Privacy / Copyright
Data protection is an important concern of abas Software GmbH and its partner companies.
Therefore, our customers' data is processed exclusively in compliance with the applicable data protection regulations (e.g., GDPR, BDSG-new).
We collect and process personal data if you make this data available to us (e.g., by registering on the website, contact requests, surveys, etc.) and if we are authorized to use and process this data based on your consent or on the basis of a legal requirement for its collection.
If we receive personal data from you from other companies, you will be informed as soon as possible, and no later than at the time we begin processing your data. These data are also only stored and processed on the basis of legal regulations.
1. Personal data
Personal data are all information that relates to an identified or identifiable natural person (hereinafter "data subject").
We collect and process the following personal data:
Surname, first name, home address, telephone number, marital status, date of birth, gender, email address, password,
We process the above-mentioned personal data for the following purposes:
- Communication with you about products, services and projects, e.g., to process your inquiries;
- Planning, implementation and administration of the (contractual) business relationship between us and you, e.g., to process orders for products and services, collect payments, for accounting, billing and debt collection purposes, and to carry out deliveries, maintenance activities, or repairs;
- Creation of individualized offers or cost estimates;
- Conducting customer surveys, marketing campaigns, market analyzes, sweepstakes, competitions, or similar campaigns and events;
- Provision of a newsletter and advertising regarding new products
- Maintaining and protecting the security of our products and services as well as our websites by preventing and detecting security risks, fraudulent activities, or other criminal or malicious acts;
- Compliance with legal requirements (e.g., tax and commercial retention obligations) or existing obligations to carry out compliance screenings (to prevent white-collar crime or money laundering);
- Settlement of legal disputes, enforcement of existing contracts, and for the establishment, exercise and defense of legal claims.
The processing of personal data is necessary to achieve the above-mentioned purposes, including the implementation of the (contractual) business relationship with you. Unless expressly stated otherwise, the legal basis for data processing is Article 6 (1) (b) and (f) of the General Data Protection Regulation or your expressly given consent in accordance with Article 6 (1) (a) of the General Data Protection Regulation.
If the above data are to be processed for a purpose other than the original purpose, you will be informed of this prior to further processing. You are thus provided the opportunity to object to the processing of your data for another purpose.
Business customer data:
We process the following data from our business partners:
- Surname, first name, business address, business telephone number, business mobile phone number, business fax number, and business email address;
- Payment information required to process payment transactions or prevent fraud, including credit card information and card verification numbers;
- Further information, the processing of which is necessary in the context of a project or the execution of a contractual relationship with us or which is voluntarily provided by our business partners, such as orders placed, inquiries made, or project details;
- Information collected from publicly available sources, information databases, or credit bureaus;
Sharing and transfer of data
All data that you transmit to us will be treated confidentially. We will neither sell your personal data to third parties nor market it in any other way.
In principle, your data will not be made available to third parties for use, unless you have given your consent or we are legally entitled and/or obliged to pass on this data. However, in certain circumstances, we may share your personal data within the group of companies in which abas Software GmbH is part, as necessary in order to develop or improve products and services, or provide services and fulfill our contractual obligations. We may also share your personal data with third parties for a specific purpose or to undertake a specific task on our behalf. Where your personal data are shared with third parties, we ensure that relevant agreements are in place according to applicable data protection laws and only share such personal data as are necessary for abas Software GmbH to use or provide the relevant services, as applicable, or with your consent where explicitly required.
To the extent that this is legally permissible and necessary in order to comply with applicable law or to assert, exercise or defend legal claims, we transmit personal data to courts, tax authorities, and supervisory authorities. We take all measures to ensure suitable and appropriate guarantees for the protection of your personal data.
We may process your personal information within the EU/EEA. Should personal data be transferred outside EU/EEA, such transfers shall be in accordance with applicable data protection laws and require the receiving entity, if located in a country outside EU/EEA, to have adequate levels of data protection and safeguards in place.
If no express storage period is specified during the collection (e.g., in the context of a declaration of consent), the personal data will be deleted insofar as they are no longer required to fulfill the purpose of storage, unless there are statutory retention obligations (e.g., commercial and tax retention obligations) that apply to deletion.
2. Data security
We take technical and organizational security measures to protect your data, which we store and process in our company, against manipulation, loss of confidentiality, destruction, and against access by unauthorized persons.
Our company's security measures are continuously improved in line with technological developments.
3. Rights of data subjects: Right to information, correction, deletion, or restriction of the processing of your personal data; right of objection; and right to data portability
On request, we will inform you in writing, in accordance with applicable law, whether and which personal data we store in our company. If you are registered as a user, we offer you the opportunity to view your data yourself and to change and delete it if necessary. If, despite our company's efforts to ensure data security and data accuracy, incorrect information has been saved, we will correct this at your request.
You also have the right to request that our company restrict the processing of personal data. In addition, you can request that you receive the data that you have provided to our company in a structured, common and machine-readable format. You can also object to the processing of personal data by our company.
You also have the right to request the deletion of your personal data, provided that there are no conflicting statutory retention periods. We delete the data if we no longer need it for the purpose for which we collected and processed it, or if you revoke your consent and there is no other legal basis for the further processing of your data. In addition, we delete these data if the processing has been unlawful for reasons unknown to us or if you have objected to the processing and there are no overriding legitimate interests for the processing. Your data will also be deleted if we are legally obliged to do so. Our company has also implemented technical measures, to inform all recipients of your data about your request for deletion or correction. This only applies in the event that we have disclosed this data or made it public. All links, copies and replications of your personal data should be deleted.
If you have consented to the processing of your personal data, you have the right to withdraw your consent at any time with future effect. Revoking your consent does not make past data processing illegal.
The transmission of data to our company is voluntary. However, these data are required for the further conclusion of contracts or to answer your inquiries. If you do not want to disclose your data, contracts may not be concluded or your inquiries may not be answered. The provision of the data is necessary for the conclusion of contracts.
Please direct general inquiries about data protection to [email protected] .
Our external DPO (data protection officer) is available for confidential inquiries at [email protected] .
The data protection authority responsible for our company is:
The State Commissioner for Data Protection and Freedom of Information Baden-Württemberg
70025 Stuttgart, Königstrasse 10a, 70173 Stuttgart, Tel .: +49 711 615 5410
Email: [email protected]
4. Newsletter; advertising
When you register to receive our company's newsletter, the data you provide will only be used for this purpose.
Your name and a valid email address are required for effective registration. In order to check that the registration is actually made by the owner of an email address, we use a “double opt-in” procedure. For this purpose, the order for the newsletter, the dispatch of a confirmation email, and the receipt of the response requested are logged. The data will only be used to send the newsletter and will not be passed on to third parties.
You can revoke your consent to the storage of your data and its use for sending the newsletter at any time. There is a corresponding link in every newsletter. You can also unsubscribe at any time directly on our company's homepage or communicate your request using the contact options provided at the end of this document.
If you no longer wish to receive advertising tailored to your interests, you can object at any time free of charge and with future effect. All you need to do is send an email to [email protected] .
5. Log data
When you access our company's homepage, your internet browser automatically transmits the following data (hereinafter "log data") to our company's web server, which our company records in log files:
• Date of access, time of access, URL of the referring website, file accessed, amount of data transferred, browser type and version, operating system, IP address, domain name of your internet access provider
This is exclusively information that does not allow any conclusions to be drawn about the natural person. This information is technically necessary in order to correctly display the website content you have requested and is mandatory when using internet offers. The log data are evaluated purely for statistical purposes in order to optimize the website of our company and the technology behind it and are then deleted.
The log data are stored separately from other data that are collected by our company as part of their use.
6. Links to other websites
If abas Software GmbH refers directly or indirectly to external websites ("links"), abas Software GmbH is only liable if it has precise knowledge of the content and if it is technically possible and reasonable for it to prevent use in the event of illegal content.
abas Software GmbH hereby expressly declares that the linked pages did not contain any illegal content at the time the links were set. abas Software GmbH has no influence on the current and future design of the linked pages. abas Software GmbH hereby expressly distances itself from all changes to the content that are made on the linked pages after the link was set. This also applies to third-party entries in guest books, discussion forums, and mailing lists set up by abas Software GmbH.
abas Software GmbH is not responsible for the content, availability, correctness nor accuracy of the linked pages, their offers, links, nor advertisements. abas Software GmbH is not liable for illegal, incorrect nor incomplete content, and in particular for damage resulting from the use or non-use of the information offered on the linked pages.
In light of the discussion about the use of analysis tools with complete IP addresses, we would like to point out that this website uses Google Analytics with the extension "_anonymizeIp()" and therefore IP addresses are only processed further in abbreviated form in order to exclude direct personal references. You can object to the collection and use of information by Google at any time with future effect by installing the deactivation add-on provided by Google (Browser add-on to disable Google Analytics).
Alternatively, you can install an opt-out cookie. This prevents Google Anayltics from collecting data for this browser, including this website, as long as it remains installed. To install the opt-out cookie, please click on this link.
Use of Google Adwords conversion tracking
We use the online advertising program "Google Ads" and conversion tracking as part of Google Ads. Google conversion tracking is an analysis service. When you click on an ad served by Google, a conversion tracking cookie is placed on your computer. These cookies lose their validity after 30 days, do not contain any personal data and are therefore not used for personal identification. If you visit certain pages of our website and the cookie has not yet expired, Google and we can recognise that you clicked on the ad and were redirected to this page. Each Google Ads customer receives a different cookie. This means that it is not possible to track cookies on the websites of Ads customers. The information collected using the conversion cookie is used to generate conversion statistics for Ads customers who have opted for conversion tracking. Customers can see the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, you will not receive any information that personally identifies users.
If you wish to deactivate cookies for conversion tracking, you can set your browser to block cookies from the following domain: "googleadservices.com". Further information on the subject of “privacy” in the context of Google Ads can be found at this link: safety.google/intl/en/privacy/ads-and-data/
Google web fonts
Our website uses so-called “web fonts” to display the font. These are provided by Google LLC (https://fonts.google.com/). The web fonts are transferred to the cache of the browser when the page is called up so that they can be used for display. This transfers to the Google server, usually a Google server in the United States, which of our website pages you have visited. The IP address of the browser of the visitor's terminal device is also stored by Google. If your browser does not support Google web fonts or does not allow access, the text will be displayed in a default font.
General information on data protection is available at the Google Privacy Centre:
Our website uses so-called social plugins ("plugins") of the social networks Facebook, Google+, and the microblogging service Twitter. These services are provided by Facebook Inc, Google LLC and Twitter Inc. ("Providers").
Facebook is operated by Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook"). An overview of Facebook plugins and their appearance can be found here: https://developers.facebook.com/docs/plugins?locale=en_US
When you access a page of our website that contains such a plugin, your browser establishes a direct connection to the Facebook, Google or Twitter servers. The content of the plugin is transferred directly from the respective provider to your browser and integrated into the page. By integrating the plugins, the Providers receive the information that your browser has called up the corresponding page of our website, even if you do not have a profile or are not currently logged in. This information (including your IP address) is transmitted directly from your browser to a server of the respective provider in the US and stored there.
If you are logged in to one of the services, the Providers can directly assign the visit to our website to your profile on Facebook, Google+, or Twitter. If you interact with the plugins, for example the “Like”, the “+1”, or the “Twitter” button, the corresponding information is also transmitted directly to a server of the Providers and stored there. The information is also published on the social network or on your Twitter account and displayed to your contacts.
The purpose and scope of the data collection and the further processing and use of the data by the Providers as well as your relevant rights and setting options for the protection of your privacy can be found in the data protection information of the Providers.
If you do not want Google, Facebook, or Twitter to associate the data collected via our website directly with your profile in the relevant service, you must log out of the relevant service before visiting our website. You can also completely prevent the loading of the plugins with add-ons for your browser, e.g. with the script blocker "NoScript" (https://noscript.net/).
We use the "conversion pixel" or visitor action pixel of Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook"). By calling up this pixel from your browser, Facebook can then see whether a Facebook advertisement was successful, e.g. whether it led to an online transaction. We only receive statistical data from Facebook for this purpose without reference to a specific person. This enables us to measure the effectiveness of Facebook ads for statistical and market research purposes. This is especially true if you are logged in to Facebook.
Please go to https://www.facebook.com/ads/preferences?entry_product=ad_settings_screen&tab=ads, if you wish to revoke your consent to conversion pixels.
LinkedIn conversion tracking
On our website we use the analysis and conversion tracking technology of the social network LinkedIn Inc. ("LinkedIn"). This enables us to evaluate campaigns and collect information about website visitors who may have reached us through our campaigns on LinkedIn. LinkedIn also provides us with aggregated and anonymous reports of ad activity and information about how you interact with our website. Further information on data protection at LinkedIn can be found here: https://www.linkedin.com/legal/privacy-policy#choices-oblig.You can object to the analysis of your usage behaviour by LinkedIn and the display of interest-based recommendations ("Opt-Out"); click on the field "Opt out on LinkedIn" (for LinkedIn members) or "Opt out" (for other users) under the following link: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
Cloudflare content delivery network
We use a content delivery network (CDN) provided by Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA. Cloudflare is certified according to the Privacy Shield Agreement and thus guarantees compliance with European data protection law. (https://www.privacyshield.gov/participant?id=a2zt0000000GnZKAA0&status=Active). A content delivery network (CDN) is a network of regionally distributed and connected servers that work together to ensure rapid delivery of Internet content, especially large media files.
Integration of YouTube videos
To integrate videos, our website uses the provider YouTube LLC, 901 Cherry Avenue, San Bruno, CA 94066, USA, represented by Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. (“YouTube”).
For the purpose and scope of data collection and the further processing and use of the data by YouTube as well as your rights and setting options for the protection of your privacy, please refer to YouTube's data protection information concerning YouTube integration at https://policies.google.com/privacy
Integration of Vimeo videos
ZopIM live chat tool
Use of Leaflet
This service uses the programming library Leaflet by Vladimir Agafonkin (https://leafletjs.com/). This library is provided via Leaflet's server infrastructure. Loading the programming library for our service transmits the IP address to a Leaflet server. This is necessary to ensure the provision of the service. For efficiency reasons, the programming library is cached by your browser software for a certain period of time. This means that you do not always transmit your IP address to Leaflet's servers.
We provide programming libraries via our own server infrastructure, as far as this is legally possible.
The Lead Forensics product offers companies insights into their website visitors. Lead Forensics works on the basis of reverse business IP tracking. A small tracking code is placed on a company's website(s) to enable it to identify its website visitors' business IP addresses. Lead Forensics matches the identified business IP address with a global database of companies and business information.
Another feature of Lead Forensics is to provide customers with the contact information of key decision-makers from organisations that have proactively visited the company's website. Because this information includes information such as first name, last name, email address and LinkedIn profile, this aspect of Lead Forensics constitutes processing of personal data and must therefore be GDPR compliant.
Pursuant to the GDPR, Lead Forensics processes only the necessary personal data, which is limited to first name, last name, LinkedIn profile URL and e-mail address. Lead Forensics processes other business-relevant data such as business IP, company name, job function and business phone numbers. No sensitive personal data are collected or processed. The data contained in the Lead Forensics solution are processed and stored in a secure environment in the UK.
Inquiry about the object If you wish to opt out of the processing of your personal data for use by Lead Forensics software, we ask you to request this in writing:
by e-mail: [email protected]
or by post: Data Compliance, Lead Forensics, Building 3000, Lakeside, North Harbour, Portsmouth, PO6 3EN. All requests will be processed within 30 days. Your data will be added to a suppression file to ensure that your data can no longer be processed by Lead Forensics software in the future. Please note that this only applies to the processing of your personal data, not to business data that do not fall within the scope of applicability of the GDPR.
We use the web analysis service Hotjar of Hotjar Ltd. on our website. Hotjar Ltd. is a European company based in Malta (Hotjar Ltd, Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta, Europe, Tel.: +1 (855) 464-6788).
This tool allows to track movements on the websites where Hotjar is used (so-called heat maps). For example, you can see how far users scroll and which buttons users click and how often. Furthermore, the tool also makes it possible to obtain feedback directly from the users of the website. Above all, Hotjar's services can improve the functionality of the Hotjar-based website by making it more user-friendly, more valuable and easier for end users to use.
We can only track which buttons are clicked, mouse history, scrolling behavior, device screen size, device type and browser information, geographic location (country only) and preferred language to display our website. Areas of the websites where personal data of you or third parties are displayed are automatically hidden by Hotjar and therefore cannot be traced at any time. In order to exclude the possibility of direct personal references, IP addresses are only stored and processed anonymously. Hotjar may use various third-party services such as Google Analytics and Optimize. These services may collect personal data that is transmitted by your browser in the context of web page requests. In these exceptional cases, in accordance with Article 6 paragraph 1 letter a) DSGVO, this processing is carried out on the basis of your consent for the purpose of statistical analysis of user behaviour for optimisation and analysis purposes.
Hotjar offers every user the option of preventing the use of the Hotjar tool by means of a "Do Not Track" header, so that no personal data about the visit to the respective website is recorded. This is a setting that is supported by all common browsers in current versions. To do this, your browser sends a request to Hotjar with the note to deactivate the tracking of the respective user. If you use our websites with different browsers/computers, you must set up the "Do Not Track" header separately for each of these browsers/computers.
When you visit a Hotjar-based website, you can prevent Hotjar from collecting your personal information at any time by going to the Hotjar https://www.hotjar.com/legal/compliance/opt-out/ opt-out page and clicking deactivate Hotjar.
For more information about Hotjar Ltd. and the Hotjar tool, please visit: https://www.hotjar.com
abas Software GmbH and its partner companies reserve the right to change this data protection declaration at any time without prior notice. Such a change shall apply immediately after its publication. Please review this data protection declaration periodically to ensure that you are aware of current provisions regarding the collection and treatment of confidential information. By continuously using and visiting the abas Software GmbH websites, you declare your agreement with the provisions of this data protection declaration (subject to changes).
Updated October 2021