Privacy Policy

We welcome you to our website and thank you for your interest in our software products. We hereby inform you about how we handle your personal data and how it is processed by us. In addition, this privacy policy informs you about your statutory rights in connection with the processing of this data.

We always take the protection of your data very seriously. In principle, it is possible to use our websites without collecting any personal data.

As soon as you wish to use special services of Rillsoft GmbH via our website, for example as part of ordering via the contact form or registering for a Rillsoft Cloud trial, or registering for seminars, etc., processing of personal data may become necessary. If this is the case and there is no legal basis for such processing, we generally endeavor to obtain your consent.

Rillsoft GmbH will always handle your data conscientiously and carefully. To protect your data, we have implemented the necessary technical and organizational measures to secure the personal data processed via our website. Only the responsible persons can access it.

Who is responsible for data processing

The controller within the meaning of the General Data Protection Regulation, other data protection laws applicable in the Member States of the European Union and other provisions of a data protection nature is:

What are cookies and how are they used?

We use so-called cookies on our site to make the user experience more efficient. Two different types of cookies can be used on our pages, so-called "session cookies" and "persistent cookies".

Session cookies are small text files that remain stored on your computer until you leave the site. A persistent cookie, on the other hand, remains on your device for a certain period even after you leave the site or until you delete it manually.

Most browsers are set to accept cookies automatically. If you want to prevent data collection through cookies, you can deactivate cookies in most browsers. However, this could limit the functionality of our website.

Personal data

Personal data is data that you provide to us and that can be used to identify you personally (e.g. your name, your e-mail address), or other data.

What data is collected and how do we use data?

Automatic collection of general data and information

When you visit our website, a series of general data and information is transmitted to us or to our web space provider. This general data and information is stored in the server log files. The following data may be recorded, among others:

• used browser types and versions

• used operating system

• the website from which you came to our website (so-called referrer)

• name of the retrieved website that you are visiting on our website

• date and time of access to the website

• an internet protocol address (IP address)

• the internet service provider of the accessing system

• other similar data and information that serve to avert danger in the event of attacks on our information technology systems

This anonymous data is stored in such a way that, as a rule, it cannot be assigned to any specific person if you do not log in to the website.

This information is statistically evaluated in aggregated form for the ongoing optimization of the content of our website and our offerings.

However, we reserve the right to subsequently check the log data if there is a justified suspicion of unlawful use based on specific indications.

Data provided by the user

On our website or in other ways, you have the opportunity to transmit personal data to us, for example as part of:

• ordering via the order form

• registration for Rillsoft Cloud

• registration for presentations or training courses

• the remote support function for business customers

• general contact

The following types of personal data may be collected from you:

• salutation

• first name

• last name

• postal address (including billing address)

• telephone number (including landline and mobile phone numbers)

• e-mail address

In this case, such information is collected and stored exclusively for the purpose of internally processing your order or contacting you. This data is generally not passed on to third parties.

Login information for special areas

To use the access-protected areas of our website, you must register by voluntarily providing personal data. The data entered can be seen from the input mask during registration and is stored in a customer account. We use the data you provide in accordance with Art. 6(1) sentence 1 lit. b GDPR (necessary to perform the contract) for contract processing and to handle your inquiries. After the contract has been fully processed or your customer account has been deleted, your data will be restricted for further processing and deleted after the retention periods under tax and commercial law have expired.

Trial/demo versions (trial) and personal data

If you use our software as a trial/demo version, this use is not intended for productive use with personal data. Please use only test data or anonymized data for this purpose.

If personal data are processed within the scope of a trial, this typically concerns contact data and account/registration data (e.g. name, e-mail address) for providing trial access, communication, and handling inquiries/support cases.

Content that you process in the software (e.g. customer, employee, or financial data) should not be processed in trial operation or uploaded to cloud functions. The applicable license terms/EULA are decisive in this respect.

Contact option

Due to legal regulations, our websites offer you the opportunity to quickly contact our company electronically and to communicate directly with us by e-mail. In this case, the personal data you transmit is automatically stored for the purpose of processing your contact. This personal data is not passed on to third parties.

Software activation and license verification

To prevent unauthorized use and to provide the contractually owed license, communication with our license servers may be required during installation, activation, reactivation, or as part of an online license verification.

In particular, the following data may be processed:

• Technical license data (e.g. license ID/serial number, license status),
• product and version data (e.g. product name, version),
• technical system data (e.g. hash-based hardware characteristics, operating system/environment information, UI language, pseudonymized system parameters),
• communication/log data (e.g. IP address, time of the request, technical log data), insofar as this is necessary for the operation and security of the license verification.

Personal data that you process with the software (e.g. project/time/customer/employee data) is not collected as part of activation/license verification.

Purposes of processing include in particular:

• provision, performance, and administration of the license (including activation, reactivation, blocking in the event of misuse),
• ensuring IT security, error analysis, and misuse/fraud prevention,
• support for support cases (e.g. traceability of activation problems).

Legal bases are, depending on the case, in particular Art. 6(1) lit. b GDPR (performance of contract) and Art. 6(1) lit. f GDPR (legitimate interest in IT security and misuse prevention).

Recipients / service providers: If we use external service providers for this purpose (e.g. hosting service providers), this is done as order processing in accordance with Art. 28 GDPR; otherwise, the provisions in the section “Data transfer” apply.

Storage period: The data is stored only as long as necessary for the above purposes (e.g. during the license term and for handling support and security cases); statutory retention obligations remain unaffected.

Purpose of data collection

The data is collected, processed, and used exclusively for the purpose for which it was transmitted to us. Data processing outside of the respective purposes does not take place.

Data transfer

The data you provide to us or that is otherwise collected on our website is primarily processed within our company and stored on our servers in Germany.

We only pass on your personal data to third parties if:

• you have given your express consent to do so in accordance with Art. 6(1) sentence 1 lit. a GDPR,

• disclosure is required under Art. 6(1) sentence 1 lit. f GDPR to assert, exercise, or defend legal claims and there is no reason to assume that you have an overriding legitimate interest in not disclosing your data,

• there is a legal obligation to do so under Art. 6(1) sentence 1 lit. c GDPR, and

• it is permitted by law and necessary under Art. 6(1) sentence 1 lit. b GDPR for the processing of contractual relationships with you.

External service providers

To provide our services and make the online offering available, we also use service providers who provide the technical infrastructure.

Hosting providers, tax consulting service providers, and payment service providers process data on behalf of our company.

We have concluded a data processing agreement with our service providers. Users of our services are informed of the relevant service providers as upstream suppliers.

Use of Google Analytics with anonymization function

We use Google Analytics, a web analytics service provided by Google Inc. (“Google”), 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, on our website. Google Analytics uses so-called “cookies”, text files that are stored on your computer and enable an analysis of your use of the website.

The information generated by these cookies about your use of this website, including your IP address, is usually transmitted to a Google server in the USA and stored there.

We use Google Analytics with an anonymization function on our website. The IP address transmitted by your browser as part of Google Analytics is therefore not merged with other Google data. In this case, your IP address is shortened by Google within Member States of the European Union or in other contracting states of the Agreement on the European Economic Area and thereby anonymized.

Google will use this information to evaluate your use of our site, to compile reports on website activity for us, and to provide other services related to website activity and internet usage. Google may also transfer this information to third parties if required to do so by law or if third parties process this data on Google’s behalf.

You can prevent the installation of cookies by setting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all functions of our website in full.

You can prevent the general collection and storage of data by Google Analytics at any time with future effect using a browser extension, available at http://tools.google.com/dlpage/gaoptout?hl=de.

You can find more information on the terms of use and data protection at http://www.google.com/analytics/terms/de.html or at https://www.google.de/intl/de/policies/.

Use of Google Ads

Our website uses Google Conversion Tracking. The information obtained using the conversion code is used to generate conversion statistics. It allows us to know, for example, the total number of users who clicked the download button and were redirected to a conversion-tracking-tagged page. However, we do not receive any information that would allow users to be personally identified.

For advertising purposes in the Google search results and on third-party websites, the so-called Google Remarketing cookie is set when you visit our website. It is automatically created by the collection and processing of data (IP address, browser information, and information about your use of our website, etc.) and enables interest-based advertising using a pseudonymous cookie ID and based on the pages you visit.

Further data processing only takes place if you have activated the “personalized advertising” setting in your Google account. If you are logged in to Google while visiting our website in this case, Google uses your data together with Google Analytics data to create and define target group lists for cross-device remarketing.

Use of YouTube components with enhanced privacy mode

Our website includes components (videos) from YouTube, LLC 901 Cherry Ave., 94066 San Bruno, CA, USA, a company of Google Inc., Amphitheatre Parkway, Mountain View, CA 94043, USA. We note that we use the “enhanced privacy mode” option of YouTube.

When you access a page with an embedded video, a connection to the YouTube server is established. Content from the corresponding YouTube component is then displayed directly by YouTube in your browser and integrated into the page. YouTube or Google receive the information that your browser has accessed our website. This information is transmitted from your browser directly to a YouTube or Google server in the USA and stored there.

If you do not want YouTube and Google to receive this information, you must log out of your YouTube account before visiting our website.

The purpose and scope of the data collection as well as further information on data protection by YouTube and Google can be found at the following link: https://www.google.de/intl/de/policies/privacy/

Security

We make intensive efforts to ensure comprehensive organizational and technical security measures to protect your personal data at all times and to continuously improve them in line with technological developments. However, internet-based data transmissions can generally have security gaps, so absolute protection against access by third parties is impossible.

Data retention period

We process and store your personal data only for the period necessary to achieve the storage purpose or insofar as this has been provided for by the responsible legislator through retention obligations and periods. After these periods have expired or if the storage purpose no longer applies, the personal data is routinely deleted or blocked in accordance with data protection regulations.

Information, correction, and deletion

In accordance with the statutory provisions, you have the right to request information free of charge as to which personal data we have stored about you. In addition, you have the right to have this information corrected or deleted, provided there is no legal obligation to retain it.

If you have further questions about the processing of your personal data by us, you can contact info@rillsoft.de at any time.

Privacy policy for our social media sites

We operate the following social media sites:

• YouTube: https://www.youtube.com/@rillsoft/

• Facebook: https://www.facebook.com/rillsoft

• Twitter: https://twitter.com/rillsoft1

• LinkedIn: https://www.linkedin.com/company/rillsoft

• Xing: https://www.xing.com/pages/rillsoft-gmbh

In addition to us, there are also operators of the social media platforms themselves. In this respect, these operators are other controllers for data processing, and we have only limited influence over them. Where we can influence and parameterize data processing, we endeavor to carry out data protection-compliant processing as far as possible. In many places, however, we cannot influence the data processing carried out by the operators of social media platforms, and we do not know exactly what data they process.

Data processing by us

The data that you enter on our social media pages, such as comments, videos, images, messages, public posts, etc., is published via social media platforms and is never used or processed for other purposes. We reserve the right to delete content only when necessary. If this is a function of a social media platform, we can share your content on our website and communicate with you via the social media platform. The legal basis is Art. 6(1) sentence 1 lit. f GDPR. The data processing serves our public relations and communication.

If you wish to object to specific data processing that affects us, please use the contact information provided in the legal notice. We will then review your objection to process your data via us. If you wish to exercise your right to object against the social media platform, you must contact it directly.

If you send us a request on a social media platform, we may also refer you to other secure communication channels that ensure confidentiality. You can send confidential inquiries at any time to the contact details given in the imprint.

As already mentioned, we try to make our social media pages as compliant as possible with the data protection requirements within the scope of the possibilities provided by the social media platform. With regard to the statistics provided to us by providers of social media platforms, we can only influence them to a limited extent and cannot deactivate them. However, we first ensure that no other optional statistical information is made available to us.

Data processing by the operator of the social media platform

Operators of social media platforms use web tracking methods. Regardless of your login or registration on a social media platform, web tracking can be carried out by social media platforms. As already mentioned, we can hardly influence the web tracking methods used by social media platforms. For example, we cannot switch it off.

Please note: It cannot be ruled out that the providers of social media platforms use your personal information and behavioral data, for example to evaluate your habits, personal relationships, preferences, etc. In this respect, we have no influence on the processing of your data by providers of social media platforms.

Information on how you can manage or delete information about you can be found on the following social media platform pages:

• YouTube: https://www.youtube.com/privacy

• Facebook: https://www.facebook.com/about/privacy/update and https://www.facebook.com/legal/terms/page_controller_addendum

• Twitter: https://www.twitter.com/privacy

• LinkedIn: https://www.linkedin.com/static?key=privacy_policy

• Xing: https://privacy.xing.com/de/datenschutzerklaerung

Your rights as a user

When processing your personal data, the GDPR grants you certain rights as a website user, namely the right of access (Art. 15 GDPR), the right to rectification and erasure (Arts. 16 and 17 GDPR), the right to restriction of the processing of your data (Art. 18 GDPR), and the right to data portability (Art. 20 GDPR). You can object to the processing of your personal data at any time (Art. 21 GDPR). You can withdraw your consent at any time with effect for the future in accordance with Art. 7(3) GDPR.

Right to lodge a complaint with a supervisory authority

Art. 77 GDPR grants you the right to lodge a complaint with a supervisory authority if, in your opinion, the processing of your data violates data protection regulations.