Privacy Policy
Important Notice
This English version is provided for informational purposes only.
The legally binding version is the German version.
General Information
The following information provides a simple overview of what happens to your personal data when you visit our website or use our services. Personal data are all data that can be used to personally identify you.
Detailed information on data protection can be found in the following privacy policy.
Disclaimer – Legal Information
The contents of this website have been created with the greatest possible care. However, the provider assumes no liability for the completeness, accuracy, or timeliness of the information provided.
The use of the website and the offered software is at the user’s own risk. Only the currently valid General Terms and Conditions are legally binding for contractual services and obligations.
Liability for Content
As a service provider, the provider is responsible for its own content on these pages in accordance with general laws pursuant to Section 7 (1) TMG.
According to Sections 8 to 10 TMG, the provider is not obligated to monitor transmitted or stored third-party information.
Liability for specific legal violations only arises from the time of knowledge of such violations. Upon becoming aware of corresponding legal violations, such content will be removed immediately.
Liability for External Links
This website contains links to external third-party websites over whose content the provider has no influence. Therefore, no liability is assumed for these external contents.
At the time of linking, no legal violations were apparent. Permanent monitoring of linked pages is not reasonable without concrete indications of legal violations.
Copyright
The content and works created by the provider on this website are subject to German copyright law. Contributions by third parties are identified as such.
Any use outside the limits of copyright law requires the prior written consent of the respective rights holder.
Contractual Basis
By using paid features, purchasing licenses, or registering a user account, a contractual relationship is established in accordance with the General Terms and Conditions.
Data Types, Purposes of Processing, and Data Subjects
1. Types of Processed Data
In the course of using our website and our services, we process only the personal data that are necessary for providing our services.
This includes in particular:
- Master data (name, company name, address),
- Contact data (email address, telephone number),
- Contract and billing data,
- Access data for the user account,
- License and activation data (e.g., license key, domain, activation status).
The plugin does not collect or process any content, reports, or form data of end users.
All content generated through the plugin remains exclusively on the servers of the respective user.
Server Log Files
When visiting our website, technical access data are automatically stored in so-called server log files by our hosting provider.
This includes in particular:
- IP address,
- Date and time of access,
- Accessed page,
- Browser and system information.
These data are used exclusively to ensure technical operation and IT security.
No personal analysis or profiling takes place.
The data are regularly deleted automatically.
2. Purposes of Processing
Personal data are processed exclusively for the following purposes:
- Provision and operation of the website,
- Processing of contact inquiries,
- Handling of orders and payments,
- Management of user accounts and licenses,
- Verification of license validity and activation,
- Fulfillment of legal obligations,
- Customer communication and support.
Personal data are not used for analysis, tracking, or profiling purposes.
3. Categories of Data Subjects
The following persons are affected by data processing in particular:
- Website visitors,
- Customers,
- Registered users,
- Interested parties,
- Business partners.
4. Legal Bases for Processing
Personal data are processed on the basis of:
- Art. 6(1)(b) GDPR (performance of a contract),
- Art. 6(1)(c) GDPR (legal obligation),
- Art. 6(1)(f) GDPR (legitimate interest),
- Art. 6(1)(a) GDPR (consent, where required).
5. Disclosure and Data Processing on Our Behalf
Personal data are disclosed to third parties only insofar as this is necessary for payment processing, technical provision of the website, or due to legal obligations.
For hosting and technical infrastructure, we use external service providers as data processors in accordance with Art. 28 GDPR.
No content processed through the plugin is disclosed to the provider or to third parties.
Data Transfer to Third Countries
The transfer of personal data to countries outside the European Union (EU) or the European Economic Area (EEA) generally does not take place.
If, in individual cases, a transfer to service providers in third countries is necessary, this is carried out exclusively in compliance with the legal requirements of Articles 44 et seq. of the GDPR.
In such cases, we ensure an adequate level of data protection through appropriate safeguards, in particular by concluding standard contractual clauses of the European Commission or by using other recognized protection mechanisms.
Data transfers to third countries take place only insofar as this is necessary for the fulfillment of contractual obligations, the technical provision of our services, or due to legal requirements.
Deletion of Data and Storage Period
Unless otherwise stated in this privacy policy, personal data are deleted as soon as the purpose of their processing no longer applies.
Longer storage takes place only insofar as statutory retention obligations exist or the data are required for the assertion or defense of legal claims.
Commercial and tax retention obligations arise in particular from Section 257 HGB (6 years) and Section 147 AO (10 years).
After the respective periods have expired, the data are blocked or deleted unless further lawful processing is required.
Automated Decision-Making
No automated decision-making, including profiling, within the meaning of Art. 22 GDPR takes place.
Provision of the Website and Server Log Files
When visiting our website, technical access data are automatically stored in so-called server log files by our hosting provider.
This includes in particular:
- IP address,
- Date and time of access,
- Accessed page,
- Browser type and version,
- Operating system,
- Referrer URL (if transmitted),
- HTTP status code and transferred data volume.
These data are used exclusively to ensure technical operation, system security, and the prevention of misuse.
These data are not merged with other personal data.
The legal basis is Art. 6(1)(f) GDPR.
The log file data are generally stored for a maximum period of 30 days and are then automatically deleted, unless security-related events require longer retention.
Cookies
Our website uses exclusively technically necessary cookies.
These cookies are required to provide basic website functions, in particular session management, security, and the login area.
Cookies are not used for analysis, tracking, or advertising purposes.
The legal basis for the use of technically necessary cookies is Art. 6(1)(f) GDPR.
Where consent is required for certain functions, cookies are used on the basis of Art. 6(1)(a) GDPR.
Consent management is carried out using an appropriate consent tool.
You can prevent the storage of cookies through your browser settings. In this case, some website functions may be limited.
Contact via Contact Form, Email, or Mail
When contacting us via contact form, email, or mail, the personal data you provide are processed for the purpose of handling your request.
This includes in particular your name, email address, telephone number, and the content of your message.
The legal basis is Art. 6(1)(b) GDPR if the request is aimed at concluding a contract, and Art. 6(1)(f) GDPR for general inquiries.
The data are deleted as soon as the purpose of processing no longer applies and no statutory retention obligations exist.
Contact by Telephone
When contacting us by telephone, your telephone number is processed to handle your request.
The processing is based on Art. 6(1)(f) GDPR.
No permanent storage of telephone connection data takes place unless required by legal or contractual reasons.
Consent Management
We use a consent tool to manage cookies and user consents.
The legal basis is Art. 6(1)(c) GDPR and Art. 6(1)(f) GDPR.
You can adjust or revoke your consent at any time via the privacy settings of the website.
To manage cookies and similar technologies (such as tracking pixels and web beacons) and related consents, we use the consent tool “Real Cookie Banner”. Further information can be found at https://devowl.io/de/rcb/datenverarbeitung/.
Providing personal data is neither legally nor contractually required. You are not obliged to provide personal data. If you do not provide them, we cannot manage your consents.
Individual Deactivation of Tracking/Cookies
Presence on Social Media
We maintain profiles on social networks in order to communicate with interested parties and customers and to provide information about our services and offers.
When visiting our social media profiles, personal data are processed by the respective platform operators. This includes in particular usage data, communication content, and technical information.
The processing is carried out under the sole responsibility of the respective platform operators. We have no influence on the type and scope of data processing.
If you contact us via social networks, we process the data you provide exclusively for the purpose of handling your request and communicating with you.
The legal basis is Art. 6(1)(f) GDPR (legitimate interest in public relations and communication) and Art. 6(1)(b) GDPR, insofar as a contractual relationship is initiated.
Data transfers to third countries may be carried out by the platform operators in accordance with their own privacy policies and the legal requirements of Art. 44 et seq. GDPR.
Further information on data processing can be found in the respective providers’ privacy policies.
Rights of Data Subjects
Within the scope of the applicable legal provisions, you have the right at any time to:
- Obtain information about your personal data stored by us (Art. 15 GDPR),
- Request the correction of inaccurate or completion of incomplete data (Art. 16 GDPR),
- Request the deletion of your personal data, provided that no statutory retention obligations apply (Art. 17 GDPR),
- Request the restriction of processing (Art. 18 GDPR),
- Request the transfer of your data in a structured, commonly used, and machine-readable format (Art. 20 GDPR),
- Object to the processing of your personal data (Art. 21 GDPR),
- Revoke any consent given at any time with effect for the future (Art. 7(3) GDPR).
Where processing is based on Art. 6(1)(f) GDPR, you may object at any time for reasons arising from your particular situation.
Your personal data are not processed for direct marketing purposes.
Exercise of Your Rights
You may contact us at any time to exercise your rights:
Harutyun Harutyunyan
Oslostr. 5
81829 Munich
Email: info@whistleblowing-form.de
Right to Lodge a Complaint with a Supervisory Authority
You have the right to lodge a complaint with a competent data protection supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement.
Data Security
We implement appropriate technical and organizational measures to protect your personal data against loss, misuse, unauthorized access, and unauthorized disclosure.
Data transmission between your browser and our server is encrypted using SSL/TLS technology.
