations also serve us to recognize the reading habits of the users and to adapt our contents to them or to send different contents according to the interests of our users.

4. Duration of storage
The data will be deleted no later than three months after cancellation of the newsletter.

5. Possibility of opposition and elimination
The subscription to the newsletter and thus also the possibility of measuring success can be cancelled by the user concerned at any time. For this purpose there is a corresponding link in every newsletter.
Objection is also by telephone at +49 711-66 188-500, in writing: Fabrikstr. 5 | 73728 Esslingen or by e-mail at: unsubscribe@inpuncto.com The user data will be deleted after 7 days at the latest.

9) Login/Registration for Webinars via LogMeIn

1. Description and scope of data processing
On our website, we offer users the opportunity to register for webinars by providing personal data. We use GoToWebinar, a service of LogMeIn Ireland Limited (hereinafter “LMI”).. The registration form is already part of the GoToWebinar application. When registering, the user is asked for his e-mail address and other personal data. The e-mail address and personal data will be used by the webinar organizer LMI to communicate with the user regarding the webinar. After registration, for example, the user receives his personal link to the LMI webinar by e-mail. LMI will use this data exclusively for participation in webinars and will not pass it on to third parties, nor will it use it for any other purposes. The following data is collected during the registration process:

(1) E-mail address
(2) First name
(3) Last name
(4) Organization

At the time of registration, the following data is also stored:

(1) Date and time of registration

By filling out the registration form for each user’s webinar, you expressly agree to these Terms of Use.
The terms of use of LMI GoToWebinar also apply to the use of the webinar offers: https://www.logmeininc.com/de/legal/terms-and-conditions and https://www.logmeininc.com/de/legal/privacy.

2. Legal basis for data processing
The legal basis for processing the data is Art. 6 para. 1 lit. a GDRP and an order processing contract with LMI pursuant to Art. 28 para. 3 sentence 1 GDRP if the user has given his consent.

3. Purpose of data processing
A registration of the user is required for the provision of certain services on our website. Your e-mail address and personal information will be used by the webinar organizer LMI to communicate with you regarding the webinar.

4. Duration of storage
The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. This is the case for the data collected during the registration process if the registration on our website is cancelled or changed.

5. Possibility of opposition and elimination
As a user, you have the option at any time to cancel your registration and to have the data stored about you modified or deleted.

If the user wishes to cancel his participation in a webinar, there is a corresponding link in every registration e-mail.

X. Application procedure

1. Description and scope of data processing
The application procedure requires that applicants provide us with the applicant data. The necessary applicant data can be found in the job descriptions. In principle, this includes personal details, postal and contact addresses and the documents associated with the application, such as cover letters, curriculum vitae and certificates. Applicants may voluntarily provide us with additional information.
If special categories of personal data within the meaning of Art. 9 Para. 1 GDPR are voluntarily provided as part of the application process, they will also be processed in accordance with Art. 9 Para. 2 lit. b GDPR (e.g. health data, such as severely disabled status or ethnic origin). If special categories of personal data within the meaning of Art. 9 para. 1 GDPR are requested from applicants as part of the application procedure, they will also be processed in accordance with Art. 9 para. 2 lit. a GDPR (e.g. health data if they are required for the exercise of a profession).

Applicants can send us their applications via e-mail. Please note, however, that e-mails are generally not sent in encrypted form and the applicants themselves must ensure that they are encrypted. Therefore, we cannot assume any responsibility for the transmission path of the application between the sender and the reception on our server.
In the event of a successful application, the data provided by the applicants may be further processed by us for the purposes of the employment relationship. By submitting their application to us, applicants declare their consent to the processing of their data for the purposes of the application procedure in accordance with the type and scope set out in this data protection declaration.

2. Legal basis for data processing
The processing of applicant data is carried out to fulfil our (pre)contractual obligations within the scope of the application procedure as defined in Art. 6 para. 1 lit. b. GDPR Art. 6 para. 1 lit. f. GDPR insofar as data processing becomes necessary for us, e.g. within the framework of legal proceedings (in Germany, § 26 BDSG also applies).

3. Purpose of data processing
We process applicant data only for the purpose and within the framework of the application procedure in accordance with the legal requirements.

4. Duration of storage and disposal possibility
If the application for a job offer was not successful or if the applicant has withdrawn his application (which the applicants are entitled to do at any time), the applicant’s data will be deleted.

Subject to justified revocation by the applicant, the data will be deleted after a period of six months so that we can answer any follow-up questions regarding the application and meet our obligations to provide evidence under the Equal Treatment Act. Invoices for any reimbursement of travel expenses will be archived in accordance with the provisions of tax law.

XI. Online presence in social media

1. Description and scope of data processing
We maintain online presences within social networks and platforms in order to communicate with customers, interested parties and active users and to inform them about our services. When using the respective platforms, user data can be processed outside of the European Union area. This can result in risks for users, as it could, for example, make it more difficult to enforce the rights of users. US providers certified under the Privacy Shield have undertaken to comply with EU data protection standards. The data of the users of the platforms are usually processed for market research and advertising purposes. For example, user profiles can be created on the basis of user behaviour and the resulting interests of users. The user profiles can in turn be used, for example, to place advertisements inside and outside the platforms which are presumed to correspond to the interests of the users. For these purposes, cookies are usually stored on the computers of the users in which the user behaviour and the interests of the users are stored. Furthermore, data can also be stored in the user profiles independently of the devices used by the users (in particular if the users are members of the respective platforms and are logged in to them).

2. Legal basis for data processing
The processing of users’ personal data is carried out on the basis of our legitimate interests in the effective information of users and communication with users in accordance with Art. 6 Para. 1 lit. f. GDPR. If the users are asked by the respective providers for their consent to data processing (i.e. their consent e.g. by ticking a checkbox or confirming a button), the legal basis for processing is Art. 6 para. 1 lit. a., Art. 7 GDPR.

3. Possibility of opposition and removal
For a detailed representation of the respective processing and the possibilities of objection (Opt-Out), we refer to the following linked information of the providers.

Also in the case of requests for information and the assertion of user rights, we point out that these can be asserted most effectively with the providers. Only the providers have access to the data of the users and can directly take appropriate measures and give information. If you nevertheless need help, you can contact us.

XII. Rights of the data subject

If your personal data is processed, you are the data subject as defined by the GDPR and you have the following rights towards the person responsible:

Right to information: You may ask the responsible person to confirm whether personal data relating to you will be processed by us and the right to access such data and to obtain further information and a copy of the data in accordance with the provisions of the law.

Right to rectification: you have a right of rectification and/or completion towards the data controller if the personal data processed concerning you are inaccurate or incomplete.

Right to cancellation and limitation of processing: You may request the data controller, in accordance with the provisions of the law, to delete the data concerning you immediately or, alternatively, to limit the processing of your data in accordance with the provisions of the law.

Right to be informed: If you have asserted the right to rectification, cancellation or limitation of processing to the controller, the latter is obliged to inform all recipients to whom the personal data concerning you have been disclosed of this rectification, cancellation or limitation of processing, unless this proves impossible or involves a disproportionate effort.

Right of withdrawal: You have the right to revoke your consent with effect for the future.

Right of objection: You can object at any time to the future processing of the data concerning you in accordance with the statutory provisions. In particular, you may object to the processing of your data for the purposes of direct marketing.

Right to complain to a supervisory authority: Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your place of residence, place of work or place of presumed infringement, if you are of the opinion that the processing of your personal data violates the GDPR.

Competent supervisory authority: Landesbeauftragte für Datenschutz und Informationsfreiheit Baden-Württemberg

Address:
Königstrasse 10 a
70173 Stuttgart

Postal address:
Postfach 10 29 32
70025 Stuttgart

Phone: +49 (0)711/615541-0
Fax: +49 (0)711/615541-15
E-mail: poststelle@lfdi.bwl.de
Website: https://www.baden-wuerttemberg.datenschutz.de/

XIII. Up-to-dateness and amendment of the data protection declaration

This data protection declaration is currently valid and was updated on 12 September 2018.

We ask you to inform yourself regularly about the contents of our data protection declaration. Due to the further development of our Internet pages and offers or due to changed legal or official requirements, it may become necessary to amend this data protection declaration. We will inform you as soon as the changes require your cooperation (e.g. consent) or other individual notification.

You can call up and print out the current data protection declaration at any time on the website at:
https://www.inpuncto.com/en/data-privacy/

Disclaimer

Liability for content
The contents of our pages were created with great care. However, we can not assume any liability for the accuracy, completeness and topicality of the content. As a service provider we are responsible according to § 7 Abs.1 TMG for own contents on these sides according to the general laws. According to §§ 8 to 10 TMG, however, we as a service provider are not obliged to monitor transmitted or stored external information or to investigate circumstances that indicate illegal activity. Obligations to remove or block the use of information under general law remain unaffected. A liability in this regard, however, is only possible from the date of knowledge of a specific infringement. Upon notification of appropriate violations, we will remove this content immediately.

Liability for links
Our offer contains links to external websites of third parties on whose contents we have no influence. Therefore, we can not assume any liability for these external contents. The respective provider or operator of the pages is always responsible for the contents of the linked pages. The linked pages were checked for possible legal violations at the time of linking. Illegal content was not recognizable at the time of linking. However, a permanent content control of the linked pages is not reasonable without concrete evidence of an infringement. Upon notification of violations, we will remove such links immediately.

Copyright
The content and works on these pages created by the site operators are subject to German copyright law. The reproduction, processing, distribution and any kind of exploitation outside the limits of copyright require the written consent of the respective author or creator. Downloads and copies of this site are for private, non-commercial use only. As far as the contents on this site were not created by the operator, the copyrights of third parties are considered. In particular contents of third parties are marked as such. If you should still be aware of a copyright infringement, we ask for a note. Upon notification of violations, we will remove such content immediately.

Image Copyright
The materials mentioned are largely protected by copyright and other protective laws. The website may also contain design elements on which third parties hold copyrights. The use of images is copyright compliant. Either the rights are original with the inPuncto GmbH or use with the consent of the copyright holder. inPuncto reserves all rights to the text, images, graphics and multimedia additions used to design the website. Unless expressly stated, content (including images, graphics or texts) of this website may not be copied, distributed, modified or made available to third parties, even in extracts, without the written permission of inPuncto. All contents of the web pages of inPuncto are created with great care. Nevertheless, no guarantee can be given for the accuracy of the information. All information provided on these pages is non-binding and is intended to be used as a guide.

Trademark
SAP® is a registered trademark of SAP SE in Germany and other countries
Microsoft™ is a registered general trademark of Microsoft Inc.
Microsoft® is a registered trademark for software of Microsoft Inc.
Other product names are used only to identify the products and may be registered trademarks of the respective manufacturers.

Contradiction advertising emails
The use of the in the context of the imprint published obligation contact information for sending unsolicited advertising and information materials is hereby rejected. The operators of the pages expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, for example through spam e-mails.