Declaration Regarding Data Protection of the LANCOM Systems GmbH

(Version: May 2018)

We appreciate your interest in our website https://www.lancom-systems.de as well as in our enterprise, products and services. We here at LANCOM Systems realize that the protection of your personal sphere is important to you when using our website. Compliance with legal provisions in regard to data protection is important to us, as well. In addition it is important to us that you as our customer know at any time when we collect or save your data and what we do with it.

In the following we would like to inform you about the collection and processing (for example storage, modification or transfer) your personal data when using our website. Personal data is any data that refers to you, for example name, address, email addresses and user patterns.

Insofar that we process personal data while you are using our website, we may include other service providers in order to execute individual functions or make offers or provide services or would like to use your data for marketing purposes. In such case we will keep you informed of every detail, especially which data will be processed. We will also tell you how long we intend to save your data or the fixed criteria for the duration of such data storage and the respective legal basis for the processing.

I. Name and address of responsible officer

Responsible in the sense of the European General Data Protection Regulation (GDPR) and other national data protection laws of the member states and other data protection ordinances is:

LANCOM Systems GmbH
Adenauerstraße 20/ B2
52146 Würselen,
info@lancom.de

Please follow this link to our imprint page for further information:Imprint page.

II. Contact Data Protection Officer

You can reach our data protection officer under datenschutz@lancom.de or our postal address directed to „Der Datenschutzbeauftragte“.

III. Collection and Storage of Personal Data as well as Type, Purpose and Legal Basis for its Use

§ 1 When using our website

In case you only visit our website for information, e.g. if you do not register or transfer any other information to us, we only collect such personal data as your browser submits to our server in so called server log files. In the scope of the server log files the following data is collected:

  • IP address
  • Date and hour of your request
  • Time zone difference to Greenwich Mean Time (GMT)
  • Content of your query (actual page)
  • Access status/HTTP status code
  • Data quantity that was submitted
  • Website that sent the query
  • Browser
  • Operating system and its interface
  • Language and version of browser software

This data is exclusively collected to ensure the smooth running of the site in view of stability and security and to improve our offers and then deleted. Legal basis is Art. 6 para. 1 p.1 lit. f GDPR.

The data will also be stored in the log files of our systems. However, it is not stored together with other, personal data of the user.

Collecting this data is material for the display of the website and the storage of the data in log files is needed for the operation of the website. Therefore the user may not object to it.
The data is deleted as soon as they are no longer needed for aforementioned purposes. In case of using our website, this is the case once you leave the page and close your browser.
In addition we place cookies during your visit at our website and use analytical services. You can learn more about those under points V and VI of this document.

§ 2 In case of further use, functions and offers of our website

Apart from the informative use of our website we offer a number of services, offers and functions that you can use, if you wish. To that end you will need to provide more personal data, which we will use to render such services and which are also subject to aforementioned rules and regulations regarding data protection. Those services/offers/functions will be explained further down in this document.

(1) Contact via email

In case you contact us via email, we will collect the data you provided us (your email address, your name and surname and possibly your telephone number, place of residence and postal code) in order to answer you queries. We will answer via email, or if you asked us to do so, via telephone.

Legal basis for processing your data is Art. 6 para. 1 lit. a and b of the GDPR based on your voluntary permission or in order to answer your queries, respectively. All data collected in that context will be deleted, once we do not need it anymore, or we will limit the processing of such data, in case legal provisions require us to save the data for a certain time period.

(2) Usage of the membership area

The portal myLANCOM is our web portal, where we offer services connected to your LANCOM hardware. In order to use our web portal you will need to register under myLANCOM stating personal data (for example email address, name and surname, address, user category). You do not need to use your actual name but may use a pseudonym. We apply the so-called double opt-in protocol, so that your registration is not completed until you confirm it via clicking a link in an email send to you to your registered email account to that purpose. If you do not confirm within 72 hours of requesting the link, your registration will automatically be deleted from our database.

If you log into our membership area we will store your data in order to be able to provide you with information as selected under the menu point „Info-Service“ and services of myLANCOM. We will store your data as long as you are a member. The membership ends when you delete your access data „Mitgliedschaft beenden“ (cancel membership). You can administrate and change all date in the protected membership area. After you cancelled your membership the data will be stored for statistical purposes without personal reference. Legal basis for the processing is Art. 6 para. 1 p. 1 lit. f GDPR.

As a member, you also have access to the portal LANcommunity. If you use that portal your data may be accessible for other users. Non-members will not be able to see any information about you. All other members can see your user name. If you post in groups, these posts are visible for all other members. Legal basis for using the LANcommunity is Art. 6 para. 1 p. 1 lit. f GDPR.

When using myLANCOM you can also subscribe to our newsletter. We would like to inform you about the newsletter subscription in the next paragraph in detail.

(3) Newsletter

You can subscribe to our newsletter in our membership area, with which we inform you about current offers. The newsletter will be send to the email address that you provided with your registration.

We use the double-click proceedings for registering for the newsletter. This means that only after you checked the box for the respective newsletter and confirmed the subscription with clicking on the “Übernehmen” button sent to your email account we will send you the newsletter. We will store your email address in connection to the newsletter subscription, including you IP-address used and the time of the subscription to the newsletter as per aforementioned proceedings. The purpose of these proceedings is to send you the newsletter and to be able to have proof regarding your consent thereto. Legal basis is Art. 6 para. 1 p. 1 lit. a GDPR based on your voluntary permission.

You may revoke your consent to receive the newsletter at any time. You can cancel your subscription with a click on a link featured in every email newsletter at info@lancom.de or in the membership area – same as the subscription process.

We would like to point out that we analyze your user patterns when sending out the newsletter. The emails we send to you include so-called web beacons or tracking pixel, which is a one-pixel image file which is stored on our website. For the analysis, we connect the data mentioned under III. § 1 and the web beacons with your email address and an individual ID. With the data collected this way, we create user profiles in order to tailor the newsletter to your specific areas of interest. At the same time we see when you read our newsletter, which links you follow and deduct your personal interests thereof. This data is connected to the activities you engage in when visiting our website.

You may object to this tracking at any time, following the separate link provided in every email our contact us any other way. The information is stored as long as you subscribe to our newsletter. After cancelling the subscription we will only store statistic data that cannot be connected to you personally. In addition, such tracking is not possible if you generally deactivated the display of images in your emails. In this case the newsletter will not be displayed correctly and you may not be able to use all functions. If you display the images manually aforementioned tracking is also activated.

(4) Blog function

In our Blog “Auf ein Wort“ and “LANCOMWIRE“, where we publish a number of posts regarding topics surrounding our activities you can comment publicly. Your comment will be published together with your chosen name under the post. We recommend using a pseudonym instead of your real name. Entering name and email address is necessary, all other information is voluntary. We will also store your IP-address when you post a comment. This is necessary, because in case of publishing any illegal contents we must be able to defend ourselves against possible claims. We need your email address in order to be able to contact you in case a third party claims your comment as illegal or you checked the box that you wanted to be informed regarding any subsequent comments or new posts via email. Legal basis is Art. 6 para. 1 p. 1 lit. f GDPR. Comments will not be viewed before publishing them. We reserve the right to delete any comments that are claimed illegal by third parties. When the comment is deleted, all connected data is also deleted.

(5) Use of our support portal

In order to receive and process written requests for support, we provide our support portal. If you want to use that support portal, you need to register with your email address, a chosen password and your full name. We apply the so-called double opt-in protocol, so that your registration is not completed until you confirm it via clicking a link in an email send to you to your registered email account to that purpose. If you do not confirm within 72 hours of requesting the link, your registration will automatically be deleted from our database. Entering aforementioned data is mandatory, any further information can be entered when using the portal on a voluntary base.

If you use our support portal we will store your data as mentioned above and any other data that you enter voluntarily in the scope of your request, so that we can process it. Further data in this sense are:

  • Company name
  • Name and surname
  • Address
  • Telephone number
  • Email address
  • Serial numbers and license data from your LANCOM products
  • User name, passwords, IP addresses, MAC addresses
  • Information regarding technical infrastructure (location, blueprints, network plans, other plans)

With the exception of your registration data all other data will be deleted after your support request has been completed. Your registration data will be stored until you delete your access data to the portal. Legal basis is Art. 6 para. 1 p. 1 lit. b and f GDPR.

(6) Online applications for a position with LANCOM Systems & job alert

If you apply for a position with LANCOM Systems over our website, personal data will be collected in our recruitment portal. The data you enter in our recruitment portal will exclusively be used to fill the published position and the viewing and processing of your application send to us in that context. After the recruitment process in view of that particular position has been completed the data will be barred from an further use and deleted after the legal term to do so expired. Legal basis is Art. 88 GDPR in connection with § 26 para. 1 BDSG.

With voluntarily clicking the JobAlert button you give us consent to process this data in the template popping up subsequently. The data given to us on a voluntary base (your email address and any keywords regarding job requests) will be stored so that we can email you when new positions that fit your queries are published. You can object to the processing of your data in that context at any time. You can send your objections in writing to the contact stated in the imprint (https://www.lancom-systems.com/imprint/) or via email to info@lancom.de. Only your objection will result in the deletion of your data in connection with the JobAlert. Legal basis for processing your data is Art. 6 para. 1 p. 1 lit. b GDPR.

(7) Subscription to RSS Feed

Our webpage offers you the opportunity to subscribe to an RSS Feed called „LANCOM Systems Knowledgebase“. This is a dynamic bookmark that will be added to your browser, after you have clicked on „jetzt abonnieren“. This bookmark sends up-to-date information regarding the products and services of the LANCOM Systems GmbH. With clicking the „Jetzt abonnieren“ button you consent that we may collect, store and process your IP-address in connection with the RSS Feed.
The IP address is necessary in order to send the information of RSS Feed to your browser. Legal basis is Art. 6 para. 1 lit. a GDPR.
We will delete the data collected in connection with the RSS Feed as soon as we discontinue that service or your revoke your consent. You may revoke your consent any time and cancel the RSS Feed with deleted the bookmark from your browser.

IV. Transfer of Data

We only transfer your personal data to third parties for the following purposes.
We transfer your personal data to third parties if:

You expressively consented to it in accordance with Art. 6 para. 1. p. 1 lit. a GDPR,
The transfer is necessary to support or defend legal claims and no reason exist that you have a special interest in not transferring your data to a third party according to Art. 6 para. 1 p. 1 lit. f GDPR,
In case in accordance with Art. 6 para. 1 p. 1 lit. c GDPR it is legally provided to do so, or
This is legally permissible and in accordance with Art. 6 para. 1 S.1 lit. b GDPR necessary for concluding the contract with you.

V. Use of Cookies

Scope of the data processing

In order to make visiting our website user friendly and efficient and to enable the use of certain functions, we use so-called cookies on some pages. Cookies are small text files that are stored on your hard disc in connection with your browser and with which the party setting those cookies (in this case us) will receive certain information. Cookies cannot execute programs or transmit viruses to your computer.

Cookies do not contain personal data and therefore cannot refer to one user directly. Please take note that some cookies are already placed when visiting our website. This website uses the following types of cookies:
Necessary/ Functional cookies: these cookies are necessary to enable the operation of our website. It includes for example cookies that make it easier for you to log into the member area. In addition we place cookies – insofar you actively request us to do so – in order to be able to identify you when you revisit the page, if you have an account with us. Otherwise you would have to log in again every time you visit.

Transient cookies will automatically be deleted once you close your browser. These include session cookies. They store the so-called session ID, with the help of which different queries of your browser can be allocated to one setting. That way your computer will be recognized when you return to our website. The session cookies will be deleted when you log out or close the browser window.

Persistent cookies will be deleted automatically after a certain time, which may be different from cookie to cookie. You may delete these cookies any time in the security settings of your browser.

You can set your browser settings in accordance with your preferences and for example reject the acceptance of third party cookies or any cookies. You can also configure your browser so that you receive a note every time a cookie is placed. Please contact your browser provider for further information. However, we would like to point out that you may not be able to use all functions of the website if you elect to do so
Legal basis for using cookies is Art. 6 para. 1 p. 1 lit. f GDPR. Our legitimate interest arises from aforementioned purposes, e.g. to make our website more user friendly and effective.
Please refer to VI of this data protection declaration for further information.

VI. Web Analysis

We use web analysis services on our website for user friendly web design and marketing services.

Google Analytics

This website uses Google Analytics, a web analytics service provided by Google Inc. (“Google”). Google Analytics uses so-called “cookies”, text files that are stored on your computer and that allow an analysis of the use of the website by you. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there.

IP-Anonymization
We have activated the function IP anonymization on this website. As a result, your IP address will be truncated by Google within member states of the European Union or other parties to the Agreement on the European Economic Area prior to transmission to the United States. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services related to website activity and Internet usage to the website operator. The IP address provided by Google Analytics as part of Google Analytics will not be merged with other Google data.

You can prevent the storage of cookies by a corresponding setting of your browser software; however, please note that if you do this, you may not be able to use all the features of this website to the fullest extent possible. In addition, you may prevent the collection by Google of the data generated by the cookie and related to your use of the website (including your IP address) as well as the processing of this data by Google by using the following link (http://tools.google.com/dlpage/gaoptout?hl=de) to download and install the available browser plugin.

As an alternative to the browser plug-in, especially for browsers on mobile devices, you can prevent the collection of your data by Google Analytics by clicking on the following link. An opt-out cookie is set that prevents the collection of your data on future visits to this website.

Disable Google Analytics
The opt-out cookie is only valid in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you must set the opt-out cookie again.

Order processing
We have entered into an agreement with Google for order data processing and implement the strict requirements of the German data protection authorities when using Google Analytics.
We use Google Analytics to analyze and regularly improve the use of our website. With the statistics we can improve our offer and make it more interesting for you as a user. For the exceptional cases in which Personal Information is transferred to the US, Google has submitted to the EU-US Privacy Shield, www.privacyshield.gov/EU-US Framework. The legal basis for the use of Google Analytics is Art. 6 1 sentence 1 lit. f DSGVO. Our legitimate interest arises for the purposes mentioned above.

Third-party information:
Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.

Terms of Use: http://www.google.com/analytics/terms/de.html,
Privacy Policy: http://www.google.com/intl/de/analytics/learn/privacy.html, and the Privacy Policy: http://www.google.de/intl/de/policies/privacy.

This site also uses Google Analytics for cross-device analysis of visitor traffic conducted through a user ID. You can disable the cross-device analysis of your usage under My Data, Personal Information in your customer account.

VII. Google Maps

On this website we use the offer of Google Maps. This allows us to show you interactive maps directly in the website and allow you to conveniently use the map feature.
By visiting the website, Google receives the information that you have accessed the corresponding subpage of our website. In addition, the data mentioned under § 3 of this declaration will be transmitted. This is done regardless of whether Google provides a user account that you are logged in to, or if there is no user account. When you’re logged in to Google, your data will be assigned directly to your account. If you do not wish to be associated with your profile on Google, you must log out before activating the button. Google stores your data as usage profiles and uses them for purposes of advertising, market research and / or tailor-made website design. Such an evaluation is done in particular (even for users who are not logged in) to provide appropriate advertising and to inform other users of the social network about their activities on our website. You have a right of objection to the formation of these user profiles, and you must comply with this to Google.

For more information on the purpose and scope of the data collection and its processing by the plug-in provider, please refer to the provider’s privacy policy. You can also find more information about your rights and privacy settings here: www.google.com/intl/en/policies/privacy. Google also processes your personal information in the United States and has submitted to the EU-US Privacy Shield, http://www.privacyshield.gov/EU-US Framework.
Third Party Information: Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.
VIII. Your Rights
If your personal data is processed, you have the following rights with respect to the personal data relating to you:
Right to information

You may ask the person in charge to confirm if we process personal data concerning you.
If we do, you can request information from the person responsible about the following information:

  • The purposes for which the personal data is processed;
  • The categories of personal data that is processed;
  • The recipients or the categories of recipients to whom the personal data relating to you has been disclosed or is still being disclosed;
  • The planned duration of the storage of your personal data or, if specific
  • information is not available, criteria for determining the duration of storage;
  • The right of rectification or erasure of personal data concerning you, a right to restriction of processing by the controller or a right to object to such processing;
    The right of appeal to a supervisory authority;
  • All available information on the origin of the data, if the personal data is not collected from the data subject;

The automated decision-making including profiling under Article 22 (1) and (4) GDPR and – at least in these cases – meaningful information about the logic involved, and the scope and intended impact of such processing on the data subject.
You have the right to request information about whether your personal information relates to a third country or an international organization. In this context, you can request the appropriate guarantees in accordance with. Art. 46 GDPR in connection with the transfer.
Right to rectification

You have a right to rectification and/or completion to the controller, if the personal data you process is incorrect or incomplete. The responsible person must make the correction without delay.
Right to deletion

a) Deletion obligations
You may require the controller to delete your personal information without delay, and the controller is required to promptly delete that data (“right to be forgotten”) if one of the following is true:

Your personal data is no longer necessary for the purposes for which they were collected or otherwise processed.

You revoke your consent, to which the processing acc. Art. 6 para. 1 lit. a or Art. 9 para. 2 lit. DSGVO and there is no other legal basis for processing.
In accordance with Art. 21 para. 1 GDPR you object (see point X) against the processing and there are no prior justifiable reasons for the processing, or you object in accordance with Art. 21 para. 2 GDPR.

Your personal data has been processed unlawfully.
The deletion of personal data concerning you is required to fulfill a legal obligation under Union or national law to which the controller is subject.
The personal data concerning you was collected in relation to information society services offered pursuant to Art. 8 (1) GDPR.

b) Information to third parties
If the person in charge has made the personal data concerning you public and is acc. Article 17 (1) of the GDPR, appropriate measures shall be taken, including technical means, to inform data controllers who process the personal data that you have been identified as being affected, taking into account available technology and implementation costs.

c) Exceptions
The right to deletion does not exist if the processing is necessary
To exercise the right to freedom of expression and information;
To fulfill a legal obligation required by the law of the Union or of the Member States to which the controller is subject, or to carry out a task which is in the public interest or in the exercise of public authority delegated to the controller;
For reasons of public interest in the field of public health pursuant to Art. 9 (2) lit. h and i and Art. 9 (3) GDPR;

For archival purposes of public interest, scientific or historical research purposes or for statistical purposes acc. Article 89 (1) GDPR, to the extent that the law referred to in subparagraph (a) is likely to render impossible or seriously affect the achievement of the objectives of that processing, or
To assert, exercise or defend legal claims.
Right to restriction of processing

You may request the restriction of the processing of your personal data under the following conditions:

  • If you deny the accuracy of your personal information for a period of time that enables the controller to verify the accuracy of your personal information;
  • The processing is unlawful and you refuse the deletion of personal data and instead demand the restriction of the use of personal data;
  • The person responsible no longer needs the personal data for the purposes of the processing, but you need them for the assertion, exercise or defense of legal claims, or
    If you objected to the processing pursuant to Art. 21 (1) GDPR (see point X) and it is not yet certain whether the legitimate reasons of the person responsible prevail over your reasons.

If the processing of personal data concerning you has been restricted, this data may only be used with your consent or for the purpose of asserting, exercising or defending legal claims or protecting the rights of another natural or legal person or for reasons of important public interest of the EU or a member state.

If restrictions or processing was are restricted, you will be informed by the person in charge before such restriction is lifted.
Right to notification:

If you have exercised your right of rectification, deletion or restriction of data, the controller is obliged to notify all recipients to whom your personal data has been disclosed of this correction or deletion of the data or restriction of processing, unless: this proves to be impossible or involves a disproportionate effort.

You have a right to be informed about these recipients.

Right to data portability:
You have the right to receive personally identifiable information you provide to the controller in a structured, common and machine-readable format. In addition, you have the right to transfer this data to another person without hindrance by the person responsible for providing the personal data, provided that
The processing is based on a consent acc. Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a DSGVO or on a contract acc. Art. 6 para. 1 lit. b DSGVO and
The processing is done using automated procedures.
In exercising this right, you also have the right to obtain that your personal data relating to you is transmitted directly from one person to another, insofar as this is technically feasible. Freedoms and rights of other persons may not be affected.
The right to data portability does not apply to the processing of personal data necessary for the performance of a task in the public interest or in the exercise of official authority delegated to the controller.
Right to object, Art. 21 GDPR

You have a case-based right of opposition and a right to object to the processing of data for advertising purposes. Further information can be found under section X of this data protection declaration.

Right to revoke the data protection consent declaration
Is the processing of your data based on Art. 6 (1) lit. a or Art. 9 para. 2 lit. a of the GDPR, you have the right to revoke your consent at any time. The revocation of consent does not affect the legality of the processing carried out on the basis of the consent until the revocation.
Automated decision on an individual basis including profiling, Art. 22 GDPR

You have the right not to be subjected to a decision based solely on automated processing – including profiling – that will have legal effect or similarly affect you in a similar manner. This does not apply if the decision:
Is required for the conclusion or performance of a contract between you and the controller,

Is permitted by the EU or member state legislation to which the controller is subject, and where such legislation contains appropriate measures to safeguard your rights and freedoms and legitimate interests, or
With your express consent.

However, these decisions must not be based on special categories of personal data under Art. 9 (1) GDPR, unless Art. 9 (2) lit. a or g and reasonable measures have been taken to protect the rights and freedoms and your legitimate interests.

With regard to the cases referred to in (1) and (3), the person responsible shall take appropriate measures to uphold the rights and freedoms and their legitimate interests, including at least the right to obtain the intervention of a person by the controller, to express his/her own position and heard on challenge of the decision.
Right to complain to a supervisory authority

You also have the right to complain about our processing of your personal data to a data protection supervisory authority. Your complaint can be addressed to the supervisory authority in the member state of your whereabouts, your place of work or the place of the alleged infringement. The supervisory authority to which the complaint has been submitted shall inform the complainant of the status and results of the complaint, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.
You can exercise your aforementioned rights by sending us an informal message. This message is to be sent:

  1. Contact in the imprint
  2. info@lancom.de or
  3. datenschutz@lancom.de.
    Right to object pursuant to Art. 21 GDPR
    Case-specific right to object

At any time you have the right to file an objection against the processing of personal data for reasons arising from your particular situation relating to you which, on the basis of Art. 6 para. 1 lit. e GDPR (data processing in the public interest) and Art. 6 para. 1 p. 1 lit. f GDPR (data processing in order to safeguard the legitimate interests of the person responsible or a third party); this also applies to profiling based on these provisions. If you object, we will no longer process your personal information unless we can establish compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is for the purposes of asserting, exercising or defending legal claims.

Right to object to the processing of data for advertising purposes
In individual cases, we process your personal data for advertising purposes. You have the right to object to the processing of personal data for the purposes of such advertising at any time; this also applies to profiling insofar as it is associated with such advertising. If you object to the processing for marketing purposes, we will no longer process your personal data for these purposes.

The contradiction in the aforementioned cases does not require any special form and should be addressed by email and, if possible, with the subject “Objection” to:

  1. The contact in the imprint,
  2. info@lancom.de or
  3. datenschutz@lancom.de.

Data Security
We endeavor to store your personal data by taking all technical and organizational means so that they are not accessible to third parties. When communicating by email, we cannot guarantee complete data security, so we recommend that you send confidential information by post.

This site uses TLS encryption for security reasons and to protect the transmission of sensitive content, such as requests you send to us as a site operator. You can recognize an encrypted connection by changing the address line of the browser from “http: //” to “https: //” and the lock symbol in your browser line. If TLS encryption is enabled, the data you submit to us cannot be read by third parties.

XI. Update of Data Protection Declaration

As far as we introduce new products or services, change Internet procedures or if the Internet and computer security technology evolves, the “Data Protection Declaration” should be updated. We therefore reserve the right to change or supplement the declaration as needed. The change will be published here. Therefore, you should visit this website regularly to keep up to date with the privacy policy.