Data Protection

The ISD Software und Systeme GmbH takes the protection of your personal data very seriously. We keep strictly to the rules of data protection laws. Personal data are only collected to a technically necessary extent on this website. In no case will the collected data be sold or passed on to any third parties for any other reasons. The following declaration provides an overview of how this protection is ensured, which kind of data and for which purpose data are collected.

1. Information about collection of personal data
(1) The following paragraphs inform you on how personal data will be collected during your visit of our website. Personal data are all data that can be referred to you as a person, e.g. name, address, E-mail address(es), user behaviour.  

(2) Responsible according to Article 4, Paragraph 7 of the General Data Protection Regulation (GDPR) of the EU is the ISD Software und Systeme GmbH, Hauert 4, 44227 Dortmund, Germany, info@isdgroup.com. You can contact our data protection officer at datenschutz@agad.de or via our postal address with the addendum “Der Datenschutzbeauftragte” (German for “The Data Protection Officer”).

(3) When you contact us via E-mail or a contact form, the data with which you provided us (your E-mail address, possibly your name) will be saved by us to answer your questions. You can provide us with further data on a voluntary basis to facilitate our contact with you to answer your questions. The data received in the process will be deleted by us as soon as their storage will no longer be necessary, or, if there is a legal obligation to keep them, their processing will be restricted by us.

(4) If we use contracted providers for individual functions of our offer, or if we want to use your data for promotional purposes, we will inform you in the following in a detailed manner about the relevant processes, including the specified criteria for storage periods.

2. Your rights
(1) You can claim the following rights from us with regard to personal data referring to you:

  • The right to obtain information,
  • The right to demand correction or deletion of data,
  • The right to restrict processing of data,
  • The right to object to the processing of data,
  • The right to data portability.

(2) In addition, you are entitled to file a complaint with the competent data protection authority

Landesbeauftragte für Datenschutz und Informationsfreiheit
Nordrhein-Westfalen
Postfach 20 04 44
40102 Düsseldorf

concering our processing of your personal data.

3. Collection of personal data of visitors of our website
(1) In case of a purely informative use of our website, i.e. if you do not register, or otherwise transmit any information to us, we will only collect those personal data that your browser transmits to our Server. If you want to view our website, we will collect the following data, which are technically necessary for us to display our website to you and to ensure stability and security. (Legal basis is Article 6, Paragraph 1, Sentence 1, Letter f of GDPR):

  • IP address
  • Date and time of request
  • Time zone difference compared to Greenwich Mean Time (GMT)
  • Content of request (concrete page)
  • Access status/HTTP status code
  • Data volume transferred
  • Website from which the request comes
  • Browser
  • Operating system and its UI
  • Language and version of browser software

(2) In addition to the aforementioned data, cookies will be stored on your computer when you use our website. Cookies are small text files that are stored on the hard disk of your computer, assigned to the browser that you used. They provide the party setting the cookie (here: us) with specific information. Cookies cannot run any programs or infect your computer with viruses. They only serve the purpose of making the Internet site more effective and user-friendly.

(3) Use of cookies:
a) This website uses the following types of cookies the scope and function of which are explained on the following page: https://www.isdgroup.com/en/cookies.html

4. Other website functions and offers
(1) In addition to providing you with information, our website offers various services. To use these services, you will, generally, have to enter additional personal data as required for us to provide the respective services. This data is also subject to the aforementioned data processing principles.

(2) We sometimes use third-party service providers to process your data. We carefully select such providers, they are bound to our instructions, and they are monitored on a regular basis.

(3) We may also transfer your personal data to third parties if promotional activities, prize competitions, contract conclusions, or other services are offered jointly with our partners. You will receive detailed information upon entering your personal data or in the description of the respective offers below.

(4) If our service providers or partners are headquartered outside the EEA (European Economic Area), you will be informed of the consequences in the description of the respective offers.

5. Objection to or revocation of consent to the processing of your data
(1) You are free to withdraw your consent to the processing of your personal data at any time. Such revocation will impact the reliability of the processing of your personal data once it has been issued to us.

(2) To the extent that the processing of your personal data is based on the balancing of interests, you may object to the processing. This is the case if the processing is not required to execute a contract we may have with you. Please refer to the descriptions of the respective functions below for details. Should you object to the processing of your personal data, please indicate the reasons why you do not wish for your personal data to be processed as commonly practiced by us. In the event of your justified objections, we will examine the situation and will either discontinue/adapt the processing of your personal data or explain our compelling and justified reasons why we will continue to process your personal data.

(3) As a matter of course, you may object to the processing of your personal data for advertising and data analysis purposes at any time. To object to the processing of your personal data for advertising purposes, please contact us at ISD Software und Systeme GmbH, Marketing, Hauert 4, 44227 Dortmund, marketing@isdgroup.com

6. Newsletter
(1) You can agree to subscribe to our Newsletter that informs you about current news and offers. The advertised products and services are mentioned in the declaration of consent.  

(2) We use the so-called “double opt-in” procedure for the subscription to our Newsletter. This means that we will send you an E-mail to a specified E-mail address after your subscription. In this E-mail we will ask you to confirm that you want to receive our Newsletter. If you do not confirm your subscription within 14 days, your information will be deleted automatically. Furthermore, we will save your respective IP address and the times of your request for subscription and confirmation. The purpose of this procedure is to prove your subscription, and, if required, investigate and solve misuses of your personal data.

(3) Mandatory information for obtaining our Newsletter is your E-mail address, Mr./Ms./Dr., First name, Last name, and Post code. All other information can be provided on a voluntary basis. After receiving your confirmation we will store these data to be able to send you the Newsletter. Legal basis is Article 6, Paragraph 1, Sentence 1, Letter a of GDPR.

(4) You can revoke your consent to our sending of the Newsletter to you at any time and unsubscribe from the Newsletter. You can do so by clicking on the Unsubscribe link that is provided in every Newsletter E-mail, or via this form on the website: https://newsletter.isdgroup.net/en/newsletter/unsubscribe.html, or via an E-mail to marketing@isdgroup.com, or communicate to the contact information indicated in our disclaimer to unsubscribe from our newsletter.

7. Online forms
We will collect the personal data that you provide to us when using our online forms (orders of trial versions or student versions, ticket orders, contact request, registrations for training courses, seminars, other ISD events etc.). The data you provided to us via the online forms, such as name, company, E-mail address, phone number etc., will be stored and used by us for the purpose of communication with you. Please note that the data will not be transmitted in encrypted form. Therefore, no confidential information should be sent via the contact forms.
The data will not be passed on to any third parties, neither for commercial nor for non-commercial purposes.

8. ISD account
You have the option to create an ISD account via which we can store your data. Depending on your permission level, the ISD account will give you access to the following platforms: ISD Wiki, ISD Forum, ISD Online Help and ISD Filecenter. When creating an account at “My account”, the data specified by you will be revocably saved. You can delete your user account in your account area at any time.

9. The Remote Support functionality of the ISD Group
For customers with difficult-to-diagnose issues, the ISD Group has added a remote support functionality that enables it to view a customer computer remotely via the Internet in real-time. The Citrix software “GoToAssist” is used for this purpose. This functionality is used only when authorized by the customer and while the customer is at the computer unless the customer authorizes longer durations of remote access while he or she is not at the computer. The functionality enhances the customer’s ability to explain and demonstrate the problem being experienced.
For remote support, the customer initiates a secure connection with a support engineer of the ISD Group, enabling the support engineer to either view or take control of the customer’s system. In order to create this connection, the customer will download a small client to his / her system that will communicate with the support engineer’s computer. This connection will be encrypted via a 128-bit secured socket layer to ensure that no data transmitted between the customer system and the ISD support engineer is compromised. The communication between the two computers takes place via a server at Citrix Online. Detailed information on the utilized software, including a Security Whitepaper, can be found at: www.gotoassist.com
Before the screen contents on the user’s computer are transmitted, the user will be asked if he/she wants to allow such transmission. The customer retains full control of his / her system throughout the session. If at any time during this session the customer wishes to terminate the remote connection, he / she may do so and upon termination the client will be completely removed from the customer’s system, and the ISD support engineer will no longer be able to view or access the customer’s system.
The ISD Group treats all information it receives during a remote support session as confidential and proprietary customer information received for technical support purposes.

10. TeamViewer-Client
For customers with difficult-to-diagnose issues, the ISD Group has added a remote support functionality that enables it to view a customer computer remotely via the Internet in real-time. On our website we provide a link to the TeamViewer-Client of the TeamViewer GmbH, Jahnstr. 30, 73037 Göppingen, Germany, Phone: +49 (0)7161 60692 50, E-mail:  service@teamviewer.com. Please note that the separate data protection information of the TeamViewer GmbH apply, which can be accessed via Datenschutzerklärung Teamviewer-Client. Clicking on the Download button gives you the permission to download the remote maintenance tool TeamViewer. After successful download and the installation of the executable file (Teamviewer*.exe), a support team member of our company can connect to your computer and gain access to your system. For this to happen, you need to let our support team member have the ID shown in a small window. Only then can the remote connection be activated. While performing the remote services the staff members of the ISD Group can see your screen with all information contained therein. In your own interest you should therefore close all programs and ads that have nothing to do with the remote support services. By your acceptance of the terms of use and your consent to the remote connection (through provision of the ID), you contractually agree to ensure that we, the members of the support team, will not gain knowledge of any personal data from your environment while performing the remote services. The transfer of data by means of the TeamViewer takes place via the Internet. TeamViewer uses an encrypted connection. However, unlawful viewing or accessing of transferred data by third parties can never be entirely ruled out. We recommend considering this aspect for your decision whether you wish to use remote support services.

11. Webinars
ISD Software und Systeme GmbH organises webinars together with partner companies. Registration requires the entry of contact data (gender, first and last name, company, telephone number, e-mail address and postcode). The data is used to conduct the webinars and to contact you for the purpose of evaluating the webinars.
The legal basis for the processing is the execution of the contract pursuant to Art. 6 (1) sentence 1 lit. b) DS-GVO and, insofar as no contractual relationship exists, the legitimate interest pursuant to Art. 6 (1) sentence 1 lit. f) DS-GVO. Our legitimate interest lies in the effective implementation and continuous improvement of the webinars. If consent has been given to send commercial information, the legal basis is consent according to Art. 6 para. 1 sentence 1 lit. a) DS-GVO. The consent can be freely revoked at any time. Please send your revocation to marketing@isdgroup.com. The "GoToMeeting" tool of LogMeIn Ireland ltd. is used to conduct the webinars. Information on data processing by LogMeIn Ireland ltd. can be found here.
 
12. Google Fonts
“This website uses Google Fonts of the Google Inc. Google Fonts serve the purpose of representing text types and fonts that are provided by Google. In order to make these fonts available to a multitude of web pages, these will be provided by Google on their web servers when the web page is accessed. During the use of Google Fonts the IP address of the user will be transmitted to the servers of Google, and the information on the fonts used will be transferred. In the process, data may be transferred to the server of Google in the USA. The information on the fonts will be stored in the cache of the browser. We embed Google Fonts in order to make our website more aesthetic and visually uniform.  The legal basis for the data collection is provided by Article 6 I 1 f) GDPR. Google has submitted itself to the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework. More information on data processing by Google can be found in the Privacy Policy of Google https://policies.google.com/privacy?hl=de and in the FAQ concerning Google Web Fonts (English) https://developers.google.com/fonts/faq .”

Analysetools

1. Use of Google Analytics
(1) The ISD websites (isdgroup.com und help.isdgroup.com) use Google Analytics, a web analysis service provided by Google Inc. (”Google“). Google Analytics uses so-called cookies. They are text files that will be stored on your computer and enable an analysis of your use of our website. The information on your use of this website generated by the cookie will, as a rule, be submitted to a Google server in the USA, where it will be stored. If IP anonymization has been activated for this website, Google will abbreviate your IP address in all EU member states as well as in member states of the European Economic and Monetary Union prior to submission. The full IP address will only be submitted to a Google server in the USA and abbreviated there in exceptional cases. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports about website activities for the website operator, and to provide other services in connection with the use of the website and the Internet.

(2) The IP address transmitted by your browser in connection with Google Analytics will not be combined with other Google data.

(3) You may set your browser software to prevent cookies from being saved. Please note, however, that you may not be able to make full use of all website functions. In addition, You can prevent the data generated by the cookie and relating to your use of the website (including your IP address) from being collected by Google, as well as the processing of such data by Google, by downloading and installing the browser plugin available via the following link: https://tools.google.com/dlpage/gaoptout?hl=en-GB

(4) This website uses Google Analytics with the extension ”_anonymizeIp()“. This means that IP addresses will be processed in an abbreviated form and cannot be traced back to an individual. If your data can be linked to your person, this connection will be prevented and your personal data will be immediately erased.
Click on the link below to block data collection via Google Analytics. An opt-out cookie will prevent the collection of your data in the context of future visits to this website:

(5) We use Google Analytics to analyze and optimize the use of our website. The statistical data will help us to improve our offer and make it more attractive to you, our users. For the exceptional cases where personal data is submitted to the USA, Google has acceded the EU-US Privacy Shield: https://www.privacyshield.gov/EU-US-Framework. Google Analytics is used on the legal basis of Art. 6 Clause 1 Sent. 1 lit. f GDPR.

(6) Third-party information: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. Terms of use: http://www.google.com/analytics/terms/de.html,
Privacy policy: http://www.google.com/intl/de/analytics/learn/privacy.html,
Privacy statement: http://www.google.de/intl/de/policies/privacy.

(7) This website also uses Google Analytics to analyze overall visitor flow across multiple devices via user IDs. You may deactivate user analysis across multiple devices via the “My data”, “Personal data” function.

2. Use of Matomo
(1) The ISD Group websites (isdgroup.com, wiki.isdgroup.com, forum.isgroup.com und help.isdgroup.com) use the web analytics service Matomo to analyze and optimize the use of our website. The statistical data will help us to improve our offer and make it more attractive to you, our users. Matomo is used on the legal basis of Art. 6 Clause 1 p. 1 lit. f GDPR.

(2) For evaluation purposes, cookies (cf. § 3 for details) will be saved on your computer. The controller will store the information thus collected exclusively on its server in [Germany]. No evaluation will take place if you delete existing cookies and object to future cookie storage. Please note that, if you object to the use of cookies, you may not be able to use the full scope of this website. You can prevent the storage of cookies via your browser settings. You can block the use of Matomo by unselecting the box below and, thus, activating the opt-out plug-in:

6. Use of Hotjar Behavior Analytics
(1) We have integrated Hotjar Behavior Analytics on our website. Hotjar Behavior Analytics is a service of Hotjar Ltd. and provides optimization tools that analyze the behavior and feedback of users of our website through analysis and feedback tools. Hotjar Behavior Analytics uses cookies and other browser technologies to evaluate user behavior and recognize users. This information is used, among other things, to compile reports on website activity and to statistically analyze visitor data. Furthermore, Hotjar Behavior Analytics records clicks, mouse movements and scroll heights in order to create so-called heat maps and session replays. In this case, your data is passed on to the operator of Hotjar Behavior Analytics, Hotjar Ltd.,

Hotjar Ltd, Level 2, St Julians Business Centre 3 Elia Zammit Street St Julians STJ 3155 Malta.

(2) The use of Hotjar Behavior Analytics is based on your consent pursuant to Art. 6 para. 1 lit. a. DSGVO and § 25 para. 1 TTDSG.

(3) The concrete storage period of the processed data cannot be influenced by us, but is determined by Hotjar Ltd. Further information can be found in the privacy policy for Hotjar Behavior Analytics: https://www.hotjar.com/privacy/

7. Use of Hotjar CDN
(1) We use Hotjar CDN to properly deliver the content of our website. Hotjar CDN is a service of Hotjar Ltd. which acts as a Content Delivery Network (CDN) on our website to ensure the functionality of other services of Hotjar Ltd. For said services, you will find a separate section in this Privacy Policy. This section is only about the use of the CDN.

A CDN helps to provide content of our online offer, especially files such as graphics or scripts, faster with the help of regionally or internationally distributed servers. When you access this content, you establish a connection to servers of Hotjar Ltd,

Hotjar Ltd, Level 2, St Julians Business Centre 3 Elia Zammit Street St Julians STJ 3155 Malta,

whereby your IP address and possibly browser data such as your user agent are transmitted. This data is processed solely for the above purposes and to maintain the security and functionality of Hotjar CDN.

(2) The use of the Content Delivery Network is based on our legitimate interests, i.e. interest in a secure and efficient provision and optimization of our online offer pursuant to Art. 6 para. 1 lit. f. DSGVO.

(3) The concrete storage period of the processed data cannot be influenced by us, but is determined by Hotjar Ltd. Further information can be found in the privacy policy for Hotjar CDN: https://www.hotjar.com/privacy/

LinkedIn Insight-Tag

1. Type and scope of processing
We use LinkedIn Insight-Tag of LinkedIn Corporation, Sunnyvale, California, US to create audiences, segment visitor groups of our online offering, identify conversion rates, and then optimize them. This is especially the case when you interact with ads we have placed with LinkedIn Corporation. To this end, LinkedIn Corporation offers a retargeting of website visitors in order to display targeted advertising outside our website.

LinkedIn Insight-Tag collects data about visits to our website, including URL, referrer URL, IP address, device and browser properties (user agent), and time stamps. This data is used to display anonymized reports on the website target group and ad performance.

2. Purpose and legal basis
The use of LinkedIn Insight-Tag is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR.

3. Storage time
The actual storage time of the processed data is not influenced by us, but is determined by LinkedIn Corporation. For more information, see the LinkedIn Insight-Tag Privacy Policy: https://www.linkedin.com/legal/privacy-policy.

Consent-Management-Tool

Consentmanager
We have integrated the consent management tool "consentmanager" (www.consentmanager.net) from consentmanager AB (Håltgelvågen 1b, 72348 Västerås, Sweden, info@consentmanager.net) on our website to obtain consent for data processing and use of cookies or comparable functions. With the help of "consentmanager" you have the possibility to give your consent for certain functionalities of our website, e.g. for the purpose of integrating external elements, integrating streaming content, statistical analysis, measurement and personalized advertising. With the help of “consentmanager” you can grant or reject your consent for all functions or give your consent for individual purposes or individual functions. The settings you have made can also be changed afterwards. The purpose of integrating “consentmanager” is to let the users of our website decide about the above-mentioned things and, as part of the further use of our website, to offer the option of changing settings that have already been made. By using “consentmanager”, personal data and information from the end devices used, such as the IP address, are processed.

The legal basis for processing is Art. 6 Para. 1 S. 1 lit. c) in conjunction with Art. 6 para. 3 sentence 1 lit. a) in conjunction with Art. 7 para. 1 GDPR and, in the alternative, lit. f). By processing the data, consentmanager helps us (according to GDPR this is the responsible party) to fulfill our legal obligations (e.g. obligation to provide evidence). Our legitimate interests in processing lie in the storage of user settings and preferences with regard to the use of cookies and other functionalities. "Consentmanager" stores your data as long as your user settings are active. After two years after making the user settings, the consent will be asked again. The user settings made are then saved again for this period.

You can object to the processing. You have the right to object to reasons arising from your particular situation. To object, please send an email to info@consentmanager.net.

Data protection notice for applicants

Data protection notice for applicants according to Articles 13 and 14 EU General Data Protection Regulation

1. Who is responsible for data processing and whom can I contact?

The responsible entity is:

ISD Software und Systeme GmbH
Hauert 4
44227 Dortmund
Germany
Phone +49 231 9793-0
info@isdgroup.com

You can reach our company data protection officer at:

datenschutz@agad.de or our postal address with the addition “Data Protection Officer".

2. What sources and data do we use?
We may process the following personal data in particular as part of the application process:

  • Master data (first name, last name, date of birth, place of birth, education, professional background, etc.)
  • Contact details, e.g. address, email, telephone number(s)
  • If required, further documents such as residence and work permits
  • Correspondence exchanged with you
  • Telephone contact details (number, time, duration of call)
  • Photographs that you make available to us or that are taken in the context of events of which you are a participant/visitor
  • Personal data that we are permitted to process from publicly accessible sources (e.g. commercial register, creditworthiness information from Creditreform

As a rule, we receive the aforementioned data (with the exception of the last-mentioned point) directly from you. If we receive the data from other sources, we will inform you separately.

3. What do we process the data for (purpose of processing) and on what legal basis?
We process your personal data on the basis of § 26 BDSG (German Federal Data Protection Act) to carry out the application procedure. The purpose of this is to initiate an employment relationship. After completion of the application process, we continue to process your data for six months on the basis of Art. 6 (1) (f) GDPR (General Data Protection Regulation), in particular to defend against any claims. If you have given us your consent to include you in our applicant database, we will process your data to select suitable employment options for you. The legal basis for this is § 26 (2) BDSG in conjunction with your consent.

4. Who receives my data?
Within our company, the data is only processed by persons whose area of responsibility makes this necessary. Data will only be forwarded to other companies of the ISD GROUP for the purpose of initiating employment relationships with your consent. You will be informed of this separately when you give your consent.

5. Are data transferred to a third country or to an international organisation?
No data are transmitted to third countries.


6. How long will my data be stored?
We process and store your personal data as long as it is required for the fulfilment of our contractual and legal obligations. If the data is no longer required for the fulfilment of contractual or legal obligations, it is regularly deleted, unless its further processing for a limited period is required for legal reasons. In the event of an unsuccessful application process, we usually delete your data after six months, unless you have given us permission to store it in our applicant database. If you have given us consent to include your data in our applicant database, we will store the data until you revoke your consent or until its expiry date, if applicable.

7. What data protection rights do I have?
Every data subject has the right to information according to Article 15 of the GDPR, the right to rectification according to Article 16 of the GDPR, the right to erasure according to Article 17 of the GDPR, the right to restriction of processing according to Article 18 of the GDPR, the right to object according to Article 21 of the GDPR and the right to data portability according to Article 20 of the GDPR. With regard to the right to information and the right to erasure, the restrictions according to §§ 34 and 35 BDSG apply. In addition, there is a right of appeal to a data protection supervisory authority (Article 77 GDPR in conjunction with § 19 BDSG).

You can revoke your consent to the processing of personal data at any time by contacting the responsible entity. This also applies to the revocation of declarations of consent given to us before the EU General Data Protection Regulation came into force, i.e. before 25 May 2018. Please note that the revocation only takes effect for the future. Processing that took place before the revocation is therefore not affected by a revocation. Please also note that despite revocation of consent, we may continue to process your personal data in whole or in part on the basis of a statutory authorisation.

8. Is there an obligation for me to provide data?
The provision of your data to us is voluntary for you. However, if you do not provide us with the necessary data, we may not be able to consider you in the application process.

9. To what extent is there automated decision-making (including profiling)?
We do not carry out profiling.

 

Information about your right to object according to Article 21 General Data Protection Regulation (GDPR) of the EU

You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Article 6 (1) (e) of the GDPR (data processing in the public interest) and Article 6 (1) (f) of the GDPR (data processing on the basis of a balance of interests); this also applies to profiling based on this provision within the meaning of Article 4 (4) of the GDPR.

If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your rights, interests and freedoms, or for the assertion, exercise or defence of legal claims.

The objection can be made form-free.

 

My ISD account