Data Privacy Statement in compliance with the EU GDPR
1. Data Privacy at a Glance
Status: August 20, 2024
General Information
The following information provides a simple overview of what happens with your personal data when you visit this website. Personal data is all data by means of which you can be personally identified. You can find detailed information about the topic of data protection in our Data Privacy Statement in this text.
Purpose and Legal Bases of the Data Processing
We process data on the legal basis pursuant to Art. 6 (1) lit. b) GDPR where this relates to a specific inquiry or the performance or fulfillment of contracts. This is done based on a weighing of interests according to Art. 6 (1) lit. f) GDPR in particular in the processing of data on this website. Our interest here is the problem-free operation of this website in order to assure confidentiality, availability and integrity of the data according to Art. 32 GDPR. If we process data on the basis of an assessment of interests, you as the data subject have the right to object to the processing of personal data in consideration of the requirements of Art. 21 GDPR. Moreover, we process your data only with your consent according to Art. 6 (1) lit. a) GDPR.
Storage Period
Unless a more specific storage period is defined in this Data Privacy Statement, your personal data will stay with us until the purpose of the data processing no longer applies. If you claim a justified request for deletion or revoke a consent for data processing, your data will be deleted, provided that we have no other legally permissible reasons for storing your personal data (e.g. retention periods under tax regulations or commercial law); in case of the ladder, the data will be deleted after these reasons are no longer given. We explain the purpose, legal basis and storage period for each type of processing in the following.
2. General Remarks and Mandatory Information
Data Controller
socreatory GmbH
The Software Creators’ Academy
Krischerstr. 100
40789 Monheim am Rhein
Telefon: 02173 3366 111
E-Mail: [email protected]
Data Protection Officer
We have appointed a data protection officer for our company.
B3 Datenschutz GmbH
Papenbergallee 34
25548 Kellinghusen
Tel: +49 4822 3663 000
E-Mail: [email protected]
Recipients/Transfer of Data
We generally do not transfer data that you give us to third parties. In particular, your data will not be transferred to third parties for advertising purposes. However, we use service providers for the operation of these webpages or for our further products or services. It can happen in the course of this that a service provider will take notice of personal data. We select our service providers carefully – especially with regard to data protection and data security – and take all measures required under data protection regulations for permissible data processing.
Data Processing Outside of the European Union
Our website integrates, among other, tools of companies with registered office in the USA or other third countries that not regarded as secure under data protection regulations. If these tools are active, your personal data can be transferred to these third countries and be processed there. We point out that a data protection standard comparable to that of the EU cannot be guaranteed in these countries. For example, U.S. companies are obligated to disclose data to security authorities without you as the data subject being able to take court action against this. It can therefore not be ruled out that U.S. authorities (e.g. intelligence agencies) could process, analyze and permanently store data of you that is stored on U.S. servers for surveillance purposes. We have no influence over these processing activities.The processing of your data in the USA takes place solely with your consent.
Revocation of Your Consent to the Data Processing
Many data processing activities are possible only with your explicit consent. You can revoke a consent you have already granted at any time. The legitimacy of the data processing having taken place up until the revocation remains unaffected by the revocation.
Your Rights as Data Subject
You have right to receive information about the personal data relating to you. You can contact us at any time to get this information. We ask for your understanding that when a request of information is not submitted in writing, we may then ask you to present proof if necessary to verify that you are the person you say you are. Furthermore, you have a right of correction or erasure or the restriction of the processing to the extent that this within your statutory right. Lastly, you have a right to object to the processing within the scope of the legal requirements. The same applies to a right of data portability.
Right to Lodge Complaint with the Competent Supervisory Authority
In the event of violations of the GDPR, the data subject has a right to lodge complaint with a supervisory authority, in particular in the Member State of his or her residence, workplace or the place of the suspected violation. The right to lodge complaint applies without prejudice to other remedies of administrative law or remedies ordered by a court.
3. Data Processing on this Website in Detail
Contact form
When you send us inquiries via the contact form, your data entered in the request form including the contact details provided by you will be saved by us for the processing of the inquiry and for follow-up questions if any. We do not pass on this data without your consent. The processing of this data takes place on the basis of Art. 6 (1) lit. b) GDPR if your inquiry relates to the performance of a contract or it is required for the execution of pre-contractual measures. The data you have entered in the contact form will be stored by us for the period of the inquiry or for the term of the contract. Compulsory legal regulations – in particular retention periods – remain unaffected.
Registration on this website
You can register on this website to use additional features on the site. The data to be entered for this purpose will be used by us solely for the purpose of the use of the respective offer or service for which you have registered. The required information queried in the registration process must be entered completely. Otherwise, we will reject the registration. We will use the email address entered in the registration process to keep you informed of important changes, for example, in the scope of the offer or in case of technically necessary changes. The data entered in the registration process will be processed for the purpose of implementing the user relationship established by the registration and initiation of further contracts if applicable (Art. 6 (1) lit. b) GDPR. The data gathered in the course of the registration will be stored by us for as long as you are registered on this website and it will be deleted afterwards. Statutory retention obligations remain unaffected. We use the Google reCaptcha service to determine whether a human or a computer makes a specific entry in our contact or newsletter form. Google uses the following data to check whether you are a human or a computer: IP address of the device used, the website you visit on our website and on which the captcha is integrated, the date and duration of the visit, the identification data of the device used Browser and operating system type, Google account if you are logged in to Google, mouse movements on the reCaptcha areas and tasks that require you to identify images. The legal basis for the data processing described is Article 6 Paragraph 1 Letter f of the General Data Protection Regulation. There is a legitimate interest on our part in this data processing to ensure the security of our website and to protect us from automated entries (attacks).
4. E-commerce and Payment Service Providers
Processing of data (customer and contract data)
We gather, process and use personal data only as far as it is required for the establishment, substantive arrangement or change of the legal relationship (master data). This is done on the basis of Art. 6 (1) lit. b) GDPR, which permits the processing of data for the performance of a contract or pre-contractual measures. We gather, process and use personal data in the course of the use of this website (usage data) only as far as this is required for enabling the user to use the service or for invoicing the used services to the user. The gathered customer data will be deleted after the completion of the order or termination of the business relationship. Statutory retention obligations remain unaffected.
Data Transmission on Conclusion of the Contract For Services and Digital Contents
We will transfer personal data to third parties only if this is necessary within the scope of the performance of the contract, for example, to the credit institution instructed with the settlement of payments. Further transmission of the data will not take place or only if you have expressly agreed to the transmission. Your data will not be transferred to third parties without the explicit consent, for example, for advertising purposes. The basis for the data processing is Art. 6 (1) lit. b) GDPR, which permits the processing of data for the performance of a contract or pre-contractual measures.
Booking of Training via pretix.eu
Training can be booked through our service partner, pretix.eu, operated by rami.io GmbH, Markgräfler Straße 16, 69126 Heidelberg. If you select a training date on socreatory.com and click on “book”, you will be redirected to pretix.eu. You will complete your booking and payment there. The personal data required for the booking will be transferred to us by pretix.eu as our commissioned data processor, but it will not use it itself nor combine it with your purchases from other organizers made via pretix.eu. pretix.eu processes the payment for us. We ourselves of course do not receive the payment data. pretix.eu undertakes to assure a high data protection standard in accordance with the GDPR. You can find information on data protection here. If you pay with a credit card on pretix.eu, your payment will be processed by our service partner Stripe. Stripe undertakes to assure a high data protection standard in accordance with the GDPR. You can find information on data protection here.
Use of the form for our training plan
We use the Google service reCaptcha to determine whether a human or a computer is making a certain entry in our training plan form. Google uses the following data to check whether you are a human or a computer: IP address of the end device used, the website you visit on our site and on which the captcha is integrated, the date and duration of the visit, the identification data of the browser and operating system type used, Google account if you are logged in to Google, mouse movements on the reCaptcha areas and tasks in which you have to identify images. The legal basis for the data processing described is Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in this data processing to ensure the security of our website and to protect us from automated entries (attacks).
Addendum to the privacy policy: Sending newsletters via CleverReach
We use CleverReach, an email marketing service provider (CleverReach GmbH & Co. KG, Mühlenstr. 43, 26180 Rastede, Germany), to send our newsletter. The data you provide when registering for the newsletter, such as your e-mail address, is stored on CleverReach servers in Germany or Ireland.
CleverReach uses your data to send and analyze newsletters on our behalf. Your data is collected anonymously and stored for a maximum of seven days for the specific purpose of optimizing the use of the newsletter. CleverReach also uses the data for the technical improvement of the dispatch and to measure the success of the newsletter campaigns, for example by analyzing the opening and click rates.
Your data is processed exclusively on the basis of your consent in accordance with Art. 6 (1) (a) GDPR. You can revoke this consent at any time, for example by clicking on the “Unsubscribe” link in the newsletter.
We have concluded an order processing contract with CleverReach, which obliges CleverReach to protect the data of our subscribers and not to pass it on to third parties.
The data transmitted for the newsletter subscription will be stored until you cancel the subscription and deleted after you unsubscribe. Data stored for other purposes are excluded from this regulation.
Further information on data protection at CleverReach can be found here .