Data Protection Statement

We, CPU 24/7 GmbH , are very pleased that you are visiting our website. When using our web services, it’s possible that you will entrust us with your personal data. We know that this trust should be valued. Therefore we will handle your data with particular care. In the following, we would like to explain to you how we collect, process and use your personal data. Personal data is all data that relates to you personally, e.g. name, address, e-mail addresses, telephone number, and also user behaviour etc.

General

• We have designed our website so as to collect as little data from you as possible. Fundamentally, our website can be visited without entering personal data. Only if you decide to get in contact with us directly (e.g. via email or contact form) will the processing of personal data be necessary. In doing so, we will always ensure that your data is processed only in accordance with legislation or with your expressed consent.

• The Controller, in accordance with Article 4(7) EU General Data Protection Regulation (GDPR), is:
  
  CPU 24/7 GmbH
  August-Bebel-Straße 26-53
  
  DE 14482 Potsdam
  
  Phone: +49 (0) 331 27 97 84 0
  Fax: +49 (0) 331 27 97 84 10
  E-mail: info@cpu-24-7.com
  
  Managing Director: Karsten Brack, Christian Müller-Bagehl
  
  

• You can contact our Data Protection Officer, Jenny Dawon, at:
  datenschutz@cpu-24-7.com oder unter August-Bebel-Str. 26-53, 14482 Potsdam.

Purpose of using personal data

We use your personal data for the following purposes, and as described in this data protection statement:

• In order to process your queries when you get in contact (e.g. email address, first name, surname);

• For the technical realisation of our website and in order to make information available to you on the website (e.g. IP address, cookies, browser information).

• n order to send a newsletter containing information on our service offering and innovations to our services.

General log files

• Every time you visit our website, specific information is automatically sent from your browser to our website server and then stored by this in a so-called log file. This includes for example information on:

  • the type and version of browser you use,
  • the (mobile) operating system you use,
  • the internet page from which you reached our site,
  • the host name (IP address) of your (mobile) terminal device, as well as
  • the time at which the website was accessed,
  • and the Internet service provider of the accessing (mobile) terminal device.
    

• The data of the server log files is stored separately from all personal data you provide.

• The legal basis for the data processing is Article 6(1)(1)(f) GDPR. The legitimate interest required arises from the purposes listed under number 2 b.).

Contact form/email address

• You can get in contact with us via email. If you do so, we will store the personal data transmitted, in order to process your query and get in contact with you to handle this further.
• Depending on the nature of the request, the legal basis for this processing is Article 6(1)(b) GDPR, in the case of requests you make as part of precontractual measures, or Article 6(1)(1)(f) GDPR, if your request is of a different nature. The legitimate interest arises from the purposes listed under number 2 a.).
• Your data will only be processed so as to answer your request and will thereafter be immediately deleted, provided we are not subject to any legal retention period. It will not be forwarded to third parties. If you wish to object to the processing of the data you have transmitted via email, please get in contact via the email address in the masthead.

Personal data storage period

With regard to the storage period, we delete personal data as soon as its storage is no longer necessary for the fulfilment of the original purpose and any legal retention period has expired. Legal retention periods ultimately provide the criteria for establishing the duration of personal data storage. After this period has expired, the relevant data is routinely deleted. Where retention periods apply, processing is restricted through the blocking of the data.

Transfer of personal data

Personal data you share with us via the website/that we collect is not transferred to third parties, unless: you provide consent, we are legally obliged to do this, or the transfer of data is necessary to carry out a contractual relationship with you.

Your rights

• As the data subject, you have the following rights with respect to the processing of your data in accordance with GDPR, insofar as each of the conditions applies:

  • Right of access,
  • Right to rectification or erasure,
  • Right to restriction of processing,
  • Right to data portability. *In accordance with Article 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you consider that the processing of personal data concerning you infringes data protection laws. The right to lodge a complaint can be asserted in particular with a supervisory authority in the Member State of your habitual residence, your place of work or place of the alleged infringement.

• Right to object (Article 21 GDPR): Information on your right to object in accordance with Article 21 EU General Data Protection Regulation (GDPR)

  • You have the right, for reasons of your own particular situation, to object at any time to the processing of personal data relating to you that is performed as a result of Article 6(1)(e) GDPR (data processing in the public interest) and Article 6(1)(f) GDPR (data processing based on a balance of interests); this also applies to any profiling based on this provision, in accordance with Article 4(4) GDPR. If you do object, we will no longer process your personal data, unless we can demonstrate compelling legitimate grounds for the processing that outweigh your interests, rights and freedoms, or the processing is intended for the assertion, exercise or defence of legal claims.
  • Right to object to data processing for advertising purposes In individual cases, we will process your data in order to carry out direct advertising. You have the right to object at any time to the processing of personal data concerning you for the purposes of such advertising; this also applies to profiling insofar as it is associated with such direct advertising. If you object to the processing for direct advertising purposes, we will no longer process your personal data for these purposes. The objection can be made informally and can be addressed to the contact given in the masthead.

Data security

The transfer of information via the Internet is never 100% secure, meaning we cannot guarantee the security of data transferred to our website via the Internet. We secure our website against loss, destruction, access, change and dissemination of your data by unauthorised persons with technical and organisational measures. For this, we use the coding system SSL/TLS (Secure Sockets Layer/ Transport Layer Security). You will be able to recognise this by the fact that, in the status bar of your browser, the padlock symbol will be closed and the address line will start with https://. Our security measures are continuously improved in line with technological developments. All information that you transfer to us will be stored on servers in Germany, held by a carefully selected web host. Where this data is processed by a processor, we have agreed an appropriate contract for processing with our web host, in accordance with Article 28 GDPR. This ensures that the processing of your personal data conforms to the legal provisions on data protection.

Amendments to the Data Protection Statement

We are continually developing our website in order to provide you with ever better services. We will always keep this Data Protection Statement up to date and adapt it accordingly. We will of course inform you of any changes to the Data Protection Statement in a timely manner. The up-to-date Data Protection Statement can be found at https://www.cpu-24-7.com/dse.


Data Protection Statement as of: 25 May 2018