Data protection is especially important to us - Convoo GmbH (hereinafter referred to as “ Convoo/us/we”) of Am Unisys-Park 1, 65843 Sulzbach/Ts., Niemcy and represented by managing director, Henning Munte. As the authority responsible for the scope, type and purpose of any form of personal data collection, storage, communication and/or use, in accordance with the EU General Data Protection Regulation (GDPR), we would like to ensure that you will be provided with all necessary information. You can reach us at any time, either by post to the above address, or by email to: info@pl.convoo.com.
Our data protection officers are available to you at the following address: info@pl.convoo.com.
With this declaration, we wish to provide you with information about the data protection relevant aspects of the services we offer and in particular:
Whenever you visit our website and/or contact us and/or fill out the data fields allowing you to use our website, personal data may be collected by us, as follows:
In addition to the above data, information relating to local time, time zones and usage data may also be collected and stored.
Visits to our website may also result in the collection and use of statistical information. Statistical information includes data relating to the use of a special Internet browser or versions thereof.
The personal data made available to us when you complete our contact form is only used to conduct the particular services requested by you and to perform the technical administration linked thereto; in this context, we wish to point out, that the personal information provided by you in the advertising email dispatch and/or when completing the contact form is used to record and store you as a contact in our contact programme (Art. 6 (1)(b) and (f) GDPR). No further direct collection of your personal data is carried out by us.
Personal data made available by you may also be transmitted by one of our partners on whose website you have previously registered and on which you gave your express consent to the receipt of advertising emails (Art. 6(1)(f) GDPR).
Within the scope of advertising email dispatch, we may then choose from time to time to send you marketing material by electronic post to the email address given by you. Such material may contain the products and services of third parties (Art. 6 (1)(f) GDPR).
Processing of your personal data may also take place, as a result of the possible assertion of your rights (Art. 6 (1)(c) and (f) GDPR), as set out below in Clause 5 of this data protection declaration.
Furthermore, your personal data may be disclosed in such cases, in which there is a legal obligation for us to do so (Art. 6 (1)(c) GDPR), or where it is necessary for the enforcement of rights, claims or legal defence, where and in so far as these are based on the legitimate interests of the organiser or other third parties (Art. 6(1)(c) GDPR). The same applies in the case of the purchase or sale of goodwill and/or financial assets, in the case of the (even partial) takeover of a business by a third party, on the commencement of insolvency proceedings or where commencement is rejected due to lack of assets (Art. 6(1)(c) GDPR).
Email addresses may not be transmitted to third parties for marketing purposes. You are, of course, entitled to object to the dispatch of advertising emails at any time. You can read about your right of revocation in Clause 5 of this data protection declaration.
a) Your personal data is stored by us within the European Economic Area. No data transfer or storage takes place in any third country.
b) Provided no blocking or deletion takes place, in accordance with the rights set out in Clause 5 and exercised by you, your data is permanently stored for the purposes already outlined above.
Following any withdrawal of consent to the processing of your data and/or declaration of objection thereto, your data will be moved to our so-called “blocking list”. This means that your personal data is no longer used for marketing purposes. We then store your data only for legal purposes (e.g. burden of proof obligations, the assertion or defence of claims, etc.), deleting it on expiry of a four-year period, provided there are no compelling reasons to do otherwise or where, for other reasons - possibly in the way of renewed consent - an appropriate level of data processing is permitted.
Moreover, we proceed in the same way, if we have not used your personal data for a period of 24 months, that is, neither for our own marketing purposes nor those of our customers.
We take the relevant precautions - administrative, organisational, technical and physical - to protect your personal data against loss, theft, misuse, unauthorised access, unauthorised transmission, unauthorised amendment and destruction. This means, that your data is protected by entry controls (securely located servers, access to which is only granted under defined security procedures), admission controls (128-bit encoded data transmission, individual password, menu and employee authorisation, current virus software), access controls (individual employee access authorisation via personal accounts, identification and authentication requirements), disclosure controls (constant supervision and guidance to authorised personnel, no local storage of data, recording of all data exports and transmission), input controls (account-related auditing, time-stamp and host logging), task auditing (constant supervision by managers and data protection officers, transparent contract structure relating to the provisions of § 62 of the German Federal Data Protection Act (Bundesdatenschutzgesetz, BDSG) and Art. 28 GDPR in coordination with management and data protection officers) and availability checks (general security procedures of the host [UPS, halon gas systems, etc.], back-up streaming to other general security procedures [e.g. UPS, halon gas systems, etc.], back-up streaming to other locations [with all security measures, see access controls] nightly mirroring onto two hard discs, virus protection program).
Despite these precautions and due to the insecure nature of the Internet, we are unable to guarantee the security of your data transmission to our website. Any transmission of your data to our website is, therefore, undertaken at your own risk.
You have the right, at any time and in accordance with the provisions of Art. 15 GDPR, to obtain information about the data stored about you as an individual, including the sources and recipients of your data, as well as the purposes of its subsequent processing.0}
You are also entitled, at any time, to demand the rectification of any incorrect personal data we hold with respect to you (Art. 16 GDPR). Processing can be restricted by satisfying one of the prerequisites listed in Art. 18 (1) GDPR, such as, for example, contesting the accuracy of your personal data.
Moreover, you are entitled to withdraw any declaration(s) of consent previously made and relating to the processing of your personal data with future effect (Art. 7 GDPR). However, such withdrawal of consent does not affect the legitimacy of any processing operations previously executed.
Furthermore, you are entitled to demand the provision by us of all personal data communicated to us in a format, which allows its transmission to another controller (Article 20, GDPR).
Under the provisions of Art. 21 (1), (2) and (3) GDPR, you may object the processing of personal data for reasons arising from your particular situation. |
Furthermore, in accordance with Art. 17 GDPR, you have the right to obtain the erasure of your data and may also exercise the right for it to be forgotten. Provided the legal requirements are satisfied, we will in any case act in the absence of any such demand from you and terminate your personal data.
Should you wish to assert any of the rights listed above in this section, please get in touch with us at Convoo GmbH, c/o Toleadoo GmbH, Am Unisys-Park 1,65843 Sulzbach (Ts.), 64283 Germany, or via the following email address: info@pl.convoo.com
Lastly, you are also entitled to lodge a complaint with the competent regulatory authority for Convoo GmbH - the Data Protection Officers of the State of Hesse, (Gustav-Stresemann-Ring 1, 65189 Wiesbaden, Post-box 31 63, 65021 Wiesbaden, Germany) - or with any other regulatory authority.
Information is automatically collected and stored by the Internet site provider in so-called server log files. These files are automatically communicated to us by the browser. The files contain information on browser type and version, the operating system used, the referrer URL, the hostname of the accessing computer and the time of the server request. This data cannot be matched to any given individual. Furthermore, the said data is not merged with data from any other source. In the event that concrete indications exist in respect of wrongful use, we reserve the right to subsequently examine the said data.
We do not store usage data and neither do we install cookies.
This website, inclusive of the data protection declaration is not intended for use by underage individuals. Consequently, we do not intentionally collect, use, and/or share personal data relating to underage individuals.
Am Unisys-Park 1, 65843 Sulzbach/Ts., Niemcy
Convoo GmbH is registered with the Frankfurcie nad Menem Local Court under the Commercial Register number HRB 117525 and is legally represented in court and out of court by the Managing Director Henning Munte. The VAT-ID number is DE283915174.
We are available for any question you may have. Please send us an email to: info@pl.convoo.com.
Platform of the EU Commission regarding online dispute resolution: webgate.ec.europa.eu/odr/main/index.cfm?event=main.home.chooseLanguage
Convoo GmbH has the rights for all texts, graphic art as well as the layout, the HTML code and the scripts. Any kind of further use requires the explicit approval of the Convoo GmbH.
We are committed to complying with the Digital Services Act (Regulation (EU) 2022/2065). Therefore, here are some useful information for you:
POINT OF CONTACT FOR AUTHORITIES: If you are a Member State authority, or a member of the Commission, or a member of the European Board for Digital Services, our point of contact for matters related to the Digital Services Act can be reached at the e-mail address dsaconvoo.com or at the address Am Unisys-Park 1, 65843 Sulzbach (Ts.), Germany, and can communicate in English and German.
POINT OF CONTACT FOR USERS: If you are visiting our website as an user, our point of contact for matters related to the Digital Services Act can be reached at the e-mail address dsaconvoo.com or at the address Am Unisys-Park 1, 65843 Sulzbach (Ts.), Germany.
CONTENT MODERATION: To comply with Art. 15 (1) (c) (e) of the Digital Services Act, we here inform you about how we do content moderation - or, in other words, how we prevent illegal content from happening on our website. We have technical measures in place to keep our website safe, e.g. the restriction of logon within our servers which enables just authorized users to get access, use of firewalls, staff training, and backups. Our webpage is monitored daily to avoid malfunctions and incidents. We do not use purely automated means to do content moderation.
HOW TO REPORT ILLEGAL CONTENT: If you wish to report the existence of illegal content found in our webpage, you can write an e-mail to dsaconvoo.com making sure that you inform:
(a) Why do you believe that the content is illegal;
(b) The full link of the webpage in which you found such content, and addition optional information such as screenshots;
(c) Your name and e-mail address, unless you are reporting content related to Articles 3 to 7 of the Directive 2011/93/EU (in such cases you can remain anonymous); and
(d) Attach a statement in which you confirm that the information you have provided is accurate and complete, with your signature.