GDPR (general data protection regulations)
Data protection officer
digital performance Ingenieure Scholz und Partner
Strehlener Str. 14
+49 351 311 40 43
gdpr @ dp4 . de
Business-related data processing
We process personal data that we receive from our customers, interested parties and business partners as part of our business relationship. This includes contract data (e.g. term, subject matter of the contract, customer category), payment data (e.g. bank details) for the provision of contractual services, service and customer care, marketing and market research. In addition, we process personal data from public sources (e.g. commercial register, press and internet) to the extent necessary for the provision of our services.
Provision of contractual services
We process record data (e.g. names, addresses, telephone numbers and contact details), contract data (e.g. services used, names of contact persons, payment information) to fulfill our contractual obligations and services in accordance with Art. 6 para. 1b GDPR. The storage is based on our legitimate interests, as well as those of the user in protection against misuse and other unauthorized use. This data is not passed on to third parties. Exceptions to this are possible legal obligations in accordance with Art. 6 para. 1c GDPR or if it is necessary to pursue claims. The data will be deleted after the expiry of statutory warranty and other comparable obligations. The obligation to store the data is reviewed regularly. In the case of statutory archiving obligations, deletion takes place after their expiry. Information in any customer account remains until it is deleted.
We use hosting services for the purpose of operating our online offering. These include, for example, computing capacity, storage space, databases, security structures, infrastructure and platform services and maintenance services. Data (e.g. contract and inventory data, contact and metadata of customers, data on the use of the offers) is processed on the basis of our legitimate interests in the efficient and secure provision of the online offer (Art. 6 para. 1 GDPR and Art. 28 GDPR).
Collection, storage and processing of data
We collect data (e.g. log files) about every access to this server on the basis of our legitimate interests within the meaning of Art. 6 (1) GDPR. The access data includes the underlying file including the size or amount of data transferred, the date and time of access, status information on access, browser information (e.g. operating system, browser type), reference information and IP addresses. Information from the logging of access is stored for the purpose of smooth, optimal operation and to protect against misuse. Data whose further storage is required for evidence purposes remains stored until final clarification and is then deleted.