The handling of your personal data, or the data of your staff, has our particular attention. Within the scope of providing our services, we issue project-related data privacy declarations to our clients. The subsequent declaration gives you a survey of how we ensure the protection of your personal data.
Raising and utilization of data
We raise person related data when you use a BPM-X product or receive attendances, as well as when you use certain offers or services.
Besides, we automatically collects and stores information in our server logs which your browser submits to us. Specifically, this refers to your IP address, any information which it saved into cookies with your consent, and the page which you have requested.
We use collected data for four basic purposes: In order to adjust our contents, including advertised offers, to your personal interest – provided your consent –; in order to process offer or service orders; in order to permit a more efficient and effective operation of BPM-X GmbH products and services; and in order to inform you – with your consent – of special offers or new products.
Furthermore this website uses Google Analytics. Google Analytics uses "cookies", which are text files placed on your computer, to help the website analyse how users use the site.
The information generated by the cookie about your use of the website (including your IP address) will be transmitted to and stored by Google on servers in the United States. Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage.
By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above.
A cookie is a small file which contains information that is transmitted from a web server to your web browser. When the browser accepts this information, it is checked for its length, expiry date, and the URL path. A cookie contains no executable data, and can consequently neither contain any programs nor viruses. With your consent, BPM-X GmbH puts data on your hard disk in the form of cookies which originate in conjunction with logging in to our electronic helpdesk, and retrieves these data during later usage.
Person related data
Person related data may only be processed and be used on the basis of the affected person’s consent, or based on a legal authorization for the lawful fulfillment of duties. Person related data are individual details concerning personal circumstances (e.g. the name, date of birth, address, religious confession, profession, marital status) or factual conditions (e.g. estate ownership, legal relations to third parties) of a specific or determinable natural person
Data and data carriers (like receipts, filing cards, lists, magnetic tapes, hard and soft disks, directories) always have to be stored safely and locked up, and must be protected from any discernment or usage by unauthorized persons. Data and data carriers may only be made accessible to co-workers who have been authorized for the reception or notice because of their official duties, and have explicitly been obligated to preserve data privacy.
Information from data collections (paper documents, electronic files) or transcripts/copies of data carriers (even if only partially) may only be supplied or created if they are necessary for the fulfillment of duties. Information that serve or might serve a commercial or industrial utilization must in no case be given. Secrecy has to be kept by co-workers concerning all information which the co-worker receives due to their work on and with files, lists, filing cards, and paper documents. This responsibility still persists after the termination of the employment contract. Data resources which are no longer needed or are replaced by new ones – specifically lists, filing cards, and printed documents – must be destroyed in a way which excludes any misuse
Infringements of Data Privacy
Infringements of data privacy (i.e. confidentiality of data) represent a violation of the official duty, in the sense of disciplinary law and relevant regulations from labour legislation. They may cause claims for compensation from the employer or third parties, and be punished by removal from the employment status. Any deficiencies concerning data privacy, protection of data resources and orderly processing must immediately be indicated to the particular superior or data protection registrar.
Questions, Complaints, Criticism, and Suggestions