We collect and use personal data directly from our users and other sources (mentioned below) in the following situations:
2.1 Provision of the website and log file creation
Whenever users visit our website, our system automatically records data and information from the computer system used to call our website. The following data ("technical information") is collected in the process:
- Information on the type of browser used and its version
- The user's operating system
- The user's Internet service provider
- The user's IP address
- The date and time of access
- Websites from which the user's system accesses our website
- Websites that the user's system calls from our website.
The log files contain IP addresses or other data that may, in some cases, enable them to be associated to a user. That may be the case, for example, if personal data is contained in the link to the website from which the user enters our website, or the link to the website to which the user switches.
The data is likewise stored in our system's log files. This data is not stored together with other personal data of the user.
We collect and use this technical information for purposes of (network) security (such as to combat cyberattacks), marketing, and to be able to better understand our users' needs, as well as to continuously improve our website and to enable us to deliver the website to the user's computer system.
The data is stored in log files in order to ensure that the website functions properly. This data also helps us optimize the website and ensure the security of our IT systems. It is not analysed for marketing purposes in this connection.
The legal basis for the temporary storage of data and log files is Article 6(1)(f) of the EU General Data Protection Regulation (GDPR).
2.1.1. Use of cookies
Our website uses cookies.
For further information on the cookies used by us, their purposes and legal basis, please refer to appendix "Tracking Tool Policy".
2.1.2. Tracking tools
We are using the tracking tool eTracker on our website and "Usabilla for Apps" feedback services from Usabilla to analyse user feedback on our application.
For further information on the cookies used by us, their purposes and legal basis, please refer to appendix "Tracking Tool Policy".
2.2. Use of the services offered on our website
2.2.1. Requesting an application demo / Contact Me
To contact us and/or request a demo of the application you will be asked to provide:
Your email address will be deleted after you have been contacted / watched the demonstration.
This data is initially processed in order to take steps at the request of the data subject for the purposes of our legitimate interests (Art. 6 (1)(f) GDPR)
2.2.2. Register for ToolNOW
To register for the application you will be asked to provide
- Your company name
- Company group email account
We do not use personal data, such as personal email addresses within the application. Usage of private email addresses is inadmissible.
As a next step of the registration process to register to the application you will be asked to provide mandatory information about your company such as customer type, company name and address, VAT reg. Number, responsible accounting clerk (Name, Department, Telephone, Email), requested application role and other non-personal data.
In the event a registration has not been completed, the data will not be saved.
This data is initially processed in order to take steps at the request of the data subject prior to entering into a contract (Art. 6(1)(b) GDPR).
2.2.3. Data automatically processed while using ToolNOW
Every time you use the internet your internet browser will automatically transfer certain information that we will store in so-called log-files.
The log-files will solely be stored for the detection of malfunctions and security reasons (e.g. attack detection) for a period between seven and ten days. Log-files will be stored for a longer period of time and might be transferred to investigating authorities if they are needed as evidence if an incident took place. They will be subject to restriction of processing upon the final clearance of the matter.
In particular, log-files include the following information:
- IP address of the network from which the online service is accessed,
- Date and time of request,
- Size of transferred data,
- URI of the accessed data,
- Operating system and information regarding the internet browser used, including add-ons,
- HTTP Response Status Code
For special forms of automatic data processing, such as cookies, please refer to appendix "Tracking Tool Policy".
2.2.4. Statistical analysis
There is a possibility that your data may be analysed in a data warehouse to evaluate the preferences of our registered customers ("statistical analysis") for the purposes of interest-led marketing, individual approaches and continuous optimisation of our business processes. We undertake this processing in order to acquire a better understanding of what our customers expect from us and to allow us to offer you communication that is tailored to you personally.
This analysis also helps us with fraud detection, auditing and safeguarding security, which is why we perform this processing to protect our legitimate interests, Art. 6(1)(f) GDPR.
Our legitimate interest in processing personal data
If Art. 6(1)(f) GDPR forms the legal basis for the processing, our legitimate interests are, in addition to the purposes listed above:
- To protect the company against material and immaterial damage
- Professionalism (of our products and services)
- Cost optimisation (control and minimisation)
2.3. Other processing commitments
If obliged to do so by law, we process personal data in order to meet duties of retention under commercial or tax law or to meet legal security requirements (such as Section 7 of the Aviation Security Act [LuftSiG]). For further information on retention periods, please refer to "Duration of the data processing".