Data Protection
Secardeo GmbH undertakes to protect personal data and to record and process it exclusively in accordance with the data protection law and this privacy policy. The collection and processing of personal data by Secardeo GmbH are subject in particular to the following provisions:
– EU General Data Protection Regulation (GDPR),
– New version of the Federal Data Protection Act (BDSG).
By using the website, you agree to the following guidelines for the protection of personal data:
Name and address of the responsible person
Responsible for the collection, processing and use of your personal data within the meaning of Art. 4 No. 7 GDPR is:
Secardeo GmbH
Dr. Gunnar Jacobson
Hohenadlstr. 4
D-85737 Ismaning
dataprotection@secardeo.com
Recording of data
When visiting this page, the web server automatically creates entries in log files. This data includes e.g. browser type and version, operating system, referrer URL, IP address, access date and time, and the URL invoked. These data are collected without any assignment to your person or other profiling only for the purpose of statistical evaluation.
Storage and processing of data
Personal data will only be stored or processed if you provide this information voluntarily, e.g. by entering in a contact form.
Data Retention Period
Personal data will only be stored for as long as is necessary to fulfill the purposes stated here or as defined by the retention periods stipulated by the legislator. After the respective purpose ceases to apply or after the retention periods have expired, the data will be deleted in accordance with the statutory provisions.
Transfer of personal data
A transfer is done only within the scope of the legal requirements.
Transfer to Third Countries
Personal data is not transferred to countries outside the European Union or the EEA, unless otherwise stated.
Information, modification and deletion of personal data
You have the right to receive information from us (Article 15 GDPR), which of your personal data we process. If this information is no longer correct, you can ask us to correct the data. You have the right to demand the deletion of your personal data (Art.15 GDPR). In accordance with Art. 18 GDPR we may require you to restrict the processing of your personal data: You have the right to receive personal data that you have given us for processing on request in a transferable and machine-readable format (Art. 20 GDPR), You can object to the processing at any time. (Art. 21 GDPR).
Security of personal data
Your personal data made available to us will be protected by technical and organizational security measures so that they are not accessible to unauthorized third parties. For transmission of sensitive data, these can be encrypted by e-mail. Our certificates can be found at https://certbox.secardeo.com.
Hosting
We host our website with IONOS SE. The provider is IONOS SE, Elgendorfer Str. 57, 56410 Montabaur (hereinafter: IONOS). When you visit our website, IONOS collects various log files including your IP addresses. For details, please refer to the privacy policy of IONOS: https://www.ionos.de/terms-gtc/terms-privacy.
The use of IONOS is based on Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in ensuring that our website is presented as reliably as possible. Insofar as a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR; the consent can be revoked at any time.
Order processing
The operation of the websites of Secardeo GmbH is carried out by IONOS SE, Elgendorfer Str. 57, D-56410 Montabaur. For this an order processing contract was concluded.
SSL encryption
To protect the security of your data during transmission, we use state-of-the-art encryption methods (e.g. SSL) via HTTPS.
Cookie Policy
This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful. The legal bases are Art. 13 para. 1 BDSG (consent of the data subject or justification by law as well as legitimate interests) or Art. 6 para. 1 lit a GDPR, Art. 6 para. 1 lit. c) in conjunction with Art. 32 and Art. 6 para. 1 lit. f) GDPR.
We use both Session and Persistent Cookies for the purposes set out below:
Cookies Policy / Notice Acceptance Cookies
Type: Persistent Cookies
Administered by: Us
Purpose: These Cookies identify if users have accepted the use of cookies on the Website.
Tracking and Performance Cookies
Type: Persistent Cookies
Administered by: Third-Parties
Purpose: These Cookies are used to track information about traffic to the Website and how users use the Website. The information gathered via these Cookies may directly or indirectly identify you as an individual visitor. This is because the information collected is typically linked to a pseudonymous identifier associated with the device you use to access the Website. We may also use these Cookies to test new pages, features or new functionality of the Website to see how our users react to them.
Contact form
If you send us inquiries via the contact form, the information you provide in the
form, including the contact details you provide there, will be stored by us for the purpose of processing the inquiry and for the case of follow-up questions. We do not pass on this data without your consent. The processing of the data entered in the contact form is therefore based exclusively on your consent (Art. 13 para. 1 BDSG or Art. 6 para. 1 lit. a GDPR). You can revoke this consent at any time. All you need to do is send us an informal notification by e-mail. The data you enter in the contact form will remain with us until you request us to delete it, revoke your consent to storage, or the purpose for storing the data no longer applies (e.g. after the processing of your inquiry has been completed). Mandatory legal provisions – in particular retention periods – remain unaffected.
Whitepaper Download
You can download whitepapers from our website. To do so, you must fill in the mandatory information and confirm that you want to download the whitepaper by clicking "Send". This will save the information you provide in our systems.
You may also agree to receive information about free webinars by email. We will process your data solely for the purpose of contacting you as described above.
We process your data on the basis of our legitimate interest in being able to offer you similar goods and services, Art. 6 (1) p. 1 lit. f) GDPR. In case of active consent to receive information about free webinars, the legal basis is your consent according to Art. 6 (1) S. 1 lit. a) GDPR.
The following personal data is processed during registration:
- First name
- Surname
- Company name
- E-mail address
Regarding the processing of your personal data in the context of the whitepaper download and the subsequent contacting of similar goods and services, you may exercise your right to object at any time without incurring any costs other than the transmission costs according to the prime rates. Please contact dataprotection@secardeo.com for this purpose.
You may revoke your consent at any time and without giving reasons. For this purpose, please send an e-mail to dataprotection@secardeo.com.
After receiving your revocation or objection, Secardeo will no longer contact you in the future and, if applicable, delete your collected data.
Inquiry by e-mail, telephone or fax
If you contact us by e-mail, telephone or fax, your enquiry including all resulting personal data (name, enquiry) will be stored and processed by us for the purpose of processing your request. We will not pass on this data without your consent. We will not pass on this data without your consent. This data is processed on the basis of Art. 13 para. 2 lit. a) BDSG or Art. 6 para. 1 lit. b GDPR, insofar as your request is related to the fulfilment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on your consent (Art. 13 para. 1 BDSG or Art. 6 para. 1 lit. a GDPR) and/or on our legitimate interests (Art. 13 para. 1 BDSG or Art. 6 para. 1 lit. f GDPR), as we have a legitimate interest in effectively processing the enquiries addressed to us.
The data you send to us via contact requests will remain with us until you request us to delete it, revoke your revoke your consent to storage or the purpose for storing the data no longer applies (e.g. after the (e.g. after the processing of your request has been completed). Mandatory legal provisions – in particular statutory retention periods – remain unaffected.
Handling applicant data
We offer website visitors the opportunity to submit job applications to us (e.g., via e-mail, via postal services on by submitting the online job application form). Below, we will brief you on the scope, purpose and use of the personal data collected from you in conjunction with the application process. We assure you that the collection, processing, and use of your data will occur in compliance with the applicable data privacy rights and all other statutory provisions and that your data will always be treated as strictly confidential.
Scope and purpose of the collection of data
If you submit a job application to us, we will process any affiliated personal data (e.g., contact and communications data, application documents, notes taken during job interviews, etc.), if they are required to make a decision concerning the establishment or an employment relationship. The legal grounds for the aforementioned are § 26 BDSG according to German Law (Negotiation of an Employment Relationship), Art. 6(1)(b) GDPR (General Contract Negotiations) and – provided you have given us your consent – Art. 6(1)(a) GDPR. You may revoke any consent given at any time. Within our company, your personal data will only be shared with individuals who are involved in the processing of your job application.
If your job application should result in your recruitment, the data you have submitted will be archived on the grounds of § 26 BDSG and Art. 6(1)(b) GDPR for the purpose of implementing the employment relationship in our data processing system.
Data Archiving Period
If we are unable to make you a job offer or you reject a job offer or withdraw your application, we reserve the right to retain the data you have submitted on the basis of our legitimate interests (Art. 6(1)(f) GDPR) for up to 6 months from the end of the application procedure (rejection or withdrawal of the application). Afterwards the data will be deleted, and the physical application documents will be destroyed. The storage serves in particular as evidence in the event of a legal dispute. If it is evident that the data will be required after the expiry of the 6-month period (e.g., due to an impending or pending legal dispute), deletion will only take place when the purpose for further storage no longer applies.
Longer storage may also take place if you have given your agreement (Article 6(1)(a) GDPR) or if statutory data retention requirements preclude the deletion.
Admission to the applicant pool
If we do not make you a job offer, you may be able to join our applicant pool. In case of admission, all documents and information from the application will be transferred to the applicant pool in order to contact you in case of suitable vacancies.
Admission to the applicant pool is based exclusively on your express agreement (Art. 6(1)(a) GDPR). The submission agreement is voluntary and has no relation to the ongoing application procedure. The affected person can revoke his agreement at any time. In this case, the data from the applicant pool will be irrevocably deleted, provided there are no legal reasons for storage.
The data from the applicant pool will be irrevocably deleted no later than two years after consent has been granted.
Cookie Consent with Usercentrics
This website uses the cookie consent technology of Usercentrics to obtain your consent to the storage of certain cookies on your device or for the use of specific technologies, and to document the former in a data protection compliant manner. The party offering this technology is Usercentrics GmbH, Rosental 4, 80331 München, Germany, website:
https://usercentrics.com/ (hereinafter referred to as “Usercentrics”).
Whenever you visit our website, the following personal data will be transferred to Usercentrics:
• Your declaration(s) of consent or your revocation of your declaration(s) of consent
• Your IP address
• Information about your browser
• Information about your device
• The date and time you visited our website
Moreover, Usercentrics shall store a cookie in your browser to be able to allocate your declaration(s) of consent or any revocations of the former. The data that are recorded in this manner shall be stored until you ask us to eradicate them, delete the Usercentrics cookie or until the purpose for archiving the data no longer exists. This shall be without prejudice to any mandatory legal retention periods.
Usercentrics uses cookies to obtain the declarations of consent mandated by law. The legal basis for the use of specific technologies is Art. 6 Sect. 1 Sentence 1 lit. c GDPR.
Consent-Management with Usercentrics
We use the Usercentrics Consent Management Platform as a consent management tool as part of the analytics activities on our website. The Usercentrics Consent Management Platform collects log file and consent data using JavaScript. This JavaScript enables us to inform users about their consent to certain tags on our website and to obtain, manage and document this consent.
Therefore we process the following data:
1.Consent data or data of consent (anonymized log data (Consent ID, Processor ID, Controller ID), Consent Status, Timestamp).
2. Device data (e.g. shortened IP addresses (IP v4, IP v6), device information, timestamp)
3. User data (e.g. eMail, ID, browser information, SettingIDs, Changelog)
The ConsentID (contains the above data), the Consent status incl. timestamp are stored in the local memory of your browser and simultaneously on the cloud servers used. Further processing will only take place if you submit a request for information or revoke your consent. In this case, the relevant information is provided to us in a compact data format in an easily readable text form for the purpose of data exchange (JSON file).
No user information is stored for the statistics of the use of the granted or not granted consent. Only the frequency and locations of clicks are stored.
The personal data is stored on a Google Cloud server located in the EU (Brussels, Frankfurt am Main).
The purpose of the data processing is the analysis and management of the consents granted, in order to comply with our obligation of a GDPR compliant consent management. The use of Usercentrics serves the purpose of proving granted and non-granted consents as well as their management.
The legal basis for the management of your consents for the processing of your personal data is Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in the legally secure documentation and verifiability of consents, the control of marketing measures on the basis of the consent granted as well as the optimization of consent rates.
The data is deleted as soon as it is no longer required. The associated cookie has a term of 60 days. The revocation document of a previously granted consent is kept for a period of three years. The retention is based on the one hand on our accountability pursuant to Art. 5 (2) GDPR.
Google Analytics
This website uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about your use of the website (including your IP address) will be transmitted to and stored by Google on servers in the United States. Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. Google will not associate your IP address with any other data held by Google. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above.
You can prevent the collection and disclosure of the data generated by the cookie and related to your use of the website (including your IP address) to Google, as well as the processing of this data by Google, by downloading and installing the browser plug-in made available at the following link: http://tools.google.com/dlpage/gaoptout?hl=en.
Google Tag Manager
Google Tag Manager is used on this website. Google Tag Manager is a solution from Google Inc. that allows companies to manage website tags through one interface. The Tag Manager tool itself (which implements the tags) is a cookie-less domain and does not collect any personal data. Google Tag Manager takes care of triggering other tags, which in turn may collect data. Google Tag Manager does not access this data. We hereby point this out separately. Google Tag Manager does not access this data. If a deactivation has been made by the user at domain or cookie level, this remains in place for all tracking tags that are implemented with Google Tag Manager.
Google Ads
This site uses Google Ads. Google Ads is an online advertising program of Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.
Google Ads enables us to display advertisements in the Google search engine or on third-party websites when the user enters certain search terms on Google (keyword targeting). Furthermore, targeted advertisements can be played on the basis of user data available at Google (e.g. location data and interests) (target group targeting). As the website operator, we can evaluate this data quantitatively by analyzing, for example, which search terms led to the display of our advertisements and how many ads resulted in corresponding clicks. The use of Google Ads is based on Art. 6(1)(f) GDPR. The website operator has a legitimate interest in marketing the operator’s services and products as effectively as possible.
Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://policies.google.com/privacy/frameworks and https://privacy.google.com/businesses/controllerterms/mccs/.
Google reCAPTCHA
We use “Google reCAPTCHA” (hereinafter “reCAPTCHA”) on our websites. This service is provided by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA (“Google”).
reCAPTCHA is used to check whether the data entered on our website (such as on a contact form) has been entered by a human or by an automated program. To do this, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This analysis starts automatically as soon as the website visitor enters the website. For the analysis, reCAPTCHA evaluates various information (e.g. IP address, how long the visitor has been on the website, or mouse movements made by the user). The data collected during the analysis will be forwarded to Google.
The reCAPTCHA analyses take place completely in the background. Website visitors are not advised that such an analysis is taking place.
Data processing is based on Art. 6 (1) (f) GDPR. The website operator has a legitimate interest in protecting its site from abusive automated crawling and spam.
For more information about Google reCAPTCHA and Google’s privacy policy, please visit the following links: www.google.com/intl/de/policies/privacy/ and www.google.com/recaptcha/intro/android.html.YouTube
Our website uses plugins from the Google-powered YouTube service. YouTube is operated by Google, i.e. by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. When you are using one of our online services equipped with a YouTube plugin, a connection to the YouTube servers is established and information about the online services you are using is communicated to the YouTube server. When you are logged in to your YouTube account, you allow YouTube to associate your browsing activity directly with your personal profile. You can prevent that by logging off from your YouTube account. For further information about YouTube’s usage of user data, please refer to YouTube’s privacy policy at https://www.google.com/intl/en/policies/privacy/.
OpenStreetMap
We are using the mapping service provided by OpenStreetMap (OSM).
We host OpenStreetMap on the server of the following provider:
Mapbox, Inc
740 15th Street NW, 5th Floor
Washington DC 20005
privacy@mapbox.com
We use OpenStreetMap with the objective of ensuring the attractive presentation of our online offers and to make it easy for visitors to find the locations we specify on our website. This establishes legitimate grounds as defined in Art. 6(1)(f) GDPR.
Responsible data protection supervisory authority
Bayerisches Landesamt für Datenschutzaufsicht (BayLDA)
Promenade 27
91522 Ansbach
Phone: +49 (0) 981 53 1300
Fax: +49 (0) 981 53 98 1300
E-Mail: poststelle@lda.bayern.de
Timeliness and changes to the privacy policy
This privacy statement is currently valid as of May 2023. We reserve the right to change the privacy policy in order to adapt it to changing legal situations, or to changes in services and data processing.