| |||||||||||||||||
1.
| Introduction | ||||||||||||||||
| When using this offer, your personal data will be processed. This is done in compliance with statutory requirements and transparent. For this reason, you will find our data protection information in accordance with Art. 13 GDPR. | |||||||||||||||||
2.
| Controller and contact | ||||||||||||||||
| The person responsible is the person designated in the legal notice (laware.de). You can contact sup@port.@lawareconsultant.de at any time. | |||||||||||||||||
3.
| Description of processing activities | ||||||||||||||||
| Below you will find information about the individual processing operations when using laware services: | |||||||||||||||||
3.1
| Accessing websites: Standard data | ||||||||||||||||
| When you access the website and every app displayed in the browser, your browser automatically sends personal data to our server ("Server Logs"). These are mainly technical data:
Server logs will be according to Art. 6 para. 1 lit. f GDPR (legal interest) is processed to allow the correct presentation of websites. The data is collected and processed by the web hosting provider used (see the section: Disclosure to third parties). Server logs are processed and stored anonymously only during the specific call. The processing of server logs is not required by law. However, processing is necessary if you want to use Laware services. You can hide your data by configuring your browser accordingly or using a VPN service. |
|||||||||||||||||
3.2
| Accessing websites: Analysis | ||||||||||||||||
| On the Laware websites, including the apps, Laware sets the tool "Matomo" (matomo.org). This tool uses the server logs mentioned under 3.1 to generate analysis of the use of the websites ("Analysis Data"). Matomo is configured for data protection:
Identification of a specific user is impossible for Laware. Server logs and analysis data are processed according to Art. 6 (1) (f) GDPR (legal interest) is processed to identify and troubleshoot errors in the services, as well as to improve the products. Detailed visitors logs older than 180 days are deleted. Aggregated reports are deleted after 12 months. The deletion routine is executed weekly. The processing of analysis data is not required by law. However, if you use Laware services, this will take place automatically. You can technically limit or prevent tracking on client side, e.g. by using a VPN service. |
|||||||||||||||||
3.3
| Contact via e-mail | ||||||||||||||||
| We process your personal data (e.g. e-mail address, name, content of correspondence and metadata about correspondence), if you contact laware by e-mail (" E-mail Data"). The legal basis in this case is our legitimate interest in the processing of inquiries (Art. 6 (1) (f) GDPR). E-mail Data is collected and processed by the web hosting provider used (see section: Disclosure to third parties). E-mail Data will be kept for up to 10 calendar years if they fall under corresponding commercial and tax retention periods. They shall be kept for 3 calendar years if they are required for the establishment or defence of legal claims. In the event of disputes, it may be longer. Email Data is required when we communicate via email. This is contractually prescribed in the event that we need to contact you for clarification of legal matters. In addition, we may be legally obliged to give you good explanations. If you do not want to provide the data, we cannot contact us by email. |
|||||||||||||||||
3.4
| Laware account | ||||||||||||||||
We process your personal data, e.g.
, if you create an account with Laware to use Laware Apps and Services (" Account Data"). The legal basis is the implementation of our contract with you (Art. 6 para. 1 lit. b GDPR). Account data is collected and processed by the web hosting provider used (see the section: Disclosure to third parties). Account data is retained as long as its respective purpose requires: master data (e-mail address, address, name, etc.) and contract data (licensing data, contractual contents and information on the conclusion of the contract) are cancelled up to 10 years after the conclusion of the contract if this is necessary for tax reasons, otherwise up to 3 years after the end of the contract. The password hash is deleted if the user no longer wants to access its content data and services on the condition of the contract. Technical IDs are retained as long as they are required to maintain records such as documents. IDs that are created when the user uses our service are retained as long as the respective record with which they are linked. From the access tokens a limited number is retained and older tokens deleted when new ones are created. The collection of the data mentioned is necessary for a conclusion of the contract, unless indicated above as optional. Without this data, laware cannot offer you any services. |
|||||||||||||||||
3.5
| Versiony | ||||||||||||||||
Per se, Versiony is not meant to process personal data. Nevertheless, certain data can provide conclusions on natural persons. This includes:
The legal basis is the implementation of our contract with you (Art. 6 (1) (b) GDPR). Versiony Data is deleted as long as a user uses the service and then deleted. The collection of the data mentioned is neither contractual nor statutory. If you don't use the service, it doesn't have any negative consequences. |
|||||||||||||||||
3.6
| Versiony translations | ||||||||||||||||
Per se, the Versiony Translation Service is not intended to process personal data. Nevertheless, certain data can provide conclusions on natural persons. This includes:
The legal basis is the implementation of our contract with you (Art. 6 para. 1 lit. b GDPR). Translation data is transmitted for a volatile moment during translation, but not stored on the translation server. The collection of the data mentioned is neither contractual nor statutory. If you don't use the service, it doesn't have any negative consequences. |
|||||||||||||||||
3.7
| Microsoft Single Sign | ||||||||||||||||
| Laware offers the login option via the Microsoft SSO service. In this context, Microsoft Corporation, 1 Microsoft Way, Redmond, WA 98052 transfers the user's email address to Laware. Further data are not collected. Microsoft is responsible for the storage of account data (e-mail, name and other data). Laware does not transfer personal data to Microsoft, but only provides a technical interface. The legal basis is the implementation of our contract with you (Art. 6 (1) (b) GDPR). The data is only used for the comparison and not additionally stored. The collection of the data mentioned is neither contractual nor statutory. If you don't use the service, it doesn't have any negative consequences. |
|||||||||||||||||
3.8
| Cookies | ||||||||||||||||
| Laware only uses cookies that are essential for the use of apps and services. Cookies are set only when they are actually required (e.g. when the language is changed). These are currently: Permanent cookies:
Session Cookies (is deleted when the browser window is closed):
The legal basis for setting and reading cookies is Art. 6 (1) (b) GDPR if a contract with the user exists. Otherwise, the legal basis is our interest in ensuring that users have the most barrier-free user experience. Session cookies are stored for the duration of the browser session. Permanent cookies remain stored until the user logs out or the session is overwritten due to too many logins. The collection of the data mentioned is neither contractual nor statutory. If you don't use the service, it doesn't have any negative consequences. Analyses based on cookies are not carried out. |
|||||||||||||||||
4.
| Disclosure to third parties | ||||||||||||||||
| Laware forwards data to third parties to operate the technical infrastructure. | |||||||||||||||||
4.1
| Hosting website and apps as well as email providers | ||||||||||||||||
| We use the Service Provider goneo Internet GmbH, Dresdener Straße 18, 32423 Minden to provide the Laware website and the apps offered. In addition, all email traffic is also stored with this provider. | |||||||||||||||||
4.2
| Translation service | ||||||||||||||||
| Personal data that may be contained in the translation texts will be transferred to Strato AG, Otto-Ostrowski-Straße 7, 10249 Berlin for the translation service in the context of the App Versiony. | |||||||||||||||||
5.
| Automatic decision making and profiling | ||||||||||||||||
| No automated decision-making or profiling takes place. | |||||||||||||||||
6.
| Your rights | ||||||||||||||||
You have certain rights under applicable data protection law:
|
|||||||||||||||||
7.
| Change of data protection information | ||||||||||||||||
| Laware regularly adapts this data protection information to the current processing situation. Users of the services and website visitors are noticeably and regularly referred to the data protection at Laware. These data protection information can be accessed continuously here or via the Laware legalcenter (legalcenter.app). | |||||||||||||||||
8.
| Changelog | ||||||||||||||||
|
|||||||||||||||||