Privacy Policy of SDC SpaceNet DataCenter GmbH & Co. KG

 

in the version dated May 23, 2018

A. General information

We are delighted that you have visited our Internet presence and at your interest in it. We take the security of your personal data (“data” in short) very seriously and it is of utmost importance to us. In the following we therefore wish to inform you about how your personal data is collected, processed and used when you visit our website.

1. Validity and changes

This Privacy Policy is currently valid in its version dated May 23, 2018.  We reserve the right to amend this Privacy Policy in response to changes in the legal situation, this online offering or the way in which data is recorded. However, that applies only to declarations relating to data processing. It goes without saying that we will take into account your reasonable interests in making any amendments. If the user’s consent is required to process data or parts of the Privacy Policy contain a provision from the contractual relationship with users, the Privacy Policy will be amended only with the user’s consent. 

2. Controller and contact

The controller in accordance with Article 4 (7) of the EU General Data Protection Regulation (GDPR) is SDC SpaceNet DataCenter GmbH & Co. KG, Joseph-Dollinger-Bogen 14, 80807 Munich, Germany, represented by its Managing Director Sebastian von Bomhard.  If you have questions or comments about this Privacy Policy or on data protection in general, please contact datenschutz@remove-this.sdc-datacenter.de. 

3. Legal basis for processing of personal data

If the legal basis is not specified in the Privacy Policy, the following applies: 

- If we obtain consent from data subjects to process their personal data, the legal basis for that is laid down by Article 6 (1) sentence 1 point (a) of the EU General Data Protection Regulation (GDPR).

- The legal basis for processing personal data required in order to perform a contract to which the data subject is a party is Article 6 (1) sentence 1 point (b) GDPR. That also applies to processing activities required to take steps prior to entering into a contract. 

- If processing of personal data is necessary for compliance with a legal obligation on the part of our company, the legal basis for that is Article 6 (1) sentence 1 point (c) GDPR. 

- If vital interests of the data subject or another natural person necessitate processing of personal data, the legal basis for that is Article 6 (1) sentence 1 point (d) GDPR. 

- If processing is necessary to safeguard legitimate interests of our company or a third party and the data subject’s interests, fundamental rights and freedoms do not override the interests of our company or the third party, the legal basis for that is Article 6 (1) sentence 1 point (f) GDPR. 

4. General information on the length of storage

The data we have processed is erased in compliance with statutory requirements, in particular Articles 17 and 18 GDPR or processing of it is restricted. Unless explicitly stated in this Privacy Policy, the data we have stored is erased as soon as it is no longer required for its specific purpose. Data is retained beyond the time it is no longer required for its specific purpose only if it is needed for other purposes permitted by law or the data has to be kept pursuant to statutory retention obligations. Processing will be restricted in such cases, i.e. the data will be blocked and not processed for other purposes. 

B. Collection of personal data when you visit our website

The extent to which and the way in which your data is collected and used depends on whether you visit our Internet presence only to obtain information, i.e. to view what we have to offer, utilize services we offer or contact us or request information. 

1. Use of our website to obtain information

If you use our Internet presence to obtain information, you generally do not need to disclose personal data actively. Instead, we only collect and use the data your web browser automatically transmits to us in such a case. It includes: 

  • Your IP address 
  • The date and time you called our website 
  • The difference between your time zone and Greenwich Mean Time (GMT) 
  • The content of the request (specific page) 
  • The access status/HTTP status code 
  • The volume of data transferred 
  • The website from which the request came and the page you last visited 
  • The type of browser 
  • The language and version of the browser software 
  • The operating system you are using and its user interface

This data is processed so that you are able to use the Internet pages you call, for statistical purposes and to improve our Internet offering. Personal data processed in this connection is always erased automatically from our servers after six months. 

Processing of the above data is absolutely necessary for technical reasons relating to delivery of a website in accordance with Article 6 (1) sentence 1 point (b) GDPR so that our website is displayed correctly. We store log files in order to ensure the stability and security of our Internet offering. In particular, creation of log files enables proof of attacks on our systems to be furnished. The legal basis for that is Article 6 (1) sentence 1 points (c) and (f) GDPR. 

2. Requests submitted using contact forms and e-mail

We offer you the possibility of getting in touch with us by e-mail or using our contact forms. 

You can use the forms to request an offer or for general inquiries. We need your name, e-mail address and, if applicable, the name of your company to handle your request. If you use the forms to request an offer, you are also asked to enter data in mandatory fields; this data is absolutely necessary so that an offer can be drawn up. We process personal data from the input screen solely for handling contacts. 

In the case of pure requests for information and depending on the content of the request, your data is processed if you get in touch with us using a contact form or by mail or phone on the basis of your (imputed) consent in accordance with Article 6 (1) sentence 1 point (a) GDPR or in accordance with Article 6 (1) sentence 1 point (b) GDPR if the contact is connected to contractual obligations. If you get in touch with us using our form, we only need your e-mail address, surname and the name of your company to be able to reply to you. You can also state your first name voluntarily so that we can address you personally. Your details can be stored in a customer relationship management system (“CRM system”). The legal basis for that is Article 6 (1) sentence 1 point (f) GDPR. 

You have the right to withdraw your consent to processing of your personal data at any time, without this affecting the lawfulness of processing based on your consent before its withdrawal. If you contact us by e-mail to obtain information, you can object to your personal data being stored at any time. That then means the conversation cannot be continued. You also have the right to object to your personal data being stored in a CRM system. 

We will erase your contact requests from our active systems as soon as we have dealt with them completely, unless we are permitted or required to retain them under the law or pursuant to statutory retention obligations. 

3. Your rights

You have the following rights toward us under the law as regards personal data concerning you: 

  • Right to access personal data and obtain information (Article 15 GDPR) 
  • Right to rectification and erasure of personal data (Articles 16 and 17 GDPR) 
  • Right to restriction of processing (Article 18 GDPR) 
  • Right to data portability (Article 20 GDPR) 
  • The right to object to processing of your data (Article 21 GDPR) 

In order to exercise your rights, please send your request to the contact data stated in section A2. 

Without prejudice to any other administrative or judicial remedy, you have the right to 

lodge a complaint with a supervisory authority,

in particular in the Member State of your habitual residence, your place of work or place of the alleged infringement, if you consider that the processing of personal data concerning you infringes the General Data Protection Regulation (GDPR). The supervisory authority with which the complaint has been lodged shall inform the complainant on the progress and the outcome of the complaint including the possibility of a judicial remedy pursuant to Article 78 GDPR. 

4. Commissioned data processing and recipients of data

We sometimes use external service providers to process your data, in which case they are obliged to comply with our instructions in doing so. We have selected and commissioned them carefully and monitor them regularly. Such commissions are based on processing agreements in accordance with Article 28 GDPR. SpaceNet AG operates this Internet offering in its own high-security data centers in Munich (www.space.net). 

5. Newsletter and marketing

Your data is used for marketing and information purposes only subject to your explicit prior consent. The data is used in this respect to present new products and events from our company which are tailored to your interests. That includes information on the current or future product range and events in which we are participating. 

We use the double opt-in procedure for subscription to our e-mail newsletter. This means that, after you have subscribed, we will send an e-mail to the e-mail address provided asking you to confirm that you wish to receive the newsletter. You do that by clicking on the hyperlink in the e-mail. If you do not confirm your subscription by clicking on the hyperlink within 24 hours, your information is blocked and erased after one month. We are also authorized to retain the IP addresses you used and details of when you subscribed and confirmed your subscription so that we can prove that you have subscribed and, if applicable, to be able to clarify any possible misuse of your personal data. The legal basis for that is Article 6 (1) sentence 1 points (a) and (c) GDPR. 

The only information you must always disclose to subscribe to the newsletter is your e-mail address. You can disclose further personal data voluntarily, which will then be used so that we are able to address you personally. 

You can withdraw your consent to receiving marketing information and the newsletter at any time by sending an e-mail to newsletter-info@remove-this.sdc-datacenter.remove-this.de or by using the unsubscribe link at the end of the e-mail. 

6. Data security

This site uses SSL encryption to ensure secure data transfer, in particular of communication data from the contact form. 

As part of your visit to the website, we use the widespread SSL (Secure Socket Layer) method together with the highest encryption level supported by your browser. That is usually 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell if a page of our Internet presence is transferred in encrypted form from the fact that the key icon or the padlock icon appear locked in the lower status bar of your browser. 

We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, complete or partial loss and destruction, or access by unauthorized third parties. Our security measures are constantly improved to reflect technological advances. 

7. Use of cookies

General information

We use cookies for our Internet presence. Cookies are small text files which are sent from our web server to your browser when you visit our web pages and are kept by your browser on your computer system so that they can be called later. You yourself can choose whether cookies can be set and called by means of your browser settings. For example, you can completely disable storage of cookies in your browser, confine storage of them to certain web pages or configure your browser so that it automatically notifies you as soon as a cookie is to be placed and asks how you wish to respond. Cookies cannot execute programs or transmit viruses to your computer. 

We only use session cookies (also termed “temporary cookies”), i.e. they are stored only for the period of time you use one of our web pages. For technical reasons, it is necessary to permit session cookies so that the full functionality of our Internet presence (only in the customer section at present) can be used. The purpose of these cookies is to enable your computer system to be identified when you visit our Internet presence and switch from one of our web pages to another and to determine when you end your visit. 

Persistent cookies are deleted automatically after a predefined time, which may differ depending on the cookie. You can delete the cookies at any time in your browser’s security settings.  The legal basis for using cookies is Article 6 (1) sentence 1 point (f) GDPR, unless otherwise specified. 

Matomo/Piwik

We use the open source software tool Matomo (formerly PIWIK) on our website for analyzing our users’ surfing behavior. As part of that, we deliberately refrain from using cookies and processing your IP address. When individual pages of our website are called, the following data is stored: 

  • The web page called 
  • The website from which the user reached the called web page (referrer) 
  • The subpages from which the web page in question is called 
  • The dwell time on the web page 
  • The number of times the web page is called 

The software runs solely on the servers for our website. Users’ personal data is only stored on those servers. The data is not passed on to any third party. 

The legal basis for processing of users’ data is Article 6 (1) point (f) GDPR. 

Processing of users’ data enables us to analyze our users’ surfing behavior. Analyzing the data we obtain enables us to compile information on how our website is used. That helps us to keep on improving our website and its user friendliness. These purposes also constitute our legitimate interests in processing data in accordance with Article 6 (1) point (f) GDPR. The interests of users in having their personal data protected are adequately addressed by the fact that the IP address is anonymized. 

This data is erased after 60 days. You can find more information at https://matomo.org/privacy/

Users have the possibility of opting out from analytics on our website. To do that, they must click on the link in question. That places a further cookie on their system telling our system not to store the data. If users delete that cookie from their system in the meantime, they have to place the opt-out cookie again. 

  Your visit to this website is currently recorded by Matomo web analytics. Click here so that your visit is not recorded any more.