Global Solutions Systems

Our name is program!

Privacy Policy

Data Protection Declaration

Our handling of your data and your rights

Information according to General Data Protection Regulation (GDPR)

Global Solutions Systems GmbH

Ravenéstr. 1
13347 Berlin

USt-Id-Nr.: DE 296310947

We hereby inform you about processing your personal data by us and about the claims and rights to which you are entitled under the data protection regulations. Which data are processed in detail and how they are used depends largely on the services you have requested or agreed with.

General information on data processing

Who is responsible for data processing and who to contact?

Responsible body is:

Global Solutions Systems GmbH

Ravenéstr. 1

13347 Berlin

Tel.: +49(0)30-55145377

Fax: +49(0)30-89640190

E-Mail: mail@global-solutions-systems.com

You can contact our data protection officer at:

Global Solutions Systems GmbH

Ravenéstr. 1

13347 Berlin

E-Mail: privacy@global-solutions-systems.com

What sources and data do we use?

We process personal data that we receive from you in the course of our business relationship. On the other hand, we process personal data that we have legitimately collected and processed from publicly accessible sources (trade and association register, press, media).

Relevant personal data are personal data (name, address and other contact data, birthday and place as well as nationality) and identification data (e.g. identification data). In addition, this may also include data from the telemedia we offer (e.g. time of accessing our websites, apps, newsletters or clicked pages) as well as other data comparable to the above categories.

Purpose of processing your data and on which legal basis?

We process personal data in order to be able to offer you our services: Software development, project management, sales and support solutions as well as web hosting (as reseller).

Your data will be processed in accordance with the provisions of the General Data Protection Regulation (GDRP) and the Federal Data Protection Act (BDSG).

Fulfilment of contractual obligations (Article 6 para. 1 lit. b GDPR)

The processing of personal data (Art. 4 No. 2 GDPR) takes place for the provision of our services defined under point 3. Further details explaining the purpose of data processing can be found in our "General Terms and Conditions" (GTC).

Context of interests assessment (Article 6 para. 1 lit. f GDPR)

If necessary, we process your data beyond the actual performance of the contract to protect the legitimate interests of us or third parties.

  • Instances:
  • Review and optimization of procedures for needs analysis and direct customer approach;
  • Advertising or market and opinion research, as long as you have not objected to the use of your data;
  • Assertion of legal claims and defense in legal disputes;
  • Ensuring the IT security and IT operation;
  • Measures for business management and further development of services and products
  • Basis of your approval (Art. 6 para. 1 lit. a GDPR)

    If you have given us your consent to process personal data for specific purposes (e.g. organization of life events, training or marketing purposes), the legality of such processing is given on the basis of your consent. A given consent can be revoked at any time. Please note, however, that the revocation will only take effect in the future. Processing that took place before the revocation is not affected by this.

    Who gets my data?

    Within "Global Solutions Systems GmbH" (GSS), those departments receive your data which are needed to fulfil our contractual and legal obligations. Contractors used by us (Art. 28 GDPR) may also receive data for these purposes. These are companies in the categories IT services, logistics, printing services, telecommunications, consulting and sales and marketing. With regard to the transfer of data to recipients outside GSS, we proceed in accordance with the "General Terms and Conditions" (GTC) agreed between you and us.

    We will only disclose information about you if required to do so by law or if you have given your consent. Under these conditions, recipients of personal data can be, for example: Public authorities and institutions (e.g. tax authorities) in the event of a statutory or official obligation. Payment providers (providers of the payment systems we use), provided they can prove a justified interest. Other recipients of data may be those bodies for which you have given us your consent to the transfer of data in the respective individual case.

    How long will my data be stored?

    In principle, we process and store your personal data for the duration of our business relationship. Our business relationships are regularly geared to the long term. In addition, we are subject to various storage and documentation obligations arising from the German Commercial Code (HGB), the Fiscal Code (AO) and other tax and commercial obligations. The periods for storage and documentation specified there range from two to ten years. In addition, the storage period is also assessed according to the statutory limitation periods, which, for example, according to §§ 195 ff. of the German Civil Code (BGB) may as a rule be three years, but in certain cases also up to thirty years.

    Will data be transmitted to foreign countries or international organizations?

    A data transfer to third countries (countries outside the European Economic Area - EEA) takes place regularly if you yourself are an international user residing outside the EEA, or as a European user use our service outside the EEA area. In the first case, you as a user are subject to the legal regulations of your country of residence, in the second case we assume your consent. We will inform you separately about further details, if required by law

    Which data protection rights do I have?

    Each data subject has the right of access under Article 15 GDPR, the right to correction under Article 16 GDPR, the right to cancellation under Article 17 GDPR, the right to limitation of processing under Article 18 GDPR and the right to data transferability under Article 20 GDPR. The restrictions according to §§ 34 and 35 BDSG apply to the right to information and the right of cancellation. In addition, there is a right of appeal to a data protection supervisory authority (Art. 77 GDPR in conjunction with § 19 BDSG)

    Is there an obligation to provide private data?

    In the context of our business relationship you only have to provide those personal data which are necessary for the establishment, execution and termination of a business relationship or which we are legally obliged to collect. Without this information you will not be able to access our service. To enable us to comply with the legal obligations, you must provide us with the necessary information and documents and notify us immediately of any changes arising in the course of the business relationship. If you do not provide us with the necessary information and documents, we may not enter into the business relationship you have requested.

    To what extent is there automated decision making in individual cases?

    As a matter of principle, we do not use “automated decision making” according to Art. 22 GDPR for the establishment and implementation of our business relationships.

    To what extent is my data used for profile formation (scoring)?

    We do NOT process your data automatically with the aim of evaluating certain personal aspects (profiling). We do NOT use profiling.

    Provision of website as well as creation of log files

    Description and scope of data processing

    Every time you visit our website, our system automatically collects data and information from the computer system of the calling computer. The following data is collected:

    • Information about the browser type and version used
    • The user's operating system
    • The IP address of the user
    • Date and time of access

    These data are stored in the log files of our system, but not together with other personal data of the user.

    Legal basis for data processing

    The legal basis for the temporary storage of data and log files is Art. 6 para. 1 lit. f GDPR

    Purpose of data processing

    The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user's computer. For this the IP address of the user must remain stored for the duration of the session. The data is stored in log files to ensure the functionality of the website. In addition, the data serves us to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.

    Duration of storage

    The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. For website delivery data, this is the case when the session in question has ended. The data stored in log files is usually deleted after seven days at the latest. Further storage is possible. In this case, the IP addresses of the users are deleted or alienated, so that an assignment to individual users is no longer possible. The collection of data for the provision of the website and the storage of data in log files is absolutely necessary for the operation of the website. Consequently, there is no possibility of contradiction on the part of the user.

    Cookies

    Description and scope of data processing

    Our website uses cookies. Cookies are text files that are stored in the user's Internet browser or computer system. If a user visits a website, a cookie may be stored on the user's operating system. This cookie contains a characteristic character string that enables a unique identification of the browser when the website is called up again. We use cookies to make our website more user-friendly. Some elements of our website require that the calling browser can be identified even after a page change. The following data is stored and transmitted in the cookies:

    • Language settings

    We also use cookies on our website which enable an analysis of the user's surfing behavior. In this way, the following data can be determined:

    • Use of website functions
    • Frequency of page views

    The user data collected in this way is pseudonymized by technical precautions. Therefore, it is no longer possible to assign the data to the calling user. The data will not be stored together with other personal data of the users. When you visit our website, an information banner informs you about the use of cookies and refers you to this data protection statement.

    Legal basis for data processing

    The legal basis for the processing of personal data using cookies is:

    Art. 6 para. 1 lit. f GDPR

    Purpose of data processing

    The purpose of using technically necessary cookies is to simplify the use of websites for users. Some functions of our website cannot be offered without the use of cookies. For this it is necessary that the browser is recognized even after a page change. The user data collected by technically necessary cookies are not used to create user profiles. The analysis cookies are used to improve the quality of our website and its content. Through analysis cookies we learn how the website is used and can thus optimize our offer. The exact use of technically necessary cookies as well as analysis cookies is explained under point 15 and in section VII (Use of Google Analytics). For these purposes, we also have a legitimate interest in the processing of personal data: Art. 6 para. 1 lit. f GDPR

    Duration of storage, objection and elimination

    Cookies are stored on the user's computer and transmitted to our site. Therefore, you as a user also have full control over the use of cookies. You can deactivate or restrict the transmission of cookies by changing the settings in your Internet browser. Cookies that have already been saved can be deleted at any time. This can also be done automatically. However, if cookies are deactivated for our website, it is possible that not all functions of the website can be used in full.

    Newsletter

    Description and scope of data processing

    On our website we can offer the possibility to subscribe to a free newsletter. If this is the case, the data from the input mask will be transmitted to us when registering for the newsletter. In this way, the following data can be determined:

    • E-mail address (required)
    • First and last name (optional information used to personalize the newsletter)

    In addition, the following data is collected upon registration:

    • IP address of the calling computer
    • Date and time of registration

    In the course of the registration process, your consent is obtained for the processing of the data and reference is made to this data protection declaration. In connection with data processing for the dispatch of newsletters, no data is passed on to third parties. The data will be used exclusively for sending the newsletter.

    Legal basis for data processing

    The legal basis for the processing of the data after registration for the newsletter by the user is the existence of the user's consent pursuant to Art. 6 para. 1 lit. a GDPR.

    Purpose of data processing

    The collection of the user's e-mail address serves to send the newsletter. The collection of further personal data as part of the registration process serves to prevent misuse of the services or the e-mail address used and to personalize the newsletter.

    Duration of storage, objection and elimination

    The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. The user's e-mail address will therefore be stored for as long as the subscription to the newsletter is active. The subscription to the newsletter can be cancelled by the user concerned at any time. For this purpose, each newsletter contains a corresponding link.

    Contact forms & e-mail contact

    Description and scope of data processing

    A contact form can be used on our website to contact us electronically. If the user uses this option, the data entered in the input masks will be transmitted to us and stored. At the time of sending messages, the following data is also stored:

    • The IP address of the user
    • Date and time of registration

    The data will be processed in accordance with this data protection declaration. Alternatively, you can contact us via the e-mail address provided on the website. In this case, the user's personal data transmitted by e-mail will be stored. However, in none of the cases will the data be passed on to third parties. The data is used exclusively for processing the conversation.

    Legal basis for data processing

    The legal basis for the processing of the data is the existence of the user's consent pursuant to Art. 6 para. 1 lit. a GDPR. The legal basis for the data transmitted in the course of transmission by e-mail is Art. 6 para. 1 lit. f GDPR. If the e-mail contact aims at the conclusion of a contract, then additional legal basis for the processing is also Art. 6 para. 1 lit. b GDPR.

    Purpose of data processing

    The processing of personal data from the input masks serves us solely for the processing of contact and customer support. If contact is made by e-mail, this also includes the necessary legitimate interest in the processing of the data. The remaining personal data processed during the sending process serves to prevent misuse of the contact and support forms and to ensure the security of our information technology systems.

    Duration of storage, objection and elimination

    The data of a public contact form will be deleted as soon as it is no longer necessary to achieve the purpose of its collection. For the personal data from the input mask of the contact form and those sent by e-mail, this is regularly the case when the respective conversation with the user is finished. The conversation is over when the circumstances indicate that the matter in question has been finally resolved.

    The additional personal data collected during the sending process will be deleted after a period of seven days at the latest. The user has the possibility to revoke his consent to the processing of personal data at any time. If the user contacts us by e-mail, he can object to the storage of his personal data at any time. In such a case, however, the conversation cannot be continued. The revocation of the consent and the objection against a storage can take place via e-mail to our data protection officer (see point I. 1). All personal data stored in the course of contacting us will be deleted in this case.

    Service provider and recipient of data

    Description and scope of data processing

    Your personal data will not be transmitted to third parties for purposes other than those stated in this declaration. We will only pass on your personal data (see also point 3.2) to third parties if this is legally permissible and necessary for the processing of contractual relationships with you.

    Legal basis for data processing

    §28 GDPR

    Implementation

    Contabo GmbH, Aschauer Straße 32a, 81549 Munich:

    • Hosting of our websites and operation of the mail servers

    Information on your right of objection in accordance with Art. 21 of the General Data Protection Regulation (GDRP)

    Right of objection in individual cases

    You have the right to object at any time, for reasons arising from your particular situation, to the processing of personal data concerning you under Article 6(1)(f) of the DSBER (data processing on the basis of a balance of interests). If you object, we will no longer process your personal data, unless we can prove compelling reasons worthy of protection for the processing, which outweigh your interests, rights and freedoms or the processing serves to assert, exercise or defend legal claims.

    Right to object to the processing of data for direct marketing purposes

    In individual cases we process your personal data for direct marketing purposes. You have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising. If you object to the processing for direct advertising purposes, we will no longer process your personal data for these purposes. The objection can be made form-free and should be addressed to:

    Global Solutions Systems GmbH

    Ravenéstr. 1

    13347 Berlin

    E-Mail: privacy@global-solutions-systems.com