Privacy policy

EXCON appreciates your visit to this website and your interest in our services. So that you feel safe and comfortable during your visit, we would like to inform you below about the handling of your data.

 

User data

In order to improve the quality of our web pages, we store data on individual access to our pages for statistical purposes. This data set consists of:

  • the page from which the file was requested,
  • the name of the file,
  • the date and time of the request,
  • the amount of data transferred,
  • the access status (file transferred, file not found),
  • the description of the type of web browser used,
  • the IP address of the requesting computer shortened by the last three digits.

This data is stored anonymously in accordance with the German Telemedia Act (TMG). The creation of personal user profiles is thus excluded.

 

About tracking / usage analysis
 

Google Tag Manager itself does not set any cookies or collect any personally identifiable information, but serves as an interface for managing website tags. The use of this tool is technically necessary.

Matomo
 

We use the analysis software Matomo to statistically evaluate visitor access and to optimize our website. Because we use Matomo on-premise, the data we collect is processed only on our own systems.

Matomo uses cookies, which are stored locally on your computer, to help us analyze how our website is used. We ensure that your IP address is anonymized immediately after it is collected (192.168.XXX.XXX) so that it cannot be traced back to you. In order to distinguish between individual users and visits, Matomo assigns identifiers (User ID and Session ID) that serve as pseudonyms. These cannot normally be traced back to natural persons and are only processed by us until we create an analysis report from the usage data. This report contains only aggregated data that cannot be linked to any individual. Due to the data-saving configuration and the extensive de facto anonymization, we consider your rights and freedoms as a data subject to be effectively safeguarded and base the evaluation on our legitimate interests (Art. 6 para. 1 sentence 1 f) GDPR).

You can generally prevent the storage of cookies by setting your web browser accordingly. Alternatively, you can object to the storage and analysis of the data collected by Matomo at any time. In this case, an opt-out cookie will ensure that Matomo does not collect any session data. If this cookie is deleted, e.g. by closing the browser, the objection will be lost and may have to be made again. In addition, we respect any "do not track" preference that your browser may have communicated.

 

Data transfer to third parties

We will only disclose the data we have collected and stored about you to third parties if we are legally entitled or obliged to do so (e.g. for contractual or law enforcement purposes) or if you expressly request us to do so. In these cases, we strictly comply with the requirements of the General Data Protection Regulation. The scope of the data transfer is limited to a minimum.

 

Contact form

We only collect personal data via our contact form if it is necessary for the purpose you have requested (contacting us). We use your personal data to answer your inquiry. To use our contact form, we need your name and e-mail address. You can provide us with further details such as your company address, but you do not have to.

 

Login area

As our customer, you can also access the data and evaluations of certain services online via an access-protected area. For this purpose, you will receive an individual user name and password from us. We use this data exclusively for the provision of this offer and for the provision of our service.

 

Newsletter

We offer you the possibility to order our newsletter on our website. To do this, we only need your e-mail address and your last name, the further specification of your first name is voluntary and will only be used for the personal address in the newsletter. You can unsubscribe from the newsletter at any time, e.g. by sending an e-mail to insights@excon.com or via a corresponding link at the end of each newsletter.

 

Use of Google reCaptcha

We use Google's reCaptcha service to determine whether a human or a computer is making a particular entry in our contact or newsletter form. Google uses the following data to check whether you are a human or a computer: IP address of the terminal device used, the website you visit with us on which the captcha is embedded, the date and duration of the visit, the recognition data of the browser and operating system type used, Google account if you are logged in to Google, mouse movements on the reCaptcha areas and tasks that require you to identify images. The legal basis for the described data processing is Art. 6 (1) lit. f of the General Data Protection Regulation. There is a legitimate interest on our side in this data processing to ensure the security of our website and to protect us from automated entries (attacks).

 

PURL usage

From time to time we also offer the use of personalized websites (PURL). For a personal greeting on this website, we then use your data known to us in the form of salutation, title, first name and last name. The legal basis for the processing of this data is Art. 6 para. 1 lit a) DSGVO.

Before using the website, you have agreed to the following personalized processing:

  • Query and store usage behavior and online activity.
  • Storing the progress in the use of the online offer of this website
  • Analyze website usage to deliver interest-specific content
  • Storage of interests
  • Use of the collected data for the purpose of personalized offers or advertising
  • Analyze to optimize website functionality

If you no longer agree with this and are no longer interested in this offer, please send us a short message to info@excon.com to delete your data.

Cookies

Cookies are small files that are stored on a visitor's hard drive. They allow information to be retained for a certain period of time and identify the visitor's computer. For better user guidance and individual performance presentation, we use permanent cookies. Furthermore, we use so-called session cookies, which are automatically deleted when you close your browser. You can set your browser to inform you about the placement of cookies. This makes the use of cookies transparent for you. You can also deactivate the storage of cookies in your browser settings or set your browser so that cookies are only stored for the duration of the respective connection to the Internet.

Detailed information about the cookies used by EXCON can be found here.

Video conference using GoToMeeting

To conduct video conferences, the online tool GoToMeeting is used, which is operated by LogMeIn Ireland Unlimited Company on the basis of a data protection agreement including associated standard data protection clauses for any data exports outside the EU and the EEA. Details on data processing by LogMeIn can be found in the associated privacy policy at https://www.logmein.com/de/legal/privacy/international. Accordingly, there may be a data transfer to the USA and the UK for the purpose of processing the video conference.

This online tool can already be used by calling up a sent link in the browser. Alternatively, a corresponding app can also be installed locally. In both cases, it is necessary to call up the provider's website, at least initially.


When using GoToMeeting are stored:

  • User details, consisting of IP address, start and end of connection, user ID entered at the start of the event itself.
  • Meeting metadata: Topic, description (optional), attendee IP addresses, device/hardware information.
  • When dialing in with the telephone: information about the incoming and outgoing phone number, country name, start and end time
  • When entering chat messages, uploading files or sharing screen content: Corresponding information that is explicitly disclosed by the user himself for this purpose.
  • When the microphone is activated: audio data recorded by the microphone used by the user.
  • When the camera is activated: image data recorded by the camera used on the part of the user.


Video conferences are not recorded by default and otherwise only with the consent of all participants.

The intended purpose of the processing during a video conference is based on the associated mail traffic with which the corresponding video conference was invited, with reference to the meeting metadata entered. The legal basis underlying the respective videoconference can also be inferred from the respective circumstances and is based either on consent according to Art. 6 (1) a DSGVO, the performance of a contract according to Art. 6 (1) b DSGVO, the fulfillment of a legal obligation according to Art. 6 (1) c DSGVO or the protection of legitimate interests according to Art. 6 (1) f DSGVO. Associated storage periods depend on the corresponding underlying purposes and are otherwise based on the specifications for telemedia services regarding audiovisual usage data.
Users are requested to disclose only necessary data during the video conference. This explicitly includes the selected image section (possibly using blurring), presented screen content and the transmitted background noise while the user's own microphone is activated.

 

Data processing for the purpose of direct marketing

Mail advertising

To the extent permitted by law, we may also use the name and postal address of our business customers to send you advertising for our own offers. The legal basis is Art. 6 para. 1 lit. f) in conjunction with. Recital 47 DSGVO. Our legitimate interest is to promote sales or demand among our existing customers. Of course, you can object to the processing of your data for advertising purposes at any time for the future. A notification in text form to the above contact details is sufficient. We will then delete your data from our distribution list. We will then retain the data proving your objection for another 6 years in accordance with Art. 17 (3) e) DSGVO. During this time, however, your personal data will be blocked against further processing.

 

Telemarketing

To the extent permitted by law, we may also use your name, company affiliation and the telephone number you provide in order to inform you about our own offers, provided that you are presumably interested. The legal basis is Art. 6 para. 1 lit. f) in conjunction with. Recital 47 DSGVO, § 7 para. 2 no. 2 UWG. Our legitimate interest is to promote sales or demand among our existing business customers. Of course, you can object to the processing of your data for advertising purposes at any time for the future. A notification in text form to the above contact details is sufficient. We will then delete your data from our distribution list. We will then retain the data proving your objection for another 6 years in accordance with Art. 17 Para. 3 lit. e) DSGVO. During this time, however, your personal data will be blocked against further processing.

 

Storage duration

We store personal data within the scope of legal regulations or your consent.
We use the following criteria to determine the specific storage period:
We store the personal data until the purposes for which they were collected cease to apply (e.g. upon termination of a contractual relationship or through the last activity, if there is no continuing obligation, or in the event of a revocation of your consent for the specific data processing).

Storage beyond this takes place only insofar as

  • statutory retention obligations (e.g. according to AO and HGB) exist;
  • the data is still required for the assertion and exercise of legal claims or for the defense against legal claims, e.g. due to technological and forensic requirements for the defense against attacks on our web servers and their prosecution;
  • deletion would be contrary to the legitimate interests of the data subjects;
  • another exception pursuant to Art. 17 (3) DSGVO applies.

 

Your rights as data subject

As a user, you have the right to request information about what data about you is stored by us and for what purpose this storage takes place. If you have allowed us to process your personal data by giving your consent, you have a right of revocation with effect for the future pursuant to Art. 7 (3) DSGVO. In addition, you have the right to restrict (block) or object to processing and to lodge a complaint with the competent supervisory authority (Der Hessische Datenschutzbeauftragte, Postfach 3163, 65021 Wiesbaden, e-mail: poststelle@datenschutz.hessen.de). In addition, you can correct incorrect data or have such data deleted whose storage is inadmissible or no longer necessary. Please do not hesitate to contact us for information, requests or suggestions on the subject of data protection.

 

Data Privacy Officer

The current data protection officer of the EXCON Group is:

it.sec GmbH
Einsteinstraße 55
89077 Ulm

datenschutz@it-sec.de