The protection of your personal data when it is collected, processed and used during your visit to our website is important to us. Your data is protected in accordance with legal regulations. Below you will find information on what data is collected during your visit to our website and how it is used.

1. Name and contact details of the controller

The controller pursuant to Art. 4 (7) of the EU General Data Protection Regulation (GDPR) is
Noxum GmbH
Beethovenstraße 5
97080 Würzburg
Würzburg, Germany

Phone +49 931 46588-0
Fax +49 931 46588-599
info@noxum.com
www.noxum.com

Commercial register: Würzburg Local Court
Register entry: HRB 6212
Value added tax ID: DE194660464

Managing Director:
Norbert Klinnert
Michael Stegmann

2. Contact details of the data protection officer

A data protection officer has been appointed at Noxum GmbH and can be contacted at datenschutz@noxum.com

3 Rights of the data subject

You have the following rights vis-à-vis us with regard to your personal data:
- Right of access,
- Right to rectification or erasure,
- Right to restriction of processing,
- Right to object to processing,
- Right to data portability.
You have the right to complain to a data protection supervisory authority about the processing of your personal data by Noxum GmbH.

4 Individual data collection
4.1 Data collection when visiting the website

When using the website for information purposes only, i.e. if you do not provide us with any other information, we only collect the personal data that your browser transmits to our server.
When you view our website, we collect the following data, which is technically necessary for us to display our website to you and to ensure stability and security:

- IP address
- Date and time of the request
- Time zone difference to Greenwich Mean Time (GMT)
- Content of the request (specific page)
- Access status/HTTP status code
- amount of data transferred in each case
- Website from which the request originates
- browser
- Operating system and its interface
- Language and version of the browser software.
a.) Purposes:
Purposes for which the personal data is to be processed:
- Display of the website.
b.) Legal basis:
Legitimate interests pursuant to Art. 6 para. 1 f) GDPR.
The legitimate interests are:
- Functionality
- presentation
- stability
- and security of the website
c.) Categories of recipients of the personal data:
The web server is technically operated by a service provider (processor).
d.) Storage period:
1 week

4.2 Transient cookies / session cookies (technically necessary cookies)

Necessary data storage includes cookies that are absolutely necessary for the functions of a website. These are, for example, cookies that are used to store log-in data, the shopping cart or the language selection. These are deleted when the browser is closed.

a.) Purposes:
Purposes for which the personal data is to be processed:

- Presentation of the website.

b.) Legal basis:
Legitimate interests pursuant to Art. 6 para. 1 f) GDPR
The legitimate interests are:

- Functionality,
- presentation,
- stability and
- security of the website

c.) Categories of recipients of the personal data:
The web server is technically operated by a service provider (processor).

d.) Storage period:
Until the browser is closed.

4.3 Persistent cookies (which are not technically necessary)

Non-essential cookies are text files that are not only used for the functionality of the website, but also collect other data. These include, for example, the following:

- Tracking cookies
- Targeting cookies
- Analysis cookies
- Cookies from social media websites

Persistent cookies are automatically deleted after a specified period, which may vary depending on the cookie. You can delete the cookies in your browser's security settings at any time.
You can configure your browser settings according to your wishes and, for example, refuse to accept third-party cookies or all cookies.

When using integrated third-party services, it is possible that these use persistent cookies to collect user data. In this case, we point this out in advance and refer to the privacy policy of the respective provider and only use these services after the visitor has given their consent.

4.4 Data collection contact form

We collect the following data in the contact form: First name, last name, company, position, industry, telephone, e-mail address and message. This data is used to record and respond to inquiries, to contact you and to inform you about future events.

a.) Purposes:
Purposes for which the personal data is to be processed:

- Contacting you
- Information about future events.

b.) Legal basis:

Consent for one or more specific purposes (Art. 6 para. 1 a) GDPR).

You have the right to withdraw your consent at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.

c.) Categories of recipients of the personal data:
The web server is technically operated by a service provider (processor).

d.) Storage period:
Until consent is withdrawn.

4.5 Data processing by the webinar tool GoToWebinar from LogMeIn

On our website, we offer you the opportunity to participate in webinars organized by us or to view recordings of webinars that have already taken place. In the webinars, you will receive further information on our products and solutions, as well as on other, topic-related use cases.

When you register, the following personal data is transmitted and processed:

- First and last name
- e-mail address
- Company name
- Job title

In addition, you can optionally provide the following information:

- Role in the purchasing process
- Questions for the speaker

1. a) Purposes

Purposes for which the personal data is to be processed:

- Participation in webinars offered or provision of recordings of webinars already held

- Provision of webinar documents by email (webinar recording, accompanying documents)

- Making contact following the seminar

- Information about future events

1. b) Legal basis

Consent for one or more specific purposes (Art. 6 para. 1 a) GDPR).

You have the right to withdraw your consent at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.
If you request the deletion of your data after using the services offered, we will send this information to LogMeIn with instructions for final deletion in GoToWebinar.

Further information on data protection and security at LogMeIn can be found at https://www.goto.com/de/company/trust.

1. c) Categories of recipients of the personal data
The web service is technically operated by a service provider (LogMeIn, Inc. as processor).

1. d) Storage period
Until consent is withdrawn.

1. e) Data processing outside the European Union
The provider of the GoToWebinar web service is LogMeIn, Inc. This is an American company. This means that the data may also be processed in a third country. The requirements of Art. 28 GDPR are fulfilled by:

- The existence of a contract for order processing including the EU standard contractual clauses.

- LogMeIn has an EU-US and Swiss Privacy Shield certificate.

4.6 Embedded YouTube videos

On some of our pages, we embed videos from YouTube with the user's consent. The operator of the corresponding plugin is YouTube LLC, 901 Cherry Ave, San Bruno CA 94066, USA.
As soon as consent is given to embedding the videos on the corresponding page, a connection to YouTube servers is established. YouTube is informed which pages you visit. If you are logged into your YouTube account and/or Google account, YouTube can assign your surfing behavior to you personally. You can prevent this by logging out of your YouTube account and/or Google account beforehand.

The videos are embedded in extended data protection mode, which means that no cookies are used to track users. However, YouTube may also store usage information in other areas of the browser.
Further information on data protection at YouTube can be found in the provider's privacy policy at https://policies.google.com/privacy?hl=de&gl=de.

4.7 Use of Google Tag Manager

Our website uses Google Tag Manager, a service provided by Google Inc ("Google"). Google Tag Manager is a solution that allows marketers to manage website tags via an interface. The tool itself (which implements the tags) is a cookie-less domain and does not collect any personal data. The tool triggers other tags, which in turn may collect data. Google Tag Manager does not access this data. If a deactivation has been made at domain or cookie level, this remains in place for all tracking tags that are implemented with Google Tag Manager. You can find more information about Google's privacy policy at: https://policies.google.com/privacy.

4.8 Use of Google Analytics

Our website uses Google Analytics, a web analytics service provided by Google Inc ("Google"). Google Analytics uses "cookies", which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. We have activated IP anonymization on this website so that your IP address will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. Google will use this information on behalf of the operator of this website for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de. You can find more information about Google's privacy policy at: https://policies.google.com/privacy.

4.9 Use of Google Ads

Our website uses Google Ads, an online advertising service of Google Inc ("Google"). Google Ads uses "cookies", which are text files placed on your computer, to help the website analyze how users use the site. When you click on an ad placed by Google, a cookie for conversion tracking is stored on your computer. These cookies lose their validity after 30 days and are not used for personal identification. If you visit certain pages of our website and the cookie has not yet expired, Google and we can recognize that someone has clicked on the ad and has been redirected to our site. Each Google Ads customer receives a different cookie. Cookies can therefore not be tracked via the websites of Ads customers. The information collected using the conversion cookie is used to generate conversion statistics for Ads customers who have opted for conversion tracking. Customers are told the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users. If you do not wish to participate in tracking, you can object to this use by easily deactivating the Google conversion tracking cookie via your Internet browser under user settings. You will then not be included in the conversion tracking statistics. You can find more information about Google's privacy policy at: Datenschutzerklärung – Datenschutzerklärung & Nutzungsbedingungen – Google

5. SSL encryption

This website uses SSL encryption to protect your transmitted data in the best possible way. You can recognize such encrypted connections by the prefix "https://" in the page link in the address bar of your browser. Unencrypted pages are marked with "http://".
Thanks to SSL encryption, all data that you transmit to this website - for example in the case of inquiries - cannot be read by third parties.

6. security notice

We make every effort to take all technical and organizational measures to store your personal data in such a way that it is not accessible to third parties. For technical reasons, complete data security cannot be guaranteed when communicating by e-mail, so we recommend that you send confidential information by post.