I am glad that You visit my website and I thank You for Your interest. The protection of Your privacy and Your personal data is important for me. Please take notice of the following information about dealing with Your data.
Following You first find basics, the details to the specific offered services of my website follows. Information about personal data, which will be used without Your interaction, You find on top. To obtain some lucidity, details are displayed at sliders. You display the specific information by clicking at the header.
Please be aware that I'm not a native English person. I will do my best to translate my German privacy policy but only the German original is legally binding.
Basics of dealing with individual-related data
The use of my website is generally possible without providing personal data. Insofar as personal data are gathered, such as names, addresses or e-mail addresses, this always will happen on a voluntary basis when possible. Those data will not be passed on to third parties without your explicit permission. Actually I do not want to pass Your data, but sometimes there is no help for it. So Your data will be passed to payment service provider while buying. Also I don't want to go without social media. Therefore data will be passed to Facebook, Twitter and Google, if You click to one of the buttons on top. Particulars You get below.
Personal data are raised, if You communicate them on a voluntary basis while creating an user or customer account, while using a service of my website or to execute a contract. Which data are raised evident from the appropriate form and the explanations below.
I store and use the data You transmitted to fulfil the booked services and processing of contracts, but also because I have to fulfil specific obligation of produce proof. Regarding in terms of tax and commercial duty to preserve records or legal periods of limitation, such data only then may be deleted, when these limitations are expired. At Your demand I am able to block these data until then for further use. Please supply me a notice with one of the possibilities of contact at the imprint.
Right to Information, Deletion, Blocking, Objection
Anytime You have the right on free information about Your stored individual-related data, their origin and recipients, and the purpose of data processing, as well as the right to correct, block or delete these data but for any operation on law. Hereto and also for further questions subject to individual-related data You always may direct towards me with one of the possibilities of contact at the imprint.
To an information inquiry, which is not written and which cannot be verified surely otherwise, You have to reckon with requests by me. I have to ensure, that You are the person You impersonate to.
Eventually You have the right to objection against the processing within the framework of existing legislation. Especially if You want to allege objection against the processing based on my weighting of interests, You have to reckon that I will check this accurate. I have done my weighting of interests carefully. Given that please read art. 21 FDPR carefully and be aware that I will do requests to the “particular situation” with the meaning of art. 21 Abs.1 GDPR.
Certainly You have the right of data portability. Also here is valid, that this only will be granted within the framework of existing legislation.
Person responsible in the meaning of GDPR:
Romana Boldt
Teilwiesenstraße 20
73079 Süßen
Germany
Phone: +49 (0) 7162 145 34 60
Fax: +49 (0) 7162 145 47 03
E-Mail:
Receiver/Transfer of data
As far as not mentioned otherwise data, which You state at me, principally are not transmitted to third party. Particularly these data are not transmitted to third party for promotion purpose.
If necessary I use service provider for the running these internet sites of for e-mail services. Hereby it could happen that the service provider gets knowledge of personal related data. I choose my service provider carefully – especially in regard of data protection and data security – and I take all necessary measures in terms of data protection-law for reliable data processing.
Data processing outside the European Union
Except the mentioned cases a data processing outside of the European Union does not take place by me.
Data Protection Official
I take the issue data protection very seriously. I'm not legally liable to name a data protection official. A data protection official is not named for Boldt Webservice .
Deletion of data
I principally delete personal related data, if there is no more requirement for further storage. A requirement especially may be in place, if the data still are needed to fulfil contractual accomplishments, to be able to prove, fend or grant warranty claims. In case of legal obligation to preserve business records a deletion only is possible after expiration of the given obligation.
Registered users may assume that data of a purchase are stored for 10 years.
For user accounts following is valid: I do store the last visit date, but I don't know if the user perhaps is a quiet reader of the forum, which wants to keep open the possibility to write something at any time if needed. Therefore user accounts only will be deleted by my by inquiry. Indeed, a deletion is not possible if the underlying contract bas not finished. This then could be the case, if there is an active update service.
Right of complaint at a controlling authority
You have the right to complain about processing of personal related data by me at a controlling authority for data protection.
Protection of Your individual-related data
SSL encryption
For security reasons and to protect the transmission of confidential contents, e.g. the data of Your user account, that You send to me as website operator, my website uses an end-to-end encryption by SSL. An encrypted connection You recognize by "https://" at the address bar of Your browser and by a lock symbol at the address bar of Your browser.
If SSL encryption is activated, the data You transmit to me, may not be read by third parties during transport. However, I would like to point out that data transmissions via internet cannot be entirely secure and may have security vulnerabilities. Especially communication by e-mail happens by plain text, what means that this communication per iteslf is unsecure. A complete protection of personal details against unauthorised access by third parties is not possible.
Security of the password
Already while creating the user account the password immediately will be salted and hashed (bcrypt). With this it is ensured, that neither I nor anybody else can get knowledge of the password. The transmission happens by SSL like mentioned above, so the transmission from Your browser to the server does not happen by plain text. Your password never will be stored plain text on my servers.
Details
Server-Log-Files
The provider of my website automatically collects and stores information in so-called server log files, which your browser automatically transmits to me, such as:
- browser type/version
- used operating system
- referrer URL
- host name of the accessing computer
- date and time of query
- name of the called site
Those data cannot be associated with individual persons. I do not merge this data with other sources. I reserve the right to retrospectively check the data if there is any indication of illegal use.
Legal foundation for this is article6(1)(f) GDPR. My interest: Warranty of integrity, confidentiality and availability of the data, which are processed by this internet sites.
Visitor Statistics
My website uses Matomo (formerly Piwik), an open-source software for the statistical evaluation of visitor access. This is called tracking. The purpose is not to spy out my visitors but my interest is to adjust the composition of my website to the wishes and needs of my visitors. Legal foundation for this is article6(1)(f) GDPR.
Matomo uses so-called "cookies", text files that are stored on your computer and enable an analysis concerning the use of the website. The information generated by the cookies about your use of this online product will be stored on my servers.
The IP address will be made anonymous by the last two bytes immediately before its storage. After expiration of a specific period of time these data are further anonymised by summarisation with the data of other visitors.
The information generated by the cookie about the use of this website will not be passed on to third parties. You can prevent the installation of cookies by adjusting the settings of your browser software accordingly. However, we would like to point out that, in doing so, you might not be able to use all functions of this website to the full extent.
If you object to the use of Your data, you may deactivate the storage and use by activating the Do-Not-Track setting of Your browser. Matomo and I do respect this wish and no trace of Your visit will happen. Another possibility for opt-out offers the following button:
Displaying prices and GeoLocation
Law dictates, that I have to show that price on my website, which the end-user finally has to pay. Because I do not only sell in Germany, but the tax rates of the single countries are different, I have to know about the country of my visitor. For that reason I use a tool, which detects the country of the visitor by IP. That is called GeoLocation. Here I use Your IP, but it is not stored. Legal foundation for this is article6(1)(c) GDPR.
Contact Form
In the context of making contact with me (e.g. by contact form or e-mail) individual-related data are gathered. Which data are gathered in case of contact form, is evident by the fields of the specific form. Additionally the current IP, date and time of the request are stored also. Legal foundation for this is article6(1)(a) GDPR.
Those data are used and stored only for responding Your request or the contact creation, in case of follow-up questions and the hereto related technical administration.
Those data I only will pass, if it can not be avoided (e.g. for inquiries at externals) and I got Your explicit permission.
The transmission of the contact form and the data You entered is secured by SSL. Indeed You and I get a notification per simple e-mail. For that I suppose not to send confidential data by contact form. To do so You should use phone, fax or post. You also may use the system for personal messages of my website, see below.
Registration with this website (user account)
You can register with this website to be able to
- subscribe to and use one or more of the offered update services,
- access to restricted content,
- write in the forum or
- use the system for personal messages.
All these services needs a (common) user account. With this account Your name, Your user name, Your e-mail address, Your encrypted password, date and time of registration and date and time of Your last visit are stored. Those data I use only for the purpose of using my services of the website. Legal foundation for this is article6(1)(a) GDPR.
I also use the e-mail address provided upon registration to inform you about important changes, such as a change in the extent of an offer, or a technical change.
Forum
You are able to use the forum at my website, if You have created an user account. If You write something at the forum, Your user name, Your current IP and date and time of the post are stored. At the profile of the forum You may deposit further personal data. What You enter and what not is left to You. Non of these fields are necessary for writing posts. The profile is visible for all logged in users.
The forum is divided into several categories. Not all categories are visible for each user. Some are restricted in their access. Principally the posts are publicly visible. Posts at access restricted categories are only visible for logged in users, which have appropriate access rights.
For each post also as for each category You may subscribe to be notified about new posts or answers by e-mail to the provided e-mail address. You can unsubscribe from this notification at any time via the link in the info e-mails or at Your settings of the forum, if You are logged in.
With the post the forum stores the current IP addresses including date and time of users who writes a post. Since I do not check the posts before publishing on my website, I require access to these data, even if the user account is deleted, should the need arise for legal action against the originator in the case of violation of law, e.g. insults or propaganda, until prescription applies. Legal foundation for this is article6(1)(a) and (c) GDPR.
Personal Message
At my website there is a possibility to send personal messages by UddeIM to other users and me. With this communication between users is possible without knowing the e-mail address of the recipient.
The communication happens directly at my website. That means, this way of communication is secure for sensible data, because my website uses SSL, data don't leave my servers, the messages are visible only for sender and receiver and are stored encrypted in the database.
With the personal message Your user ID and the ID of the receiver is connected and stored with date and time of the message. Since I do not check the messages before publishing on my website, I require access to these data, even if the user account is deleted, should the need arise for legal action against the originator in the case of violation of law, e.g. insults or propaganda, until prescription applies.
At the settings for this communication system You may deposit to get a notification about new messages or replies. This notification does not contain the content of the personal message. You can unsubscribe from this notification at any time via the link in the info e-mails or the settings for the personal messages, if You are logged in. Legal foundation for this is article6(1)(a) and (c) GDPR.
BugTracker
Errors, suggestions and wishes to my extensions You may report with the bug tracker, which is reachable at https://bugtracking.boldt-webservice.de/. This is an independent system which needs a separate user account for writing. Legal foundation for this is article6(1)(a) GDPR.
At this user account Your name, Your user name, Your email address Your encrypted password, date and time of registration and date and time of Your last visit are stored. To prevent fraud and detect attacks also the number of successful and faulty logins and the number of requests for password forgotten are recorded. Those data I use only for the purpose of using my services of the website.
At the profile of the bug tracker You may deposit further personal data. What You enter and what not is left to You. Non of these fields are necessary for writing at the bug tracker. The profile is only visible for administrators. You also can set if and about what You will be notified. You can unsubscribe from this notification at any time at Your settings of the bug tracker, if You are logged in.
With the post the bug tracker stores the user name, the current IP addresses including date and time of users who writes a post. Since I do not check the posts before publishing on my website, I require access to these data, even if the user account is deleted, should the need arise for legal action against the originator in the case of violation of law, e.g. insults or propaganda, until prescription applies.
Downloads
At the download section of my website You can download several files. For statistic purpose the IP of the visitor and the country to which this IP belongs in all likelihood are stored. Legal foundation for this is article6(1)(a) GDPR. For booked update services the user ID is connected and stored with this download. Legal foundation for this is article6(1)(b) and (c) GDPR.
Demo-Website
To try out my extensions live and smoothly without installing it by Yourself, I have set up a demo website, which is accessible at https://demo.boldt-webservice.de/. At this demo website principally applies the same for entered and processed data as for my main website. The only difference is that the demo website is reset to its initial state once a day and all entered data except the visitors statistic, which is hold at Matomo, hereby are deleted. Legal foundation for this is article6(1)(f) GDPR. My interest: Give additional value to my visitors.
Subscribe to an Update Service
For subscription to an update service from my website You need an user account. Beneath these data there are stored further data while subscription. This includes the subscribed update service, the payment service provider and the transaction ID as well as date, time, IP address and Your invoicing data. Legal foundation for this is article6(1)(b) and (c) GDPR.
I transmit personal data to third parties only if it is necessary to fulfil the contract, e.g. transmitting data to the commissioned credit institution in charge of the payment.
There is no further transmission of data to third parties unless you have given your explicit permission. There is no transmission of data to third parties for commercial purposes.
Encrypted Payment Transaction on this Website
Payment transactions via common methods of payment (Paypal) take place exclusively via an encrypted SSL connection. An encrypted connection You recognize by "https://" at the address bar of Your browser and by a lock symbol at the address bar of Your browser.
In using encrypted communication, any bank details, which you submit to us, cannot be read by third parties during transport (also see above information about SSL encryption). Legal foundation for this is article6(1)(b) and (c) GDPR.
Changes to this privacy policies
I review these privacy policies at changes to this internet site or at other occasions, which make it necessary. The latest version You always will find at this internet site.
If You have questions concerning data protection, feel free to contact me.
Objection to Commercial E-Mails
Providers are obligated to publish contact information in the Legal Notice/Imprint. The use of such contact information by third parties for the purpose of distributing unsolicited advertisements or other commercial information is prohibited. I reserve the right to take legal measures against senders of unsolicited commercial information, e.g. spam e-mails etc.