Privacy Policy

Thank you for visiting our website and for your interest in our company.

Our Privacy Policy explains what personal data we process during your visit to our website and what rights you have. For the terms used in this Privacy Policy, please refer to the definitions in Art. 4 of the General Data Protection Regulation (GDPR).

Personal data means any information relating to an identified or identifiable natural person. This includes, for example, your name, address and communication data or your email address.

Processing means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

Data subject means any identified or identifiable natural person whose personal data are processed by the controller.

Controller or “data controller” means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.

 

Name and address of the data controller

FNT Software GmbH
IT-Campus 2-4
73479 Ellwangen
Tel.: +49 7961 / 9039-0
Email: info@fntsoftware.com

and

FNT Services GmbH
IT-Campus 2-4
73479 Ellwangen
Tel.: +49 7961 / 986769-0
Email: info@fntservices.com

The two companies are jointly responsible for the processing of personal data on this website (https://www.fntsoftware.com/) within the meaning of Article 26 GDPR.

Joint responsibility under Article 26 GDPR

FNT Software GmbH and FNT Services GmbH are jointly responsible for processing your personal data on this website. This means that both companies jointly determine the purposes and means of processing and each use the data for their own purposes as described in this policy (e.g., for website management, marketing, sending newsletters, handling contact requests, hosting webinars, etc.).

You may exercise your rights (in particular the right of access, rectification, erasure, restriction of processing, withdrawal/objection, and data portability) against either company. Unless stated otherwise in specific sections, the following applies:

The technical provision and administration of the website are handled by FNT Software GmbH.

Both companies are entitled to access the personal data collected in the course of the processing activities described in this policy and to use it for their own purposes (e.g., marketing, information, event management).

To exercise your rights under the GDPR (see below), you can contact either company. There are no restrictions as to which company you may contact; both have agreed to process your request within a reasonable period and, if necessary, forward it to the other.

The two companies have concluded an agreement in accordance with Article 26 GDPR; we will be happy to provide you with the main content upon request.

Data Protection Officer

You can contact the data protection team for FNT Software GmbH via email at datenschutz@fntsoftware.com or by post with the addition “Data Protection.”

You can contact the data protection team for FNT Services GmbH via email at datenschutz@fntservices.com or by post with the addition “Data Protection.”

For questions and suggestions on data protection, you can also contact the respective data protection officer directly at the following email addresses:

• For FNT Software GmbH: DSB@fntsoftware.com
• For FNT Services GmbH: DSB@fntservices.com

Data processing in third countries

We only process or allow personal data to be processed in third countries located outside the European Union (EU) or the European Economic Area (EEA) if there is either explicit consent or a recognized data protection standard in this third country, or if contractual obligations have been entered into through standard contractual clauses or corresponding certifications are available. This also applies if the processing takes place in the context of the disclosure or transfer of data to other persons, bodies or companies.

Among other things, we use tools from companies based in third countries that are not secure under data protection law as well as US tools whose providers are not certified according to the EU-US Data Privacy Framework (DPF). When these tools are active, your personal data may be transferred to and processed in these countries. We point out that in third countries that are uncertain in terms of data protection, no level of data protection comparable to that of the EU can be guaranteed.

We point out that the USA, as a safe third country, basically has a level of data protection comparable to that of the EU. Data transfer to the USA is permissible if the recipient has certification under the "EU-US Data Privacy Framework" (DPF) or has suitable additional guarantees. Information on transfers to third countries, including data recipients, can be found in this privacy policy.

General information on the processing of your personal data

Unless otherwise stated in the following descriptions of processing, you, as an interested party, communication partner, or user of the website or online service, are the data subject within the meaning of the GDPR.

Your data is often collected when you provide it to us. This may be data you enter in a contact form or otherwise provide to us.

When you visit this website, your browsing behavior may be statistically evaluated. This is mainly done using so-called analysis programs. We may also use additional tools and plugins from third-party providers. Detailed information on these analysis programs, tools, and plugins can be found in the further explanations of this privacy policy.

Other data is collected automatically or after your consent when visiting the website. This is primarily technical data (e.g., internet browser, operating system, or time of page access). This data is collected automatically as soon as you enter this website.

Unless other specific retention periods are stated in the further explanations of this privacy policy, we delete your personal data when the purpose for processing this data has been fulfilled. If you request deletion or withdraw your consent to data processing, your data will be deleted unless there are other compelling legally permissible reasons for storing your personal data (e.g., tax or commercial law retention obligations, the assertion or defense of legal claims). In the latter case, the deletion will occur as soon as these reasons no longer apply.

If you have given consent, we process your personal data on the legal basis of Article 6(1)(a) GDPR. If you have consented to the storage of cookies or access to information on your device (e.g., via device fingerprinting), the data processing also takes place on the basis of § 25(1) TDDDG (Telecommunications Digital Services Data Protection Act). You can withdraw your consent at any time. The lawfulness of the processing carried out up to the withdrawal remains unaffected. If your data is required for the performance of a contract or for pre-contractual measures, we process your data on the legal basis of Article 6(1)(b) GDPR. Furthermore, we process your data if it is necessary to fulfill a legal or statutory obligation or requirement on the basis of Article 6(1)(c) GDPR. Data processing may also be based on our legitimate interest in accordance with Article 6(1)(f) GDPR. The specific legal basis relevant in each case is stated in the further explanations of this privacy policy.

Data is only shared with third parties within the scope of legal provisions. We only pass on your data to third parties if this is necessary for contractual purposes on the basis of Article 6(1)(b) GDPR or on the basis of legitimate interests in accordance with Article 6(1)(f) GDPR in the economic and efficient operation of our business.

Your personal data is processed within both companies for the purposes stated in this policy. As part of a data processing agreement under Article 28 GDPR, the companies use service providers who may have access to your personal data in the course of their tasks. We have therefore taken appropriate legal, technical, and organizational measures with these service providers to ensure the protection of personal data in accordance with applicable legal provisions. Legally required contracts ensure that your personal data is processed only in accordance with our instructions and in compliance with the GDPR.

Data security

We take technical, contractual, and organizational measures to secure data processing in accordance with the state of the art. This ensures that the provisions of data protection laws, in particular the GDPR, are observed and that the data we process is protected against destruction, loss, alteration, and unauthorized access.

These security measures also include encrypted transmission of data between your browser and our servers.

Our site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content that you send to us as the site operator. You can recognize an encrypted connection by the fact that the address line of the browser begins with “https://” and by the lock symbol in your browser line.

Encryption protects data transmission against illegal access by third parties. If this option is not available, you may also choose not to send certain data over the internet.

Duration of storage

Unless specific retention periods are stated in this privacy policy, we process your personal data until the purpose for the data processing ceases to apply. If you make a legitimate request for deletion or withdraw your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (e.g., tax or commercial law retention periods). In the latter case, the deletion will occur once these reasons no longer apply.

Withdrawal of your consent to data processing

Many data processing operations are only possible with your express consent. You can withdraw consent you have already given at any time. The lawfulness of the data processing carried out until the withdrawal remains unaffected.

Your rights

If we process personal data about you, you are a data subject within the meaning of the General Data Protection Regulation (GDPR) and you have the following rights in relation to your personal data:

• Right of access (Article 15 GDPR)
• Right to rectification (Article 16 GDPR)
• Right to erasure (Article 17 GDPR)
• Right to restriction of processing (Article 18 GDPR)
• Right to data portability (Article 20 GDPR)
• Right to object to processing (Article 21 GDPR)

In addition, you have the right to lodge a complaint with a data protection supervisory authority (Article 77 GDPR).

If consent is the basis of the processing, you can withdraw it at any time for the future. An objection to processing based on legitimate interests is also possible. For all such concerns, you can contact both FNT Software GmbH and FNT Services GmbH or their data protection officers.

An overview of the German supervisory authorities can be found at:
https://www.datenschutzkonferenz-online.de/datenschutzaufsichtsbehoerden.html

 

Visiting our website

Scope of data processing

When you visit our website, your browser automatically transmits certain data to the web server for technical reasons. This includes the following data (so-called server log files):

• Name and URL of the retrieved file
• Date and time of the retrieval
• Amount of data transmitted
• Message about successful retrieval (HTTP response code)
• Browser type and browser version
• Operating system
• Referrer URL (i.e., the previously visited page)
• Websites from which our website is accessed by the user’s system
• Internet service provider of the user
• IP address and the requesting provider

This data is not stored together with other personal data of the users.

The technical provision and administration of the website is carried out by FNT Software GmbH.

Within the jointly determined purposes and means of processing the access data collected during your visit, FNT Software GmbH and FNT Services GmbH are jointly responsible for processing this personal data (Article 26 GDPR). We will be happy to provide you with the essential contents upon request.

Purpose of data processing

The temporary storage of the user's IP address by our web server is technically necessary to enable the website to be displayed. For this purpose, the user’s IP address must necessarily be stored for the duration of the session.

We use this log data without assigning it to your person or creating any other profile for statistical evaluations for the purpose of operating, securing, and optimizing our online offering, as well as for the anonymous recording of the number of visitors to our website (traffic), the scope and type of use of our website and services, and for billing purposes to measure the number of clicks received from cooperation partners.

Legal basis for processing

Data processing is carried out on the basis of a legitimate interest within the meaning of Article 6(1)(f) GDPR to ensure smooth connection setup, system security, and stability of the website.

Duration of storage

The above-mentioned data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of collecting data for the provision of the website, this is the case when the respective session has ended.

Information in the log files is stored for security reasons (e.g., to investigate misuse or fraud) for a period of 14 days and then deleted. Data that needs to be retained for evidentiary purposes is excluded from deletion until the respective incident is finally resolved.

Right to object and removal

The collection of data for the provision of the website and its storage in log files is technically necessary for the operation of our website. Therefore, there is no possibility for the user to object.

Additional information on data processing

Our website is hosted in the European Union by Host Europe GmbH, Hansestraße 111, 51149 Cologne, Germany (www.hosteurope.de) (short: Host Europe).
When you visit our website, Host Europe collects various log files, including your IP address. Details can be found in Host Europe’s privacy policy:
https://www.hosteurope.de/AGB/Datenschutzerklaerung/

The use of Host Europe is based on Article 6(1)(f) GDPR. We have a legitimate interest in the most reliable and secure presentation of our website possible. If consent has been requested, processing will be based solely on Article 6(1)(a) GDPR and § 25(1) TDDDG, insofar as the consent includes the storage of cookies or access to information on the user’s device (e.g., for device fingerprinting) within the meaning of the TDDDG. Consent can be withdrawn at any time.

We have concluded a data processing agreement (DPA) pursuant to Article 28 GDPR with Host Europe.

 

Registration and login on our website

Scope of data processing

You have the option to register on our website. When registering and creating a user account, the personal data you enter (e.g., name, first name, address, email address, username, password) is processed by both companies under a joint responsibility (Article 26 GDPR).

Both companies jointly determine the purposes and means of managing and using user accounts. The data is used to provide and administer your user account and, where applicable, to give you access to other protected areas or offers. Depending on the content and reason for registration, one of the companies may handle the ongoing management of your account (e.g., support requests). This decision is made by the companies according to a jointly established procedure.

Purpose of data processing

The processing of your personal data enables us to inform you about important changes to our offers or technically relevant changes and to authorize your access.

Legal basis for processing personal data

The legal basis for processing your data is Article 6(1)(b) GDPR (usage relationship and any pre-contractual measures).

Recipients of the data

Your personal data will be transmitted to the departments responsible for providing the service.

Recipients of your personal data collected in connection with registration and login are — within our joint responsibility — FNT Software GmbH and FNT Services GmbH. Both companies may access the data and use and process it for their own purposes as described in this privacy policy.

Duration of storage

The data will be deleted when you have withdrawn your registration on our website or when the purpose no longer applies.

 

Email contact

Scope of data processing

You can contact us by email. Depending on your request, different email addresses are available on our website. If you send us an email, the personal data transmitted with this email will be processed by us.

On our website, we provide email addresses for FNT Software GmbH and FNT Services GmbH for contacting us. If you contact us by email, the personal data you provide (e.g., name, email address, content of the message, and possibly other contact information) will be processed solely by the company you contacted.

Purpose of data processing

The processing of this personal data is used to handle your request.

Legal basis for processing personal data

The legal basis for processing the data transmitted when contacting us by email is Article 6(1)(f) GDPR (legitimate interest of us as controllers). If the email contact aims at concluding a contract, Article 6(1)(b) GDPR (performance of a contract or pre-contractual measures) is an additional legal basis for processing.

Recipients of the data

Recipients of the data are internal departments at FNT Software GmbH or FNT Services GmbH or commissioned service providers (e.g., IT/email providers) acting as processors pursuant to Article 28 GDPR.

Duration of storage

The data is deleted as soon as it is no longer necessary for the purpose for which it was collected. For personal data sent by email, this is the case when the respective conversation with the user is deemed concluded. A conversation is deemed concluded when it can be inferred from the circumstances that the matter in question has been finally clarified and there are no statutory retention obligations.

Right to object

You may object to the processing of your personal data at any time. In this case, the conversation cannot be continued. Please address your objection to datenschutz@fntsoftware.com or to our postal address. All personal data stored during the contact will be deleted in this case, unless legal retention obligations prevent this.

 

Contact

Scope of data processing

You can contact us via our contact form and also request further services through it. If you contact us in this way, the personal data you provide will be stored by us to process your inquiry and in case of follow-up questions. This data will not be passed on without your consent.

If you send us an inquiry using the contact form on our website, the personal data you enter (e.g., name, email address, subject, message, and possibly telephone number) will be processed jointly by FNT Software GmbH and FNT Services GmbH (Article 26 GDPR).

Both companies jointly determine the purposes and means of processing your data, particularly for receiving, reviewing, and responding to your inquiry as well as for any necessary follow-up. Your inquiry will be assigned to the company responsible for the matter based on internal processes jointly defined by FNT Software GmbH and FNT Services GmbH.

Purpose of data processing

The processing of this personal data is used to handle your inquiry and communicate with you.

Legal basis for processing personal data

The legal basis for processing data transmitted via the contact form is Article 6(1)(f) GDPR (legitimate interest of us as controllers in effectively and purposefully handling your request). If the contact aims at concluding a contract, Article 6(1)(b) GDPR (performance of a contract or pre-contractual measures) is an additional legal basis.

Your information will be used solely to process your inquiry and any follow-up questions. Data will only be passed on to third parties if necessary to process your request or if there is a legal obligation to do so.

Recipients of the data

Recipients of the data collected via the contact form are FNT Software GmbH, FNT Services GmbH, and any external IT/hosting providers acting as processors pursuant to Article 28 GDPR.

Duration of storage

The data is deleted as soon as it is no longer necessary for the purpose for which it was collected. For personal data transmitted via the contact form, this is the case when the conversation with the user is deemed concluded and there are no statutory retention obligations.

Right to object

You may object to the processing of your personal data at any time. In this case, the conversation cannot be continued. Please send your objection to the communication channels mentioned above. All personal data stored during the contact will be deleted in this case, unless legal retention obligations prevent this.

 

Direct marketing / Marketing

Scope of data processing

FNT Software GmbH and FNT Services GmbH process your personal data, such as email address, telephone number, or postal address, within a joint responsibility (Article 26 GDPR) to contact you and inform you about our services and products.

Purpose of data processing

The processing of this personal data enables both companies to contact you directly and offer you products and services from our portfolio that may be of interest to you.

Legal basis for processing personal data

The legal basis for processing data in the course of direct marketing is Article 6(1)(f) GDPR (legitimate interest) for the purpose of direct marketing by telephone (see Recital 47 sentence 7) in combination with presumed consent. Processing may also be based on Article 6(1)(a) GDPR (consent) if you have expressly consented to the promotional use of your data as part of accepting a free service offer from us (e.g., whitepaper, e-book, information event). If you have given us your consent for direct contact in any other way, Article 6(1)(a) GDPR is also the legal basis for processing your personal data. Furthermore, for advertising measures as an existing customer, we also rely on § 7 UWG, provided that all legal requirements are met.

Recipients of the data

Recipients of your data are the departments responsible for processing the matter at FNT Software GmbH and FNT Services GmbH, as well as any commissioned processors (e.g., ActiveCampaign – see section “ActiveCampaign,” Inxmail – see section “Newsletter”) with whom we have concluded appropriate contractual, organizational, and technical agreements pursuant to Article 28 GDPR.

Duration of storage

The data will be deleted as soon as it is no longer necessary for the purpose for which it was collected and there are no statutory retention obligations.

Right to object and withdraw consent

You have the possibility to object to the processing of your personal data or to revoke your consent for this purpose at any time. Please send any objection or revocation to the aforementioned communication channels. In this case, any personal data stored as part of this processing will be deleted, provided that there are no statutory storage obligations.

 

Telephone contact

Scope of data processing

If you contact us by telephone, we process the data you provide (e.g., your telephone number, name, company, possibly your email address, and your request) within the framework of a joint responsibility of FNT Software GmbH and FNT Services GmbH pursuant to Article 26 GDPR.

Both companies jointly determine the purposes and means of processing this data in order to handle and respond to your inquiry. The personal data collected in this way is used by each company for the purpose of processing your request. Depending on the subject matter and responsibility, it will be decided whether FNT Software GmbH or FNT Services GmbH will continue the communication. The selection of the responsible company is made according to an internal process jointly defined by both companies.

Purpose of data processing

We process your personal data in order to handle your contact request and your inquiry.

Legal basis for processing personal data

The legal basis for processing the data transmitted during a telephone call is, in the case of general inquiries, Article 6(1)(f) GDPR. Our legitimate interest lies in processing your request. If the telephone call aims at concluding a contract, the legal basis for processing is Article 6(1)(b) GDPR.

Recipients of the data

Recipients of the data are the internal departments responsible for processing within FNT Software GmbH and FNT Services GmbH. External service providers (e.g., IT/telephony providers) may be engaged as processors pursuant to Article 28 GDPR.

Duration of storage

We delete personal data when it is no longer necessary for the purpose for which it was collected or restrict it if statutory retention obligations exist. For personal data you have provided to us by telephone, this is the case when it can be inferred from the circumstances that the matter or inquiry has been conclusively resolved.

Right to object

You may object to the storage of your personal data at any time. In this case, our conversation can no longer be continued. Please send such an objection to one of the communication channels mentioned above.

 

Customer and prospect inquiries

Scope and purpose of data processing

If you already obtain products or services from one of the two companies or are interested in them, that company processes the data necessary for the provision of pre-contractual measures or contractual services. This may include names, business address and contact details, contract and order data, and billing information to fulfill our contractual obligations or pre-contractual measures. The legal basis for this is Article 6(1)(b) GDPR (contract performance).

If the company with which you already have a business relationship wishes to inform you by telephone, email, or newsletter about our products and services, this is done in accordance with the provisions of § 7 UWG or with your consent pursuant to Article 6(1)(a) GDPR, if you have given such consent.

If this company transfers your personal data to affiliated companies or partner companies, the legal basis is Article 6(1)(f) GDPR. The legitimate interest lies in the efficient, effective, and economical internal management of customer and prospect data as well as in the efficient, effective, and economical handling of inquiries from you as a customer or prospect about the products and services of FNT Software GmbH and/or FNT Services GmbH.

Furthermore, we process personal data as part of checks for compliance with trade and economic sanctions lists as well as other relevant national and international legal and regulatory requirements. This check serves to ensure that we only enter into or maintain business relationships with persons and organizations not subject to such sanctions. The legal basis is the fulfillment of legal obligations pursuant to Article 6(1)(c) GDPR. In addition, processing serves our legitimate interest in complying with applicable legal and regulatory requirements in our business activities (Article 6(1)(f) GDPR).

Recipients of the data

Recipients of your personal data are our internal departments involved in contract fulfillment (e.g., sales, development, accounting), affiliated companies, partner companies, and, where applicable, freight forwarders, shipping, and transport companies that require this data to fulfill the contract or carry out pre-contractual measures.

As part of sanctions and compliance checks, personal data may be transferred to specialized service providers and compliance partners who assist us in carrying out these checks. These service providers and partners are contractually obliged to process the data exclusively in accordance with our instructions and the applicable data protection regulations.

We may also be required to transfer your personal data to public authorities, other agencies, and institutions where there is a legal or regulatory obligation requiring us to disclose, report, or pass on personal data (e.g., tax authorities in the course of an audit, auditors).

Where necessary and legally permissible, we transfer your personal data to banks, tax advisors, and lawyers.

As part of data processing pursuant to Article 28 GDPR, we use service providers for the operation and maintenance of our IT systems as well as for other tasks (e.g., document destruction) who may have access to your personal data in this context. We have therefore taken appropriate legal, technical, and organizational measures with these service providers to ensure the protection of personal data in accordance with the relevant legal provisions.

Transfer to third countries

We generally do not transfer your personal data to a third country or an international organization. However, a transfer to a third country may occur if your inquiry relates to a service we provide in a third country and we use partner companies or affiliated companies based in that third country to provide and/or maintain customer care.

Duration of data storage

Where necessary, we process your personal data for the duration of our business relationship and/or to fulfill contractual purposes or legal obligations. This also includes initiating and processing a contract. In addition, we are subject to various retention and documentation obligations arising from, among others, the German Commercial Code (HGB) and the German Fiscal Code (AO).

For the processed data, the standard retention periods for deletion of the data apply in accordance with the provisions of the HGB (10 years). The German Commercial Code (§§ 238 and 257 HGB) and the German Fiscal Code (§ 147 AO) stipulate how long commercial documents must be retained. Pursuant to § 257(1) Nos. 2 and 3 HGB, received commercial letters, reproductions (copies, duplicates) of sent commercial letters, business papers, and other documents with commercial and tax relevance must be kept for six (6) years. Incoming and outgoing invoices must also be retained for ten (10) years (§ 14b(1) of the German Value Added Tax Act).

 

Newsletter

Scope and purpose of data processing

To stay in contact with you and to provide you with relevant and interesting information about our offers and products, we offer you the option to subscribe to our newsletter.
If you wish to use this service and subscribe to our newsletter, we require your email address as well as further information enabling us to verify that you are the owner of the specified email address and agree to receive the newsletter. No additional data is collected or only on a voluntary basis.

The processing of your personal data in the context of newsletter registration, sending, and analysis takes place within a joint responsibility under Article 26 GDPR by FNT Software GmbH and FNT Services GmbH. Both companies jointly determine the purposes and means of processing (e.g., topic selection, recipient lists, evaluation of delivery and open rates) and each use the data obtained for their own purposes as stated in this privacy policy. We will be happy to provide you with the essential content of the agreement in accordance with Article 26 GDPR upon request.

We use specialized service providers for sending newsletters, in particular Inxmail GmbH, which acts under a data processing agreement in compliance with Article 28 GDPR. The data you provide for newsletter subscription may be stored and processed on the servers of these service providers.
Inxmail also enables us to qualitatively evaluate the success of individual newsletter campaigns — for example, which messages were opened and which links were clicked. These evaluations are generally carried out without direct personal reference, but on an aggregated level.

We use the following service provider for sending newsletters:
Inxmail GmbH, Wetzinger Straße 17, 79106 Freiburg, Germany.

Legal basis for processing personal data

The legal basis for processing the data collected during your newsletter subscription is solely Article 6(1)(a) GDPR (consent).

You may withdraw the consent given for storing the data, the email address, and its use for sending the newsletter at any time — for example, via the “unsubscribe” link in the newsletter itself. The lawfulness of data processing carried out before the withdrawal remains unaffected.

If your email address is stored in a so-called blacklist to prevent future mailings, this is done based on our legitimate interest pursuant to Article 6(1)(f) GDPR in complying with legal requirements and preventing unwanted email transmission.

Recipients of the data

Recipients of the data collected in connection with the newsletter are FNT Software GmbH, FNT Services GmbH, and the contracted service providers (in particular Inxmail).

Duration of storage

We delete personal data when it is no longer necessary for the purpose of its collection or restrict processing if statutory retention obligations exist. In the case of the newsletter, we remove your personal data from the distribution list when you unsubscribe or when the purpose for processing no longer applies.

We reserve the right to delete or block email addresses from our newsletter distribution list at our discretion within our legitimate interest under Article 6(1)(f) GDPR. Data stored for other purposes remains unaffected.

Right to object and withdraw consent

You may object to the processing of your personal data or withdraw your consent at any time. You will then no longer receive any newsletters from us. Please send your objection or withdrawal to one of the communication channels mentioned above or use the unsubscribe link included in every newsletter message.

Additional information on data processing

The privacy policy of Inxmail can be found here: https://www.inxmail.de/datenschutz
We have concluded a data processing agreement (DPA) pursuant to Article 28 GDPR with the above-mentioned service provider for the use of their services. This legally required contract ensures that the provider processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

 

Processing in the context of audio and video conferences

Scope of data processing

We use online conferencing tools for communication with you.

We preferably use Microsoft Teams.
Provider: Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, D18 P521, Ireland (hereinafter “MS Teams”).

If you receive an invitation to an audio or video conference as part of business relationships or appointments, the inviting or responsible company (FNT Software GmbH or FNT Services GmbH) is responsible for processing your personal data. Which company is specifically responsible in your case results from the context of the invitation or communication and can always be requested from us.

The respective company processes all data arising in connection with the use of the conference tool or provided by you (e.g., name, email address, content data, possibly audio, video, and chat data, participation metadata, and technical information such as IP address, device information, and connection times).

Additionally, the provider of the tool processes all technical data necessary for conducting online communication. This includes, in particular, IP addresses, MAC addresses, device IDs, device type, operating system type and version, client version, camera type, microphone or speaker, and type of connection.

If content is exchanged, uploaded, or otherwise made available within the tool, this content is also stored on the servers of the tool providers. Such content includes, in particular, cloud recordings, chat/instant messages, audio files, voicemails, uploaded photos and videos, files, whiteboards, and other information shared during the use of the service.

Please note that we have only limited influence on the data processing operations of the tools used.

Purpose of data processing

The processing of the aforementioned data is carried out for the purpose of conducting online meetings, video conferences, webinars, and/or audio conferences, in particular to conduct business processes efficiently and to communicate with you.

Legal basis for processing personal data

The service or tool is used within the scope of contract performance or to clarify pre-contractual matters in order to communicate with prospective or existing contractual partners or to provide certain services to our customers (Article 6(1)(b) GDPR).

Furthermore, our legitimate interest lies in generally simplifying and accelerating communication with you (Article 6(1)(f) GDPR).

Where consent is requested (e.g., consent to record calls or video conferences), the use of the tool or its functions is based solely on this consent; consent can be withdrawn at any time with effect for the future (Article 6(1)(a) GDPR).

Recipients of the data

Recipients of your data are the respective responsible FNT Software GmbH or FNT Services GmbH and — within the scope of a data processing arrangement — our technical service providers/IT providers (e.g., Microsoft Teams). In addition, the providers of the conferencing tools may act as independent controllers if you use their platform features, accounts, or additional services independently.

Duration of storage

The data we directly collect via video and conferencing tools is deleted from our systems as soon as you request deletion, withdraw your consent to storage, or the purpose for data storage no longer applies. Mandatory statutory retention periods remain unaffected.

Cookies stored on your end device remain there until you delete them yourself. We have no influence on the storage duration of your data stored by the operator of the conferencing tool for its own purposes. For details, please consult the providers of the conferencing tools directly.

Right to object and removal

You can object to the processing of your personal data at any time with effect for the future via the communication channels mentioned above. In this case, the service may not or no longer be provided in full or completely.

Additional information on data processing

MS Teams:
For more information about terms of use and privacy with MS Teams, see Microsoft’s privacy policy: https://privacy.microsoft.com/de-de/privacystatement

We have concluded a data processing agreement (DPA) pursuant to Article 28 GDPR with the provider.

The company is certified under the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the USA intended to ensure compliance with European data protection standards for data processing in the USA. Each company certified under the DPF is committed to upholding these data protection standards. Further information is available from the provider here:
https://www.dataprivacyframework.gov/participant/6474

 

Processing in the context of events (in-person, hybrid, online/webinars)

Scope and purpose of data processing

As part of the organization and execution of events (whether in-person, hybrid, or online/webinars), FNT Software GmbH and FNT Services GmbH process your personal data. The scope and legal responsibility depend on the respective organizational responsibilities:

1. Joint responsibility for jointly organized events

If events (e.g., conferences, trade fairs, hybrid events, jointly promoted webinars) are jointly conducted by FNT Software GmbH and FNT Services GmbH or centrally managed via a shared registration or organization tool, both companies process your personal data within the framework of joint responsibility pursuant to Article 26 GDPR.

In this case, both companies jointly determine the purposes and means of data processing — for example, for registration, participant management, execution, billing, and possibly for subsequent marketing activities.

You can exercise your data protection rights against both companies. The essential content of the agreement under Article 26 GDPR is available upon request.

2. Sole responsibility for independently organized events

If an event is clearly and exclusively held in the name and under the responsibility of either FNT Software GmbH or FNT Services GmbH (e.g., company-specific specialist events, single webinars, training sessions organized by only one of the companies), the respective organizing company is the sole controller within the meaning of the GDPR.

In these cases, registration, execution, and processing of the associated personal data are carried out exclusively by the respective organizing company.

Regardless of the responsibility, the data processed typically includes master data (e.g., name, company, contact details, email address), organizational information (e.g., booked event, payment data for paid events), and — in the case of hybrid or online events — possibly usage data (e.g., audio/video data, chat messages, interaction data, IP address, participation times, and technical device data).

Legal basis for processing personal data

Your personal data is processed for handling your registration, billing if applicable, and conducting the event. The legal basis for this is Article 6(1)(b) GDPR (contract performance).

Your personal data may also be processed to inform you about similar events in the future if you have requested this. The legal basis for this is Article 6(1)(a) GDPR (consent).

When conducting the event as a hybrid or online event using audio and video conferencing technologies, your personal data will be processed to present the course content to you and to enable interaction with speakers and other participants. The legal basis is Article 6(1)(b) GDPR (contract performance) and our legitimate interest (Article 6(1)(f) GDPR) in efficient, secure, and accessible communication.

Recipients of the data

Recipients of the data are the respective responsible companies (FNT Software GmbH, FNT Services GmbH). Depending on technical implementation, specialized service providers (e.g., event platforms such as ClickMeeting) may also be engaged as processors.

Data transfer to external partners occurs only if necessary for organizing the event or if required by law.

Duration of storage

Data collected directly via video and conferencing tools is deleted from the systems once you request deletion, withdraw your consent to storage, or when the purpose of storage no longer applies. Mandatory statutory retention periods remain unaffected.

Cookies stored on your end device remain until you delete them yourself. We have no influence on the retention period of your data stored by the operator of the conferencing tool for its own purposes. For details, please refer directly to the operator.

We delete your personal data after the event unless there is a need for further storage or unless you wish to be informed about similar future events. A need for further storage may arise, for example, if the data is still required to fulfill contractual services or to examine and assert or defend against claims. If statutory retention obligations exist, deletion will only take place after the retention period has expired.

Additional information on data processing

For hybrid or online events, we necessarily use services and service providers for technical implementation, such as:

• ClickMeeting Spółka z ograniczoną odpowiedzialnością, ul. Arkońska 6/A4, 80-387 Gdańsk, Poland
  Website: https://clickmeeting.com/
  Privacy Policy: https://clickmeeting.com/de/legal?clang=en

We have concluded data processing agreements (DPAs) pursuant to Article 28 GDPR with these providers.

 

Job applications

Scope of data processing

If you apply for a posted position with us or submit an unsolicited application, your personal data will be processed exclusively by the company that advertised the position and/or received your application (FNT Software GmbH or FNT Services GmbH). This company is solely responsible for processing your personal data within the meaning of the GDPR.

As part of the application process, we collect and process the data you provide. This includes in particular: title, first name, last name, contact details (e.g., email address, telephone number), information about your qualifications, cover letter, résumé, certificates, and possibly further voluntary information. If you voluntarily disclose special categories of personal data (e.g., information on health, religion, or origin) as part of your application, processing is based on your explicit consent (Article 9(2)(a) GDPR).

Purpose of data processing

Your personal data is processed for the selection of suitable candidates and the administrative handling of the application process to decide on the establishment of an employment relationship.

If your application leads to employment, your application documents may be further processed for the purposes of conducting the employment relationship. In this case, your personal data will be included in your personnel file and our HR management systems.

Legal basis for processing personal data

The legal basis is Article 6(1)(b) GDPR in conjunction with § 26(1) BDSG.
If special categories of personal data are processed, this is based on Article 9(2)(a) GDPR in conjunction with § 26(3) BDSG.

Recipients of the data

Within the responsible company, only persons involved in the application process (HR department, department, possibly management) have access to your data. In addition, we may use external service providers for recruitment software or application portals as processors under Article 28 GDPR (e.g., perbit Software GmbH). Data is not transferred to third parties unless you have expressly consented to this or there is a legal obligation.

Transfer of data to a third country

If you apply for a position outside the EU/EEA in our corporate group, the responsible manager there will also have access to the personal data you have provided to us. Otherwise, your personal data will not be transferred to a third country or international organization.

Duration of storage

If your application does not lead to employment, your personal data will be deleted no later than four months after completion of the application process (e.g., notification of rejection), taking into account the complaint period under the AGG (General Equal Treatment Act), unless you have given consent under Article 6(1)(a) GDPR for longer-term storage of your personal data in order to be considered for future job offers. In that case, we will request a separate consent.

If your application is successful and leads to employment, your application documents will be stored in our HR system and personnel file on the basis of Article 6(1)(b) GDPR in conjunction with § 26(1) BDSG for the purpose of conducting the employment relationship. In this case, your documents will be deleted only when your employment ends and a further three years have passed since the end of the year.

Right to object and removal

You can request to update or delete the personal data you have provided to us at any time by sending an email to career@fntsoftware.com or career@fntservices.com, depending on which company you applied to. This does not apply if you are currently in an ongoing recruitment process for a specific position; in this case, we store the data for this position until the statutory limitation periods (especially § 15 AGG) expire.

Automated decision-making

We do not use automated decision-making.

Obligation to provide data

Providing your data is necessary and mandatory for deciding on the establishment of an employment relationship. Without providing your data, you cannot apply to us.

Additional information on data processing

We may also use tools and online services or application portals from service providers for conducting the recruitment process, such as:

• perbit Software GmbH, Siemensstraße 31, 48341 Altenberge, Germany
  Website: https://www.perbit.de/
  Privacy Policy: https://perbit.com/datenschutz/

We have concluded a data processing agreement (DPA) pursuant to Article 28 GDPR with this provider. This legally required contract ensures that the provider processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

 

Cookies

Scope of data processing

Our website uses cookies. Cookies are small text files that are stored on your computer when you visit our website. Cookies do not harm your computer and do not contain malicious software, such as viruses or Trojans.

Depending on the purpose, they are stored on your device either temporarily for the duration of a session (session cookies) or permanently (permanent cookies).

Cookies contain a characteristic string of characters that enables unique identification of the browser or previous settings when you access the website again.

We use cookies that are necessary for the technical operation of our website, cookies that are used for analysis and marketing purposes, and cookies that we use for a convenient experience on our website.

Some cookies are also placed by third-party companies that are featured on our web pages. This allows us, or you, to use certain services provided by the third-party company.

As part of an informed consent, you can decide for yourself when initially accessing our website whether you wish to accept cookies that are not necessary for the technical functions of the website.

Specifically, the cookies we use on our website are those listed at https://www.fntsoftware.com/en/information/cookies.

You can view and change your settings regarding cookies and the other third-party services at any time via the following link https://www.fntsoftware.com/en/information/cookies.

Purpose of data processing

Cookies are used for various purposes:

• Technical functionality of the website
• Storing user preferences and settings
• Statistical analysis of website use
• Displaying personalized advertising

Legal basis for processing personal data

The legal basis for storing cookies and accessing stored information on your device is § 25(1) TDDDG in conjunction with Article 6(1)(a) GDPR if we ask for your consent.

For cookies that are technically necessary, the legal basis is § 25(2) No. 2 TDDDG in conjunction with Article 6(1)(f) GDPR (legitimate interest in the technically error-free and optimized provision of our services).

You can revoke or change your consent at any time via the cookie settings on our website.

Recipients of the data

Recipients of the data are the internal departments of FNT Software GmbH and FNT Services GmbH and service providers commissioned in accordance with Article 28 GDPR who assist us in operating the website or evaluating usage behavior.

Duration of storage

Session cookies are deleted after you leave our site. Persistent cookies remain on your device until they are deleted by you or automatically by your browser.

Right to object

You can configure your browser to inform you about the setting of cookies and allow cookies only in individual cases, exclude the acceptance of cookies for certain cases, or generally, and activate the automatic deletion of cookies when closing the browser. If cookies are deactivated, the functionality of this website may be limited.

 

Matomo

Scope of data processing

We use the open-source web analysis service Matomo. Matomo enables us to collect and analyze data on the use of our website by visitors. This allows us to find out, among other things, when which page views occurred and from which region they came. We also record various log files (e.g., IP address, referrer, browser used, and operating systems) and can measure whether our website visitors perform certain actions (e.g., clicks, purchases, downloads).

Matomo is hosted on our own servers. All data is stored exclusively in the EU and is not shared with third parties.

We use Matomo with IP anonymization enabled. This means that your IP address is shortened before analysis so that it can no longer be clearly assigned to you.

Purpose of data processing

The processing of data using Matomo enables us to analyze the use of our website and optimize it continuously.

Legal basis for processing

The use of Matomo and the associated storage of cookies or access to information on your device is based on your consent (§ 25(1) TDDDG, Article 6(1)(a) GDPR), which you can revoke at any time.

Recipients of the data

Recipients are the internal departments of FNT Software GmbH and FNT Services GmbH responsible for website analytics.

Duration of storage

Data collected via Matomo will be deleted as soon as it is no longer required for our analysis purposes or you withdraw your consent.

 

ActiveCampaign

Scope of data processing

We use the marketing automation platform ActiveCampaign to manage contacts, segment target groups, automate marketing processes, and send personalized emails and campaigns. ActiveCampaign processes the data provided by you (e.g., name, email address, company, interests, and interactions with our content).

This may include tracking whether an email was opened, which links were clicked, and which web pages were subsequently visited. This tracking uses so-called web beacons or tracking pixels that are embedded in our emails.

Purpose of data processing

The data is processed to provide personalized marketing content, analyze campaign performance, and optimize our communication with you.

Legal basis for processing personal data

If you have given your consent, the legal basis for processing is Article 6(1)(a) GDPR. If the processing is necessary for the performance of a contract or pre-contractual measures, Article 6(1)(b) GDPR also applies.

In addition, we may process your data on the basis of our legitimate interest pursuant to Article 6(1)(f) GDPR in effective marketing and communication with our customers and prospects.

Recipients of the data

Recipient of the data is ActiveCampaign, LLC, 1 North Dearborn Street, 5th Floor, Chicago, IL 60602, USA. The data may also be accessed by internal departments of FNT Software GmbH and FNT Services GmbH.

Transfer to a third country

Data may be transferred to the USA. ActiveCampaign is certified under the EU-U.S. Data Privacy Framework (DPF) and thus guarantees compliance with European data protection standards.

Duration of storage

We store your data processed via ActiveCampaign until you withdraw your consent or object to the processing. Data that must be retained for legal reasons will be stored until the retention period expires.

Right to object and withdraw consent

You can withdraw your consent or object to processing at any time with effect for the future. In such cases, we will no longer process your data via ActiveCampaign and will delete it unless there is a legal retention obligation.

 

Oktopost

Scope of data processing

We use the social media management and analytics platform Oktopost provided by Oktopost Technologies Inc., 22 HaMenofim Street, Herzliya, Israel.

Oktopost enables us to plan, publish, and analyze social media posts across multiple platforms and to monitor interactions. For this purpose, Oktopost processes data such as:

• Metadata about published content (e.g., date, time, platform)
• Aggregated interaction data (e.g., clicks, likes, shares, comments)
• Tracking information (e.g., IP address, browser type, device information, location) when users interact with linked content

If you click on a link in a social media post managed via Oktopost, cookies or similar tracking technologies may be set to measure the success of campaigns and analyze user behavior.

Purpose of data processing

We process data via Oktopost in order to efficiently manage and evaluate our social media activities, measure campaign performance, and optimize content and marketing strategies.

Legal basis for processing personal data

The legal basis for processing is your consent pursuant to Article 6(1)(a) GDPR and § 25(1) TDDDG if tracking technologies are used. You can withdraw your consent at any time with effect for the future.

In cases where only aggregated, non-identifiable statistical data is processed, processing is based on our legitimate interest pursuant to Article 6(1)(f) GDPR in the efficient organization and analysis of our social media communication.

Recipients of the data

The recipient is Oktopost Technologies Inc. In addition, internal departments of FNT Software GmbH and FNT Services GmbH responsible for social media and marketing have access to the data.

Transfer to third countries

Data may be transferred to Israel. The European Commission has issued an adequacy decision for Israel pursuant to Article 45 GDPR, confirming an adequate level of data protection.

Duration of storage

We store personal data collected via Oktopost for as long as it is necessary to fulfill the purposes for which it was collected or until you withdraw your consent. Aggregated, anonymized statistical data may be stored for longer.

Additional information on data processing

For more information on Oktopost's data processing, please see:
https://www.oktopost.com/privacy-policy

 

GoConsensus

The processing of your personal data in connection with the use of GoConsensus is carried out under the joint responsibility of FNT Software GmbH and FNT Services GmbH in accordance with Art. 26 GDPR. Both companies jointly determine the purposes and means of data processing and may access the personal data collected within the scope of this service, using it for their own purposes as described in this Privacy Policy. We will gladly provide you with the essential contents of the agreement pursuant to Art. 26 GDPR upon request.

Scope and Purpose of Data Processing

Our goal is to present our products to you more effectively with the help of individually compiled video sequences and audio support. To do this, we use the service of the provider Consensus Sales, LLC., 125 East Main St., Ste. 118, American Fork, UT 84003, USA (short: Consensus). When you access our Consensus page via a link we provide, certain personal data will be processed to offer you this personalized experience. This enables us to communicate with you in a targeted way and to improve your understanding of the solutions we offer. Contact data (name, telephone number, address, e-mail address), IP address, selection and interaction with the video sequences, as well as usage patterns and preferences may be processed.

Legal Basis for processing personal data

Your personal data will be processed on the following legal bases:

• Art. 6(1)(a) GDPR: Where corresponding consent is requested, processing is carried out solely based on Art. 6(1)(a). Consent can be withdrawn at any time with future effect.
• Art. 6(1)(b) GDPR: Processing is necessary for the performance of a contract to which you are a party or for carrying out pre-contractual measures at your request, particularly if you request specific information or offers through the personalized video sequences.
• Art. 6(1)(f) GDPR: Our legitimate interest lies in presenting our products and services effectively and in a targeted manner.

The above legal bases apply to both joint controllers. You can exercise your data protection rights (e.g., access, rectification, deletion, withdrawal, and objection) regarding the personal data collected via GoConsensus with either company.

Right to Object and Withdraw Consent

You can object to the processing of your personal data or withdraw your consent at any time.

Data Storage and Deletion

Your data will be stored only as long as necessary for the purposes described or to comply with legal requirements. Afterwards, it will be deleted.

Recipients of the Data

Your data may be shared within our company and with external service providers, including Consensus, who support us in providing and improving our services.

Further Information on Data Processing

Further information on terms of use and privacy at Consensus can be found in their privacy policy:
https://goconsensus.com/privacy-policy/

We have concluded the data protection agreements required by law with Consensus to ensure that Consensus processes your personal data only according to our instructions and in compliance with the GDPR (e.g., a data processing agreement pursuant to Art. 28 GDPR). Data transfer to the USA or other third countries is based on the EU Commission’s standard contractual clauses.

The company is certified under the EU–US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the USA intended to ensure compliance with European data protection standards when processing data in the USA. Every company certified under the DPF undertakes to comply with these standards. Further information is available from the provider at the following link:
https://www.dataprivacyframework.gov/participant/8822

 

Google Analytics

The processing of data collected via Google Analytics is carried out under the joint responsibility of FNT Software GmbH and FNT Services GmbH pursuant to Art. 26 GDPR. Both companies jointly determine the purposes and means of data processing and can access the analysis data. You may exercise your data protection rights regarding processing by Google Analytics with either company. We will gladly provide you with the essential contents of the agreement between the joint controllers pursuant to Art. 26 GDPR upon request.

Scope of Data Processing

We use the “Google Analytics” web analytics service on our website, provided by “Google” (responsible service provider in the EU: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA).

Google Analytics records and systematically evaluates the interactions of website visitors.

Google Analytics allows the website operator to analyze the behavior of website visitors.

The website operator receives various usage data, such as page views, time spent, operating systems used, and the origin of the user. These data are compiled in a User ID and assigned to the respective end device of the website visitor.

In addition, with Google Analytics we can record, among other things, your mouse and scroll movements and clicks. Furthermore, Google Analytics uses various modeling approaches to supplement the data sets collected and applies machine learning technologies in data analysis.

Technologies are used that enable the recognition of the user for the purpose of analyzing user behavior (e.g., cookies or device fingerprinting). The information collected by Google about the use of this website is generally transmitted to a Google server in the USA and stored there.

We use the ‘anonymizeIP’ function (so-called IP masking). Due to the activation of IP anonymization on this website, your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. The IP address transmitted by your browser within the scope of Google Analytics will not be merged with other Google data.

Purpose of Data Processing

The processing of personal data of the user (website visitor) with the help of Google Analytics enables us to analyze the surfing behavior of our users. By evaluating the data obtained, we can compile information on the use of the individual components of our website. This helps us to improve our website and its user-friendliness.

Legal Basis for Data Processing

The legal basis for processing personal data is Art. 6(1)(a) GDPR (consent) and § 25(1) TDDDG, insofar as consent also covers the storage or access to cookies and information on the user’s device (e.g., fingerprinting) within the meaning of the TDDDG.

Duration of Storage

Data stored in Google Analytics at the user and event level are anonymized or deleted as soon as their purpose has been fulfilled.

You can find further details at the following link:
https://support.google.com/analytics/answer/7667196?hl=en

Recipients of the Data

The recipient of the data is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, as a processor. We have concluded a data processing agreement with Google for this purpose. Google LLC, based in California, USA, and possibly US authorities may access the data stored by Google.

Transfer to a Third Country

A transfer of data to the USA cannot be excluded.

Right to Object and Opt-out Options

You can prevent the storage of cookies by adjusting your browser software settings accordingly.

You can also prevent Google Analytics from using your data on our website via a browser add-on that deactivates Google Analytics JavaScripts (ga.js, analytics.js, dc.js).

If you wish to deactivate Google Analytics, you can download and install the browser add-on for deactivation from:
https://tools.google.com/dlpage/gaoptout?hl=en

As a user of our website, you also have control over the use of cookies and other third-party services.

You can view and change your settings at any time via the following link:
https://www.fntsoftware.com/informationen/cookies

You may exercise your data protection rights (e.g., access, withdrawal, deletion) in relation to Google Analytics with either joint controller.

Further Information on Data Processing

For more information on terms of use and privacy at Google, please see:
https://www.google.com/analytics/terms/en.html
https://marketingplatform.google.com/about/analytics/
https://policies.google.com/?hl=en

More information on how Google Analytics handles user data can be found in Google’s privacy policy:
https://support.google.com/analytics/answer/6004245?hl=en

Data transfers to the USA are based on the EU Commission’s Standard Contractual Clauses. Details can be found here:
https://privacy.google.com/businesses/controllerterms/mccs/

The company is also certified under the EU–US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the USA designed to ensure compliance with European data protection standards when processing data in the USA. Every company certified under the DPF undertakes to comply with these data protection standards. Further information is available from the provider at the following link:
https://www.dataprivacyframework.gov/participant/5780

 

Google Tag Manager

The use and processing of data in connection with Google Tag Manager on our website are carried out under the joint responsibility of FNT Software GmbH and FNT Services GmbH pursuant to Art. 26 GDPR. Both companies jointly determine the purposes and means of using tag management and analytics tools and the associated data processing. You can exercise your data protection rights in relation to Google Tag Manager with either company. We will gladly provide you with the essential contents of the agreement pursuant to Art. 26 GDPR upon request.

Scope of Data Processing

We use Google Tag Manager on our website, provided by Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, D04 E5W5, Ireland.

This solution is a tag management system (TMS) that allows us to integrate and manage tracking or analytics tools on our website. The tool itself, which implements the tags, does not store personal data. It triggers other tags, which in turn may collect data (e.g., Google Analytics). The Tag Manager itself does not access this data, does not create user profiles, does not store cookies, and does not perform any independent analyses. It merely serves to manage and deploy the tools integrated through it. However, Google Tag Manager does collect your IP address.

Purpose of Data Processing

We use Google Tag Manager for the integration and simple management of tracking or analytics tools.

Legal Basis for Data Processing

The use of Google Tag Manager is based on the joint responsibility of FNT Software GmbH and FNT Services GmbH and on Art. 6(1)(f) GDPR (legitimate interest) in quickly and easily integrating and managing various tools on our website. If we have obtained your consent, the legal basis for data processing is Art. 6(1)(a) GDPR (consent) and § 25(1) TDDDG, insofar as it concerns the storage and/or reading of cookies or information on your device.

Recipients of Data Processing

The recipient of the data is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. Data may also be transferred to the parent company in the USA.

Right to Object, Withdraw Consent, and Opt-out Options

You can prevent the storage of cookies by adjusting your browser settings accordingly.

You can permanently disable cookies for ad preferences by preventing them through your browser settings or by downloading and installing the browser plug-in available at:
http://www.google.com/settings/ads/plugin?hl=en

Please note that certain functions of this website may not work or may work only to a limited extent if you have disabled cookies.

As a user of our website, you also have control over the use of cookies and other third-party services.

You can view and change your settings at any time via the following link:
https://www.fntsoftware.com/informationen/cookies

Further Information on Data Processing

For more information on Google’s terms of use and privacy, please visit:
https://marketingplatform.google.com/about/analytics/terms/en/
https://policies.google.com/?hl=en

Data transfers to the USA are based on the EU Commission’s Standard Contractual Clauses. Details can be found here:
https://policies.google.com/privacy/frameworks
https://privacy.google.com/businesses/controllerterms/mccs/

The company is also certified under the EU–US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the USA designed to ensure compliance with European data protection standards when processing data in the USA. Every company certified under the DPF undertakes to comply with these standards. Further information is available from the provider at the following link:
https://www.dataprivacyframework.gov/participant/5780

 

Google reCAPTCHA

The processing and evaluation of data in connection with Google reCAPTCHA are carried out under the joint responsibility of FNT Software GmbH and FNT Services GmbH pursuant to Art. 26 GDPR. Both companies jointly determine the purposes and means of this processing. You may exercise your data protection rights with either company. We will gladly provide you with the essential contents of the agreement pursuant to Art. 26 GDPR upon request.

Scope of Data Processing

We use Google reCAPTCHA on our website, provided by Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland.

This solution checks whether data entries on this website (e.g., in a contact form) are made by a human or by an automated program. For this purpose, Google reCAPTCHA analyzes the behavior of the website visitor using various features. This analysis starts automatically as soon as the website visitor enters the site. Various types of information are evaluated for the analysis (e.g., IP address, time spent on the website, or mouse movements made by the user). The data collected during the analysis is transmitted to Google.

Google reCAPTCHA analyses run entirely in the background. Website visitors are not explicitly informed that such an analysis is taking place.

Purpose of Data Processing

We use Google reCAPTCHA to prevent misuse of our services.

Legal Basis for Data Processing

The use of Google reCAPTCHA is based on the joint responsibility of FNT Software GmbH and FNT Services GmbH and on Art. 6(1)(f) GDPR (legitimate interest) for the prevention of abuse and fraud prevention.

If we have obtained your consent, the legal basis for processing is Art. 6(1)(a) GDPR (consent) and § 25(1) TDDDG, insofar as it involves the storage and/or reading of cookies or information on your device.

Recipients of Data Processing

The recipient of the data is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. Data may also be transferred to the parent company in the USA.

We have concluded a data processing agreement (DPA) with Google pursuant to Art. 28 GDPR. Google processes the data collected through reCAPTCHA exclusively according to our instructions.

Right to Object, Withdraw Consent, and Opt-out Options

You can prevent the storage of cookies by adjusting your browser settings accordingly.

You can also permanently disable cookies for ad preferences by preventing them through your browser settings or by downloading and installing the browser plug-in available at:
http://www.google.com/settings/ads/plugin?hl=en

Please note that certain functions of this website may not work or may work only to a limited extent if you have disabled cookies.

As a user of our website, you also have control over the use of cookies and other third-party services. You can view and change your settings at any time via the following link:
https://www.fntsoftware.com/informationen/cookies

Further Information on Data Processing

For more information on Google’s terms of use and privacy, please visit:
https://policies.google.com/?hl=en
https://policies.google.com/terms?hl=en

Data transfers to the USA are based on the EU Commission’s Standard Contractual Clauses. Details can be found here:
https://policies.google.com/privacy/frameworks
https://privacy.google.com/businesses/controllerterms/mccs/

The company is also certified under the EU–US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the USA designed to ensure compliance with European data protection standards when processing data in the USA. Every company certified under the DPF undertakes to comply with these standards. Further information is available from the provider at the following link:
https://www.dataprivacyframework.gov/participant/5780

 

YouTube Videos

The embedding and processing of YouTube videos on our website are carried out under the joint responsibility of FNT Software GmbH and FNT Services GmbH pursuant to Art. 26 GDPR. Both companies jointly determine the purposes and means of this data processing. You may exercise your data protection rights regarding the use of YouTube videos with either company. We will gladly provide you with the essential contents of the agreement pursuant to Art. 26 GDPR upon request.

Scope of Data Processing

This website uses the YouTube embedding function to display and play videos from “YouTube”, a service belonging to “Google” (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA).

The extended data protection mode is used, which, according to the provider, only initiates the storage of user information when the video(s) is/are played. Nevertheless, it cannot be excluded that data will be shared with YouTube partners. YouTube establishes a connection to the Google DoubleClick network regardless of whether you watch a video.

When you start a YouTube video on our website, a connection to YouTube’s servers is established. The YouTube server is informed about which of our pages you have visited.

If you are logged into your YouTube account, your browsing behavior can be directly linked to your personal profile. You can prevent this by logging out of your YouTube account.

Once a video is started, YouTube may store cookies on your device or use similar recognition technologies (e.g., device fingerprinting). This allows YouTube to collect information about visitors to this website. YouTube may use this information to gather video statistics, improve user-friendliness, and prevent fraud.

Further data processing operations may be triggered when a YouTube video is started, over which we have no control.

Purpose of Data Processing

The use of YouTube is intended to make our online presence appealing and to convey our offer to interested visitors.

Legal Basis for Data Processing

The use of YouTube is of great importance for presenting our products, our offering, and their added value. This constitutes a legitimate interest within the meaning of Art. 6(1)(f) GDPR.

Where we request consent, processing is carried out solely based on Art. 6(1)(a) GDPR and § 25(1) TDDDG, insofar as it involves the storage and/or reading of information on your device. Consent can be withdrawn at any time.

Recipients of Data Processing

The recipients of the data processed in connection with embedding YouTube videos are, under joint responsibility, FNT Software GmbH and FNT Services GmbH. In addition, the recipient is Google Ireland Limited. Data may also be transferred to the parent company Google LLC in the USA.

When embedded YouTube videos are played, YouTube uses cookies to collect information about user behavior. According to YouTube, these are used, among other things, to collect video statistics, improve user-friendliness, and prevent abusive actions.

Right to Object, Withdraw Consent, and Opt-out Options

You can prevent the storage of cookies by adjusting your browser settings accordingly.

As a user of our website, you also have control over the use of cookies and other third-party services. You can view and change your settings at any time via the following link:
https://www.fntsoftware.com/informationen/cookies

Please note that certain functions of this website may not work or may work only to a limited extent if you have disabled cookies.

Further Information on Data Processing

Google is responsible for further data processing. For more information on how Google handles your data, please see Google’s privacy policy:
https://policies.google.com/privacy?hl=en

Data transfers to the USA are based on the EU Commission’s Standard Contractual Clauses. The company is also certified under the EU–US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the USA designed to ensure compliance with European data protection standards when processing data in the USA. Every company certified under the DPF undertakes to comply with these standards. Further information is available from the provider at the following link:
https://www.dataprivacyframework.gov/participant/5780

 

LinkedIn Insight Tag

This website uses the LinkedIn Insight Tag. The provider of this service is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland (short: LinkedIn).

The use and processing of data in connection with the LinkedIn Insight Tag are carried out under the joint responsibility of FNT Software GmbH and FNT Services GmbH pursuant to Art. 26 GDPR. Both companies jointly determine the purposes and means of data processing in connection with this service. You can exercise your data protection rights regarding the LinkedIn Insight Tag with either company. We will gladly provide you with the essential contents of the agreement pursuant to Art. 26 GDPR upon request.

Scope of Data Processing

We receive information about visitors to our website via the LinkedIn Insight Tag. If a website visitor is registered with LinkedIn, we can analyze, among other things, professional data such as career level, company size, country, location, industry, and job title of our website visitors and thus better tailor our page to the respective target groups. Furthermore, with the LinkedIn Insight Tag, we can measure whether visitors to our websites make a purchase or perform another action (conversion measurement). Conversion measurement can also be carried out across devices (e.g., from PC to tablet). LinkedIn Insight Tag also offers a retargeting function that allows us to display targeted advertising outside the website to visitors to our website. According to LinkedIn, there is no identification of the advertising recipient.

Purpose of Data Processing

Our aim is to evaluate our marketing activities and measure their success.

Legal Basis for Data Processing

The legal basis for this data processing is Art. 6(1)(a) GDPR (consent) and § 25(1) TDDDG, insofar as it involves the storage and/or reading of information on your device. Consent can be withdrawn at any time.

Duration of Storage

The direct identifiers of LinkedIn members are deleted by LinkedIn after seven days. The remaining pseudonymized data is deleted within 180 days.

Recipients of Data Processing

LinkedIn itself collects so-called log files (URL, referrer URL, IP address, device and browser characteristics, and access time). IP addresses are shortened or pseudonymized (if they are used to reach LinkedIn members across devices).
Recipients of the personal data processed in connection with the LinkedIn Insight Tag are FNT Software GmbH, FNT Services GmbH, and LinkedIn as an external service provider.

Right to Withdraw and Object

You can object to the analysis of usage behavior and targeted advertising by LinkedIn at the following link:
https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

In addition, LinkedIn members can control the use of their personal data for advertising purposes in the account settings. To avoid linking data collected on our website by LinkedIn to your LinkedIn account, you must log out of your LinkedIn account before visiting our website.

Further Information on Data Processing

The data collected by LinkedIn cannot be assigned by us as the website operator to specific individuals. LinkedIn will store the personal data of website visitors on its servers in the USA and use it as part of its own advertising measures. For details, please see LinkedIn’s privacy policy:
https://www.linkedin.com/legal/privacy-policy#choices-oblig

Data transfers to the USA are based on the EU Commission’s Standard Contractual Clauses. Details can be found here:
https://www.linkedin.com/legal/l/dpa
https://www.linkedin.com/legal/l/eu-sccs

We have concluded a data processing agreement (DPA) with the above provider. This is a legally required contract to ensure that the provider processes the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

The company is also certified under the EU–US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the USA designed to ensure compliance with European data protection standards when processing data in the USA. Every company certified under the DPF undertakes to comply with these standards. Further information is available from the provider at the following link:
https://www.dataprivacyframework.gov/participant/5448

 

Social Media Profiles

Scope and Purpose of Data Processing

We maintain publicly accessible profiles on social networks. The individual social networks we use are listed below. Social networks can generally analyze your user behavior comprehensively when you visit their website or a website with integrated social media content (e.g., like buttons or advertising banners). When you visit our social media presence, numerous data protection-related processing operations are triggered. In detail:

If you are logged into your social media account and visit our social media presence, the operator of the social media platform can assign this visit to your user account. Your personal data may also be collected even if you are not logged in or do not have an account with the respective social media platform. In this case, data collection may occur, for example, via cookies stored on your device or by recording your IP address.

With the help of such data, the operators of the social media platforms can create user profiles in which your preferences and interests are stored. In this way, interest-based advertising can be displayed to you inside and outside the respective social media presence. If you have an account with the respective social network, interest-based advertising can be displayed on all devices on which you are or were logged in.

Please also note that we cannot track all processing activities on the social media platforms. Depending on the provider, further processing may be carried out by the operators of the social media platforms. For details, please refer to the terms of use and privacy policies of the respective social media platforms.

The administration and operation of the social media profiles are carried out under the joint responsibility of FNT Software GmbH and FNT Services GmbH pursuant to Art. 26 GDPR. Both companies jointly determine the purposes and means of processing your personal data in connection with the social media presences, in particular with regard to the administration of the accounts, communication with users, and the analysis of user interactions. You may exercise your data protection rights regarding the social media presences with either company. We will gladly provide you with the essential contents of the agreement pursuant to Art. 26 GDPR upon request.

Please note that when visiting our social media profiles, we may be jointly responsible with the respective platform operator for the data processing triggered by this visit within the meaning of Art. 26 GDPR. However, the data processing by the social networks themselves is beyond our control; we have no influence on the processing procedures and the specific purposes pursued by the platform operators.

Legal Basis for Data Processing

Our social media presences are intended to ensure the broadest possible presence on the Internet. This constitutes a legitimate interest within the meaning of Art. 6(1)(f) GDPR. The analysis processes initiated by the social networks may be based on different legal bases, which must be specified by the operators of the social networks (e.g., consent within the meaning of Art. 6(1)(a) GDPR).

Duration of Storage

The data we collect directly via the social media presence will be deleted from our systems as soon as you request us to do so, withdraw your consent to storage, or the purpose for data storage no longer applies. Stored cookies remain on your device until you delete them. Mandatory statutory provisions – in particular retention periods – remain unaffected. We have no influence on the storage period of your data stored by the operators of the social networks for their own purposes. For details, please refer directly to the operators of the social networks (e.g., in their privacy policies, see below).

Responsibility and Exercise of Rights

If you visit one of our social media profiles, we are jointly responsible with the operator of the social media platform for the data processing triggered during this visit. You can, in principle, exercise your rights (access, rectification, erasure, restriction of processing, data portability, and complaint) both against us and against the operator of the respective social media platform.

Please note that despite the joint responsibility with the social media platform operators, we do not have full influence over the data processing operations of the social media platforms. Our possibilities depend largely on the corporate policy of the respective provider.

Further Information on Data Processing

We have profiles with the following providers:

XING
Provider: New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany.
For details on their handling of your personal data, please see XING’s privacy policy:
https://privacy.xing.com/en/privacy-policy

LinkedIn
Provider: LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland.
LinkedIn uses advertising cookies. If you wish to deactivate LinkedIn advertising cookies, please use the following link:
https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out

Data transfers to the USA are based on the EU Commission’s Standard Contractual Clauses.
Details can be found here:
https://www.linkedin.com/legal/l/dpa
https://www.linkedin.com/legal/l/eu-sccs

For details on their handling of your personal data, please see LinkedIn’s privacy policy:
https://www.linkedin.com/legal/privacy-policy

The company is also certified under the EU–US Data Privacy Framework (DPF). The DPF is an agreement between the European Union and the USA designed to ensure compliance with European data protection standards when processing data in the USA. Every company certified under the DPF undertakes to comply with these standards. Further information is available from the provider at the following link:
https://www.dataprivacyframework.gov/participant/5448

Changes to the Privacy Policy

We reserve the right to change the privacy policy in order to adapt it to changed legal situations or in the event of changes to the service as well as data processing. However, this only applies with regard to statements on data processing. If user consents are required or parts of the privacy policy contain provisions of the contractual relationship with the users, the changes will only be made with the users’ consent.

Please check the content of the privacy policy regularly.

Version of the Privacy Policy: August 11, 2025