Information on Data Protection for Website Visitors

Content Overview

1. Subject Matter of this Information
2. Person Responsible and Contact Details
3. Data Categories, Purposes and Legal Bases of Processing
4. Recipient of Your Data
5. Transmission to Third Parties
6. Storage Duration
7. Security of the Processing
8. Your Rights
9. Changes to this Information

1. Subject Matter of this Information

We, the company onboard GmbH, inform you below in accordance with Article 13 of the General Data Protection Regulation (EU) 2016/679 (hereinafter: "GDPR") about the processing of your of your personal data (hereinafter: "your data") when you use our website. https://www.onboard.org (hereinafter: "our website"). Please note in in this our information on the use of cookies in this context, which forms an integral part of this information on data protection.

The above information does not apply to any other websites, including those that can be accessed e.g. via can be referred to via hyperlink.

2. Person Responsible and Contact Details

We are responsible for the processing of your data, the company

onboard GmbH
Via Dr J. Köllensperger 10/B
39011 Lana
Italy
E-mail: info@onboard.org

You can reach our Data Protection Officer (DPO) at dpo@onboard.org.

3. Data Categories, Purposes and Legal Bases of Processing

3.1 Log Data

When you simply call up our website - as when you call up any other website - your browser (e.g. Internet browser (e.g. Internet Explorer or Safari) automatically sends information to the server of our website. website. This information is temporarily stored in a server log file (so-called server log file) and is therefore and is therefore referred to below as "log data". The log data includes in particular the IP address of your end device (e.g. computer, smartphone or tablet), the timestamp of the access (date, time, time offset), the content of the request (specific page), the http status code (e.g. "200" for a successful request), the amount of data sent (bytes) and information about the (bytes) and information about the browser used and the operating system of your end device (e.g. Windows or iOS).

The log data may be processed for the following purposes (a) to establish the connection between your device and our website; (b) to analyse system security and stability and to identify errors; and and for error identification; and (c) to investigate abusive page accesses (e.g. DoS or DDoS attacks) or DDoS attacks) and the resulting assertion, exercise or defence of legal claims. defence of legal claims. The legal basis for this are our overriding legitimate interests (Article 6(1)(f) GDPR) arising from the aforementioned purposes.

3.2 Contact Form Data

When you contact us via the contact form, we collect the data that you enter (e.g. first and last name first and last name, email address, your enquiry) and the time of transmission (hereinafter referred to as "contact form data"). This data is processed to process your enquiry (Article 6(1)(b) GDPR).

4. Recipient of Your Data

Your data may be received by authorised employees and by our technical service providers (in particular from our web hosting provider) who act as processors on our behalf. If a security incident occurs, those authorities (e.g. law enforcement agencies and judicial authorities) and persons (e.g. lawyers and experts) may also receive knowledge of your log data. log data that are necessary for the elimination and clarification of the security incident and for any the possible assertion, exercise or defence of legal claims. are used.

5. Transmission to Third Parties

Your data will only be stored in the European Economic Area (EEA). Consequently, when you website or you write to us via the contact form, your data will not be transferred to third countries. to third countries.

6. Storage Duration

6.1 Log data

Your log data is automatically deleted after 7 days, unless a security incident occurs security incident (e.g. a DoS or DDoS attack) occurs. In this case, the log data will be stored until we have resolved and clarified the incident. If in this context If legal claims are asserted, exercised or defended in this context, the further further storage period depends on the applicable limitation periods.

6.2 Contact Form Data

Your contact form data will be stored for as long as is necessary to respond to your enquiry and execution of an order, if applicable. The subsequent storage period is based on applicable statutory retention and limitation periods for the assertion, exercise or defence of legal claims, exercise or defence of legal claims.

7. Security of the Processing

Unfortunately, the transmission of information via the internet is never completely secure. Our website is protected against data breaches by technical and organisational measures. secured. In particular, your data is transmitted in encrypted form. For this purpose, the encryption protocol TLS (Transport Layer Security) is used for this purpose.

8. Your Rights

You have the right of access (Article 15 GDPR), rectification (Article 16 GDPR), erasure/forgetting (Article 17 GDPR) and restriction of processing (Article 18 GDPR).

We would also like to draw your particular attention to your right to object: If your data is processed on the basis of our data are processed on the basis of our legitimate interests (Article 6(1)(f) GDPR) GDPR, you have the right, under the conditions of Article 21 GDPR, to object to the processing of your reasons arising from your particular situation, to object to the processing at any time. to file an objection. If the legal requirements are met, we will no longer process your data from then on.

If you have further questions about these data subject rights or would like to assert one of these data subject rights rights, please send us a corresponding enquiry (see contact details under point 2). Please note that restrictions or even an exclusion of these rights may result from the GDPR itself. the GDPR itself. If this is the case, we will inform you accordingly.

Without prejudice to any other administrative or judicial remedy, you also have the right to lodge a you also have the right to lodge a complaint with a data protection supervisory authority if you are of the opinion that the processing of your data violates the GDPR (Article 77 GDPR).

9. Changes to this Information

We may change or amend this information at any time. You will always find the current version on our website. For older versions, please contact us (see contact details under point 2).

 

Version: 12/09/2022