Privacy Information

Data Protection Declaration

We look forward to your attendance to our website and your interest in our company. The protection of your privacy is very important to us and our company. For this reason, we have taken technical and organizational measures to ensure that the rules on data protection are observed by us, as well as by our partners and external service providers. We would like to point out, that the transmission of data on the internet can have security gaps and a complete protection of data against access by third parties is not possible.

Below we inform you about the collection of personal data when using our website. Personal data is defined as any information which refers to you personally, e.g. name, the address or the e-mail address. The body with responsibility as laid down in Article 4 VII of the General Data Protection Regulation (GDPR) and other national data protection laws of the Member States of the European Union as well as other data protection provisions is:

syracom AG
Otto-von-Guericke-Ring 15
65205 Wiesbaden (Germany)
Fon: +49 (0)6122 9176 0
E-Mail:
info@syracom.de
Website:
www.syracom.de

You can contact our responsible data protection officer under Datenschutz(at)syracom.de, our postal address with the addition “The Data Protection Officer” or via phone: +49 (0)61229176 63.

General Information about Data Processing

In principle, we collect and use personal data of our users only to the extent necessary to provide a functional website as well as our contents and services. The collection and processing of personal data takes place regularly only subsequent to the prior consent of the user. An exception applies to cases where a prior consent is factual reasons impossible to obtain and the processing of the data is permitted by law.

As far as we seek consent for processing operations containing personal data, Art. 6 I lit. a GDPR serves as the legal basis. When processing personal data is required to fulfil a contract, Art. 6 I lit. b GDPR serves as the legal basis. This also applies to processing operations which are required for conducting pre-contractual measures. As far as it is necessary to process personal data in order to fulfil a legal obligation our company is subjected to, Art. 6 I lit. c GDPR is the legal basis. If processing is required to safeguard the legitimate interests of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not prevail over the first interest, Art. 6 I lit. f GDPR serves as legal basis for processing.

Your personal data will be deleted or blocked as soon as the purpose of storage ceases to apply. Furthermore, data may be stored if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the person responsible is subject. Blocking or deletion of the data shall also take place if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or the fulfilment of a contract.

Collecting General Information, Provision of the Website

In the merely informative use of our website, in other words, if you do not provide us with any information separately, we will only collect the personal data that your browser transmits to our server. When you access our website, general information will be automatically recorded. This information (so-called server log files) contains:

  • your IP address
  • date and time of the request,
  • time zone difference to Greenwich Mean Time (GMT),
  • content of the requirement
  • access status / HTTP status code
  • data volume transferred
  • website from which the request comes browser
  • operating system and its interface
  • language and version of the browser software

This information is technically necessary to provide the contents of web pages requested by you correctly and is mandatory when using the internet. It is also required to ensure the stability and security of our website. Storage of this data together with other personal data of the user and an evaluation of the data for marketing purposes does not take place in this context.

Legal basis for the temporary storage of the data is Art. 6 I 1 lit. f GDPR. The data will be deleted as soon as it is no longer necessary for the purpose of its collection. In the case of collecting the data for the provision of the website, this is the case when the respective session is completed. In the case of storing the data in log files, this is the case after no more than seven days. An additional storage is possible. In this case, the IP addresses of the users are deleted or alienated, so that an assignment of the calling client is no longer possible.

Use of Cookies

In addition to the aforementioned data, like many other websites, we use so-called "Cookies". Cookies are small text files stored on your hard drive that are associated with the browser you use and which send us certain information. These cookies contain a characteristic string that allows the browser to be uniquely identified when the website is restarted. Cookies cannot be used to launch programs or to transfer viruses to a computer. The transient cookies we use (so-called session cookies) allow us to make our website more user-friendly.

Session cookies are automatically deleted when you close the browser. Session cookies store a so-called session ID, with which various requests from your browser can be assigned to the shared session. This will allow your computer to be recognized when you return to our website.

In no case the data will be collected by us, will be passed on to third parties or a link with personal data will be established without your consent. Of course, you can also view our website without cookies. Internet browsers are regularly set to accept cookies. You can deactivate the use of cookies at any time via the settings of your browser. Please use the help functions of you Internet browser to learn how to change these settings. Please note that certain functions of our website may not be used if you have deactivated the use of cookies.

In the aforementioned purposes, our legitimate interest lies in the processing of personal data according to Art. 6 I 1 lit. f GDPR.

SSL-Encryption

To protect the security of your data during transmission, we use state-of-the-art encryption techniques (such as SSL) over HTTPS.

Deletion or Blocking of Data

We adhere to the principles of data avoidance and data economy. Therefore, we only store your personal data as long as it is necessary to achieve the purposes mentioned here or as stipulated by the various storage periods provided for by the legislator. After discontinuation of the respective purpose or expiration of these deadlines, the corresponding data will be routinely and in accordance with the statutory provisions blocked or deleted.

Contact via E-mail

Contacting us is possible via the provided e-mail addresses. In this case, the personal data you provide with the e-mail will be stored. Your data may be forwarded to syracom consulting AG and syracom Schweiz AG for processing. According to Article 45 GDPR, data transmission to foreign entities outside the EU/EEA is lawful where there is an adequate level of data protection. According to the EU-Commission’s adequacy decision (2000/518/EC), a sufficient level of data protection is available. The data is used exclusively for processing the conversation.

The legal basis for the processing of data is Art. 6 I lit. a GDPR if a consent has been given. If no consent has been given, Art. 6 I lit. f GDPR serves as legal basis. If the e-mail contact aims to conclude a contract, then additional legal basis for the processing is Art. 6 I lit. b GDPR.

The data will be deleted as soon as it is no longer necessary for the purpose of its collection. For personal data sent by e-mail, this is the case when the respective conversation with the user has ended. The conversation is ended when it can be inferred from the circumstances that the relevant facts have been finally clarified. The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

You have the opportunity to revoke your consent to the processing of personal data at any time. In such a case, the conversation cannot continue. The revocation of the consent and the contradiction can be declared by using the contact details given in the imprint. All personal data stored in the course of contacting will be deleted in this case.

 

Use of the Blog Features

In our blog, where we publish different articles on subjects relating to our activities, you can make public comments. Your comments on the article are published with your specified user name. We recommend that you use a pseudonym instead of your real name. Indication of user name and email address is required, all other information is voluntary. If you make a comment, we will continue to store your IP address which we will erase after one week. Storage is necessary for us to enable us to defend ourselves against liability claims in cases of possible publication of illegal content. We need your email address to contact you if a third party challenges your comment as illegal. The legal bases are Art. 6 I 1 lit. b and f GDPR. Comments are not reviewed before publication. We reserve the right to delete comments if they are challenged by third parties as illegal.

Download forms

We offer various studies and white papers on current topics for download. After entering your data in the corresponding download form and submitting it, an e-mail generated automatically by us with a verification link will be sent to the e-mail address you entered in the download form. This email will contain a verification link which must be selected in order to verify the email address provided. Once the verification is complete, you will receive another email containing a download link for the requested content.

In return for receiving this content, we will process your data provided in the download form for promotional purposes. Accordingly, we will contact you via email to inform you about our advisory services and events or online seminars that are suitable for you.

Your consent pursuant to Art. 6 I lit. a GDPR is thus deemed to be the legal basis for processing for the aforementioned purpose.

The consent can be revoked at any time by e-mail without giving reasons. The address to which the revocation is to be submitted is: unsubscribe(at)syracom.de
Your personal data will be deleted immediately after receipt of the revocation. The personal data will be processed for advertising purposes until revocation.

GoTo Webinars

We offer webinars on various professional topics which are relevant for different industries due to current developments. For this purpose, we use the GoTo webinars from LogMeIn Ireland Unlimited Company, located in:

The Reflector 10 Hanover Quay
D02 R573 Dublin, Ireland

To this end, LogMeIn processes your data on our behalf. We have agreed on an order processing agreement pursuant to Article 28 GDPR with LogMeIn for this processing. For the protection of your personal data, this agreement specifies how and under which technical and organisational security measures your personal data may be processed. When LogMeIn processes the data on servers in the USA, the agreed EU standard contractual clauses pursuant to Article 46 II lit. c GDPR also apply. For more details on LogMeIn’s privacy measures and implementation, please see LogMeIn’s Privacy Policy: https://www.logmein.com/de/legal/privacy/international

The registration for a webinar involves the processing of personal data. This data includes the first and last name, email address, company name and position.

When a webinar is implemented, the video and audio recordings are processed in addition to the participant data – i.e. the name and chat entries – if you consent to this in the settings in the GoTo webinar. Depending on the design of the webinar, we as the organiser will display your participant data to the other participants in order to offer the option for you to ask questions and exchange information with the other participants. In addition, technical data such as device identification data and traffic data in the form of the IP address and web logs are processed during the implementation of the webinar.

The legal basis for the organisation and implementation of the GoTo webinars results from Article 6 I lit. f GDPR and our legitimate interest in the implementation of the training event offered as a webinar on subjects relevant to the industry.

LogMeIn provides an analytics tool in addition to the ability to implement webinars, which we also use. This tool creates statistics about the webinars after they have been completed. The analysis provides information on how many people participated in the webinar and how high the interaction level and interest of the participants was. The legal basis for the analysis is also Article 6 I lit. f GDPR. Our legitimate interest here is to improve the organisation and implementation of our training events offered as webinars. For GoTo webinars, the storage period of the analyses is 365 days after the end of the webinar. No automated decisions are made through the use of the GoTo Webinars and there is no profiling in the sense of Article 22 GDPR.

After you have successfully register for a webinar, you will be redirected to a confirmation page and you will receive a confirmation email. At the bottom of the confirmation page and in the confirmation email, you can select the “Cancel registration” link to cancel your registration for the webinar. If you do so, this will automatically delete your data that LogMeIn processes when you register and you will not receive any further emails about the cancelled webinar.

Participation in the webinars is free of charge. In return, we process the data you provide when registering for the webinar for the purpose of advertising, in addition to the purpose of providing and implementing the webinars. This means that we will contact you via email to inform you about our additional services. Your registration for the webinar thus constitutes consent pursuant to Article 6 I lit. a GDPR. Your registration data will be processed for the stated purpose until you revoke the processing. You can revoke your consent at any time by email without giving reasons. For example, you can enter “Cancellation of webinar” in the subject of this email. The address to which the revocation must be submitted is: unsubscribe(at)syracom.de

The GoTo webinars from LogMeIn offer the option to be recorded. As a matter of principle, we will not publish any personal data of the participants in the scope of recordings. If we want to publish a recording of a webinar at a later time, we will edit it to make the personal data, such as a participant’s user name or audio track, unrecognizable. In the event that a webinar is nevertheless recorded and published with personal data of the participants, for example to publish the recording of a discussion round at a later time, we will obtain separate written consents for this in advance pursuan to Article 6 I lit. a GDPR. Details on how to revoke these separate written consents will be provided when they are obtained.

Data Protection in Applications and in the Application Process

If you have submitted an application to us, your data will be processed and stored for the purpose of processing the application process. Your data will be sent directly to the HR department and will be treated as strictly confidential. To process your data, we work together with the cloud provider Personio GmbH. This cloud provider provides the hosting, maintenance, operation and the online retrieval of the cloud-based SaaS solution "Personio" for the syracom applicant management. The privacy policy of Personio on their handling of personal data in accordance with GDPR can be found under www.personio.de/ueber-uns/datenschutz/.

Such service contractors are carefully selected and regularly monitored by us. Based on respective data processor agreements, they will only process personal data upon our instruction and strictly in accordance with our directives.

Your data may be forwarded to syracom consulting AG and syracom Switzerland AG for processing as part of the application process. According to Article 45 GDPR, transmission of data to foreign bodies outside the EU / EEA is lawful if an adequate level of data protection is given.

Your application will only be processed and stored in order to process your online application. If a contract of employment with the applicant is established on the basis of the application process, the transmitted data will be stored for the purpose of executing the employment relationship in compliance with the statutory provisions. If no employment contract is concluded with the applicant, your data will be deleted immediately after the end of the application process. The application process is completed when the period has elapsed, during which claims for violation of the AGG can still be expected. This shall be the case no later than four months after the rejection has been sent if no claim or assertion according to § 15 IV AGG has been received by then. After the written assertion in due time, the three-month period of § 61b I ArbGG plus two months for the service of the claim is awaited. Legal bases are Art. 6 I 1 lit. b and f GDPR.

 

Use of Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Inc. ("Google"). Google Analytics uses so-called "cookies", text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, if the IP anonymization is activated on this website, your IP address will be shortened by Google beforehand within member states of the European Union or other parties to the Agreement on the European Economic Area. Only in exceptional cases, the full IP address is sent to and shortened by Google servers in the USA. On behalf of the website provider Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage to the website provider. Google will not associate your IP address with any other data held by Google.

You can prevent the storage of cookies by a corresponding setting of your browser software; however, we would point out that in this case you might possibly be unable to make full use of all of the functions on this website.

Furthermore, you can prevent the gathering of the data (including your IP address) that is generated by the cookie and that relates to your use of the website and the processing of this data by Google by downloading and installing the browser plugin that is available via the following link: tools.google.com/dlpage/gaoptout. Alternatively, you can set the opt-out cookie by clicking on this button.

This website uses Google Analytics with the extension "_anonymize ()". As a result, IP addresses are processed shortened, a person-relatedness can be excluded. Insofar as the data collected about you is assigned a personal reference, it will be immediately excluded and the personal data will be deleted immediately.

We use Google Analytics to analyse and regularly improve the use of our website. With the statistics we can improve our offer and make it more interesting for you as a user. For the exceptional cases in which personal information is transferred to the USA, Google has submitted to the EU-US Privacy Shield, https://www.privacyshield.gov/welcome.

The legal basis for the use of Google Analytics is Art. 6 I 1 lit. a GDPR.

Third-party information: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, fax: +353 (1) 436 1001. User conditions: https://www.google.com/analytics/terms/de.html, Privacy overview: https://www.google.com/intl/de/analytics/learn/privacy.html, as well as the privacy policy: https://policies.google.com/privacy.

You can prevent capture by Google Analytics by clicking on the following link: It activates an opt-out cookie which will prevent the future collection of your data when visiting this website: Deactivate Google Analytics

Use of Social Media Plug-ins

At present we use the following social media plug-ins: Xing, kununu, LinkedIn, Google +, Twitter, Facebook. We use the so-called “Shariff”-Solution. This means that when you visit our site, initially no personal data is passed on to the providers of the plug-ins. The provider of the plug-in can be identified by the marking on the box above its initial letter or logo. We give you the opportunity to communicate directly with the provider of the plug-in via the button.

Only if you click on the button field and activate it, the plug-in provider receives the information that you have accessed the corresponding website of our online service. In addition, the already above mentioned server log files are transmitted. In the case of Facebook and Xing, according to the respective providers in Germany, the IP address is anonymized immediately after collection.

By activating the plug-in, personal data will be transmitted by you to the respective plug-in provider and stored there (with US providers in the USA). Since the plug-in provider carries out the data collection, in particular via cookies, we recommend you to delete all cookies via the security settings of your browser before clicking on the plug-in.

We have no influence on the collected data and data processing operations, nor are aware of the full extent of the data collection, the purposes of the processing, the storage periods. We also have no information on the deletion of the data collected by the plug-in provider.

The plug-in provider stores the data collected about you as usage profiles and uses them for purposes of advertising, market research and / or tailor-made website design. Such an evaluation is carried out in particular (also for non-logged-in users) for the presentation of needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the formation of these user profiles, whereby you must contact the respective plug-in provider to exercise it. Through the plug-ins we offer you the opportunity to interact with the social networks and other users, so that we can improve our offer and make it more interesting for you as a user. The legal basis for the use of the plug-ins is Art. 6 I 1 lit. a GDPR.

The data is forwarded regardless of whether you have an account with the plug-in provider and are signed in there. If you are signed in with the plug-in provider, your data that is collected by us is allocated directly to your account with the plug-in provider.

If you press the activated button and link to the page, for example, the plug-in provider also stores this information in your user account and publicly shares it with your contacts. After using a social network, we recommend that you regularly sign out especially before you activate the button. In this way you can avoid the plug-in provider allocating this data to your profile.

Additional information regarding the purpose and scope of the data collection and its processing by the plug-in provider is available in the privacy policies of these providers as listed below. Here you also obtain additional information about your rights and settings options to protect your privacy.
Addresses of the respective plug-in provider and URL of their privacy policy:

Integration of You Tube Videos

We have incorporated YouTube videos into our online offering which are stored on www.YouTube.com and can be played directly from our website. These are all included in the “extended privacy mode”, i.e. no data about you as a user is transmitted to YouTube if you don’t play the videos. Only when you play the videos, the following data will be transmitted. We have no influence over this data transmission.

By visiting the website YouTube receives the information that you have accessed the corresponding sub-page of our website. In addition, the server log files already described will be transmitted. This occurs regardless of whether you have a YouTube user account which you are logged in to or whether you do not have a user account. If you are logged in to Google your data is directly associated with your account. If you do not want to be associated with your YouTube profile then you must log out prior to activating the button. YouTube saves your data as a user profile and uses it for the purposes of advertising, market research and/or needs-based design of their website. This evaluation takes place, in particular (also for users who are not logged in), for the delivery of demand-oriented advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact YouTube to exercise this right.

For more information on the purpose and scope of data collection and processing by YouTube, please refer to the privacy policy. There you will also find further information on your corresponding rights and settings options for protecting your privacy: www.google.de/intl/de/policies/privacy. Google also processes your personal data in the USA and has submitted to the EU-US Privacy Shield, www.privacyshield.gov/EU-US-Framework.

Your Rights to Information, Rectification, Blocking, Deletion and Opposition

If personal data of you is processed, you are affected within the meaning of the GDPR and you have the following rights:

  • Right to information
  • Right to rectification or delition
  • Right to limitation of processing
  • Right to objection to the processing
  • Right to data portability

You are also entitled to complain to a data protection supervisory authority about our processing of your personal data.

1. Right to Information

You can demand a confirmation, whether personal data which concerns you is processed by us. If there is such data processing, you can demand the following information from us:

  • the purposes for which personal data is processed;
  • the categories of personal data which are processed;
  • the recipients or categories of recipients this personal data was or will be disclosed to;
  • the planned duration of personal data storage or, if the specification is impossible, criteria which determine the duration of the personal data storage;
  • the existence of a right to rectification or deletion of personal data concerning you, a right to restriction of processing or a right to object to such processing;
  • the right to lodge a complaint with a supervisory authority;
  • all available information about the source of data, if the personal data has not been obtained from the data subject;

You have the right to be informed, whether your personal data is transmitted to a third country or an international organization. In this context, you can ask to be informed about the appropriate safeguards in accordance with Art.46 GDPR.

2. Right to rectification

You have a right to rectify and / or complete the processed personal data in the case that it is incorrect or incomplete. We will carry this out without undue delay.

3. Right to restriction of processing

You may request the restriction of the processing of your personal data under the following conditions:

  • if you have contested the accuracy of the personal data for a period enabling the controller to verify the accuracy of the personal data.
  • the processing is unlawful and you oppose to delete the personal data and request the restriction of the use of personal data;
  • we no longer need your personal data for the purposes of processing, but you require them for the establishment, exercise or defence of legal claims, or
  • if you have objected to the processing pursuant to Art. 21 I GDPR and it is not yet certain whether our legitimate reasons prevail over your reasons.

In this case, we will understand and / or process your data - once it has been intercepted - only once to change your data, or to receive a response from a union or a member state. If the restriction is removed, you will be notified by us in advance.

4. Right to deletion

You may request that the personal data relating to you be deleted immediately where one of the following grounds applies:

  • The personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed.
  • You withdraw consent on which the processing is based according to Art. 6 I 1 lit. a or Art. 9 II lit. GDPR and where there are no other legal grounds for processing.
  • You object to the processing pursuant to Art. 21 I GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Art. 21 II GDPR.
  • The personal data have been unlawfully processed.
  • The personal data have to be erased for compliance with a legal obligation in Union or Member State law to which we are subject.
  • The personal data have been collected in relation to the offer of information society services referred to in Art. 8 I GDPR.

If we have made personal data publicly available and if we are obliged to delete them in accordance with Art. 17 I GDPR, we shall take appropriate measures, taking into account the available technology and the implementation costs, including technical ones, for data controllers who are responsible for the processing of personal data, to inform you, that you have requested the deletion of all links to such personal data or copies or replications of such personal data.

The right to erasure is not applicable, where the processing is necessary

  • to exercise the right of freedom of expression and information;
  • for compliance with a legal obligation which requires processing by Union or Member State law to which we are subject, or to perform a task of public interest or in the exercise of official authority assigned to us;
  • for reasons of public interest in the area of public health in accordance with Article 9 II b h and i and Art. 9 III GDPR;
  • for archival purposes of public interest, for scientific or historical research purposes or for statistical purposes in accordance with Art. Art. 89 I GDPR, insofar as the right referred to in paragraph 1 is likely to render impossible or seriously impair the achievement of the objectives of that processing, or
  • for the establishment, exercise or defend legal claims

If you have exercised your right to rectification, restriction of processing or erasure the controller is obliged to communicate this to each recipient to whom the personal data has been disclosed, unless this proves impossible or involves disproportionate effort.

5. Right to data portability

You have the right to receive personal data concerning you in a structured, commonly used and machine-readable format. In addition, you have the right to transfer this data to another person responsible, provided where

  • the processing is based on consent pursuant to Art. 6 I 1 lit. a GDPR or Art. 9 II lit. a GDPR or on a contract pursuant to Art. 6 I 1 lit. b GDPR, and
  • the processing is carried out by automated means.

The right to data portability does not apply to the processing of personal data necessary for the performance of a task in the public interest or in the exercise of official authority.

6. Right to objection

Should your personal data be based on the balance of interests, you may lodge an objection to the processing pursuant to Art. 6 I 1 lit. e or f GDPR.  This, in particular, is the case should the processing not be required to fulfil a contract with you, which is illustrated by us in the subsequent description of the functions in each case. When lodging such an objection, please state the reasons why the processing of your personal data should not be implemented according to our usual methods. Should your objection be justified, we will examine the facts and either discontinue or adjust the data processing or invoke compelling legitimate grounds as to why we are continuing the processing.

If you object to processing for direct marketing and data analysis purposes, your personal data will no longer be processed for these purposes.

You can inform us about your opposition under the following contact details:

syracom AG
- The Data Protection Officer -
Otto-von-Guericke-Ring 15
65205 Wiesbaden
Tel.: +49 (0)6122 9176 63
Fax: +49 (0)6122 9176 11
E-Mail: datenschutz@syracom.de
Website: www.syracom.de

7. Right of withdrawal the data protection declaration of consent

You have the right to revoke your data protection consent declaration at any time. Such revocation will affect the admissibility of the processing of your personal data after you have given it to us.

Change of our Privacy Policy

We reserve the right to change this Privacy Policy from time to time to ensure that it complies with current legal requirements or to implement changes to our services in the Privacy Policy, such as: For example, when introducing new services. Your new visit will be subject to the new privacy policy.