Privacy Policy

Privacy Policy

Thank you for visiting our website.

Our Privacy Policy explains how we protect your personal data on our website. In particular, you can learn about the types of data we collect when you visit our website and what we use that data for. The security of your personal data is very important to us. We have therefore implemented extensive measures to protect it. These are explained in detail below.

Data controller

The data controller as defined in the General Data Protection Regulation is:

FNT GmbH
Röhlinger Straße 11
73479 Ellwangen
Germany

Phone: +49 7961 903 90
Email: info@fntsoftware.com
Website: https://www.fntsoftware.com/

 

The Data Protection Officer for FNT GmbH is:

Ulrich Vigenschow
FNT GmbH
Röhlinger Straße 11
73479 Ellwangen
Germany

Phone: +49 7961 9039 672
Email: datenschutz@fntsoftware.com

If you have any questions or suggestions regarding data protection, you can contact our Data Protection Officer directly at any time. If doing so by mail, please mark your letter for the attention of the Data Protection Officer.

Definitions

Our Privacy Policy is based on the EU’s General Data Protection Regulation (GDPR) and its terminology. The key terms are defined below.

Personal data

Art. 4(1): As defined in the GDPR, the term “personal data” means any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier, such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.

Processing

Art. 4(2): As defined in the GDPR, the term “processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure, or destruction.

Restriction of processing

Art. 4(3): As defined in the GDPR, the term “restriction of processing” means the marking of stored personal data with the aim of limiting their processing in the future.

Profiling

Art. 4(4): As defined in the GDPR, the term “profiling” means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.

Pseudonymization

Art. 4(5): As defined in the GDPR, the term “pseudonymization” means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.

Controller

Art. 4(7): As defined in the GDPR, the term “controller” means the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.

Processor

Art. 4(8): As defined in the GDPR, the term “processor” means a natural or legal person, public authority, agency, or other body which processes personal data on behalf of the controller.

Recipient

Art. 4(9): As defined in the GDPR, the term “recipient” means a natural or legal person, public authority, agency, or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing.

Third party

Art. 4(10): As defined in the GDPR, the term “third party” means a natural or legal person, public authority, agency, or body other than the data subject, controller, processor, and persons who, under the direct authority of the controller or processor, are authorized to process personal data.

Consent

Art. 4(11): As defined in the GDPR, the term “consent” of the data subject means any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which they, by a statement or by a clear affirmative action, signify agreement to the processing of personal data relating to them.

Your rights in relation to your data

Your rights as a data subject are defined in Art. 12–23 of the GDPR. These include the right to:

  • Information on the origin of the data, the purposes of the processing, and the recipients with whom the data has been shared.
  • Rectification of inaccurate personal data.
  • Erasure or restriction of processing. Where processing has been restricted, your personal data shall, with the exception of storage, only be processed with your consent or for the establishment, exercise, or defense of legal claims.

Operation of our website

The FNT GmbH website is produced by our marketing department in collaboration with an external creative agency. It is also hosted by an external provider.

To protect your personal data, all providers involved in the production and hosting of our website are bound by a processor contract as defined in Art. 28 of the GDPR.

Collecting general data and information

Each time you access our website, we collect a series of general data and information and store it in server log files.

The following data and information are collected:

  • Browser type and version
  • Operating system on your device
  • Date and time of your visit
  • IP address of your device
  • Your ISP
  • Referrer URL (address of website containing link you used to access our page)
  • Subsites accessed while visiting our website

The general data and information we collect is not used to identify you in any way. It is required for the following purposes:

  • Correct delivery/transmission of website content
  • Optimization of website content
  • Optimization of promotional campaigns for our website
  • Monitoring the availability of our website and the functions and services it offers
  • Providing information to investigators in the event of misuse of or attack on our website

This data is collected anonymously and used for statistical purposes only. The ability to detect attacks and manipulation attempts enables us to optimize our security and thus improve our data protection overall. This data is stored separately from any personal data you provide.

Cookies

Our website uses cookies to improve your experience and accelerate your requests. Cookies are small text files that your browser stores on your device and which contain your preferences, settings, and information on how you use our website. Cookies do not harm your device and do not contain malicious software, e.g., viruses.

There are two types of cookies: session cookies and persistent cookies. Session cookies are only stored on your device during a browser session and are mainly used to ensure the pages are displayed correctly and to manage special functions. Persistent cookies enable us to recognize your device when you revisit the website. This allows us to adapt our website content to your individual needs and to record your cookie consent preference when you first visit the website.

A cookie contains the name of the domain from which the cookie data is sent, the age of the cookie, and a unique alphanumeric identifier. This “cookie ID” is not assigned to you personally but rather to the browser you are using. The cookie ID is not associated with your name, your IP address, or any other data that might identify you.

We do not use third-party cookies.

All essential cookies (required to ensure the website is displayed correctly on your device) are stored on your device in accordance with Art. 6(1)(f), GDPR, i.e., we have a legitimate interest in using these cookies to ensure our website appears as it should.

Other types of cookie will only be stored with your consent in accordance with Art 6(1)(a), GDPR. You can withdraw this consent at any time.

To see a list of cookies used on this website and their storage durations on your device, please click here: https://www.fntsoftware.com/informationen/cookies

Depending on your browser type and version, you can specify in varying degrees of detail whether you want to accept cookies and, if so, from which websites. For more information, please use the help function on your browser.

Please note: If you decide to block essential cookies, our website may not display properly on your device.

Matomo web analysis service

Scope of processing of personal data

Our website uses Matomo (formerly Piwik) open source software for statistical analysis of visitor access. Matomo uses cookies, which are stored on your computer and which enable your use of the website to be analyzed anonymously. It is not possible to identify you individually, because your IP address is anonymized immediately after processing and prior to being stored.

Legal basis for processing personal data

The legal basis for processing personal data gathered by Matomo cookies is our legitimate interest as per Art. 6(1)(f) of the GDPR in optimizing our website and improving the user experience.

Purpose of data processing

Matomo is used for the purpose of improving the quality of our website and its content. It enables us to find out how the website is used and to continually optimize our services.

Duration of storage, option to object and to delete data

The cookies used by Matomo are stored on the user’s computer and sent to our site by that computer. Consequently, you as a user have full control over the use of cookies. Cookies that have already been stored can be deleted at any time. This process can also be automated. You can object at any time to Matomo storing and analyzing this data:

https://piwik.fntsoftware.com/index.php?module=CoreAdminHome&action=optOut&language=de&backgroundColor=&fontColor=&fontSize=&fontFamily=

In this case, an opt-out cookie is stored permanently in your browser, with the result that Matomo will not collect any data for storage and analysis. Please note that if you intentionally or unintentionally delete this cookie, the objection to data storage and analysis will also be canceled. The objection can be re-activated using the above link.

Alternatively, most modern browsers have a “Do not track” option that tells websites not to track your user activity. Matomo respects this option.

There are several ways you can contact us through our website. Firstly, you can use the contact form provided for the respective inquiry type.

Contact forms

When you use our contact forms to inquire about specific topics, you will need to provide some personal data to help us process your request.

Some fields in these forms are mandatory, either so that we can process your request or for security reasons (e.g., ReCaptcha). The mandatory fields are marked with an asterisk (*). All other fields are optional. This optional information may enable us to respond to your request in more detail, communicate with you more personally, or, if necessary, prepare for a presentation, meeting, or telephone call.

In addition, each form has a mandatory checkbox where you can consent to your data being processed for the respective purpose. You can withdraw this consent at any time.

After submitting the form, you will receive an automated email to verify your email address. By clicking on the link in this email, you give us your consent to contact you via that address.

The sole purpose of the confirmation email is to verify your email address. This prevents unauthorized people from entering your email address and causing you to receive unwanted emails from us.

After you have confirmed your email address and consented to being contacted by us, we will process your request as quickly as possible. If you did not enter your email address in one of our online forms, please ignore or delete the confirmation email. Unconfirmed requests will be automatically deleted after 30 days at the latest.

The data you submit to us via one of our forms will only be used for the purpose that is stated on the form, for example:

  • General request (standard contact form)
  • Arrange a live demo
  • Request tickets (for trade shows and events at which FNT is an exhibitor)
  • Request a callback
  • Download information
  • Register for training or paid event
  • Register for a webinar
  • Participate in a competition

 

If you have also selected the checkbox for our newsletter, your subscription will be activated when you click the link in the confirmation email. For more information, see the “Newsletter” section below.

Live chat

The live chat system on our website lets you talk directly with a representative. You do not have to provide any personal data when using this service. The only data recorded will be the chat itself. This will be stored on our representative’s device for a maximum of 30 days and then automatically deleted.

Webinars and live demos

Webinars with BrightTALK

If you register for one of our webinars on the BrightTALK platform, you will have to register as a user with BrightTALK (BrightTALK Limited, 16 St Martin’s Le Grand, London EC1A 4EN). When you register, BrightTALK will collect and process the personal data you provide. For information on which data BrightTALK requires and for what purpose, please refer to BrightTALK’s privacy policy. https://business.brighttalk.com/company/privacy-policy/

FNT will not collect any personal data when you register. After the webinar, BrightTALK will send us aggregated statistical data. If you ask a question during the webinar, BrightTALK will provide additional information, such as first name, last name, and email address, so that we can respond further to your inquiry after the webinar. FNT GmbH is the controller of all the information we receive and store in this context.

Webinars with GoToWebinar

We also provide webinars using the GoToWebinar platform. If you wish to participate in one, we will send you an email with a link to download and launch the required app. Other than the data you submit via the form when registering for the webinar (see above), no further data is required. We do, however, collect statistical data about each webinar. In addition, any questions raised during the webinar are stored so they can be answered later.

Live demos

As with the webinars, you can request a live demo via a contact form (see above). A representative will contact you to discuss your preferred content, topics, and presentation platform. The platform options are Skype for Business/Microsoft Teams and GoToWebinar (see above).

Other than the data you submit via the form when registering for the live demo (see above), no further data is required.

Business to Business Communications and Marketing

On occasion we contact businesses to inform about new products or services which we think are relevant to their operations.

Information we collect

We collect publicly available contact information such as name, title, role, addresses, telephone numbers and email addresses for representatives and employees within organisations that might be able to use our products and services.

Sources

We obtain this information from our current customers or from publicly-available sources, such as on an organisation’s website, internet searches or on social media platforms such as LinkedIn, Facebook and Twitter.

Purpose of the data collection and processing

We use this information for the purpose of contacting relevant representatives (such as IT representatives) of organisations to provide information about our products and services that these organisations may be able to utilize.

We do not share this information with third-parties.

Our legal basis

We process this contact information on the basis of legitimate interest under Article 6(1)(f). Our legitimate interests are to be able to provide potentially useful information about our products and services to organisations that might not otherwise receive this information or know that our products and services could greatly benefit them.

Opt-out and exercising your rights

In our experience, many of the organisations we contact find the information we provide to be useful to them, and worth considering. However, should you or your employer wish to stop receiving marketing messages from us, you may object or opt out at any time by contacting our Data Protection Officer using the contact information at the top of this privacy notice or replying to any marketing email using the subject line “opt-out”, and we will remove you from further marketing communications. Please note that if your employer is a current customer then we will stop sending you marketing communications but may continue to send you other types of messages as required for the provision of our products and services to your employer.

You may also exercise any of the data subject rights discussed in the section “Your rights in relation to your data” above by contacting our Data Protection Officer using the contact information at the top of this privacy notice.

Your rights in relation to your data

Your rights as a data subject are defined in Art. 12–23 of the GDPR. These include the right to:

  • Information on the origin of the data, the purposes of the processing, and the recipients with whom the data has been shared.
  • Access your personal data that we process. This right is limited to the extent that it adversely affects the right and freedom of others.
  • Rectification of inaccurate personal data.
  • Erasure or restriction of processing. Where processing has been restricted, your personal data shall, with the exception of storage, only be processed with your consent or for the establishment, exercise, or defense of legal claims.
  • Object to processing of personal data for direct marketing purposes, or where our processing is based on legitimate interest.

Newsletter

Subscribing to our newsletter

You can subscribe to our newsletter via a contact form on our website. After entering a valid email address, you will also be asked for your title, first name, and last name. This data will be used to send you the newsletter in a personalized email.

After you initially sign up for our newsletter, you will receive an email from us asking you to confirm your subscription (double opt-in process). Your subscription will only become active when you click on the confirmation link in that email. If you do not click the link, your personal information will be automatically deleted after 30 days. If you confirm your subscription, we will store your email address, IP address, and the date and time of confirmation as well as details of the communication received.

You can cancel your subscription at any time by clicking the link at the end of each email.

Newsletter delivery

While the newsletter content is created in-house, we use an external provider to distribute the finished item to subscribers. To facilitate this, we provide the external provider with the personal data required to perform this service.

To ensure your personal data is processed in compliance with data protection law, we have contracted the external provider as a processor in accordance with Art. 28 of the GDPR.

Newsletter tracking

Subject to your prior consent, we will use a special image object known as a web beacon or tracking pixel to track your use of the newsletter. When you receive the newsletter, a range of data will be forwarded to the external server, e.g., date of retrieval, IP address, and details of your email client. The name of the image file is personalized for each email recipient by adding a unique ID. The email sender knows which email address belongs to which ID and can therefore use the image to determine which newsletter recipient has just opened the email.

Online jobs portal

You can also use our website to apply for jobs at FNT. Our online jobs portal is managed by an external provider, who is responsible for publishing vacancies, receiving applications, and forwarding those applications to our HR department.

If you use this portal to apply for a job, we will process the personal data you provide as part of your application. We are committed to protecting your personal data and will always handle it in the strictest confidence as required by data protection law. We will only use your personal data for the purpose of processing your application.

Purpose of data collection

When you use our online portal to apply for a job, you will have to enter a range of personal data (e.g., title, first and last name, date of birth, telephone number, and email address). These fields are marked as mandatory in the online application form. To help us process your application more effectively and cater to your specific preferences, you have the option of entering additional information voluntarily, e.g., resume and other documents, such as references and qualifications.

By submitting this information, you give your consent for FNT to process and use it in accordance with data protection law and this Privacy Policy. The data you enter in the online application form plus any attached files will only be transmitted to FNT after you have selected the checkbox indicating that you consent to the collection, processing, and use of your data in accordance with this Privacy Policy.

Data storage, use, and deletion

The data and files you submit will only be used for the purpose of processing your online application. If your application is successful, the data and files will be retained for use by FNT during your employment. If your application is not successful, we will store your data and files in our applicant database for a period of four months so we can answer any subsequent questions regarding your application. After four months, the data and files will be permanently deleted. You can withdraw your application at any time. If you do withdraw your application, your data and files in the applicant database will be immediately deleted—subject to the restrictions outlined below. After you have submitted an online application, you can request to have any of your data or files deleted at any time. However, FNT reserves the right to store some of your data for a maximum period of four months as required by law, in particular the obligation to provide evidence under the German General Equal Treatment Act (AGG).

Talent Pool

You also have the option of lodging your application data in our Talent Pool database. If we are unable to offer you a job at present, we may be able to do so in the future. If you wish us to add your data to our Talent Pool database, we will retain it for a period of one year.

Data security

FNT uses the latest technical and organizational security measures to ensure your personal data is protected against unauthorized intervention, such as loss, destruction, deliberate manipulation, or access by unauthorized third parties. In particular, we always use SSL encryption when transferring data and files.

Data transfer and sharing

Our online job application tool is provided by perbit Software GmbH. This provider was selected and contracted as a processor in compliance with Section 62 of the German Federal Data Protection Act (BDSG) (new) and Art. 28 of the GDPR. The technical and organizational security measures used to protect your data were verified in advance and are regularly audited.

FNT will not share the data and files you submit in your online application with any third party without your express prior consent or unless we are required to do so by law.

Right of access and revocation

You can revoke your consent to the processing and use of the personal data and files submitted in your online application at any time. To do so, please send an email to our HR department (career@fntsoftware.com).

Storage duration, deletion, and blocking of personal data

The storage duration for your personal data is determined by the statutory retention period applicable in each case. When this period has elapsed, your data will be deleted unless it is still required for the performance of current contracts or for the preparation of new contracts.

If you request information on products/services, white papers, infographics, or studies, we will store your personal data for no longer than 12 months, unless otherwise agreed or contractually obligated.

Legal basis for processing

FNT does not process personal data without the requisite legal basis. The lawful processing of personal data is set out in Art. 6 of the GDPR.

Specifically, we process personal data on the basis of:

  • Art. 6(1)(a) – In most cases, we process your personal data with your consent, particularly when you initiate contact with us.
  • Art. 6(1)(b) – When processing your data in performance of a contract, e.g., when you place an order, book a training course, or request other chargeable services.
  • Art. 6(1)(c) – When processing your personal data in compliance with a legal obligation, e.g., tax law.
  • Art. 6(1)(d) – When processing your data to protect your vital interests in the event of a medical emergency. All required data will be passed to the emergency services and all other persons and institutions involved in your medical care.
  • Art. 6(1)(f) – Even where none of the above apply, processing may still be necessary in pursuit of our own legitimate interests. For more information, please refer to Art. 6(1)(f) and the associated Recital 47 of the GDPR. If this is the legal basis for processing your personal data, our legitimate interest is the performance and maintenance of our business operations for the benefit of the employees and shareholders of FNT GmbH.

Obligation to conclude contracts

Legal or contractual requirements for provision of personal data; necessity of contract; obligation of data subject to provide personal data; possible consequences of not providing personal data

Some of the services and offers you can find on our website require you to enter into a contract with us. These are usually chargeable services and offers, such as training or tickets for certain events. In order to enter into a contract, we will require some personal data from you. As part of this contract, the data we collect will be stored for the statutory retention period (up to ten years).

If you do not want to provide this personal data, we will regrettably not be able to enter into a contract.

Before you enter into a contract, you will be contacted in person by an FNT representative, who will explain which personal data is required for this specific contract as well as the applicable retention periods—if necessary in consultation with the Data Protection Officer.

Automated decision-making and profiling

As a responsible company, FNT does not use automated decision-making or profiling.

Data protection authority

The competent data protection authority is as follows:

The State Commissioner for Data Protection and Freedom of Information in Baden-Württemberg
Postfach 10 29 32, 70025 Stuttgart
Königstraße 10a, 70173 Stuttgart
Tel.: +49 711 6155 410
Fax: +49 711 6155 4115

Email: poststelle@lfd.bwl.de
Website: http://www.baden-wuerttemberg.datenschutz.de