Privacy Policy
In the following data protection information, we would like to explain to you what types of your personal data (hereinafter also referred to as “data”) we process, for what purposes, on what legal basis and to what extent.
1. An overview of data protection
The controller for the collection and processing of your personal data is
FSD Fahrzeugsystemdaten GmbH
Wintergartenstrasse 4
01307 Dresden.
Contact via
datenschutz@fsd-web.de
2. General information and mandatory information
Our data protection officer is available to answer any questions you may have and to act as your contact for data protection issues. Your contact details are:
FSD Fahrzeugsystemdaten GmbH
Die Datenschutzbeauftragte
Wintergartenstrasse 4
01307 Dresden.
Contact via
dsb@fsd-web.de or phone: +49 (0) 351 / 652888176
3. Recording of data on this website
Depending on the purpose of the website, it is possible to visit it with or without explicitly providing personal data. Personal data is collected insofar as this is necessary for technical and functional reasons for the use of our websites. The following data is automatically collected and logged each time our website is accessed:
– Date and time of access
– Name of the requested file
– Website from which the file was requested
– Access status (e.g. file transferred, file not found)
– the web browser you are using and the operating system of your device
– the IP address of the requesting device
When you visit our website, the IP address is stored in the server log without anonymization.
The stored IP addresses are generally not analyzed and are deleted after 62 days. The server logs are only analyzed in the event of technical problems and are not stored on a central server or in a central database.
The legal basis for the temporary collection and storage of data and log files is our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR and is used to detect security validations, intrusion attempts, data loss and breaches by third parties, to ensure a smooth connection to the website and for other administrative purposes.
The collection of data for the provision of the website and the storage of data in log files is absolutely necessary for the operation of the website.
4. Plug-ins and Tools
If a website requires registration, the following data is required alternatively and in some cases cumulatively:
– Name of the user
– E-mail address
– password
We use Joomla to manage the registrations. Joomla is a content management system that is used as a so-called website editing system. Details about Joomla can be found at https://www.joomla.de.
This data is used exclusively for the administration of user access.
The legal basis for the processing of data during registration is your consent in accordance with Art. 6(1)(f) GDPR. 1 lit. a GDPR. You can withdraw your consent at any time. An informal notification by e-mail is sufficient for revocation. The legality of the data processing that has already taken place remains unaffected by the revocation.
CONTACT US
When contacting us (e.g. via contact form, e-mail or telephone), we process the data of the inquiring persons to the extent necessary to answer the contact requests.
As a central office under the StVG, answering contact questions may arise from the fulfillment of a public law obligation incumbent on us within the meaning of Art. 6 para. 1 c GDPR arise.
The response to contact requests in the context of contractual or pre-contractual relationships is carried out to fulfill our contractual obligations or to respond to (pre)contractual inquiries and otherwise on the basis of the legitimate interests in responding to the inquiries. Accordingly, data processing is based on the legal basis of Art. 6 para. 1 p. 1 lit. b. GDPR or Art. 6 para. 1 p. 1 lit. f. GDPR.
SOCIAL PLUGINS
DATA COLLECTION ON THIS WEBSITE
Cookies
Our websites and pages use what the industry refers to as “cookies.” Cookies are small data packages that do not cause any damage to your device. They are either stored temporarily for the duration of a session (session cookies) or they are permanently archived on your device (permanent cookies). Session cookies are automatically deleted once you terminate your visit. Permanent cookies remain archived on your device until you actively delete them, or they are automatically eradicated by your web browser.
Cookies can be issued by us (first-party cookies) or by third-party companies (so-called third-party cookies). Third-party cookies enable the integration of certain services of third-party companies into websites (e.g., cookies for handling payment services).
Cookies have a variety of functions. Many cookies are technically essential since certain website functions would not work in the absence of these cookies (e.g., the shopping cart function or the display of videos). Other cookies may be used to analyze user behavior or for promotional purposes.
Cookies, which are required for the performance of electronic communication transactions, for the provision of certain functions you want to use (e.g., for the shopping cart function) or those that are necessary for the optimization (required cookies) of the website (e.g., cookies that provide measurable insights into the web audience), shall be stored on the basis of Art. 6(1)(f) GDPR, unless a different legal basis is cited. The operator of the website has a legitimate interest in the storage of required cookies to ensure the technically error-free and optimized provision of the operator’s services. If your consent to the storage of the cookies and similar recognition technologies has been requested, the processing occurs exclusively on the basis of the consent obtained (Art. 6(1)(a) GDPR and § 25 (1) TDDDG); this consent may be revoked at any time.
You have the option to set up your browser in such a manner that you will be notified any time cookies are placed and to permit the acceptance of cookies only in specific cases. You may also exclude the acceptance of cookies in certain cases or in general or activate the delete-function for the automatic eradication of cookies when the browser closes. If cookies are deactivated, the functions of this website may be limited.
Which cookies and services are used on this website can be found in this privacy policy.
Consent with Complianz
Our website uses Complianz’s consent technology to obtain your consent to store certain cookies on your device or for the use of certain technologies and to document this consent in a manner compliant with data protection regulations. The provider of this technology is Complianz B.V., Kalmarweg 14-5, 9723 JG Groningen, the Netherlands (hereinafter “Complianz”).
Complianz is hosted on our servers, so no connection to the servers of the provider of Complianz is established. Complianz stores a cookie in your browser in order to be able to allocate the consents granted to you or their revocation. The data collected in this way is stored until you request us to delete it, delete the Complianz cookie yourself or until the purpose for storing the data no longer applies. Mandatory legal storage obligations remain unaffected.
Complianz serves to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6(1)(c) GDPR.
Technically unnecessary cookies are not set by us.
BURST STATISTICS
The Burst Statistics software (https://burst-statistics.com/) is used on our website for the statistical analysis of visitor access without the use of cookies. We host Burst Statistics ourselves and do not collect any personal data for the statistical evaluations. Your IP address is immediately anonymized during this process by automatically masking the last two bytes so that you as a user remain anonymous to us. We do not transfer any of the data collected by Burst Statistics to third parties.
PLUGINS AND TOOLS
Google Fonts (local embedding)
This website uses so-called Google Fonts provided by Google to ensure the uniform use of fonts on this site. These Google fonts are locally installed so that a connection to Google’s servers will not be established in conjunction with this application.
For more information on Google Fonts, please follow this link: https://developers.google.com/fonts/faq and consult Google’s Data Privacy Declaration under: https://policies.google.com/privacy?hl=en.
Font Awesome (local hosting)
This site uses Font Awesome for the uniform display of fonts. Font Awesome is installed locally. A connection to servers of Fonticons, Inc. does not take place.
Further information about Font Awesome can be found in the Font Awesome privacy policy at: https://fontawesome.com/privacy.
Wordfence
We have integrated Wordfence on this website. The provider is Defiant Inc, Defiant, Inc, 800 5th Ave Ste 4100, Seattle, WA 98104, USA (hereinafter “Wordfence”).
Wordfence is used to protect our website from unwanted access or malicious cyberattacks. For this purpose, our website establishes a permanent connection to Wordfence’s servers so that Wordfence can compare its databases with the accesses made on our website and block them if necessary.
The use of Wordfence is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in protecting its website as effectively as possible against cyberattacks. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, insofar as the consent includes the storage of cookies or access to information in the user’s end device (e.g. device fingerprinting) within the meaning of the TDDDG. Consent can be revoked at any time.
Data transfer to the USA is based on the standard contractual clauses of the EU Commission. You can find details here: https://www.wordfence.com/help/general-data-protection-regulation/.
Contract data processing
We have concluded a data processing agreement (DPA) for the use of the above-mentioned service. This is a contract prescribed by data protection law, which ensures that the data controller processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.
SERVER LOCATION
Personal data is stored within the EU; your data is not transferred to third countries.
RECIPIENTS OF PERSONAL DATA
Only those persons in our company have access to your personal data who need it for the purposes stated in each case. Your data will only be passed on to external recipients if there is legal permission to do so or if we have your consent. Below you will find an overview of the corresponding recipients:
Processors: We sometimes use external service providers to process our business transactions (e.g. for IT, technical infrastructure, maintenance). They are carefully selected and checked by us and only act in accordance with our instructions. You have been contractually obliged to comply with the data protection regulations in accordance with Art. 28 GDPR.
Public bodies: Authorities or state institutions, insofar as this is necessary to fulfill a legal obligation. The legal basis for the transfer is then Art. 6 para. 1 p. 1 lit. c GDPR.
DATA TRANSFER TO A THIRD COUNTRY
DELETION PERIODS
The data processed by us will be deleted in accordance with the legal requirements as soon as the consent given for processing is revoked or other permissions cease to apply (e.g. if the purpose for processing this data no longer applies or it is not required for the purpose).
If the data are not deleted because they are required for other and legally permissible purposes, their processing will be restricted to these purposes. This means that the data is blocked and not processed for other purposes. This applies, for example, to data that must be stored for reasons of commercial or tax law or whose storage is necessary for the assertion, exercise or defense of legal claims or for the protection of the rights of another natural or legal person.
As part of our data protection information, we can provide users with further information on the deletion and storage of data that applies specifically to the respective processing operations.
SAFETY MEASURES
In accordance with Art. 32 GDPR, we take appropriate technical and organizational measures to ensure a level of protection appropriate to the risk, taking into account the state of the art, the implementation costs and the nature, scope, circumstances and purposes of the processing as well as the different probabilities of occurrence and the extent of the threat to the rights and freedoms of natural persons.
The measures include, in particular, safeguarding the confidentiality, integrity and availability of data by controlling physical and electronic access to the data as well as the access, input, transfer, safeguarding of availability and its separation. Furthermore, we have a data protection management system in place that guarantees the exercise of data subject rights, the deletion of data and responses to data threats. Furthermore, we already take the protection of personal data into account during the development or selection of hardware, software and processes in accordance with the principle of data protection, through technology design and through data protection-friendly default settings.
RIGHTS AFFECTED
As the data subject, you have the following rights:
1. right to information
You can acc. Art. 15 GDPR to request information on whether we process your personal data, including vehicle data from general inspection reports. If this is the case, you have a right of access to this personal data and to further information related to the processing.
2. right to rectification
You have a right to rectification and/or completion vis-à-vis the controller if the processed personal data concerning you is incorrect or incomplete. The controller must make the correction immediately.
In the case of data processing for scientific, historical or statistical research purposes: Your right to rectification may be restricted to the extent that it is likely to render impossible or seriously impair the achievement of the research or statistical purposes and the restriction is necessary for the fulfillment of the research or statistical purposes.
3. right to restriction of processing
Under the conditions of Art. 18 GDPR, you have the right to request the restriction of the processing of personal data concerning you. An example of this is if you dispute the accuracy of your data. You can then request the restriction of processing for the duration of the verification of the accuracy of the data.
4. right to erasure
You have the right to request the deletion of your data if the conditions specified in Art. 17 GDPR are met. You can then, for example, request the deletion of your data if it is no longer necessary for the purposes for which it was collected or if we process your data on the basis of your consent and you revoke this consent. Please note that your right to erasure may be subject to restrictions. For example, we may not delete any data if there are statutory retention obligations or if the processing is necessary to fulfill a legal obligation or to assert, exercise or defend legal claims.
5. right to education
If you have asserted the right to rectification, erasure or restriction of processing against the controller, the controller is obliged to notify all recipients to whom the personal data concerning you have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort.
You have the right to be informed about these recipients by the controller.
6. right to data portability
If the data processing is based on consent or fulfillment of a contract and is also carried out using automated processing, you have the right to receive your data in a structured, commonly used and machine-readable format and to transmit it to another data processor.
Pursuant to Art. 20 para. 3 sentence 2 GDPR, this right is not available to you if the data processing serves the performance of public tasks or is carried out in the exercise of official authority vested in the controller.
7. contradiction
You have the right to object, on grounds relating to your particular situation, at any time to the processing of personal data concerning you in accordance with Art. 6 para. 1 lit. f GDPR. Art. 21 GDPR, insofar as the processing is based on Art. 6 para. 1 lit. e) or f) GDPR, this is particularly the case if the processing is not necessary for the performance of a contract with you. If it is not an objection to direct advertising, we ask you to explain the reasons why we should not process your data as we have done when exercising such an objection. In the event of your justified objection, we will examine the situation and either discontinue or adapt the data processing or point out to you our compelling reasons worthy of protection on the basis of which we will continue the processing.
8. right of withdrawal
If the data processing is based on consent, you have the right to withdraw your consent in accordance with Art. 7 para. 3 GDPR, you have the right to withdraw your consent to data processing at any time free of charge with effect for the future.
9. possibility to lodge a complaint
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the GDPR. You can find an overview of the respective state data protection officers and their contact details under the following link:
https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html
How to contact us to exercise your rights: If you wish to exercise any of your rights or receive more information about them, please send an e-mail to
betroffenenauskunft@fsd-web.de or write to the address given above under “Controller”.
Links to other websites
These web pages may contain links to external websites. We are not responsible for the data protection measures or the content of websites outside our company. For this reason, we recommend that you read the data protection declarations of these third-party websites carefully.
Status: June 01, 2023
