Privacy Policy
Principles and Contacts
We appreciate your interest in our website. Below is detailed information on how we handle your data.
Germany Trade & Invest GmbH, as the operators of the www.iXPOS.de website, is the sole operator of the site www.gtai.de and are liable in terms of the General Data Protection Regulation Law (GDPR). You can contact our data protection officer via mail or via our postal address including the subject line “data protection.” Our contact details can be found here.
Data exchange between your browser and our server when visiting our website
When using our website solely for informational purposes, if you do not register or otherwise provide us with information, we only collect personal data your browser transmits to our server.
This means data that is technically necessary for the display, stability and security of our website.(Legal Basis Art. 6 (1) (f) GDPR):
- IP address
- Date and time of the request
- Content of the request (concrete page)
- Website from which the request comes
- Browser
- Operating system and its interface
- Language and version of the browser software.
Your IP address serves as a response address for our server, which displays our website according to the above-mentioned data in your browser. This data cannot be assigned to specific people. We will not merge this data with other data sources. Your personal data, which you enter during the use of our service, will not be combined with the data listed here. Complete storage of your IP address is only necessary where required for the traceability of technical errors and cyber-attacks. The IP address is promptly deleted afterwards.
Collection of anonymous data for statistical purposes
This website uses "Mapp Analytics", a product of Mapp GmbH, to collect statistical information about the use of this website and to make the use of our website more user-friendly, effective and secure.
Our service provider Mapp was carefully selected and commissioned by us, is bound by our instructions and is regularly inspected.
You can find out more about our service provider here.
“Mapp Analytics" is a statistical program that records the use of our website anonymously with the aid of one pixel on each page and the use of cookies. The pixel is a small image file at the end of each page of our website, which transmits the following information transmitted by your browser to the Mapp GmbH server:
- Request (file name of the requested file)
Browser Type / Version (Ex .: Internet Explorer 6.0) - Browser language (eg German)
- Operating system (ex .: Windows XP)
- Internal resolution of the browser window
- Screen resolution
- Javascript activation
- Java On / Off
- Cookies On / Off
- Color depth
- Referrer URL (the previously visited page)
- Shortened IP address for geographical recognition (city, region, country)
- Time of access
- Clicks
- Possible order values
- Possible form content (for free-text fields, such as name and password, only “filled in" or "not filled out " will be recorded)
All evaluations are anonymous. For this purpose, the IP address is anonymized immediately after transfer to the track server of Mapp and before its storage and further evaluation. A relation of the data to any certain person is no longer possible.
Data retrieved through the pixel is not assigned to specific people. A merge of this data with other data sources will not be made. If you enter personal information on our website this information will not be combined with data obtained through the pixel.
Cookies
When you visit our website, cookies are stored on your computer that make your visit more comfortable or submit data for anonymous statistical evaluation to our service provider, Mapp GmbH.
Cookies are small text files that your browser stores on your computer. They do no harm on your computer and contain no viruses.
Overview of the purpose and use of the cookies used:
Data retrieved through cookies is not assigned to specific persons. We will not merge this data with other data sources. If you enter personal data on our website it will not be combined with the data obtained via cookies.
In your browser settings, you can specify whether cookies should be set or not.
Presence on social networks (social media)
We maintain online presences on social networks in order to offer information about us and to communicate with the users of these platforms. During such interaction, we, as well as the providers of these platforms, process user data.
The following user data is processed (for example from website visitors, users of online services): contact data (e.g. e-mail address, telephone number); content data (e.g. submissions in online forms); usage data (e.g. websites visited, content interested in, time spent on website); communication data (e.g. device information, IP address). This data is processed in order to communicate with the users, to receive contact requests or feedback, e.g. via online forms and marketing. The legal basis for the processing is the legitimate interest pursuant to Art. 6 (1) (f) GDPR.
We have no control over how the data is processed by the providers of the social networks and whether the data is transferred to third parties. We have no effective control mechanisms to influence the providers of the social networks. As a general rule, data is processed for market research and advertising purposes by creating profiles of the usage based on the user’s behaviour and the users‘ interests. These profiles are, for example, used to place advertisements within and outside the networks. Cookies, in particular, are used for this purpose. For a detailed description of the processing methods and the opt-out options, please refer to the privacy policies and the information provided by the operators of the respective network listed below.
Please also note that user data may be processed outside the European Union when using social networks, which may lead to certain risks because, for example, it may be more difficult to enforce your users‘ rights.
We would like to point out that using social networks and their features lies in your own responsibility. This applies, in particular, to using interactive tools (e.g. sharing, rating content etc.).
Twitter: Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2 D02 AX07, Irland, parent company: Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA; legal basis: legitimate interest (Art. 6 (1) (f) GDPR); privacy policy: https://twitter.com/privacy, (settings: https://twitter.com/personalization).
Xing: XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany; legal basis: legitimate interest (Art. 6 (1) (f) GDPR); privacy policy: https://privacy.xing.com/de/datenschutzerklaerung.
LinkedIn: LinkedIn Ireland Unlimited Company, Wilton Plaza Wilton Place, Dublin 2, Ireland; legal basis: legitimate interest (Art. 6 (1) (f) GDPR); privacy policy: https://www.linkedin.com/legal/privacy-policy; data processing agreement: https://legal.linkedin.com/dpa; standard contractual clauses (ensuring the level of data protection for processing in third countries): https://legal.linkedin.com/dpa; Opt-out options: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.
YouTube: Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Irland, parent company: Google Inc., Amphitheatre Parkway 1600, 94043 Mountain View, CA, USA; legal basis: legitimate interest (Art. 6 (1) (f) GDPR); privacy policy: https://policies.google.com/privacy?hl=de.
Collection of personal data beyond informational use of the website
We may collect and store your personal information that you provide us with, when, for example, registering with MYGTAI, signing up for a newsletter, for an event or webinar, submitting an inquiry, providing us with your contacts, applying for a job or placing an order. The personal data we may retain include name, address, telephone number and email address. Financial information, suonlinech as your bank details or credit card number is also collected when you place an order.
Online Meetings with Webex, GoToMeeting and GoToWebinar
We use the following applications to conduct online conferences, telephone conferences and webinars (hereafter referred to as "online meetings"):
Webex from provider Cisco
Cisco Systems, Inc., 170 West Tasman Dr., San Jose, CA 95134, USA.
GoToMeeting and GotToWebinar from provider LogMeIn
LogMeIn Ireland Limited, 10 Hanover Quay, Dublin 2, Ireland
The legal basis for this type of data processing is our legitimate interest in the effective implementation of online meetings pursuant to Art. 6 para. 1 p. lit. f GDPR. Insofar as the online meetings are conducted within the framework of an existing contractual relationship with you, the legal basis is Art. 6 para. 1 p. 1 lit. b GDPR).
Before an online meeting, you register via our website or the invitation email. Once you have registered, you will receive a confirmation email with an invitation link or a calendar date containing the invitation link. Your registration data will be processed by us.
During an online meeting, the following data may be processed under certain circumstances:
Participant data (first name, last name, phone number, email address), metadata (topic of the online meeting, IP address, technical data of your device, operating system and browser type used), chat data (text data for display and logging where applicable), audio (microphone recording data), video (video conference recording), in the case of recording (video, audio and screen sharing), telephone usage (telephone number, country name, start- and end-time, IP address where applicable).
Your participant data is generally visible to other participants during the meeting. You can adjust and prevent the transmission of your audio and video recordings using the settings available at any time during the meeting.
How the providers Cisco and LogMeIn handle your data, and to what extent Cisco and LogMeIn also process your data independently, can be found in the respective information provided by the providers:
Cisco:
LogMeIn
As part of the order processing, Cisco and LogMeIn may gain knowledge of the aforementioned data in order to process it. We cannot exclude and have no influence over the fact that data is processed in the USA.
Cisco
Insofar as data is transferred to Cisco in the USA, this is in accordance with Art. 46 para. 2 lit. b GDPR. Cisco complies with binding internal data protection regulations that have been approved by the European supervisory authorities and also include technical precautions to protect data from unauthorized access. In this way, Cisco provides a guarantee for an appropriate level of data protection.
LogMeIn
In addition to the order processing contract, we also have the EU standard contractual clauses with LogMeIn. Any data that is forwarded to LogMeIn servers in the USA is handled in accordance with Art. 46 para. 2 lit. c GDPR.
Intended Use and Transfer of Personal Data
We may use your personal data for the following purposes:
- To create and manage your personal account at MYGTAI, if you have registered for an account (acc. Art. 6 (1) (f) GDPR)
- To process your orders and payments, if you have ordered something (acc. Art. 6 (1) (b) GDPR)
- To contact you in the event of delivery problems (Art. 6 (1) (b) GDPR)
- To send marketing offers (e.g. events, new publications and webinars) provided that you have given consent to receive such information (Art. 6 (1) (a) GDPR)
- To send newsletters if you have subscribed such a newsletter (Art. 6 (1) (a) GDPR)
- To send you surveys or questionnaires with the purpose of requesting your feedback about our products and services provided that you have given consent to receive such information (Art. 6 (1) (a) GDPR)
- To send specific information about your booked events and webinars provided you have registered for an event or webinar (Art. 6 (1) (b) GDPR)
- To respond to your inquiries regarding our services (e.g. consulting services, site inspections and information services) (Art. 6 (1) (b) GDPR)
- To process your application if you have applied for a job with us (Art. 88 GDPR and § 26 BDSG)
- To stay in touch with you if you have provided us with your business card , have contacted us or are in contact with us (Art. 6 (1) (f) GDPR).
In part, we use to process your data from external service providers. These have been carefully selected and commissioned by us, are bound by our instructions and are regularly inspected.
Personal data may be transferred to third parties who act on our behalf in order to provide you with the services mentioned above. This can include shipping partners in connection with the delivery of goods; financial institutions responsible for processing payments; and event partners and co-organizers, insofar as the transfer is required for an event’s execution.
Your personal data will be transferred in compliance with applicable laws.
We do not share your information with other than the above mentioned third parties unless required by law.
Due to commercial and tax regulations, we are obliged to save your address, payment and order data for a period of ten years. We store all other data as long as we need it for the provision of our services. Data that is no longer required will be deleted after a maximum of two years.
Note for newsletter registration
Every newsletter we send to you has a link in its footer that gives you access to your personal newsletter account where you can manage your subscriptions yourself. Therefore, please do not forward the newsletter sent by us to you in order to exclude third-party access to your personal newsletter account.
You can order or cancel all newsletters at any time. You can unsubscribe from all newsletters via your newsletter account.
Data Security
We use encryption technology for all transmissions of personal information/data to ensure the highest possible levels of confidentiality. Your personal data is encrypted using an SSL internet connection. We have implemented technical and organizational precautions in order to safeguard our website and other systems against losses, destruction, access, alteration, and distribution of your data by unauthorized parties. You can only access your customer account by entering your personal access information (user ID and password). You should always treat your access data confidentially and close the browser window once you have completed your communication with us, particularly if you share your computer with others.
Your Rights
You have the right to request information about the personal data we hold on you at any time, to the extent specified by Art. 15 GDPR. If your data is incorrect or incomplete, you can ask to have the information corrected or removed where the conditions posed by Art. 16 GDPR (correction) or Art. 17 GDPR( deletion) are met.
We cannot delete your data when the maintenance of records over a specific period of time is legally required or when other legal requirements exist. In your MYGTAI account and your personal newsletter account you can update your contact details and other personal information yourself.
You can withdraw your consent for the use of your data for marketing purposes at any time by sending an email. We will immediately stop sending any further information upon receipt of your withdrawal of consent. You have the right to object to processing of your personal data on grounds relating to your particular situation, where the processing is carried out according to Art. 6 (I) (f) GDPR.
For information, correction, deletion and objection requests please contact online-kundenservice@gtai..
If you believe that, through collection, processing, or use of your personal information, your data protection rights have been infringed upon by Germany Trade & Invest, you can lodge a complaint with the relevant authorities:
Berliner Beauftragte für den Datenschutz und Informationsfreiheit
Friedrichstr. 219
10969 Berlin
Telefon: 030-13889-0
E-Mail