The protection of personal data is an important concern for us. Therefore, the processing of personal data by S&P Computersysteme GmbH (hereinafter also referred to as S&P) is carried out in accordance with the requirements of the European Data Protection Regulation (GDPR) and other legal requirements. With the following data protection declaration we would like to inform you comprehensively about the handling of your personal data as well as your rights in this context.
If you have any questions about data protection, you can reach us on weekdays from 9 a.m. to 5 p.m. by phone at 0711/726410 or by e-mail at email@example.com.
Processing of access data
For statistical and system-related purposes, our web servers store each access in a log file when visiting and retrieving the content provided on the websites. The logging contains the following information:
- IP address, time stamp (date and time of access) of the requesting computer
- Accessed web pages/file names
- Web browser and operating system of the requesting computer
- Amount of data transferred and message about successful retrieval
Only in the event of an attack on our systems or suspicion of illegal use will the stored IP address be evaluated (Art. 6 para. 1 letter f GDPR). The assignment of a natural person to this stored usage data does not take place. The logged data is stored for a period of six months. After that, they are deleted by the system.
Subscribe to our newsletter
With What'SuP, the newsletter from S&P you stay up to date on current logistics topics and news about S&P, warehouse management software, hardware for use in the warehouse and get tips for efficient logistics solutions. On our website you have the possibility to subscribe to our newsletter. For this we need your e-mail address and your first and last name. When you register to receive the newsletter, the information you provide will be used exclusively for this purpose (Art. 6 para. 1 letter a GDPR). We do not process any other data beyond this. To ensure that you are actually the owner of the e-mail address you have provided, we use the so-called "double opt-in procedure". For this purpose, a logging takes place via:
- Consent to receive newsletters
- the sending of the confirmation email
- the receipt of the reply e-mail
Use of our contact form
If you have any questions or are interested in a warehouse management system or other topics, you can use the contact form provided on our website. When using the contact form, we process the information you provide (mandatory fields of the contact form: Name, company, e-mail address, your message) to process your request and any queries (Art. 6 para. 1 letter b or f GDPR). The processing of personal data is carried out directly for the purpose of processing the customer inquiry.
Application to S&P
We offer applicants the opportunity to apply by e-mail for S&P jobs advertised online. In the case of an application by e-mail, in addition to the general applicant data in the curriculum vitae, we also process references and any certificates available within the applicant selection process (Section 26 (1) BDSG-neu). After completion of the applicant selection process, the personal data is stored for a period of six months and completely deleted after this period. If an applicant wishes to be included in the applicant pool, his or her consent will be obtained by S&P for this purpose (Art. 6 para. 1 letter a GDPR). The applicant data will be stored in the applicant pool for a period of 18 months and then deleted or before, if consent is revoked.
We would like to point out that on this website Google Analytics and Google Remarkting have been extended by the code "gat._anonymizeIP();" in order to ensure anonymised collection of IP addresses (so-called IP masking).
This website uses the map service Google Maps via an API. The provider is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
To use the functions of Google Maps, it is necessary to store your IP address. This information is usually transferred to a Google LLC server in the USA and stored there. We have no influence on this data transmission.
The use of Google Maps is in the interest of an appealing presentation of our online offers and an easy location of our sites. This represents an overriding legitimate interest on our part within the meaning of Art. 6 (1) f GDPR .
Google Tag Manager
The Google Tag Manager is used on our website. The Google Tag Manager is a solution from Google Inc. that allows us to manage website tags via an interface. The Google Tag Manager is a cookie-less domain that does not collect any personal data. The Google Tag Manager triggers other tags, which in turn may collect data. We would like to point this out separately. The Google Tag Manager does not access this data. If a deactivation has been made by the user at domain or cookie level, this remains in place for all tracking tags that are implemented with Google Tag Manager.
Third-party information: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.
User conditions: http://www.google.com/analytics/terms/de.html
Overview of data protection: http://www.google.com/intl/de/analytics/learn/privacy.html
as well as the data protection declaration: http://www.google.de/intl/de/policies/privacy
You can configure your browser settings according to your preferences and, for example, refuse to accept third-party cookies or all cookies.
We use the CRM and marketing software from HubSpot on our website. We have commissioned HubSpot to store and process our sales and marketing data. We use various functions of this software for this purpose:
- Website (content management)
- Landing pages
- Contact form
- E-mail marketing (newsletter, automated mailings, provision of downloads)
- Contact management (user segmentation, CRM)
- Social media (publishing, reporting)
- Reporting (accesses, traffic sources, conversions, target group segmentation, analysis of user habits, call-to-action analysis)
- Cookie Consent
HubSpot Legal Stuff: https://legal.hubspot.com/legal-stuff?hsLang=fr
HubSpot Data Processing Agreement: https://legal.hubspot.com/de/dpa
Data forwarding to third parties
Your personal data will only be transferred to third parties (Art. 13 para. 1 letter e
GDPR ) if this is necessary, for example, for the purpose of processing the contract, if you have given your prior consent, or to protect the legitimate interests of S&P. The transfer of personal data to government institutions and authorities will only take place within the framework of mandatory national legal provisions or if the transfer is necessary for legal or criminal prosecution in the event of attacks on our network infrastructure. Data will not be passed on to third parties for other purposes.
Right to object (Art. 21. para. 1 GDPR)
Insofar as the processing of your data is carried out to protect legitimate interests, you have the right to object to this processing at any time using our contact details provided if reasons arise from your particular situation that conflict with this data processing. We will then stop this processing unless it serves overriding interests worthy of protection on our part.
Right of withdrawal (Art. 13. para. 2 c GDPR)
If you have consented to the processing of your data, you have the right to revoke this at any time for the future. The lawfulness of the processing until the revocation is not affected by this. To do so, please contact the responsible office using the contact details provided.
Data subjects' rights
As a data subject, you have the right to information, correction and deletion of your data and to restriction of processing, as well as a right to data portability (in the sense of Art. 13 para. 2 b GDPR in conjunction with Art. 15 ff. GDPR) at any time.
To exercise your data subject rights or if you would like further information about the use of your personal data provided to us, please contact us on weekdays from 9 a.m. to 5 p.m. by phone at 0711/726410 or by e-mail at firstname.lastname@example.org.
Deletion of personal data
As a data subject, you can contact the competent supervisory authority at any time in the event of complaints. The following supervisory authority is responsible for S&P as a data controller:
Landesbeauftragter für den Datenschutz und die Informationsfreiheit Baden-Württemberg
70025 Stuttgart Germany
Tel.: +49 (0) 711/615541-0
Due to the further development of our websites or the implementation of new technologies, it may become necessary to update our data protection declaration. We therefore reserve the right to change the data protection declaration at any time with effect for the future. We recommend that you read the current data protection declaration again after a certain period of time.
Last updated: September 2020.
Name and contact details of the data controller (Art. 13 para. 1 a GDPR)
S&P Computersysteme GmbH
Name and contact details of the data protection officer (Art. 13 para. 1 b GDPR)
Personally responsible: Mr. Bastian Maute, Data Protection Officer DSB-TÜV
Information according to Art. 13 Data Protection - Basic Regulation (GDPR)
Facebook Fanpage Visitors
We are joint controllers of Insights data with Facebook Ireland Limited ("Facebook Ireland"). The details of the responsibilities can be found at https://de-de.facebook.com/legal/terms/page_controller_addendum.
Facebook Ireland agrees to assume primary responsibility under GDPR for the processing of Insights Data and to comply with all obligations under GDPR with respect to the processing of Insights Data (including, without limitation, Articles 12 and 13 GDPR, Articles 15 through 22 GDPR , and Articles 32 through 34 GDPR). In addition, Facebook Ireland will provide the essence of this Page Insights Supplement to data subjects.
Purpose and legal basis of data processing within the meaning of Art. 13 (1) (c) GDPR
Operation of a Facebook fan page for the purpose of...
- public relations within the meaning of Art. 6 (1) (f) GDPR
- public image building within the meaning of Art. 6 (1) (f). f GDPR
- contacting the responsible body within the meaning of Art. 6 Para. 1 lit. f GDPR
- answering contact requests within the meaning of Art. 6 Para. 1 lit. f GDPR
- statistical analysis of user behavior for optimization and marketing purposes within the meaning of Art. 6 Para. 1 lit. f .S.d. Art. 6
Abs. 1 lit. f GDPR
- Employerbranding i.S.d. Art. 6 Abs. 1 lit. f GDPR
Interests of the responsible person with weighing of interests i.S.d. Art. 13 Abs. 1 lit. d GDPR
- Assertion of legal claims and defense in legal disputes
- Ensuring IT security and the IT operation of the company
- Prevention of criminal acts
- Measures for business management and further development of services and products
Recipients or categories of recipients of the personal data within the meaning of Art. 13
Para. 1 lit. e GDPR
Transfer to third countries within the meaning of Art. 13 Para. 1 lit f GDPR
There is a transfer of data to third countries, for Facebook this is the USA.
Storage period in accordance with statutory retention obligations within the meaning of Art. 13 para. 2 a GDPR
The responsible body has only limited influence on the deletion of personal data, as this is largely determined by Facebook. Further information can be found at https://www.facebook.com/privacy/explanation.
Existence of a necessity to provide personal data within the meaning of Art. 13
para. 2 e GDPR
You provide the collected data to us or Facebook voluntarily. If you do not want your data to be processed, you should not use our Facebook fan page.
Processing of (personal) data by the operator of Mobile Funnel
This website uses Mobile Funnel (hereinafter: Funnel), operated by Perspective Software GmbH (hereinafter: Perspective), a company based in Germany, which offers software for the creation and operation of Mobile Funnel (https://perspective.co/impressum). The data entered in the context of using Mobile Funnel is transmitted via SSL encryption and stored in a database. The operator of this website is solely responsible for this data in the sense of Art. 4 No. 7DS-GVO. Perspective is only the operator of the software and in this context is a processor according to Art. 28 GDPR. The basis for processing by Perspective in this regard is a contract for commissioned processing between the controller and Perspective. In addition, Perspective Software GmbH processes further data for the provision of its services, in particular for the operation of the Mobile Funnel, some of which may also be personal data. This will be discussed in more detail below.
Access logs ("Server logs")
With each access to the Funnel, general log data, so-called server logs, are automatically collected. These data are usually pseudonyms and therefore do not allow any conclusions to be drawn about a natural person. Without this data, it would not be technically possible in part to deliver and display the contents of the software. In addition, the processing of this data is mandatory for security reasons, in particular for access, input and transfer and storage control. Furthermore, the anonymous information can be used for statistical purposes as well as for the optimization of the offer and the technology. In addition, the log files can be subsequently controlled and evaluated in the event of suspicion of illegal use of the software. The legal basis for this is found in Section 15 (1) of the German Telemedia Act (TMG) and Art. 6 (1) f GDPR. Data such as the domain name of the website, the web browser and web browser version, the operating system and the timestamp of access to the software are generally collected. The user's IP address is not stored. However, the user is assigned a so-called session ID. The scope of this logging does not exceed the usual scope of any other website on the Internet. The storage period of these access logs is up to 7 days.
Collection of user behavior data
Data such as the domain name of the website, the web browser and web browser version, the operating system, the user's session ID and the timestamp of access to the software are generally collected. All data entered by the user when using the Funnel (e.g. answering form fields; using interactive components) are assigned to the user by means of a session ID and made available to the operator of this website. The operator of this website is responsible for the deletion, storage and further processing of this personal data in accordance with current legislation.