We are pleased that you are visiting our website. The protection of your privacy and the protection of your personal data when using our website is important to us.
This data protection declaration applies to the internet presence of the CI platform at https://cyber-insight.de/. For our other Internet offers and websites as well as websites of other providers to which we refer via a link, the data protection notices published there apply.
Here you will find information on how we handle your personal data when you visit our website. In order to provide the functions and services of our website, it is necessary for us to collect personal data about you. Below we explain what data we collect about you, why this is necessary and what rights you have in relation to your data.
Responsible for the processing of personal data within the meaning of the General Data Protection Regulation (DSGVO) and other data protection regulations is (see imprint):
Telephone number: 08 151 187 4000
If you have any questions about data protection, you can also contact us at any time at the above address or by e-mail.
1. provision of the website
1.1 Acquisition of system data
Each time our website is called up, the following technically necessary data is automatically collected by the system of the calling end device:
- IP address,
- Date and time of access,
- Content of the request,
- Internet Service Provider,
- Access status / HTTP status code,
- Browser type,
- Language and version of the browser software,
- Operating system.
When using this general data and information, we do not draw any conclusions about your person. Rather, this information is required in order to:
- to deliver the contents of our website correctly;
- optimise the content of our website and the advertising for it;
- to ensure the permanent operability of our IT systems and the technology of our website, and
- to provide law enforcement authorities with the information necessary for prosecution in the event of a cyber attack.
1.2 Legal basis of the processing
Art. 6 (1) lit. a DSGVO serves our company as the legal basis for processing operations in which we obtain consent for a specific processing purpose.
If the processing of personal data is necessary for the performance of a contract to which you are a party, as is the case, for example, with processing operations that are necessary for the provision of another service or consideration, the processing is based on Art. 6 (1) lit. b DSGVO. The same applies to processing operations that are necessary for the implementation of pre-contractual measures, for example in the case of enquiries about our products or services.
If our company is subject to a legal obligation by which the processing of personal data becomes necessary, such as for the fulfilment of tax obligations, the processing is based on Art. 6 (1) lit. c DSGVO.
In rare cases, the processing of personal data might become necessary to protect vital interests of the data subject or another natural person. In that case, the processing would be based on Art. 6(1)(d) DSGVO.
Ultimately, processing operations could be based on Art. 6 (1) lit. f DSGVO. Processing operations which are not covered by any of the aforementioned legal bases are based on this legal basis if the processing is necessary for the protection of a legitimate interest of our company or a third party, provided that the interests, fundamental rights and freedoms of the data subject are not overridden. Such processing operations are permitted to us in particular because they were specifically mentioned by the European legislator. In this respect, it took the view that a legitimate interest could be assumed if you are a customer of our company (recital 47, sentence 2 of the GDPR).
A cookie is a small file with information that enables a web server to recognise the user and save settings such as language or design.
We use the following cookies:
|Necessary cookies||The necessary cookies make websites usable for users: site navigation; access to secure areas; session cookies; Flash cookies (media content can be played).||Cookies that do not require consent, otherwise the website would not function properly.|
|Analytical cookies||Analytical cookies help website owners understand how visitors interact with websites by collecting and reporting information anonymously: Use of Google Analytics; IP address of the website visitor.||Cookies requiring consent|
2.1 Necessary cookies
These cookies are necessary for the website to function and cannot be disabled in your systems. They contribute significantly to improving your movement and booking experience on the website. Basic functionalities and applications, such as shopping baskets or electronic billing procedures, are thereby optimised and their handling facilitated. These cookies do not collect information about you that can be used for marketing campaigns or statistical analysis. You can set your browser to block these cookies or to notify you of these cookies. If you prohibit the setting of technically necessary cookies, our website cannot be displayed properly and not all functions are available. The legal basis for the use of technically necessary cookies is Art. 6 para. 1 p. t lit. f DSGVO.
2.2 Analytical cookies (cookies for usage analysis)
These cookies help us understand how visitors interact with web pages and allow us to count visits and traffic sources so that we can measure and improve the performance of our website. They help us answer questions about which pages are most popular, which are least used and how visitors move around the site. All information collected by these cookies is aggregated and therefore anonymous. If you do not allow these cookies, we will not be able to know when you visited our website.
The information generated by the cookies, such as the time, place and frequency of your website visit, including your IP address, is transmitted to Google and stored there. As this website uses Google Analytics with the extension "_gat._anonymizeIp", your IP address will be truncated by Google within Member States of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. The IP address transmitted by your browser within the scope of Google Analytics will, according to its own information, not be merged with other data from Google. On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google's behalf.
The legal basis for the use of Google Analytics is your consent (Art. 6 para. 1 p. 1 lit. a DSGVO).
The purpose of the data processing is to analyse the behaviour of our users anonymously and to improve our website on the basis of these findings.
https://www.google.com/analytics/terms/de.html and at
You can find more info on this link:
Google Tag Manager: The Google Tag Manager is used on this website. The Google Tag Manager is a system from Google that manages Java Script tags and HTML tags that are used to implement the above-mentioned services. In particular, the system controls which tags are to be executed and when, based on the consent you have given. The Tag Manager itself does not set any cookies and does not collect any data or other information from you and your end device. The services it controls set the cookies listed above.
3. registration and access to the user account
To use the Cyber Insight Platform, you must register on our website. We collect and store the data you enter in the input mask (e.g. last name, first name, email address, industry, job position). We do not pass on this information to third parties.
In the case of consent, the legal basis for processing is Art. 6 (1) a DSGVO. If your registration serves the preparation of a contract conclusion, Art. 6 para. 1 lit. b DSGVO is the additional legal basis.
Upon completion of the registration process, your IP address and the date and time of registration are also automatically collected and stored.
Your data will be deleted as soon as it is no longer required to achieve the purpose for which it was processed. You can delete your user account yourself or have it deleted by us at any time or change your personal data in the user account. If you delete your user account, your data will be deleted immediately, unless they are used for the legal storage obligations, for example from the tax code, prevent the deletion.
3. 1. data processing for order processing
We pass on your payment data to the commissioned credit institution within the scope of payment processing, insofar as this is necessary for payment processing. If payment service providers are used, we will explicitly inform you about this below. The legal basis for the transfer of data is Art. 6 (1) lit. b DSGVO.
3.2 Services / Digital Goods
We only transmit personal data to third parties if this is necessary for the processing of the contract, for example to the credit institution commissioned with the processing of payments.
No further transmission of data will take place or only if you have expressly consented to the transmission. Your data will not be passed on to third parties without your express consent, for example for advertising purposes.
The basis for data processing is Art. 6 para. 1 lit. b DSGVO, which permits the processing of data for the fulfilment of a contract or pre-contractual measures.
If you have registered for our newsletter, your email address, date and time of registration will be stored by us on a server. The processing of the data is based on your consent in accordance with Article 6 (1) lit. a DSGVO. We use this data exclusively for sending the newsletter and for statistical evaluations to analyse system performance. We do not pass on your data to third parties or use it for any other purposes of our own.
The registration system with an additional confirmation message containing a link to the final registration (double-opt-in) ensures that the newsletter is explicitly desired by you.
When registering, your data will be stored on our server and a confirmation message with a link to the final registration will be generated to the e-mail address provided. As far as you do not confirm the registration by clicking on the link in this e-mail, the data will be deleted after 48 hours. Only by confirming the link in the e-mail will your data be stored for newsletter dispatch for the duration of the use of our newsletter offer.
If you no longer agree to the storage of data for this purpose and therefore no longer wish to use our service, you can unsubscribe from our newsletters at any time. The data you have provided will be deleted. Please follow this link (...) to unsubscribe. To do this, you will need the email address you provided when registering.
4.2 Promotional speech
We may use your email address and postal address obtained in connection with the sale of a service to advertise our own similar goods and / or services. You can object to this use at any time without incurring any costs for the objection. We will also inform you of this every time your e-mail address is used for this purpose. We will obtain your separate consent for any further advertising, e.g. by e-mail and the sending of our newsletter.
The legal basis for this data processing is our legitimate interest in conducting direct marketing, Art. 6 para. 1 p. 1 lit. f DSGVO.
We will delete your data for the purpose of advertising without delay if you have objected to this. Please note that you may still receive advertising from us even after an objection during an implementation period of approximately three days (e.g. due to e-mail transit time). Outside of the storage of your data for the purpose of advertising, your data is subject to the legal retention periods outlined above. If you have objected to receiving advertising from us, we will block your data accordingly.
5. your rights
You have the following legal rights over us in relation to personal data relating to you:
5.1 Right of access: Pursuant to Art. 15 of the GDPR, you have the right to request confirmation as to whether we are processing personal data relating to you. If this is the case, you have the right to information about this personal data as well as further information, e.g. the purposes of processing, the recipients and the planned duration of storage or the criteria for determining the duration.
5.2 Right to rectification: In accordance with Art. 16 DSGVO, you have the right to request the rectification or completion of your data stored by us without delay.
5.3 Right to deletion: In accordance with Art. 17 DSGVO, you have the right to request the deletion of the data stored by us, insofar as the processing is no longer (no longer) necessary. This is the case, for example, if your data is no longer necessary for the original purposes, you have revoked your declaration of consent under data protection law or the data was processed unlawfully. Further processing may be necessary for compliance with a legal obligation, for reasons of public interest or for the assertion, exercise or defence of legal claims or for the exercise of the right to freedom of expression.
5.4 Right to restriction of processing: In accordance with Art. 18 DSGVO, you have the right to request the restriction of the processing of your personal data, insofar as you dispute the accuracy of the data, the processing is unlawful but you object to its erasure, or we no longer require the data but you need it to assert, exercise or defend legal claims, or you have objected to the processing in accordance with Art. 21 DSGVO.
5.5 Right to data portability: In accordance with Art. 20 DSGVO, you have the right to receive the personal data concerning you in a structured, common and machine-readable format or to request that it be transferred to another controller.
5.6 Right of objection: You have the right to object at any time, on grounds relating to your particular situation, to the processing of certain personal data relating to you which is carried out on the basis of Article 6(1)(1)(e) or (f) DSGVO.
In the event of direct marketing, you as the data subject have the right to object at any time to the processing of personal data concerning you for the purposes of such marketing; this also applies to profiling, insofar as it is associated with such direct marketing.
5.7 Right to revoke your data protection consent: You can revoke your consent to the processing of your personal data at any time with effect for the future. However, the lawfulness of the processing carried out until the revocation is not affected by this.
5.8 Right of complaint: You can also lodge a complaint with a data protection supervisory authority at any time, for example if you are of the opinion that the data processing does not comply with data protection regulations. For this purpose, you can contact the supervisory authority of your usual place of residence or workplace or our registered office. The supervisory authority responsible for us is: The Bavarian Data Protection Commissioner, ... E-mail: …
6. routine storage, deletion and blocking of personal data
We process and store your personal data only for the period of time necessary to achieve the purpose of storage or if this has been provided for by the legal provisions to which our company is subject.
If the purpose of storage no longer applies or if a prescribed storage period expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions.
6.1 Duration of the storage of personal data
The criterion for the duration of the storage of personal data is the respective statutory retention period. After expiry of the period, the corresponding data is routinely deleted if it is no longer required for the fulfilment or initiation of the contract.
Due to the further development of our internet pages and offers or due to changed legal or official requirements, it may become necessary to change this data protection declaration. You can access and print out the current data protection declaration at any time on the website at ....
8. data security
Our website complies with the usual encryption requirements. We use the widespread SSL (Secure Socket Layer) procedure in conjunction with the highest encryption level supported by your browser. As a rule, this is 256-bit encryption. If your browser does not support this encryption, we use 128 bit v3 technology. You can recognise the encryption of our website by the lock or key symbol in the address line or in the lower status bar.
We also use appropriate technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorised access by third parties. Our security measures are continuously improved in line with technological developments. All our employees who may come into contact with personal data are obliged in writing to comply with data protection regulations and have been instructed about the legal requirements.