I. Responsible party for data processing
The responsible party for the processing of personal data is:
scc EDV-Beratung AG
scc will keep your data secure and take technical and organizational measures to protect your data from loss, destruction, access, misuse or alteration by unauthorized persons. These will be continuously revised in accordance with technological developments. Contractual partners of scc who have access to your data in restriction of the provisions of the applicable data protection law in order to provide services to you on behalf of scc will be contractually obliged to keep this information secret and may not process it for any other purpose. In some cases, it will be necessary for us to pass on your requests to companies affiliated with scc within the scc group of companies. In these cases, too, your data will only be treated and processed confidentially in accordance with the currently applicable data protection laws.
Your personal data will only be stored by us for as long as is necessary to fulfill the purpose stated in each case, in compliance with the relevant legal provisions. Data will only be stored beyond this time if this is required by law (e.g., the obligation to retain data) or if limitation periods concerning potential legal claims are still open.
III. Services requiring registration
If you wish to use the services provided on the website (e.g., registration for events), we may require further information from you in order to provide these services.
For this purpose, you would have to provide us, for example, with your name, e-mail address and other information (address, telephone number, IP-Address etc.), which would allow us to verify, for example, that you are the owner of the e-mail address provided or that the owner of the e-mail address agrees to receive the services in question, in order to provide the services requested by you accordingly.
Online events (online meetings / webinars) are held using software products from various software providers. The specific choice of software product for an online event is apparent. Automated decision-making within the meaning of Article 22 of the GDPR is not used.
ClickMeeting is used for events, provided that no other software product is used and is apparent:
For individual events, special framework conditions, such as the recording (photos and/or videos) of the respective event. These can later be made available on-demand or used in press coverage and published in (social) media, publications and on websites of scc EDV-Beratung AG for public relations work and presentation of the activities of the responsible person and to increase the name of recognition of the responsible person. The participants will be informed about these framework conditions. For online events (including webinars) the utilisation can result in video files of all video, audio and presentation recordings as well as text files of the online meeting chat. As it is generally intended that cameras and microphones of the webinar participants are deactivated, any questions asked during the recording will be saved in text form by the respective questioner.
The aforementioned data is so-called personal data, i.e., data which, in summary, can enable your identity to be established or clearly identify you as a specific person. In principle, it is of course also possible for you to use our access-free Internet offer of the website without having to disclose your identity in whole or in part.
Furthermore, in the context of using services, you may possibly provide us with further data – going beyond the data required for the provision of the services (such as: industry, professional group, professional position, etc.) – on a voluntary basis, for example in corresponding form fields. This data will be used by us for the needs-based design of our offers, for product information for advertising, for customer care or for a purpose specifically and explicitly stated in the registration form.
IV. Direct contact
If you contact us (via contact form, e-mail or telephone), the data you provide autonomously will be processed, which is required to process and respond to your request. This information is stored for the period of time we need to respond to your inquiry. The processing of personal data is based on the existing overriding interest of scc in fulfilling the stated purpose.
In this context, we process your first name, last name and e-mail address, if provided. Optionally, the following data may also be processed by you, if specified: Company, salutation or title.
In fulfillment of our pre-contractual obligations as well as on the basis of legitimate interest, we need your personal data in order to evaluate whether we can offer you a suitable position. In particular, this concerns information provided by the applicants themselves. If your application is followed by the conclusion of a contract of employment, your submitted data will be stored by us for the purpose of the usual organizational and administrative process in compliance with the relevant legal provisions. If your application is rejected, your applicant data will be deleted in accordance with the statutory retention periods.
VI. Data processing during the course of a business relationship
During the course of our business relationship with you, it is essential that we process your personal data, such as contact data or information about business processes. The purpose of the processing is, in accordance with our relationship with you, for example, the performance of the contract, compliance with legal requirements and the assertion of contractual claims. We process your personal data at least for the duration of the business relationship. However, if we are required to store data for a longer period due to legal obligations, the time limits specified in the respective laws and regulations will be observed.
VIII. Automated data processing on our website
When you visit our website, certain data is automatically stored for system administration, statistical or backup purposes. This data may include the name of your Internet service provider, your IP address, the version of your browser software, the operating system of the computer used to access our site, the Internet site from which you visit us, the Internet pages you visit on our site and, if applicable, search terms you used to find our site. This automatically collected data may, under certain circumstances, allow conclusions to be drawn about a specific visitor to the website. The use of such data is exclusively anonymous. Further information can be found under “Google Analytics Legal Notice”.
IX. Google Analytics Legal Notice
X. Use of social media plugins and associated cookies
Social plugins (“Plugins”) of the social network LinkedIn, XING and Facebook (Meta) may be used on our website. These services are offered by the companies LinkedIn Inc, XING SE and Meta Platforms Ireland Limited (“providers”).
In order to increase the protection of your data when visiting our website, the plugins are integrated into the site by means of a so-called “2-click solution”. This integration ensures that when you call up a page of our website that contains such plugins, no connection is yet established with the servers of the providers. Only when you activate the plugins by clicking on the share buttons and thus give your consent to the data transmission, your browser establishes a direct connection to the servers of the providers. The content of the respective plugin is then transmitted directly to your browser by the associated provider and integrated into the page.
By integrating the plugins, the provider receives the information that you have accessed the corresponding page of our website. If you are logged in to LinkedIn or XING or Facebook via your user account while visiting our website, the provider can assign the visit to your user account. If you interact with the plugins, for example by clicking the “Share” button, the corresponding information is transmitted from your browser directly to the provider and stored there.
The purpose and scope of the data collection and the further processing and use of the data by LinkedIn or XING or Facebook, as well as your rights in this regard and setting options for protecting your privacy, can be found in the privacy notices of the providers:
XI. Friendly Captcha
The Friendly Captcha service is a solution/service provided by Friendly Captcha GmbH, Am Anger 3-5, 82237 Wörthsee, Germany. Friendly Captcha is a privacy-friendly protection solution to make it more difficult for automated programs and scripts (so-called “bots”) to use our website.
For this purpose, we have integrated a script from Friendly Captcha into our website (e.g. for contact forms) so that the visitor’s device can establish a connection to the servers of Friendly Captcha in order to receive a calculation task from Friendly Captcha. The visitor’s device solves the computational problem, which requires certain system resources, and sends the calculation result to our web server. The user contacts the Friendly Captcha server via an interface and receives an answer as to whether the puzzle has been solved correctly by the end device. Depending on the outcome, we may apply security rules to requests via our website, such as processing or rejecting them.
The data will only be used for the protection against spam and bots described above.
When you visit a website that contains the Friendly Captcha widget and submit a puzzle request, the following log data is collected:
1. The Request Headers User-Agent, Origin und Referer.
2. The puzzle itself, which contains information about the account and the website key to which the puzzle refers.
3. The version of the widget.
4. A timestamp.
Friendly captcha’s service includes an anonymized counter per IP address to dynamically scale puzzle difficulty on the edge network to detect malicious users and minimize the blocking of legitimate users. This data is stored separately from the rest of the data and cannot be associated with specific websites. This service anonymizes IP addresses via one-way hashing so that they cannot be personally identified.
The legal basis for the processing is our legitimate interests in protecting our website from abusive access by bots, i.e. spam protection and protection against attacks (e.g. mass enquiries), Art. 6 (1) (f) GDPR.
More details can be found at: https://friendlycaptcha.com/de/legal/privacy-end-users/
XII. LinkedIn-Insight Tag
We use the website analytics feature LinkedIn Insight-Tag from LinkedIn IrelandUnlimited Company (Wilton Plaza, Wilton Place, Dublin 2 Ireland; “LinkedIn”). The LinkedIn Insight tag enables the collection of data from your visit to our website, including URL, referrer URL, IP address, device and browser properties (user agent), and timestamp. IP addresses are shortened or hashed. LinkedIn does not share any personally identifiable information with us, but uses the data collected on our website for reports (in which you are not identified) about website visitors and ad performance. LinkedIn also provides retargeting for website visitors on LinkedIn, so we can use this data to display targeted ads outside of our website without identifying you. LinkedIn also uses data that does not identify you to improve the relevance of ads and reach members across devices. If you do not want this to happen, you can opt out of retargeting. For more information on privacy related to LinkedIn, please see here. The use of the LinkedIn insight tag and the associated tracking is based on your consent.
XIII. Other cookies
In addition to the Google Analytics cookies mentioned in the previous points, the social media specific cookies and the essential cookies that enable basic functions and are necessary for the proper functioning of the website, other cookies may also be used for the use of external media.
Other cookies may be used in the scope of use specified by you through the cookie banner:
XIV. External content
Our website contains links to other websites. scc is neither responsible for this external content nor for their data protection precautions.
XV. Objection to data processing
You can revoke the consent you have given us to store your personal data and use it to provide the respective services (e.g., events, applications, etc.) at any time.
Please note that even after your objection to data processing, we may continue to process your data only to the extent required by the specified legal requirements, insofar as the processing purpose is justified by legal requirements.
Furthermore, the objection to further data use has the consequence that you may no longer be able to obtain the services obtained and the provision of the respective service may be discontinued immediately for you on our part. In this context, your personal data will be deleted immediately and will no longer be kept in our inventory.
XVI. Right to information
You have the right at any time to obtain information about the nature and extent of the data stored about you, its origin and recipients, and the purpose for which it is stored.
XVII. Data protection authority
If you are of the opinion that the processing of your personal data violates applicable data protection law or that your data protection claims have otherwise been violated in any way, you may, in addition to contacting us directly, complain to the competent supervisory authority (https://www.dsb.gv.at/) in accordance with Art 77 DSGVO using the information provided in the section “Further Information”.
XVIII. Further information
If you have any questions that are not answered by this data protection declaration or if you would like further information on any point, please contact us by post at: scc EDV-Beratung AG, Wambachergasse 10, A-1130 Vienna, with the subject: “Inquiry: Data protection”. If you wish, we will of course be happy to answer your queries or requests for information in writing and by post for your security.