secunet customer survey

Data Protection statement 

Data protection and data security are the top priority for secunet Group. For this reason, we would like to explain to you in this privacy policy which of your data we process as part of the customer survey and how we protect your privacy.

Controller

The controller is defined by the General Data Protection Regulation and other data protection laws applicable in the member states of the European Union is:

secunet Security Networks AG
Kurfuerstenstraße 58
45138 Essen, Germany
Management Board: Marc-Julian Siewert (CEO), Torsten Henn, Dr. Kai Martius, Jessica Nospers
Phone: +49 (0) 201 5454-0
Fax: +49 (0) 201 5454-1000
Email: info(at)secunet.com

stashcat GmbH
Schiffgraben 47
30175 Hannover
Management: Christopher Bick, Felix Ferchland

secunet International GmbH 
Kurfürstenstraße 58
45138 Essen
Management: Christian Jüttner

SysEleven GmbH
Boxhagener Straße 80
10245 Berlin
Management: Andreas Hermann, Jens Ihlenfeld, Jens Plogsties, Andreas Rückriegel

For secunet Security Networks AG, secunet International GmbH & Co. KG and stahscat GmbH, the data protection officer can be contacted at:

secunet Security Networks AG
Kurfürstenstrasse 58
45138 Essen
E-mail: datenschutz@secunet.com

You can reach the data protection officer for Syseleven GmbH at:
datenschutz@syseleven.de

Personal data
The definitions used, such as "personal data" or their "processing", correspond to the definitions of Article 4 of the General Data protection Regulation (GDPR). Accordingly, the term personal data includes all information relating to an identified or identifiable natural person.
 

Personal data of minors
The customer survey is not directed at any minors. Personal data of minors will not be collected.
 

Collection and processing of personal data
Within the scope of the customer survey, we exclusively process the following personal data:

• Organization
• Salutation
• First name, last name
• E-mail business
• Data that you provide by participating in the survey yourself and voluntarily 

The categories of persons affected by the data processing include:

• The persons participating in the customer survey (business partners and customers of the secunet group as well as the respective contact persons).

The respective companies of the secunet Group have concluded an agreement on joint responsibility in accordance with Art. 26 GDPR for the implementation of the customer survey.

For the collection and analysis of the data, we work with the independent external service provider Rogator AG (Emmericher Str. 17, 90411 Nuremberg, Germany) with whom we have concluded an agreement on commissioned processing in accordance with Art. 28 DSGVO. When the questionnaire pages are called up and forwarded by the data processing systems of our service provider, technical data is automatically recorded in log files (e.g. shortened IP address, time, files called up, information on browser/operating system, etc.). Content and technical data types are stored separately and are not linked.

The technical data is collected to ensure error-free provision and functionality of the services on a permanent basis and to be able to react appropriately in the event of criminal attacks. No user profiles in any form are created with it. The log files are automatically deleted after 90 days.

Purpose and legal basis of data processing
We collect, process and use your personal data for the following purpose: We survey the satisfaction of our customers in order to improve the service quality of the respective secunet Group company. 

We process your personal data in compliance with the relevant data protection regulations. This means that your data will only be processed if we have legal permission to do so. Data processing is based on our legitimate interests. Our legitimate interest is to determine customer satisfaction. The legal basis for processing is thus Art. 6 (1) lit. f DSGVO in conjunction with Section 7 (3) UWG.

The data is stored for these purposes in accordance with applicable law and then deleted again.

Categories of recipients of personal data
In order to fulfill the purpose of processing, the customer survey is carried out by our service provider Rogator AG exclusively on our behalf and in accordance with our instructions. All employees of secunet and the external service provider who have access to and/or process personal data are obliged to treat this data confidentially. Appropriate legal precautions as well as corresponding technical and organizational measures have been taken to ensure the protection of personal data in accordance with the relevant legal regulations.
 

In addition, data will only be passed on within the framework of legal requirements. Your personal data will not be disclosed to third parties unless you have consented to such disclosure or such disclosure is permitted under applicable law.

Security measures

secunet Security Networks AG uses extensive technical and organizational security measures (TOMs) to ensure that the personal data you make available to us is not compromised by accidental or intentional manipulation, loss, destruction or disclosure to unauthorized third parties. Our security measures are continuously improved and adapted according to the state of the art.

The security measures include in particular the encrypted transfer of data between your browser and our server.

Please note that there may be security vulnerabilities when transferring data online (such as when communicating by email). It is not possible to protect data completely against access by third parties.

Log files

When you visit our website, the browser you are using automatically transmits the following information to our website server, which is temporarily stored in log files:

• IP address
• URL requested
• Date and time of the request
• Access methods/functions requested by the browser
• Operating system and browser type or browser settings

We process this data for the following purposes:

• Ensuring the error-free operation of the website
• Tracking unauthorized access attempts
• Statistical evaluations

The legal basis for this is Article 6(1)(f) GDPR. Our legitimate interest is the error-free and secure provision of our website.

We delete this data after 7 days.

Etracker/Web analysis services

We collect statistical data of your visit to our website. For this purpose, we use a service provided by etracker GmbH, Erste Brunnenstraße 1, 20459 Hamburg. Etracker processes your personal data on our behalf. We process the following personal data from you:

• IP address
• Scroll behavior
• Length of stay
• Interactions with certain elements

This data is summarized and statistically evaluated by etracker. We only see the data of all our visitors on a given day, not the data of individual visitors. This data is not merged with other data or passed on to third parties.

We process this data for the following purposes::

• Improvement of the design and functionality of the website

The legal basis for this is Article 6(1)(f) GDPR. Our legitimate interest is to make our information offering attractive.

If you give us your consent, we will store a cookie in your browser so that we can recognize you. We then create a profile with the data listed above and can thus identify trends. The legal basis for this is Article 6(1)(a) GDPR. You can withdraw your consent at any time with effect for the future.

If you have not given us your consent, we will only process your personal data until we have aggregated your data for our statistics. This is usually the case on the day following your visit to our website.

If you have given us your consent, we will process your data for 13 months. If you withdraw your consent, we will delete your data immediately, unless it is subject to statutory retention obligations.

You can object to the aforementioned data processing at any time by clicking on the slider. The objection has no adverse consequences. If no slider is displayed, the data collection is already prevented by other blocking measures: