Online Software AG

Privacy policy

Data protection information

for the website online-software-ag.com/en/
(hereinafter referred to as „data protection information“)

1. subject matter of data protection and legal basis

2. server log data

3. functionalities of the website

4. cookies

5. web analysis

6. integration of videos and other services and content from third-party providers

7. links to third-party offers and our social media presences

8. recipients of personal data

9. data processing in third countries

10. storage period and deletion

11. your rights

12. safety

13 Our data protection officer

14. changes

About the aspects relevant to data protection law when using the website https://online-software-ag.com/de/ (hereinafter also „Website“) we, the

Online Software AG
Galileistrasse 1
69115 Heidelberg
(Imprint)

(hereinafter also „we“ or „Online Software AG“)

as the person responsible, will inform you below.

Your personal data is processed exclusively within the framework of the statutory provisions of the data protection law of the European Union, in particular the EU General Data Protection Regulation (hereinafter referred to as „GDPR“) and, in addition, the Federal Data Protection Act (hereinafter „BDSG“) and the Telecommunications Digital Services Data Protection Act (hereinafter „TDDDG“) and other legal provisions on data protection (hereinafter collectively referred to as „Data protection laws“).

If you would like to take a look at the GDPR yourself, you can find it on the Internet at https://eur-lex.europa.eu/legal-content/DE/TXT/HTML/?uri=CELEX:32016R0679. You can also find the BDSG on the Internet at the following link: https://www.gesetze-im-internet.de/bdsg_2018/; the TDDDG can be found here: https://www.gesetze-im-internet.de/ttdsg/.

This data protection notice only applies to the website accessible under the domain https://online-software-ag.com/de/ including all subdomains. For other Internet presences of Online Software AG, the data protection notices available there apply exclusively.

Furthermore, this data protection notice does not refer to external websites of other providers to which links are provided from the website. The terms used, such as „personal data“ or their „processing“, correspond to the definitions in Art. 4 GDPR.

1. subject matter of data protection and legal basis

The subject of data protection is the protection of personal data. Personal data is any information relating to an identified or identifiable natural person (so-called „data subject“). Your personal data therefore includes all data that allows your person to be identified, such as your name, your address, your telephone number or your e-mail address. Personal data also includes information that is necessarily generated through the use of our website, such as the start, end and scope of use or your IP address.

Personal data is also collected, for example, if you provide it to us when you contact us using the contact form (see section 3).

We will only process your data if this is permitted by an applicable legal provision. We will base the processing of your data on the following legal bases, among others:

  1. Consent (Art. 6 para. 1 sentence 1 letter a GDPR): We will only process certain data on the basis of your previously given express and voluntary consent. You have the right to withdraw your consent at any time with effect for the future.
  2. Fulfilment of a contract or implementation of pre-contractual measures (Art. 6 para. 1 sentence 1 letter b GDPR): We require certain data from you in particular to initiate or fulfil your contractual relationship with us.
  3. Fulfilment of a legal obligation (Art. 6 para. 1 sentence 1 letter c GDPR): In addition, we process your personal data to fulfil legal obligations, such as regulatory requirements or retention obligations under commercial and tax law.
  4. Safeguarding legitimate interests (Art. 6 para. 1 sentence 1 letter f GDPR): We will process certain data to protect our interests or those of third parties. However, this only applies if your interests do not prevail in individual cases.

Please note that this is not a complete or exhaustive list of the possible legal bases, but merely examples intended to make the legal bases under data protection law more transparent. For more detailed information on the legal bases of the individual data processing operations on our website, please refer to the explanations in the following sections.

2. server log data

When you visit our website, the following information about your visit may be stored:

  1. IP address of the requesting end device,
  2. pages and files accessed,
  3. the http response code,
  4. the size of the pages and files accessed in bytes,
  5. the previous website from which you visit the website (referrer URL),
  6. Date, time and time zone of the server request,
  7. Type and version of the browser used,
  8. the operating system used by the requesting device.

When you visit our website, corresponding information may be stored on your end device and/or corresponding information that is already stored on your end device may be accessed. The storage or access takes place on the basis of Section 25 (2) No. 2 TDDDG, as this information is absolutely necessary to ensure the operation of our website and IT security and to be able to provide you with our website as requested.

We also process this data on the basis of Art. 6 para. 1 sentence 1 letter f GDPR to provide the website and to ensure the technical operation and security of our information technology systems. In doing so, we pursue the interest of enabling and permanently maintaining the use of our website and its technical functionality. This data is processed automatically when you visit our website. Without this provision, you cannot use our website. We do not use this data for the purpose of drawing conclusions about your identity.

The automatically collected data is generally deleted after 24 hours, unless another legal basis applies. If the latter is the case, we delete the data after the other legal basis no longer applies.

We cannot object to the collection and storage of your server log data, as this data is absolutely necessary for the smooth operation of the website.

3. functionalities of the website

  • a) Contact forms / e-mail

In the „Support“ and „Contact“ sections, both available in the website header, you can get in touch with us using a contact form. If you use the respective contact form, we collect and store the following data:

  1. Salutation,
  2. First name and surname,
  3. E-mail address (only for support and contact requests),
  4. Company (only for support request and activation form)
  5. Address data (only for activation form)
  6. Telephone number (only for activation form)
  7. TAN, checksum, installation reason and serial number (only for activation form)

You can also inform us voluntarily:

  1. Title (only for contact enquiry),
  2. Address data (only for contact enquiry),
  3. Company (for contact enquiry),
  4. Telephone number,
  5. Personalised message,
  6. Information on the number of branches of the company (only for contact enquiry),
  7. Details of the product you are interested in (only for contact enquiries),
  8. Details of how you became aware of us (only for contact enquiries),
  9. Information about your product (only for support requests)
  10. E-mail address (only for activation form)
  11. Fax number (only for activation form)
  12. Customer number (only for activation form)
  13. Dealer name (only for activation form).

If you contact us by e-mail, we may process the data you provide voluntarily, for example contact details such as your name or e-mail address.

The data you provide via our contact forms or by e-mail will be transmitted to us via a secure connection (for details, see section 12). Your contact data will only be collected, processed and used for the purpose of recording and, if necessary, responding to your enquiry. The processing of data transmitted in the context of communication via contact form or e-mail is based on Art. 6 para. 1 sentence 1 letter b GDPR, if it concerns the initiation or execution of a contractual relationship with you, or on Art. 6 para. 1 sentence 1 letter f GDPR. In the latter case, we have a legitimate interest in processing contact enquiries voluntarily sent to us.

We delete the data you provide as soon as the purpose for which it was collected no longer applies, subject to the fulfilment of continuing statutory retention obligations.

If your data is processed on the basis of legitimate interests, you can object to the storage of your personal data at any time. In this case, we will no longer process your data unless we have a legitimate interest in doing so. predominant legitimate interest or are otherwise legally obliged to store the data. To exercise your right to object to processing, please contact us in writing, by fax or by e-mail.

Please note, however, that we cannot guarantee complete data security when communicating via the contact form and in particular by e-mail. Particularly in the case of confidential information, we therefore recommend that you send it by a secure means of transmission, such as by post.

b) Application by e-mail

You have the option of contacting us by e-mail (career@online-software-ag.de) to send us applications for open positions or unsolicited applications. We process the data that you have sent us in connection with your application in order to check your suitability for the respective position and to carry out the application procedure and, if necessary, to prepare and execute an employment contract.

The legal basis for the processing of your personal data in the context of your application is in particular Section 26 BDSG in conjunction with Art. 6 para. 1 sentence 1 letter b GDPR. Accordingly, the processing of your data is permitted insofar as it is necessary in connection with the decision on the establishment of an employment relationship.

Of course, your application to us is completely voluntary. However, if you decide to apply, you should provide the personal data that is necessary to establish an employment relationship. If necessary, we will contact you after you have submitted an application using the contact details you have provided and ask you for any other necessary data, without which we will not be able to consider you in the application process.

The storage of additional information that you may voluntarily provide is based on Art. 6 para. 1 sentence 1 letter f GDPR, as we have a legitimate interest in also processing the additional information you voluntarily provide for the purposes of carrying out the application process.

You can object to the processing of voluntarily provided data at any time with effect for the future without giving reasons. In this case, we will no longer process your data, provided we have no legitimate interest in doing so. predominant can demonstrate a legitimate interest or are otherwise legally obliged to store the data. To exercise your right to To object to processing, please contact us in writing, by fax or by e-mail.

Should the data be required for legal prosecution after completion of the application process, data processing may be carried out to safeguard legitimate interests in accordance with Art. 6 para. 1 sentence 1 letter f GDPR. In this case, our interest lies in the assertion or defence of claims.

Applicant data is regularly deleted after six months in the event of rejection.

If you are selected for a position as part of the application process, your data will be transferred to your personnel file and stored there to the extent that it is necessary for the establishment and implementation of the employment relationship. 

In principle, only those persons have access to your applicant data who need it for the proper course of the application process.

c) Newsletter

We offer you the opportunity to subscribe to our newsletter on our website. To subscribe to our newsletter, all you need to do is enter your e-mail address. You can also provide further personal data (your title, first name and surname and the company you work for) on a voluntary basis.

We use the so-called double opt-in procedure for sending the newsletter, i.e. we will only send you our newsletter if you have previously given us your express consent to activate the corresponding service. We will then send you a notification e-mail and ask you to confirm that you wish to receive our newsletter by clicking on a link contained in this e-mail. By completing this separate double opt-in procedure, you have given your consent to receive our newsletter.

We only send our newsletter after you have registered for it, i.e. with your consent on the basis of Article 6(1)(a) GDPR. If the content of our newsletter can be specifically described or selected as part of the registration process, this is decisive for the scope of consent. Our newsletters also contain information about our services, products, offers, promotions and our company.

Subscriptions to our newsletter are logged by us in order to be able to prove the registration process and the consent given in accordance with the legal requirements. The logging of the registration and the necessary processing of the data entered by you during registration is carried out accordingly on the basis of our legitimate interests in accordance with Article 6(1)(f) GDPR.

If you no longer wish to receive newsletters from us, you can revoke your consent at any time. Please send a message in text form (e.g. e-mail, letter) to the contact details above or to info@online-software-ag.de is sufficient for this. Of course, you will also find an unsubscribe link in every newsletter.

4. cookies

The website uses cookies and similar technologies (hereinafter collectively referred to as „Cookies“) in order to optimise the design of the website. Among other things, this facilitates navigation and a high degree of user-friendliness.

Cookies are usually small identification characters that our web server sends to your browser and that your end device saves with the corresponding default setting. These can be used to determine whether your end device has already sent a communication with us. In this way, they serve the purpose of more comfortable for you and to optimise our offer by analyse the use of our website. Cookies can be used by us or by third-party providers, such as our partners, for analyses, marketing and social Media are set. The storage and use of cookies and the associated data processing is carried out either on the basis of Section 25 (2) No. 2 TDDDG in conjunction with Art. 6 (1) sentence 1 letter f GDPR or on the basis of Section 25 (1) TDDDG in conjunction with Art. 6 para. 1 sentence 1 point (a) GDPR, insofar as you have consented to the storage and use of have expressly consented to the use of cookies. Personal data can be are stored in cookies if this is technically necessary or if you have have given their consent. Recourse to other legal bases is expressly reserved.

If you give us your consent to the use and storage of non-essential cookies (see section 4 letter b below), you can revoke this consent at any time with effect for the future in the Cookie settings of this website.

You can also technically prevent the storage of necessary cookies at any time by selecting „Do not accept cookies“ in your browser settings. The procedures for the technical management and deletion of cookies in the settings of your browser can be found in the help function of your browser. You can also technically prevent the storage and use of all cookies by using free browser add-ons, such as „Adblock Plus“ (adblockplus.org/de) in combination with the „EasyPrivacy“ list (easylist.to), prevent.

If you prevent the storage of all cookies, however, this can lead to functional limitations of the website. 

a)    Necessary cookies

We use on our website for the functionality of our website Necessary cookies, We have a legitimate interest in storing these cookies, as otherwise we would not be able to offer our website with certain basic functionalities (e.g. you would otherwise have to make new website settings every time you change pages). Details on the specific cookies required can be found in our Cookie Policy take. 

The storage and use of necessary cookies takes place on the basis of Section 25 (2) No. 2 TDDDG in conjunction with Art. 6 (1) sentence 1 letter f GDPR. You can only deactivate necessary cookies technically via your browser settings or browser add-ons. This can lead to functional restrictions on our website. For further details, please refer to the above passage. 

b)    Functional cookies

Additional cookies that are not necessary to use the website nevertheless fulfil important tasks. They enable comfortable surfing on our website. For example, functional cookies enable a website to remember information that affects the way a website behaves or looks, such as pre-filled forms, your preferred language or the region you are in. Details on the specific functional cookies used can be found in our Cookie Policy take. 

Functional cookies are only stored and used if you have given us your consent to do so, on the basis of Section 25 (1) TDDDG in conjunction with Art. 6 (1) sentence 1 letter a GDPR. For further details, please refer to the above passages under point 4. You can revoke this consent at any time with effect for the future in the Cookie settings of this website.

c)    Statistics cookies

Statistics cookies help us to better understand how visitors interact with our website and our content by analysing usage information. We also use cookies from third-party providers, which may enable them to obtain information about your usage behaviour. Please also visit the websites of the third-party providers to obtain further information on their use of cookies. Details on the specific statistics cookies used can be found in our Cookie Policy take.  The storage and use of statistics cookies takes place, provided you have given us your consent, on the basis of § 25 para. 1 TDDDG in conjunction with Art. 6 para. 1 sentence 1 letter a DSGVO. For further details, please refer to the above passages under point 4. You can revoke this consent at any time with effect for the future in the Cookie settings of this website.

d)    Marketing cookies

Statistics cookies help us to better understand how visitors interact with our website and our content by analysing usage information. We also use cookies from third-party providers, which may enable them to obtain information about your usage behaviour. Please also visit the websites of the third-party providers to obtain further information on their use of cookies. Details on the specific statistics cookies used can be found in our Cookie Policy take.  The storage and use of statistics cookies takes place, provided you have given us your consent, on the basis of § 25 para. 1 TDDDG in conjunction with Art. 6 para. 1 sentence 1 letter a DSGVO. For further details, please refer to the above passages under point 4. You can revoke this consent at any time with effect for the future in the Cookie settings of this website.

 5. web analysis

a)    Matomo (formerly Piwik)

If you have consented to this, we use Matomo, an open source software for the statistical analysis of user access to our website. This is done on the basis of § 25 para. 1 TDDDG in conjunction with Art. 6 para. 1 sentence 1 letter a GDPR.

The IP address of users is shortened by Matomo before it is saved. Matomo uses cookies that are stored on your end device and enable your use of our website to be analysed. Pseudonymised user profiles can be created from the processed data. The information generated by the cookie about your use of our website is stored on a server of our service provider and is not passed on to third parties.

You can withdraw your consent to the use of Matomo/Piwik at any time with effect for the future in the Cookie Policy of this website. For further details, please refer to the passage under point 4.

Further information on data protection at Matomo can be found at the following link: https://matomo.org/privacy-policy/. 

6. integration of videos and other services and content from third-party providers

a)    YouTube

YouTube videos are embedded on our website. Although the videos can be played directly on our website, they are provided directly by YouTube.

YouTube videos are integrated on our website using the „2-click solution“. This means that these videos are initially deactivated when you access and use our website, so a connection to the YouTube servers is not established. Only after activating the YouTube videos will your browser establish a connection to YouTube's servers. After activation, the URL of the corresponding subpage, your IP address and a time stamp are transmitted to YouTube servers and cookies are set when a subpage with integrated YouTube videos is accessed.

In addition, YouTube videos are integrated on our website in „extended data protection mode“. According to Google, no evaluation for the personalisation of advertising takes place when the videos are played. Therefore, by activating the YouTube videos, you consent to the processing of your data and the storage of cookies by the YouTube video player. Further information on the cookies used can be found under point. 4) of this data protection notice.

YouTube is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland („Google“ or „YouTube“). Your data processed by us when playing YouTube videos may also be transferred to servers of Google's parent company, Google LLC, in the USA and stored there. The parent company based in the USA is certified under the EU-US Data Privacy Framework, the corresponding certificate can be found here: https://www.dataprivacyframework.gov/list. Any data transfers to the USA in connection with the playing of YouTube videos are therefore covered by the corresponding adequacy decision of the EU Commission pursuant to Article 45(3) GDPR. The EU Commission has published the adequacy decision here: https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en.

The legal basis for data processing when playing YouTube videos and the associated storage of cookies is your consent in accordance with Article 6(1) sentence 1(a) GDPR, which you gave us when activating the YouTube videos. We expressly reserve the right to have recourse to other legal bases. The storage of information on your end device in this context or access to information that is already stored on your end device is based on your consent in accordance with Section 25 (1) sentence 1 TDDDG.

For more information on the purposes and scope of data collection and the further processing and use of the data by Google, your rights in this regard and the available setting options to protect your privacy, please refer to Google's data protection information for YouTube: Google's privacy policy, which also includes YouTube: https://www.google.de/intl/de/policies/privacy/.

If you do not want Google to associate your visit to our website with your Google user account, you must log out of Google before visiting our website. Even if you are not logged in to Google, websites with videos may send data to Google via the use of cookies, which allow Google, for example, to create an anonymised/pseudonymised user profile.

You can revoke any consent you may have given to data processing by Google and the storage and use of cookies in connection with the integrated videos via the link „Hide videos“, which you can find under every YouTube video on our website. You can also technically prevent the storage and use of cookies at any time by making the appropriate browser settings or browser add-ons (see section above). 4).

b)    Guestoo

We use the following tool to manage and organise our customer events guestoo of the German company Code Piraten GmbH, Am Ruhmbach 44, 45149 Essen, Germany. An order processing contract has been concluded with Code Piraten GmbH in accordance with Art. 28 GDPR closed.

Through guestoo we process personal data such as Name, e-mail address, company affiliation, function, participation information (e.g. acceptance or cancellation, participation in certain programme items) and, if applicable. Further information, which are made voluntarily as part of the event registration.

Processing is carried out for Organisation, administration and implementation of customer and partner events as well as for Communication with the participants. Depending on the occasion, the legal basis is Art. 6 para. 1 lit. b GDPR (fulfilment of the contract or pre-contractual measures) or Art. 6 para. 1 lit. f GDPR (legitimate interest in efficient event organisation and participation management).

The data is only stored as long as, as required for the preparation, realisation and follow-up of the event. They will then be deleted, provided there are no statutory retention obligations.

One Disclosure to third parties or transfer to third countries guestoo hosts all data exclusively on servers within Germany.

Further information on data processing by guestoo can be found in guestoo's privacy policy at:
https://www.guestoo.de/doku/dsgvo

c) Google Fonts

We integrate so-called Google Fonts (fonts) from the provider Google into our website, which enables us to access Google's font library. The Google font library is hosted locally on our servers. No data is transmitted to Google.

The legal basis for processing is the protection of our legitimate interests in accordance with Article 6 (1) sentence 1 letter f GDPR. Our legitimate interest lies in the uniform design and presentation of our website.

Further information on the use of data by Google, setting and objection options can be found on the Google website at https://policies.google.com/privacy?hl=de. 

d) Font Awesome

We also use the Font Awesome service from Fonticons Inc, 307 S Main St, Ste 202, Bentonville, AR 72712, USA („Fonticons“) for the standardised display of fonts. Font Awesome is installed locally on our servers. There is no connection to Fonticons servers.

The legal basis for processing is the protection of our legitimate interests in accordance with Article 6 (1) sentence 1 letter f GDPR. Our legitimate interest lies in the uniform design and presentation of our website.

Further information about Font Awesome can be found in Fonticons' privacy policy at: https://fontawesome.com/privacy.

7. links to third-party offers and our social media presences

a) Links to third-party offers

Insofar as we refer to websites and services („Offers“) of third parties, you will be redirected to the respective offer of the third party by clicking on the links via hyperlink.

Please note that the third-party offers linked from our website may install their own cookies on your end device or collect personal data. We have no influence on this. If necessary, please obtain information directly from the providers of these linked third-party offers. The respective provider and controller can be found in particular in the legal notice and the respective data protection notices on the corresponding websites.

b) Links to social media presences

On our website you will find links (hyperlinks) to our presence on the social networks and platforms Instagram, YouTube and LinkedIn. These services are provided by the companies listed below (hereinafter also referred to as „Third-party provider“) is offered:

  • Instagram is operated by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland („Meta“),
  • YouTube is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland („Google“ or „YouTube“),
  • LinkedIn is operated by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland („LinkedIn“).

The purpose and scope of the data collection and the further processing and use of the data by Meta, YouTube and LinkedIn as well as your rights in this regard and the available setting options to protect your privacy can be found in the data protection notices of the third-party providers:

LinkedIn privacy policy: https://www.linkedin.com/legal/privacy-policy.

If you do not want a third-party provider to be able to assign the click on a link leading to its website to your user account there, you must log out of the respective service before clicking on such a link. Even if you are not logged in with the third-party provider, data may be sent to the third-party provider via the use of cookies after clicking on a link.

8. Recipients of personal data

Within our company, only those persons have access to your personal data who need it for the purposes stated in each case. 

We will only pass on your personal data to external recipients if this is necessary for the processing or handling of your request, if we have your consent to do so or if another legal authorisation exists.

External recipients can be in particular

  • ProcessorThese are service providers that we use to provide services, for example in the areas of technical infrastructure and maintenance of our website. Such processors are carefully selected and regularly reviewed by us to ensure that your privacy is protected. These service providers may only use the data for the purposes specified by us and in accordance with our instructions. We are authorised to use such processors in compliance with the legal requirements of Art. 28 GDPR.
  • Public bodiesThese are authorities, state institutions and other public bodies, e.g. supervisory authorities, courts, public prosecutors or tax authorities. Personal data will only be transferred to such public bodies for compelling legal reasons. The legal basis for such a transfer may be Art. 6 para. 1 sentence 1 letter c GDPR.
  • Non-public bodiesService providers and auxiliary persons to whom data is transmitted on the basis of a legal obligation or to safeguard legitimate interests, for example tax consultants or auditors. The transfer then takes place on the basis of Art. 6 para. 1 sentence 1 letter c and/or f GDPR.

9. data processing in third countries

If we transfer your data to third countries outside the EU or EEA as described above, we will ensure that, apart from legally permitted exceptions, the recipient either has an adequate level of data protection or that you consent to the data transfer. An adequate level of data protection is guaranteed, for example, by certification of the recipient under the EU-U.S. Data Privacy Framework, the conclusion of EU standard contractual clauses or the existence of so-called Binding Corporate Rules (BCR). Please contact us using the above-mentioned communication channels to obtain a copy of the specific so-called guarantees for the transfer of your data to third countries.

We only store your personal data for as long as this is necessary for the fulfilment of the purposes or - in the case of consent - as long as you do not revoke your consent. In the event of an objection, we will no longer process your personal data unless further processing is permitted or even mandatory under the relevant statutory provisions (e.g. as part of retention obligations under commercial and tax law). We will also delete your personal data if we are obliged to do so for legal reasons.

For further details on the storage period of your personal data, please refer to the respective explanations in the sections listed above.

10. storage period and deletion

We only store your personal data for as long as this is necessary for the fulfilment of the purposes or - in the case of consent - as long as you do not revoke your consent. In the event of an objection, we will no longer process your personal data unless further processing is permitted or even mandatory under the relevant statutory provisions (e.g. as part of retention obligations under commercial and tax law). We will also delete your personal data if we are obliged to do so for legal reasons.

For further details on the storage period of your personal data, please refer to the respective explanations in the sections listed above.

Your personal data transmitted when you use our website is transmitted securely using encryption. We use the Transport Layer Security (TLS) encryption protocol, more commonly known by its predecessor Secure Sockets Layer (SSL).

Our employees are obliged to maintain data confidentiality.

11. Your rights

As a person affected by data processing, you have numerous rights. In detail, these are

  1. Right to information (Art. 15 GDPR): You have the right to receive information about the personal data we have stored about you.
  2. Right of rectification and cancellation (Art. 16 and Art. 17 GDPR): You can demand that we rectify incorrect data and - insofar as the legal requirements are met - erase your data.
  3. Right to restriction of processing (Art. 18 GDPR): You can demand that we restrict the processing of your data, provided that the legal requirements are met.
  4. Right to data portability (Art. 20 GDPR): If you have provided us with data on the basis of a contract or consent, you can request that you receive the data you have provided in a structured and commonly used format or that we transfer it to another controller if the legal requirements are met.
  5. Right to object to data processing based on legitimate interests (Art. 21 GDPR): You have the right to object to data processing by us at any time for reasons arising from your particular situation, insofar as this is based on legitimate interests within the meaning of Art. 6 para. 1 sentence 1 letter f GDPR. If you exercise your right to object, we will stop processing your data unless we can demonstrate compelling legitimate grounds for further processing that override your rights.
  6. Revocation of consent (Art. 7 GDPR): If you have given us your consent to process your data, you can revoke this at any time with effect for the future. This does not affect the lawfulness of the processing of your data until you withdraw your consent. If you wish to withdraw your consent to the use of certain cookies, please refer to our explanations under point 4.
  7. Right to lodge a complaint with the supervisory authority (Art. 77 GDPR): You can also lodge a complaint with the competent supervisory authority if you believe that the processing of your data violates applicable law. To do so, you can either contact the data protection authority responsible for your place of residence, your place of work or the place of the suspected infringement, or the data protection authority responsible for us. The data protection supervisory authority responsible for us is the State Commissioner for Data Protection of Baden-Württemberg (www.baden-wuerttemberg.datenschutz.de).

If you have any questions about the processing of your personal data, your rights as a data subject and any rights granted to you, please contact our data protection officer using the communication channels listed under point 13. To exercise your rights as a data subject, please use our Enquiry form. Of course, you can also contact us directly in this respect using the contact details given above (e.g. by e-mail, letter) and at datenschutz@online-software-ag.de   contact us.

12. safety

We take technical and organisational security measures to protect your personal data against accidental or intentional manipulation, loss, destruction or access by unauthorised persons. These security measures are always adapted to the current state of the art.

Your personal data transmitted when you use our website is transmitted securely using encryption. We use the Transport Layer Security (TLS) encryption protocol, more commonly known by its predecessor Secure Sockets Layer (SSL).

Our employees are obliged to maintain data confidentiality.

13 Our data protection officer

We have appointed an external data protection officer. You can contact him as follows:

Marvin Schmidt
DSEV Consulting & Academy GmbH
Am Mittleren Moos 53, 86167 Augsburg
+49 (0) 821 999 639 10,
e-mail: datenschutz@online-software-ag.de

14. changes

From time to time it may be necessary to adapt the content of this data protection notice. We therefore reserve the right to amend it at any time. If your consent is required for a change, we will obtain this from you. We will also publish the amended version of the data protection information here. If you visit our website again, you should therefore read the data protection information again.

Status: July 2025

Online Software AG

Visit us at Galileistraße 1, 69115 Heidelbergor contact us online.

+49 6221 40508-0

info@online-software-ag.de

+49 6221 40508-0

info@online-software-ag.de

Select language

 

Enquire now