Computec Media GmbH, Dr.-Mack-Str. 83, 90762 Fürth (hereinafter referred to as “we”) operates the service “Act2Access” (hereinafter also the “Act2Access”).
With this data protection declaration, we would like to inform you about what data, in what form, is processed under our responsibility when you use the service. At the same time, we hereby fulfil our duty to inform you in accordance with Art. 13 of the General Data Protection Regulation (DSGVO).
- Responsible persons and contact details of the data protection officer
The person responsible under data protection law for the data processing that takes place in our service is the
Computec Media GmbH
Phone: +49 (911) 2872-100
You can reach our data protection officer at:
Computec Media GmbH
Phone: +49 (911) 2872-100
- Purposes and legal bases as well as duration of data processing
- General use of the services
The servers of our services and the ad servers automatically record your access to our service. Therefore, when you use our service, certain technical data is automatically transmitted to us. This is the following information:
- IP address,
- Geo data (country, state, city),
- Contents that have been accessed,
- Information about the transmission,
- Date of access,
- the amount of data transmitted,
- the referrer,
- the web browser/user agent.
We also record whether your device has a touch screen and the height and width of your display in order to determine which class of device you are using so that we can optimise our offer for you. This and the recording of the IP address when the connection is established is based on Art. 6 para. 1 lit. f) DSGVO. Our legitimate interest is to offer you our service for retrieval and to enable you to use the service.
In order to maintain system security, our hoster also creates so-called log files to record system events and system errors, which may contain your visitor ID. This processing is done to ensure the security and integrity of our IT systems. The aforementioned purposes also represent the legitimate interest for the protection of which the processing is carried out (Art. 6 para. 1 lit. f) DSGVO). We store the log files for a period of 30 days and delete them afterwards.
- Use of the service by publisher or advertiser
When you register or sign up for our service as a publisher or advertiser or on their behalf, we generally process your first and last name, your email address and the password you set. We need this information to authenticate you and allow you to access the Service. If you register or log in as a publisher, we may also process your domain and related usage statistics. If you register or log in as an advertiser, we process information about active campaigns and ads as well as usage statistics.
The legal basis for the processing is the contract with you pursuant to Art. 6 (1) (b) DSGVO or, if applicable, our legitimate interest in the performance of the contract with the respective contractual partner if you are not personally a contractual partner but, for example, work as an employee for our contractual partner (Art. 6 (1) (f) DSGVO).
We store your data for the duration of the contractual relationship with you. We then retain it for a further period of three years after the end of the last contractual year in order to protect our legitimate interests in providing evidence in the event of legal disputes (Art. 6 para. 1 lit. f) DSGVO) and then delete it.
- Use of the service by users of the interactive ads
- Providing access and interaction with ads; sharing anonymous data
When you use our service, you will be shown interactive ads, for example in the form of a survey, and you will be asked to interact with the ads, for example to participate in the survey. In return for your interaction with the ad, you are granted access to the website operator’s offer. In order to be able to carry out this process, the following happens in concrete terms:
- In order for us to grant you access, you will be issued with a visitor ID. This allows us to track whether you have used an Ad and are therefore authorised to access it. For this purpose, it is technically necessary that we set cookies on your computer (see also section “VIII.”). The visitor ID is not linked to your IP address or other data points, so that we cannot identify you as a person on the basis of the visitor ID.
- In order to use the results of your interaction, we record what you have responded to or how you have interacted. Specifically, we record the ads you have viewed, what you have clicked on, the length of your visit, whether you have left the site at any point and the answers you have given to surveys.
The legal basis for this processing is the provision of our service to you and thus Art. 6 para. 1 lit. b) DSGVO.
We pass on this data in anonymised form, i.e. without any personal reference, to the advertiser as well as to the website operator through which you use our service. The legal basis for the anonymisation is Art. 6 para. 1 lit. f) DSGVO, whereby the legitimate interest pursued with the processing is that the operators of the services receive information about the use of Act2Access and your offers.
You can assert your rights as a data subject both against us and against the advertiser or website operator. However, we ask you to address us first and foremost, as we are responsible for the data processing in the respective internal distribution of roles.
- Processing for analysis purposes
With your consent according to Art. 6 para. 1 lit. a) DSGVO and until revocation, we also process the above data incl. your visitor ID for analysis purposes, in particular to evaluate your use of Act2Access and to improve our services. In doing so, we also determine whether you have visited several pages on which Act2Access is offered and have used Act2Access there in each case.
You can revoke your consent at any time with effect for the future. Further information on your data subject rights can be found in sections “IV.” and “V.”.
- Other recipients of the data
The service is hosted by the Swiss service provider Act2Access AG, which processes your data on our behalf. We always use external service providers if we cannot or cannot reasonably perform services ourselves. These external service providers are primarily providers of IT services, such as our hoster, e-mail provider or telecommunications provider. We also use service providers who may process data outside the EU, in particular in the United States of America. However, we ensure that these service providers are either located in a country with an adequate level of protection, are certified under the EU-US Privacy Shield or conclude standard data protection clauses of the EU Commission with us, as they can be found at https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de.
- General data subject rights
The General Data Protection Regulation guarantees you certain rights which you can assert against us – insofar as the legal requirements are met.
- 15 GDPR – Data subject’s right to information: You have the right to request confirmation from us as to whether personal data relating to you is being processed and, if so, what that data is and the circumstances in which it is being processed.
- 16 DSGVO – Right to rectification: You have the right to demand that we rectify any inaccurate personal data relating to you without delay. Taking into account the purposes of the processing, you also have the right to request the completion of incomplete personal data – also by means of a supplementary declaration.
- 17 DSGVO – Right to erasure: You have the right to demand that we delete personal data concerning you without delay.
- 18 DSGVO – Right to restrict processing: You have the right to demand that we restrict processing.
- 20 DSGVO – Right to data portability: You have the right, in the case of processing based on consent or for the performance of a contract, to receive the personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format, and to transfer this data to another controller without hindrance from us or to have the data transferred directly to the other controller, insofar as this is technically feasible.
- 77 DSGVO in conjunction with § 19 BDSG – Right to lodge a complaint with a supervisory authority: You have the right to lodge a complaint with a supervisory authority at any time, in particular in the member state of your place of residence, your place of work or the place of the alleged infringement, if you are of the opinion that the processing of personal data concerning you violates applicable law.
- In particular, right to object and right to withdraw consent
Art. 21 DSGVO – Right to object: You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is necessary for legitimate interests on our part or for the performance of a task carried out in the public interest, or which is carried out in the exercise of official authority.
If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
If we process your personal data for the purpose of direct marketing, you have the right to object to the processing at any time. If you object to processing for direct marketing purposes, we will no longer process your personal data for these purposes.
In order to exercise your right of objection, you can, for example, send us an e-mail to one of the aforementioned e-mail addresses.
Withdrawal of consent: If you have given us consent, you have the right to withdraw your consent at any time. All data processing that we have carried out up until your revocation remains lawful in this case.
If you wish to object to further data processing for analysis purposes, you can set an opt-out cookie under this https://consumer.act2access.com/opt-out.
- Obligation to provide data
You have no contractual or legal obligation to provide us with personal data. However, we may not be able to offer you our services without the data you provide.
- Existence of automated decision-making (including profiling)
We do not subject you to automated decision-making, including profiling in accordance with Art. 22 (1) and (4) DSGVO, which has legal effects on you or affects you.
The cookies set by us when you call up the service have the designation […] The cookie data is recorded by us until you object to the processing or delete the cookies. Third parties do not have access to this cookie.
Fürth, January 2021
Act2Access™ products - exclusively marketed by Computec Media GmbH. | © 2020 Act2Access AG. All rights reserved. Trademarks are the property of their respective owners.