We appreciate the trust you place in us and take the utmost care and apply the highest security standards to protect your personal data from unauthorized access. Personal data is processed on our website in accordance with the provisions of the General Data Protection Regulation (GDPR).
Data Controller
The data controller within the meaning of the GDPR is:
DIgSILENT GmbH
Heinrich-Hertz-Straße 9
72810 Gomaringen
Germany
Telefon.: +49 (0)7072-9168-0
Telefax.: +49 (0)7072-9168-88
E-Mail: mail@digsilent.de
The data protection officer
Should you have any questions regarding the collection, processing or use of your personal data or regarding requests, corrections, blocking or deletion of information, please contact our data protection officer: datenschutz@digsilent.de
Collection, processing and use of personal data
We collect, process and use personal data only insofar as it is necessary for the establishment, content or amendment of the legal relationship (inventory data). This is done on the basis of Art. 6 para. 1 lit. b) GDPR, which permits the processing of data for the fulfilment of a contract or pre-contractual measures. We collect, process and use personal data about the use of this website (usage data) only insofar as this is necessary to enable the user to utilise the service or to bill the user.
Storage Period
The personal data processed by us will be stored by us for as long as is necessary for the respective purpose – in particular the processing of your request or your order – in compliance with the statutory retention periods (e.g. ten years for tax-relevant documents or six years for other business letters in accordance with the German Commercial Code and Fiscal Code) (Art. 6 para. 1 sentence 1 lit. c GDPR). Storage beyond the statutory retention periods is possible if you have consented to this in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR or if the purpose of the data processing has not yet ceased to apply.
Data Transmission
We only transfer personal data to third parties if this is necessary in the context of contract processing, for example to the credit institution responsible for processing payments.
Any further transmission of the data will not take place or will only take place if you have expressly consented to the transmission. Your data will not be passed on to third parties without your express consent, for example for advertising purposes.
The basis for data processing is Art. 6 para. 1 lit. b GDPR, which permits the processing of data for the fulfilment of a contract or pre-contractual measures.
Webshop
Processing activity
- Processing of customer orders
- Management of payment information, information about order data.
In order to be able to place orders, a user account must be created in the web shop. Personal data is only stored if you create a user account in the webshop. We exclusively use the data you provide to process orders and to be able to contact you by e-mail in the event of queries. The following data is stored:
- E-Mail Address
- Username
- Name
- Invoice Address
If you open the product page of a Self E-Learning your IP address will be used to estimate your geographical location. This information is only used to assign the correct streaming region and is not stored.
LMS
Processing activity
- Provision of training materials
- Realisation of digital training and seminar scenarios
Personal data is only stored if you ordered a Self E-Learning. An LMS account is created automatically after ordering a Self E-Learning course. The data is exclusively used to enable the login to the LMS and the correct streaming region. The following data is stored:
- E-Mail Address
- Username
- Name
- Streaming-Region
- IP Address (only when using the AppStreaming)
LMS and Webshop
The hosting of the webshop and LMS as well as the execution of backups and software updates of the websites are carried out by our service provider VOREST AG (Bleichstr. 21, 75173 Pforzheim). If we pass on data to our service provider, they may only use the data to fulfill these purposes. The service provider has been carefully selected and commissioned by us.
They are contractually bound to our instructions and have suitable technical and organisational measures in place to protect the rights of the data subjects.
PAYONE
If “Pay by invoice” is not selected as the payment method, the payment will be processed by the payment service provider BS PAYONE GmbH, Lyoner Straße 9 60528 Frankfurt/Main (hereinafter referred to as “BS PAYONE”). If you select payment via PAYONE, the payment details you enter will be transmitted to BS PAYONE.
Information on BS PAYONE’s privacy policy can be found at https://www.payone.com/datenschutz/.
The transmission of your data to BS PAYONE is based on Art. 6 para. 1 lit. a GDPR (consent) and Art. 6 para. 1 lit. b GDPR (processing for the fulfilment of a contract). You have the option to withdraw your consent to data processing at any time. A revocation does not affect the effectiveness of data processing operations in the past.
Use of cookies with a functional purpose
We use “cookies” to make your visit to our website more comfortable and to allow the use of certain functions. Cookies are small text files, which are used as identifiers. We transfer these cookies via your web browser to your computer’s hard drive and are able to read these during your current visit (“session cookies”). Please note that certain cookies are set as soon as you go to our website. Our cookies are protected by the security standards of your web browser against use by third parties. You have the option to prevent cookies from being stored on your computer by selecting the appropriate settings in your browser. However, this can limit the functionality of our website for you.
The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f) GDPR.
Our security standards
Your personal data on our website is transmitted over the Internet using the SSL security system (Secure Socket Layer). This technique offers a high level of security and is, for example, also used by banks to protect data for online banking. We secure our website and other systems through technical and organizational measures against loss, destruction, access, modification or distribution of your data by unauthorized persons.
Rights of data subjects
You are entitled to the following statutory rights for data subjects, provided the requirements are met:
- Right to withdraw at any time in accordance with Art. 7 para. 3 GDPR, if applicable, consent granted to us in accordance with Art. 6 para. 1 sentence 1 lit. a) GDPR; as a result, we are no longer allowed to continue processing data based on this consent in the future
- Right to information about your data stored by us in accordance with Art. 15 GDPR
- Right to correction of inaccurate data in accordance with Art. 16 GDPR
- Right to deletion of data stored by us in accordance with Art. 17 GDPR
- Right to restriction of processing of data stored by us in accordance with Art. 18 GDPR
- Right to data portability in accordance with Art. 20 GDPR
- Right to lodge a complaint with a competent supervisory authority in accordance with Art. 77 GDPR if you believe that the processing of your personal data violates the provisions of the GDPR.
Right to object
If your personal data is processed on the basis of legitimate interests under Art. 6 para. 1, sentence, 1 lit. f) GDPR, you have the right, pursuant to Art. 21 GDPR, to object to the processing of your personal data if reasons exist that arise from your particular situation or if the objection is directed against direct advertising.
If you would like to exercise your right of objection, simply send an e-mail to: mail@digsilent.de
If you lodge an objection, we will no longer process your personal data unless we can demonstrate compelling legitimate reasons for the processing that outweigh your interests, rights and freedoms.
hCaptcha
We use hCaptcha (hereinafter referred to as “hCaptcha”) on this website. The provider is Intuition Machines Inc 2211 Selig Dr, Los Angeles, CA 90026, United States (hereinafter “IMI”).
The purpose of hCaptcha is to check whether the data input on this website (e.g. in a contact form) is made by a human or by an automated programme. For this purpose, hCaptcha analyses the behaviour of the website visitor based on various characteristics.
This analysis begins automatically as soon as the website visitor enters a website with activated hCaptcha. To analyse this, hCaptcha evaluates various pieces of information (e.g. IP address, time spent on the website by the website visitor or mouse movements made by the user). The data collected during the analysis is forwarded to IMI. If hCaptcha is used in “invisible mode”, the analyses run completely in the background. Website visitors are not informed that an analysis is taking place.
The data is stored and analysed on the basis of Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in protecting its website from abusive automated spying and SPAM. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user’s terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent can be revoked at any time.
Data processing is based on the Standard Contractual Clauses (SCC), which are contained in the Data Processing Addendum to IMI’s General Terms and Conditions or the data processing contracts.
Further information on hCaptcha can be found in the privacy policy and terms of use at the following links: https://www.hcaptcha.com/privacy and https://hcaptcha.com/terms.
New Relic
We use the NewRelic software on our website. This enables your website usage to be analysed. The information stored by the cookie about your use of this website (including your IP address) is transmitted to a NewRelic server in the USA. We process the data on the basis of our overriding interest in the optimal marketing of our online offer in accordance with Art. 6 para. 1 f) GDPR.
NewRelic will use the stored information to analyse your use of the website, to compile reports on website activity for the website operator and to provide other services related to website activity and internet usage.
NewRelic is certified under the Privacy Shield Agreement and thus guarantees compliance with European data protection legislation: https://www.privacyshield.gov/participant?id=a2zt0000000TNPiAAO&status=Active
Further information on data protection can be found at: https://newrelic.com/termsandconditions/privacy
AWS
Purchased Self E-Learning courses offer the option of using the PowerFactory AppStreaming. This is realised via Amazon Web Services (AWS). When the AppStreaming is called up from the LMS, an anonymised identifier is transferred to AWS for user assignment. No personal data is transferred to AWS. The IP address is recorded when the AppStreaming is used. Further information can be found on the AWS data protection page: https://aws.amazon.com/privacy/.
