Status: July 2020
This Data Protection Declaration informs you how personal data is collected, processed and used when visiting our website.
Provider of the OpenSynergy web site www.opensynergy.com is OpenSynergy GmbH, Rotherstraße 20, 10245 Berlin, Germany (hereinafter referred to as “OpenSynergy” or “we”). OpenSynergy is responsible according to EU General Data Protection Regulation (GDPR) for the collection, processing and use of personal data of website´s visitors (hereinafter “you”). If you have any questions or suggestions regarding data protection, please do not hesitate to contact us. You are welcome to address your data protection concerns to us by e-mail at firstname.lastname@example.org. In addition, you always have the possibility to contact our data protection officer by e-mail at the above stated address (keyword: “data protection officer”). Below you can find our complete contact details.
2.1. Visiting the site. Visiting our website is generally possible without providing personal data. Personal data is only collected if necessary for technical reasons for the use of our website or if you use certain functions or services offered on our website, such as contact form or newsletter registration.
The following data is automatically collected each time you access our website:
Data processing of this information is necessary to enable you to visit the website and to ensure permanent operability, availability and security of our systems. Legal basis for this data processing is article 6 paragraph 1 sentence 1 lit. b GDPR. For the purposes described above, access data is temporarily stored in internal log files in order to compile statistical data on the use of our website, to further develop our website with regard to the usage habits of our visitors (e.g. if the proportion of mobile devices used to access the pages increases) and for general administrative maintenance of our website. Legal basis for data processing is art. 6 para. 1 s. 1 lit. f GDPR, based on our legitimate interest on proper optimisation of our website. The information stored in the log files do not allow any direct conclusion on your person – in particular, we only store IP addresses in truncated, anonymous form. log files are stored for 7 days and archived after subsequent anonymisation.
2.2. Newsletter. You have the possibility to subscribe to our newsletter, which will inform you regularly about innovations regarding our technologies, products and solutions and its potential applications. When registering, we ask you to enter your name to be able to contact you and your e-mail address to be able to send you the newsletter. You also have the possibility to provide further information voluntarily.
We use the so-called double opt-in option. We will only send you information by e-mail if you confirm our notification send to you by email by accepting a link that you are the owner of the email address provided. If you confirm your e-mail address, we will store your e-mail address, the time of registration and the IP address assigned during registration until you cancel the newsletter. We store this information for the sole purpose of sending you the newsletter and to approve your registration. You can unsubscribe from the newsletter at any time. A corresponding link can be found in every e-mail. A message to the contact details stated above or in individual e-mails (e.g. by e-mail or letter) is sufficient to unsubscribe. Legal basis for data processing is your consent in accordance with art. 6 para. 1 s. 1 lit. a GDPR.
We use your voluntary provided data anonymously, i.e. without reference to your person, in order to statistically evaluate the sectors of our users. Such collection aids us to further optimise the content of our newsletter. Legal basis for this data processing is art. 6 para. 1 s. 1 lit. f GDPR, based on our legitimate interest in the appropriate further development of our newsletter content.
2.3. Contact form. We offer you the opportunity to send us messages directly via a contact form. Hereby it is necessary to enter an e-mail address where we can contact you. We also ask for your name to be able to contact you. We process the data you provide in the contact form to answer your request. To properly process your inquiry, we may transfer data provided in the contact form to one of the regional sister companies or sales partners mentioned on the contact page, in case the sales company responsible for your region or the subject mentioned in the inquiry can answer your inquiry more appropriately. Legal basis of data processing is art. 6 para. 1 s. 1 lit. b GDPR. Data collected when using the contact form will be automatically deleted after processing your inquiry.
2.4. Google Maps. On our contact page we use Google Maps to visually display the address of our location. Google Maps is a map service of Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”). In order for Google Maps to be embedded and displayed in your browser, your browser must connect to a Google server, which may also be located in the United States, when access the contact page. In the event that personal information is transferred to the USA, Google has accepted the EU-US Privacy Shield. Google receives information upon page visit that our website has been visited from the IP address of your mobile device. Legal basis for data processing is art. 6 para. 1 s. 1 lit. f GDPR, based on our legitimate interest in the integration of a map service in the design of our website.
2.5. Application via the online form. You can apply for open vacancies by using our online form. The purpose of data processing is to select applicants for possible employment. We collect the following data for reception and processing of your application: First and last name, e-mail address, application documents (e.g. certificates, curriculum vitae, cover letter). Legal basis for processing of your application documents is art. 6 para. 1 s. 1 lit. b and art. 88 para. 1 GDPR in conjunction with art. 26 para. 1 s. 1 Federal Data Protection Act. We store your personal data upon receipt of your application. If we accept your application and an employment relationship is established, we will store your data for as long as necessary for the employment relationship and as legal regulations provide obligation for retention. If we reject your application, we store your applicant data for a maximum of three months after rejection of your application, unless you grant us consent to store the data for a longer period. If you have given us your separate consent, we will store the data you have submitted in your application in our applicant pool for additional twelve months after the end of the application process to identify any other vacancies of interest to you and to contact you again if necessary. The data will be deleted after this period. You can revoke this consent for the future at any time by sending us an e-mail to jobs[at]opensynergy.com.
2.6. Integration of Vimeo videos. We have integrated videos on our website that are stored on the Vimeo video platform and can be viewed directly from our website. Vimeo is a multimedia service of Vimeo Inc. 555 West 18th Street, New York 10011, USA (“Vimeo”). Legal basis for integration is art. 6 para. 1 s. 1 lit. f GDPR, based on our legitimate interest in the integration of video and image content. By visiting our website, Vimeo receives the information that you have accessed the corresponding subpage. That may happen regardless of whether you are logged in to Vimeo or not. Vimeo may use this data for purposes of advertising, market research, and the design of its websites to meet your needs. If you watch videos on our website while you are logged in to your Vimeo profile, Vimeo can also link this event to your Vimeo profile. If you do not want this association to occur, you will need to log out of Vimeo before accessing our website. Vimeo is also certified according to the EU-U.S. Privacy Shield and is subject to the European Privacy Principles.
2.7. Download technical product information. We offer you the opportunity to request further technical documentation on our products. You must provide an e-mail address to which we will send the download link. We will also ask for your name to contact you and other contact details and information about your company. We process this data for advertising purposes and send you further information about our products and solutions by mail, telephone or e-mail. The legal basis for data processing is your consent given in the request pursuant to art. 6 para. 1 S. 1 lit. a GDPR. You can revoke your consent at any time with effect for the future. Please send us an e-mail to datenschutz[at]opensynergy.com. Collected data will be deleted.
When you visit and use our website, different cookies are installed. Cookies are small text files that are stored in the memory of your web browser and contain information that enable web servers to recognize you when you visit our website later. Cookies cannot execute programs or transfer viruses to your computer. The main purpose of our own cookies is rather to make the use of our services technically as time-saving and user-friendly as possible. In this respect, legal basis is art. 6 para. 1 lit. b GDPR. A deactivation of the technically required cookies is not offered.
We use our own cookies in particular
We aim to make your use of our website more convenient and individual. You can prevent the storage of cookies on your terminal device at any time by changing the settings of your browser. However, we would like to point out that you can not access all functions of this website without restrictions. We use different types of cookies: So called: “Session cookies” contain an identification in the form of a so-called session ID and are automatically deleted when you close the browser. The session ID can be used to assign various requests from your browser to the shared session. The session cookies are deleted when you log out or if close the browser. Permanent cookies are automatically deleted after a specified period of time, which may vary depending on the cookie. However, you can also delete the cookies prematurely at any time in the security settings of your browser. These cookies enable us to recognize your terminal device when you return to the website. The processing of the respective cookies is based on our aforementioned legitimate interests; legal basis is art. 6 para. 1 s. 1 lit. f GDPR. You can prevent the storage of cookies by preventing the acceptance of cookies via this website in your web browser settings. In individual cases not-accepting of cookies, may lead to considerable functional restrictions of our website.
Analysis cookies. Other cookies are used to analyse the use of our website for statistical purposes. They let us know, for example, which content on our website is particularly relevant and what type of terminal equipment was used to visit the website. As a result, we are enabled to make our offer more interesting and, if necessary, more user-friendly for our users. Information on browsers and used end devices enable us to adapt the design of our website to the most important browser types. We only use these analysis cookies if you grant your consent via our cookie banner. Legal basis for data processing in connection with the analysis cookies is your consent (Art. 6 para. 1 lit. a GDPR). You can revoke your consent by opening cookie settings and changing the corresponding selection.
Storage period of cookies. Google Analytics uses the following cookies for the specified purpose with the respective storage period: “ga” for 2 years, “gid” for 24 hours (both for the recognition and differentiation of website visitors by a user ID), “gat” for 1 minute (to reduce queries to the Google servers).
Your IP address will be shortened before the evaluation of the usage statistics, so that no conclusions can be drawn on your identity. For this purpose, Google Analytics has been extended on our website by the code “anonymizeIP” to ensure anonymous recording of IP addresses. As a result, we are unable to determine which usage data belongs to a specific person. As a result, we can neither identify you on the basis of the data collected by Google nor determine how you actually use our website. It is only possible to determine that a user has already visited the website within the last 3 months. Google will process the information gained from the cookies in order to evaluate your use of the website, to compile reports on website activities for us and to provide us with further services associated with the use of the website and to enable us to run advertising campaigns. Data collected with Google Analytics is retained for a period of 14 months and then completely deleted.
Cookies used in connection with Google Analytics are for analytic purposes. Legal basis for data processing is art. 6 para. 1 lit. a GDPR, based on your consent, which you have provided via our cookie banner. If you have not agreed to use analytic cookies, your data will not be recorded within the framework of Google Analytics. You can revoke your consent via our cookie settings by changing the corresponding selection.
You can prevent the collection of data generated by the cookie and related to your use of our website and the processing of this data by Google on all websites by downloading and installing a browser add-on provided by Google (the add-on does not work in connection with mobile devices).
We use “Teams” to conduct online meetings, conference calls and/or webinars (collectively, “Meetings”). Teams is a software of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA (“Microsoft”), available as desktop, web and mobile app. It is used by us in particular for conducting digital conferences with business partners.
Legal basis for data processing is our legitimate interest in the effective conduct of meetings in accordance with art. 6 para. 1 lit. f GDPR. In case meetings are carried out within the framework of existing contractual relationships, legal basis is art. 6 para. 1 lit. b GDPR. We are not responsible for further data processing on the product website of Teams, where the desktop software can be downloaded and the web app can be used.
During a meeting the following data may be processed under certain circumstances:
Prior to a meeting, you will be asked to register via our website or by e-mail. Your registration data will be processed by us. Before the meeting you will receive a confirmation e-mail with an invitation link or a calendar appointment.
In order to participate in a meeting, you must at least provide information about your name and – in case of telephone use – your telephone number, unless we make it possible to participate anonymously in meetings. In the latter case, we will inform you of this possibility of anonymous participation in the invitation. You can deactivate transmission via microphone and camera at any time via the corresponding settings. We will only record meetings or log text data with your consent and prior notification. Microsoft stores and uses the metadata to enable us to analyze and report on team usage
Microsoft may obtain knowledge of the above-mentioned data in the course of processing orders in order to process them. All data traffic is encrypted (MTLS, TLS, or SRTP). Although Microsoft states that data is only processed in Germany, but we cannot verify this information. In the event that data is nevertheless processed in the USA, Microsoft has subjected itself to the EU-US Privacy Shield. In addition, an appropriate level of data protection outside the EU/EEA is also guaranteed by the standard EU contract clauses we have concluded with Microsoft.
A transfer of the data collected by us will only occur if:
Parts of data processing described in this data protection declaration may be carried out by our service providers. In addition to service providers mentioned in this data protection declaration, in particular computer centres that store our website and databases, IT service providers maintaining our systems, and consulting companies. If we transfer data to our service providers, they use the data exclusively for the fulfilment of their tasks. The service providers have been carefully selected and commissioned by us. They are contractually bound by our instructions, have suitable technical and organisational measures in place to protect the rights of persons concerned, guarantee an appropriate level of data protection and are carefully monitored by us. In addition, data may be transferred in connection with official inquiries, court orders and legal proceedings if necessary for legal prosecution or enforcement.
You have the right to request information about the processing of your personal data by us at any time. In the course of providing you with this information, we will explain the data processing to you and provide you with an overview of personal data stored about your person.
If data stored with us is incorrect or no longer current, you have the right to have this data corrected. You can also request the deletion of your data. If, in exceptional cases, deletion is not possible due to other legal regulations, the data will be blocked so that it is only available for that legal purpose.
You can also have the processing of your data being restricted, e.g. if you believe that the data we have stored is incorrect. You also have the right to data transferability, i.e. that we send you a digital copy of the personal data you have provided us with on request.
In order to assert your rights as described, you can contact us at any time by using the contact details provided in section 1. This also applies if you would like to receive copies of guarantees to demonstrate an adequate level of data protection.
Furthermore, you have the right to object to data processing based on art. 6 para. 1 s.1 lit. e or f GDPR. Finally, you have the right to lodge a complaint to the data protection supervisory authority responsible for us. You can assert this right with a supervisory authority in the Member State in which you are resident, your place of work or the place of the suspected infringement. In Berlin the competent supervisory authority is: Berlin Commissioner for Privacy and Freedom of Information, Friedrichstr. 219, 10969 Berlin.
Right of withdrawal and right of objection.
According to art. 7 para. 2 GDPR, you have the right to revoke a consent once granted to us at any time. As a result, we will no longer continue to process data based on this consent with effect for the future. The revocation of consent does not affect the legality of the processing that took place on the basis of the consent until the revocation.
In case we process your data on the basis of legitimate interests pursuant to art. 6 para. 1 lit. f GDPR, you have the right – pursuant to art. 21 GDPR – to object to the processing of your data and to provide us reasons arising from your particular situation which, in your opinion, indicate that your interests worthy of protection prevail. You have a general right of objection without providing reasons to data processing for direct marketing purposes. If you wish to exercise your right of revocation or objection, it is also sufficient to send an informal message to the contact details given above.