Thank you for your interest in our website www.smartbusinessplan.com. We take the protection of your personal data very seriously. With this data protection information you will receive information about the type, scope and purpose of the collection and use of your personal data by us. You will also receive information about the rights you are entitled to.
Technical and organisational measures have been taken to ensure that the data protection regulations are observed both by us and by our service providers.
Should you have any further questions regarding data protection in connection with our website, please do not hesitate to contact our data protection officer.
1. Who is responsible for data processing?
2. What is personal data?
Personal data is any information relating to an identified or identifiable natural person. This includes, for example, your name and contact details.
3. Which data do we collect in so-called log files?
With every access to this offer we automatically collect information. This information, also known as server log files, is of a general nature and does not allow any conclusions to be drawn about your person.
Among other things, data is recorded for each access:
IP address of the calling computer So-called referrer URL (the page from which you accessed our site) date and time of access information about the browser and operating system used.
This data is automatically stored in log files each time the website is accessed.
The processing of this personal data is justified in accordance with Article 6(1), first sentence, letter f) of the DSGVO. We have a legitimate interest in data processing for this purpose,
– to quickly establish a connection to our website,
– to enable a user-friendly use of the website,
– to recognize and guarantee the security and stability of the systems and
– to facilitate and improve the administration of the website.
The processing does not take place expressly for the purpose of gaining knowledge about the person of the visitor of the website.
4. We want to know who is interfering with or attacking our website
To protect against attacks and to ensure proper operation, accesses to the Internet offering with the complete IP address are automatically analyzed for possible risks on a security system (firewall) and stored for a maximum of seven days. This does not include data on accesses that are necessary for the further tracking of attacks and malfunctions.
We will only try to find out who is behind an IP address in the case of illegal attacks on our platform. Otherwise, this information will not be disclosed to us and we will not attempt to obtain the data of the owner of an IP address.
We use session cookies on our websites.
The processing is carried out on the basis of Art. 6 Par. 1 S.1 lit. f DSGVO and in the interest of optimizing or enabling user guidance and adapting the presentation of our website.
6. Registration on our website
If you register on our website in order to make use of personalized services such as the use of our platform, personal data will be processed in order to carry out the necessary pre-contractual measures and to fulfil the user contract in accordance with Art. 6 para. 1 lit b) DSGVO.
During the registration process, you must provide the personal data that is required for the acceptance and execution of the user contract. Without these data we will not be able to give you access to our portal. You can still visit our website.
This includes the name, address and e-mail address as contact and communication data. In addition, we refer to our General Terms and Conditions.
Registration allows access to services and content that are only available to registered users. If necessary, registered users have the possibility to change or delete the data provided during registration at any time. Upon request, we will of course inform you which personal data has been collected and stored. Beyond that we correct or delete the data on request, provided that the request does not conflict with any legal storage obligations.
After termination of your contract of use in accordance with the General Terms and Conditions, data that is not covered by the legal obligation to retain data will be deleted after 30 days. All other data is stored for the duration of the legal retention period and then automatically deleted.
If you contact us by e-mail or contact form, we will save your e-mail address and other information.
To use our contact form we need your name and e-mail address. You can provide further information, but you do not have to.
Information that you provide to us when contacting us will be used based on Art. 6 para. 1 sentence 1 b DSGVO or Art. 6 para. 1 sentence 1 f DSGVO in the interest of being able to answer your enquiry as simply, quickly and in a customer-friendly manner as possible. Your data will only be processed to answer your inquiry and will be deleted immediately afterwards, unless we are legally obliged to store it. The data will not be passed on to third parties.
If you would like to object to the processing of your data transmitted via the contact form, please contact [email protected]
9. Who gets my data?
We do not pass on personal data under any circumstances.
Excluded from this are service partners whose services we make use of to provide and process the services owed. These are in particular
– a small number of technical service providers in connection with the operation, maintenance and further development of technical systems and in order to continuously improve online services
– Service providers who take over the e-mail marketing for us.
– For the processing of payments we pass on the payment data required for this to the credit institution commissioned with the payment and, if applicable, to the payment service provider commissioned by us or to the payment service selected by you in the order process. We do not store credit card data. These are forwarded directly to our payment service provider and processed there.
Further data recipients can be public authorities if there is a legal obligation to pass on your data.
10. How long will my data be stored?
We store and process your data, unless otherwise stated in this declaration, as long and as far as this is necessary for the business relationship with you. We observe the principle of storage limitation, i.e. we delete your data as soon as we no longer need it and are also not legally obliged to store it.
11. Is data transferred to a third country?
A transfer into a third country does not take place in principle, unless it is expressly mentioned in this data protection information.
12. What rights do you have?
You have a right to information pursuant to Art. 15 DSGVO, correction pursuant to Art. 16 DSGVO, deletion pursuant to Art. 17 DSGVO, restriction of processing pursuant to Art. 18 DSGVO and a right to data transferability pursuant to Art. 20 DSGVO.
If the processing of your personal data is based on your consent, you have the right to revoke your consent at any time with effect for the future.
If you have any questions or requests for information, correction, restriction of processing, data transfer or deletion of data or revocation of your consent, please use the contact data stated in this data protection declaration.
Right of objection (Art. 21 DSGVO):
If data are collected based on Art. 6 para. 1 sentence 1 letter f (data processing to protect legitimate interests), you have the right to object to the processing at any time for reasons arising from your particular situation. We will then no longer process the personal data unless there are demonstrably compelling reasons worthy of protection for the processing which outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
According to Art. 77 DSGVO, you have the right of appeal to a supervisory authority if you believe that the processing of data concerning you violates data protection regulations. The right of appeal may be exercised before a supervisory authority in the Member State where you are staying, working or suspected of infringing.
13. Data security
In order to protect your data from unwanted access as comprehensively as possible, we take technical and organizational measures. We use an encryption method on our pages. Your information is transmitted from your computer to our server and vice versa via the Internet using TLS encryption. You can recognize this by the fact that the lock symbol in the status bar of your browser is closed and the address line starts with https://
14. Adaptation of the data protection information
We will update our data protection information at irregular intervals as our platform evolves or new technologies are introduced and recommend that you re-read our data protection information from time to time.
Last updated: May 25, 2018