Data Protection

Privacy Policy

We appreciate your visit to our websites and your interest in our company. As the operator of these websites, we take the protection of your personal data very seriously and comply with the rules of the applicable data protection laws as well as this Privacy Policy. We handle your personal data in accordance with the legal data protection regulations and this Privacy Policy. All our employees are obliged to maintain data confidentiality and comply with data protection regulations, and have been appropriately instructed in this regard.

For security reasons and to protect the transmission of confidential content, our websites use SSL encryption. This encryption can be identified by the “https://” and the padlock symbol in the address bar of the respective web browser.

Responsible according to the General Data Protection Regulation (GDPR) and other national data protection laws of the member states, as well as other data protection regulations, is:

Digital Spine GmbH
Zionskirchstraße 73a
10119 Berlin
Phone: +49 (0) 30 629 307 49
Email: info (at) digitalspine.io

Name and address of the data protection officer

The data protection officer of Digital Spine GmbH (hereinafter referred to as the “Controller”) is:

DataCo GmbH
Nymphenburger Str. 86,
80636 München

General information on data processing

Extent of processing personal data

We generally collect and use personal data of users of our websites only to the extent necessary for providing a functional website, as well as our content and services. The collection and use of personal data of users of our websites usually takes place only with the user’s consent. An exception applies in cases where obtaining prior consent is not possible for factual reasons and the processing of data is permitted by legal regulations.

Legal basis for processing personal data

If we obtain the consent of the data subject for processing personal data, Article 6(1)(a) of the GDPR serves as the legal basis for the processing of personal data. For the processing of personal data necessary for the performance of a contract to which the data subject is a party, Article 6(1)(b) of the GDPR serves as the legal basis. This also applies to processing operations necessary for the performance of pre-contractual measures. If the processing of personal data is necessary for compliance with a legal obligation to which we are subject, Article 6(1)(c) of the GDPR serves as the legal basis. In the event that vital interests of the data subject or another natural person require the processing of personal data, Article 6(1)(d) of the GDPR serves as the legal basis. If the processing is necessary for the purposes of the legitimate interests pursued by our company or by a third party, and if the interests or fundamental rights and freedoms of the data subject do not override the first-mentioned interests, Article 6(1)(f) of the GDPR serves as the legal basis for the processing.

Data deletion and storage

The personal data of the data subject will be deleted or blocked as soon as the purpose of storage ceases to apply. Storage may also take place if provided for by the European or national legislator in Union regulations, laws, or other provisions to which the controller is subject. Data will also be blocked or deleted when a storage period prescribed by the aforementioned standards expires, unless there is a necessity for further storage of the data for the conclusion or fulfillment of a contract

Provision of the website and creation of log files

Description and scope of data processing

When accessing our websites, our system automatically collects data and information from the computer system of the accessing device. The following data and information are collected:

Information about the browser type and version
The user’s operating system
The user’s internet service provider
The user’s IP address
Date and time of access
Website from which the user’s system accessed our website
Website accessed by the user’s system through our website
The data is also stored in our system’s log files. The storage of this data together with other personal data of the user does not take place.

Legal basis for data processing

The legal basis for the temporary storage of data and log files is Article 6(1)(f) of the GDPR (General Data Protection Regulation).

Purpose of data processing

The temporary storage of the IP address by the system is necessary to enable the delivery of the website to the user’s computer. For this purpose, the user’s IP address must be stored for the duration of the session. The storage in log files is done to ensure the functionality of our websites. Additionally, the data serves us for optimizing our websites and ensuring the security of our information technology systems. There is no data analysis for marketing purposes in this context. These purposes constitute our legitimate interest in data processing under Art. 6(1)(f) of the GDPR.

Duration of storage

The data will be deleted as soon as it is no longer necessary for the purpose of its collection. In the case of data collected to provide our websites, this occurs when the respective session is ended. In the case of data stored in log files, this happens no later than seven days after the data was collected. Further storage is possible. In this case, the IP addresses of the users will be deleted or anonymized, making it no longer possible to associate them with the accessing client.

Right to object and removal options

The collection of data to provide our websites and the storage of data in log files are necessary for the operation of our websites. Therefore, there is no option for users to object to this.

Use of cookies

Description and scope of data processing

Our websites use cookies, which are small text files that are stored on the user’s web browser or computer system by the web browser. When a user accesses a website, a cookie may be stored on the user’s computer system. This cookie contains a unique character string that allows the web browser to be recognized when the website is accessed again.

We use cookies on our websites that enable the analysis of user browsing behavior. The following data may be stored and transmitted:

Page information (URL & title)
Browser information (including screen size & browser)
User information (location & language)
When accessing our websites, users are informed about the use of cookies for analysis purposes through a cookie banner, and their consent for the processing of personal data used in this context is obtained. This privacy policy is also explicitly mentioned.

Legal basis for data processing

The legal basis for processing personal data using technically necessary cookies is Article 6(1)(f) of the GDPR. If user consent is given, the legal basis for processing personal data using cookies for analysis purposes is Article 6(1)(a) of the GDPR.

Purpose of data processing

The purpose of using technically necessary cookies is to simplify the use of our websites for the user. Some functions of our websites cannot be provided without the use of cookies. It is necessary for the web browser to be recognized even after switching between pages. We require cookies for the following applications:

Error analysis
We do not use the user data collected through technically necessary cookies to create user profiles.

The use of analysis cookies is for the purpose of continuously improving the quality of our websites and their content. Through the analysis cookies, we can understand how our websites are used and continually optimize our offerings.

The aforementioned purposes also constitute our legitimate interest in processing personal data under Article 6(1)(f) of the GDPR.

Duration of storage, right to object, and removal options

Cookies are stored on the user’s computer system and transmitted to our websites by the user. Therefore, the user has full control over the use of cookies. By changing the settings in the user’s web browser, the transmission of cookies can be disabled or restricted. Already stored cookies can be deleted at any time, and this can also be done automatically. If cookies are disabled for our websites, some functions of our websites may not be fully usable.

Contact form and email contact

Description and scope of data processing

Our websites provide a contact form that users can use for electronic contact with us. If a user takes advantage of this option, the data entered in the input mask will be transmitted to us and stored.

These data are marked as mandatory fields:

  • Upload old contract
  • Upload last annual invoice
  • First name
  • Last name
  • Email address

Further information from you is voluntary. They facilitate the processing of your request.

For the processing of the data, your consent is obtained, and reference is made to this privacy policy.

In addition, the following data are stored at the time of sending the message:

User’s IP address
Date and time of email receipt

For the processing of the data, the user’s consent is obtained during the sending process, and reference is made to this privacy policy. Alternatively, contact with us is possible via the provided email address. In this case, the personal data transmitted with the specific email to us will be stored. In this context, the data will not be disclosed to third parties. The data will be used exclusively for processing the conversation with the user.

Legal basis for data processing

The legal basis for processing the data, if the user has given consent, is Art. 6(1)(a) of the General Data Protection Regulation (GDPR). The legal basis for processing data transmitted in the course of sending an email is Art. 6(1)(f) GDPR. If the electronic contact aims to conclude a contract, an additional legal basis for processing is Art. 6(1)(b) GDPR.

Purpose of data processing

The processing of personal data from the input form is solely for the purpose of processing the user’s contact request. In the case of contact initiated by the user via email, there is also a legitimate interest in processing the data. The other personal data processed during the sending process serve to prevent misuse of the contact form and ensure the security of our information technology systems.

Storage duration

The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. For the personal data from the input form of the contact form and those sent via email, this is the case when the respective conversation with the user has ended. The conversation is deemed to be ended when it can be inferred from the circumstances that the matter in question has been conclusively clarified. The personal data additionally collected during the sending process will be deleted no later than seven days after.

Right to object and erasure

The user has the right to withdraw their consent for the processing of personal data at any time. If the user contacts us by email, they can object to the storage of their personal data at any time. In such a case, the conversation cannot be continued. The revocation of consent and objection to storage can be declared at any time using the contact details provided in the imprint of our websites. All personal data stored in the course of the contact will be deleted in this case.

Blog

Description and scope of data processing

On our websites, we publish a web blog with the option for users to comment on and subscribe to it. To subscribe to the blog, we collect the user’s email address. To leave a comment, we collect the user’s name and email address. Additionally, the following data is collected:

User’s IP address Time of the comment

For the processing of data, the user’s consent is obtained within the subscription process, and reference is made to this privacy policy. The same applies to commenting.

Legal basis for data processing

The legal basis for processing data when a user subscribes to the blog is Art. 6(1)(a) of the General Data Protection Regulation (GDPR), provided the user has given consent. The same applies to commenting.

Purpose of data processing

The collection of the user’s email address is used to send the user new blog posts and draw their attention to them. The collection of other personal data during the commenting process is aimed at preventing abuse of the services or the email address used.

Storage duration

The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected. The user’s email address will be stored for as long as the blog subscription is active. The user’s comments will be stored and remain on our websites until the comment is deleted or it needs to be removed for legal reasons.

Right to object and erasure

The user can unsubscribe from the blog at any time by notifying us using the contact details provided in the imprint or by using an unsubscribe link in the respective blog-related emails. In this case, all personal data stored in the course of the contact will be deleted.

Social Media

Sharing content via plugins (Facebook, Google+1, Twitter & Co.)

The content on our pages can be shared in a privacy-compliant manner on social networks such as Facebook, Twitter, or Google+. The original share buttons automatically transmit information about our website visitors to the social networks. It is not necessary for users to actively click on any of the buttons; this happens in the background when the page is loaded. Users, therefore, have no choice as to whether they want to send information to Facebook and other networks or not. This is explicitly against German data protection laws and can lead to legal warnings. The computer magazine c’t has developed “Shariff” (/ˈʃɛɹɪf/), a plugin that allows for privacy-compliant share buttons. This plugin implements the Shariff concept in an easy-to-use form for WordPress. It currently supports 22 services, including Facebook, Twitter, GooglePlus, Xing, LinkedIn, and many others.

More information about the Shariff project can be found on the original GitHub project or on the information page of the c’t magazine.

Analytics Tools and Advertising

Google Analytics

This website uses features of the web analytics service Google Analytics. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Google Analytics uses “cookies.” These are text files that are stored on your computer and enable an analysis of your website usage. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.

The storage of Google Analytics cookies is based on Art. 6(1)(f) of the General Data Protection Regulation (GDPR). The website operator has a legitimate interest in analyzing user behavior to optimize both its website offering and its advertising.

IP Anonymization

We have activated the IP anonymization feature on this website. This means that your IP address will be truncated by Google within member states of the European Union or other parties to the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases will the full IP address be sent to a Google server in the USA and truncated there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, compile reports on website activity, and provide other services related to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

Browser Plugin

You can prevent the storage of cookies by adjusting your browser software settings; however, please note that if you do this, you may not be able to use all the features of this website to their full extent. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) by Google, as well as the processing of this data by Google, by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en.

For more information on how user data is handled in Google Analytics, please refer to Google’s privacy policy: https://support.google.com/analytics/answer/6004245?hl=en.

Data Processing Agreement

We have entered into a data processing agreement with Google and fully implement the strict requirements of the German data protection authorities when using Google Analytics.

Google AdWords and Google Conversion Tracking

This website uses Google AdWords, an online advertising program provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States (“Google”).

As part of Google AdWords, we use a feature called conversion tracking. When you click on an ad served by Google, a conversion tracking cookie is set. Cookies are small text files that the internet browser stores on the user’s computer. These cookies expire after 30 days and are not used for personal identification of the users. If the user visits certain pages of this website and the cookie has not yet expired, Google and we can recognize that the user clicked on the ad and was redirected to this page.

Each Google AdWords customer receives a different cookie. Cookies cannot be tracked across AdWords advertisers’ websites. The information obtained through the conversion cookie is used to create conversion statistics for AdWords customers who have opted for conversion tracking. Customers are provided with the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they do not receive any information that personally identifies users. If you do not want to participate in tracking, you can opt-out of this by disabling the Google conversion tracking cookie in your internet browser’s user settings. You will then not be included in the conversion tracking statistics.

The storage of “conversion cookies” is based on Art. 6(1)(f) of the General Data Protection Regulation (GDPR). The website operator has a legitimate interest in analyzing user behavior to optimize both its website offering and its advertising.

For more information on Google AdWords and Google Conversion Tracking, please refer to Google’s privacy policy: https://www.google.com/policies/privacy/.

You can configure your browser to notify you about the use of cookies and allow you to accept cookies on a case-by-case basis, block cookies for specific cases or in general, and automatically delete cookies when you close your browser. Disabling cookies may limit the functionality of this website.

Google Web Fonts

This site uses web fonts provided by Google for consistent font presentation. The Google Fonts are installed locally and do not connect to Google’s servers.

Our newsletter

Sign up for product updates and occasional news.