Privacy Statement
We, the operators of website help.k15t.com are controllers of the personal data of the user ("you") of said websites within the meaning of the applicable data protection law, more specifically the General Data Protection Regulation ("GDPR").
Below, we will provide information (Art. 13 et seqq. GDPR) about the data processed when you visit our websites and the relevant legal basis. You will also receive information on how we protect your data from a technical and organisational point of view and on your rights towards us and the responsible regulatory authorities.
Information about the controller
K15t GmbH
Ostendstr. 110
70188 Stuttgart
Phone: +49 711 935935 30
Fax: +49 711 935935 39
e-mail: hello@k15t.com
Data protection officer
Our data protection officer can be contacted via privacy@k15t.com.
Processing your personal data
Informational use of our websites
When you visit our websites, so-called log files are processed, with our system collecting them automatically.
The following log files are processed automatically:
IP address of the requesting computer
Date and time of visit
Time zone difference to Greenwich Mean Time (GMT)
HTTP method
Access pages
Access status/HTTP status code
Amount of data transmitted in the response
Referrer
Type of Internet browser used
Version of Internet browser used
Operating system and version
Operating system user interface
User's Internet service provider
The log files contain your IP address and possibly other personal data. In principle, it is therefore possible to match them to you. However, we store your data only temporarily and specifically not together with other personal data.
We only use the data to secure our information technology systems, more specifically for forensics in the event of break-ins. The log files are deleted after 90 days at the latest.
These purpose(s) also justify our legitimate interest to process the data according to point (f) of Article 6(1) GDPR.
Contact forms
You may contact us electronically using our contact form, e.g. to provide us with feedback, to ask questions or to submit a contact request. If you use this option, data entered into that form will be transmitted to us.
In addition to the data you provide to us voluntarily, we store the time (date and time) of transmission of your data as well as your IP address. The processing of such data corresponds to our legitimate interest (point (f) of Article 6(1) GDPR) to guarantee our systems’ security and to prevent misuse. Such additional data, which we collect when you contact us, will be deleted after 3 months. However, if you have signed up for our newsletter, we will store your data until your consent is withdrawn.
The legal basis for processing your data to handle your contact request is point (a) of Article 6(1) GDPR. If your contact aims to conclude a contract with us, point (b) of Article 6(1) GDPR serves as an additional legal basis for processing your personal data.
The data will be stored until they are no longer required to achieve the purpose of the conversation with you and the purpose of your contact has been fully clarified.
Contact by e-mail
You can contact us by e-mail (best: hello@k15t.com). We will store your personal data transmitted in the e-mail. The data will not be passed on to third parties and it will be processed only to handle your contact request. The legal basis for processing your personal data is point (f) of Article 6(1) GDPR. The data will be stored until they are no longer required to achieve the purpose of the conversation with you and the purpose of your contact has been fully clarified.
If your e-mail aims to conclude a contract with us, point (b) of Article 6(1) GDPR serves as an additional legal basis for processing your personal data. These data will be stored for as long as they are necessary for the performance of the contract. Otherwise, we will store your data only to comply with contractual or legal obligations (e.g. tax obligations) (point (c) of Article 6(1) GDPR).
You may withdraw your consent to the processing of your personal data at any time by sending an e-mail to hello@k15t.com. In this case, all personal data of the conversation will be erased and it will not be possible to continue the conversation.
Cookies and Local Storage
Please note: you can make sure that cookies are not stored at all on your computer, or that only the storage of certain cookies is permitted. You can select this in your Internet browser settings. There you can also view and delete any stored cookies.
If you block all cookies, you may not be able to use all the features of our websites.
We use cookies on our websites. Cookies are text files that our web server sends to your browser while you are visiting our websites. Your browser will store them on your computer for later retrieval. This means cookies can be used to identify your Internet browser when you revisit the websites. Session cookies are deleted when the browser is closed. Persistent cookies are stored on the hard drive until their default expiration date is reached or until you actively remove them.
In addition to cookies, we use the Local Storage method to store data locally in the cache of your browser. These data are stored persistently in your browser but you can remove all Local Storage data by deleting your browser cache.
Legal basis for the use of cookies
The data processed by the cookies, which are required for the proper functioning of the website, are therefore necessary to safeguard our legitimate interests and those of third parties in accordance with point f of Article 6(1) GDPR.
For all other cookies, you have given your consent to this via our opt-in cookie banner in accordance with point a of Article 6 (1) GDPR.
Own cookies
We use our own cookies to ensure the functionality of our websites. Some elements of our website require that your Internet browser is recognised after a page change.
The overview shows you for which purposes your data are collected and how long they will be stored for:
Name | Function | Storage period | Rendered anonymous |
|---|---|---|---|
ajs_anonymous_id | Functional cookie to store last visit. | Until the cookies are actively deleted. | Yes |
pageTreeState | Functional cookie to collapse the page tree. | Until the cookies are actively deleted. | Yes |
shc-cookies | Functional cookie for Cookie Banner. | Until the cookies are actively deleted. | Yes |
i18nextLng | Language key to translate UI elements | Data in session storage is cleared when the page session ends. | Yes |
The legal basis for processing personal data in cookies, which we place on our websites to ensure their functionality and our offer, is point (f) of Article 6(1) GDPR.
Option to object and remove
As explained above in this section, you can enable or restrict the transmission of cookies by changing the settings in your Internet browser. Cookies already saved by your Internet browser can be deleted at any time in your settings. If cookies are restricted or deactivated for our websites, it is possible that not all functionalities can be used.
Matomo
Matomo a service by InnoCraft, 7 Waterloo Quay PO625, 6140 Wellington, New Zealand (hereinafter: Matomo) is implemented on our websites.
Matomo is processing the following data:
Custom Dimensions
Custom Variables
anonymised User ID
Location (by country) of the user
Date and time
Title of the page being viewed
URL of the page being viewed
URL of the page that was viewed prior to the current page
Screen resolution
Time in local timezone
Files that were clicked and downloaded
Link clicks to an outside domain
Pages generation time
Country, region, city
Main Language of the browser
User Agent of the browser
The processing of data with Matomo is based on legitimate interests. We use the data collected in this way for statistical purposes to optimise our websites and offers. The relevant legal basis is point (f) of Article 6(1) GDPR.
The data is hosted by Matomo in Germany.
For help.k15t.com you can prevent cookies being saved through your browser settings.
Matomo's Privacy Statement is available at: https://matomo.org/matomo-cloud-privacy-policy/ .
Hosting by AWS (Amazon Web Services)
We are hosting our website with AWS. The provider is Amazon Web Services EMEA SARL, 38 Avenue John F. Kennedy, 1855 Luxembourg (hereinafter referred to as “AWS”).
When you visit our website, your personal data will be processed on AWS servers. This may also result in the transfer of personal data to the parent company of AWS in the United States. The transfer of data to the US is based on the EU’s standard contractual clauses. For details please consult: https://aws.amazon.com/de/blogs/security/aws-gdpr-data-processing-addendum/ .
For more information, please see the AWS Data Privacy Policy: https://aws.amazon.com/de/privacy/?nc1=f_pr .
AWS is used on the basis of Art. 6(1)(f) GDPR. We have a legitimate interest in a depiction of our website that is as reliable as possible. If your respective consent was obtained, processing will occur exclusively based on Art. 6(1)(a) GDPR. This consent may be revoked at any time.
Search AI
You have the option of using our Search AI on our help center. The data from the input mask is transmitted to the Search AI. This provides automated answers to the respective topics. It is not possible to answer any questions beyond the predefined questions. The Search AI's training does not involve using input data from user interactions; it operates based on a pre-trained model without learning from ongoing conversations. The answers are merely for your initial information.
Use of the Search AI service is voluntary. The service is operated on the basis of our legitimate interest in improving customer service and support in accordance with Art. 6 para. 1 lit. f) GDPR. To clarify the questions and topics addressed here, you can also contact an employee of K15t GmbH at any time in the conventional manner (e.g. by post, e-mail, telephone).
It is not necessary for you to provide us with personal data in order to use the Search AI. These are only transmitted when you independently enter and send personal data/information to the Search AI.
Other third party content included in our websites
Jira Service Management
On the support website (help.k15t.com), we use the service provider Atlassian. Pty Ltd Level 6, 341 George Street, Sydney NSW 2000, Australia and their tool Jira Service Management (hereinafter: "Jira Service Management"), which you can use to submit support requests directly to us.
To do so, we request the following information via the support form:
e-mail address
topic and description
Any further information is voluntary. By submitting this form, you agree to us processing your data. The data will be stored until you ask us to erase, e.g. your support request or your complete profile, or if we no longer use Jira Service Management as a service provider, unless statutory obligations require a longer storage period (point (c) of Article 6(1) GDPR). Jira Service Management will completely erase the data 40 days after the erasure request.
Use of Jira Service Management as well as of the information obtained through Jira Service Management is subject to Jira Serivce Management's terms of use: https://www.atlassian.com/legal/cloud-terms-of-service .
Jira Service Management also provides additional privacy information at: https://www.atlassian.com/legal/privacy-policy
The legal basis for us processing your data to clarify your request is point (a) of Article 6(1) GDPR.
Jira Service Management automatically stores information as Local Storage. To remove the information stored as Local Storage, please delete your browser cache.
Our activities in social networks
For the communication with you on social networks and to inform you about our services, we are represented there with our own pages. If you visit one of our social media pages, we are jointly responsible with the provider of the respective social media platform for the processing operations triggered by this, within the meaning of Article 26 GDPR.
We are not the original provider of these pages, but only use them within the scope of the possibilities offered to us by the respective providers.
As a precaution, we would therefore like to point out that your data may also be processed outside the European Union or the European Economic Area. Use may therefore be associated with data protection risks for you, as it may be more difficult to safeguard your rights, e.g. to information, deletion, objection, etc., and processing in social networks is often carried out directly for advertising purposes or for the analysis of user behavior by the providers without us being able to influence this. If user profiles are created by the provider, cookies are often used or the user behavior is assigned to your own social network member profile.
The described processing operations of personal data are carried out in accordance with (f) of Article 6(1) GDPR on the basis of our legitimate interest and the legitimate interest of the respective provider in order to communicate with you in a timely manner or to inform you about our services. If you have to give your consent to data processing as a user with the respective providers, the legal basis is point (a) of Article 6(1) in conjunction with Art. 7 GDPR.
As we do not have access to the providers' databases, we would like to point out that it is best to assert your rights (e.g. to information, correction, deletion, etc.) directly with the respective provider. Further information on the processing of your data in the social networks is provided below by the respective social network provider we use:
(Joint) controller for data processing in Europe:
Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland
Privacy policy (data policy): https://www.facebook.com/about/privacy
(Joint) controller for data processing in Germany:
Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland
Privacy policy (data policy): https://instagram.com/legal/privacy/
LinkedIn
(Joint) controller for data processing in Europe: LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland
Privacy policy: https://www.linkedin.com/legal/privacy-policy
X (Twitter)
(Joint) controller for data processing in Europe:
Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland
Privacy policy: https://twitter.com/de/privacy
Information about your data: https://twitter.com/settings/your_twitter_data
YouTube
(Joint) controller for data processing in Europe:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Privacy policy: https://policies.google.com/privacy
Your rights
When we process your data, you are a "data subject" within the meaning of the GDPR. You have the following rights: Right of access, right to rectification, right to restriction of processing, right to erasure, right to be informed and right to data portability. You furthermore have a right to object and a right to withdraw.
Below, you will find details on the individual rights:
Right of access
You have the right to ask us to confirm if we process your personal data.
If we process your personal data, you have the right to access the following information:
the processing purposes;
the categories of personal data being processed;
the recipients or categories of recipients to whom your personal data have been or will be disclosed, more specifically recipients in third countries or international organisations;
if possible, the planned duration for which your personal data will be stored or, if this is not possible, the criteria for determining this duration;
the existence of a right to have your personal data rectified or erased or to restrict or object to such processing by us;
the existence of a right to lodge a complaint with a regulatory authority;
if the personal data were not collected directly from you, all available information about the origin of the data;
the existence of automated decision-making, including profiling pursuant to Article 22(1) and (4) GDPR and - at least in these cases - meaningful information on the logic involved as well as on the scope and intended effects of such processing for you.
If we transfer your data to an international organisation or to a third country, you furthermore have the right to request information on whether suitable guarantees pursuant to Article 46 GDPR are in place in connection with such transfer.
Right to rectification
You have the right to rectification and/or completion of the data we have stored about you if such data are inaccurate or incomplete. We will rectify or complete the data without undue delay.
Right to restriction of processing
Under certain conditions, you have the right to request us to restrict processing your personal data. To do so, at least one of the following conditions must be fulfilled:
You contest the accuracy of the personal data for a period enabling us to verify the accuracy of the personal data;
The processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead;
We no longer need the personal data for the purposes of the processing, but you require them for the establishment, exercise or defence of legal claims; or
You have objected to processing pursuant to Article 21(1) GDPR pending the verification whether our legitimate grounds override Yours.
Right to erasure
You have the right to obtain from us the erasure of your personal data without undue delay if we are obliged to do so. This is the case where one of the following grounds applies:
Your personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed.
You withdraw consent on which the processing was based according to point (a) of Article 6(1), or point (a) of Article 9(2) GDPR, and where there is no other legal ground for the processing.
You object to the processing pursuant to Article 21(1) GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Article 21(2) GDPR.
Your personal data have been unlawfully processed.
The personal data must be erased for compliance with a legal obligation in Union or Member State law to which we are subject.
Your personal data have been collected in relation to the offer of information society services referred to in Article 8(1) GDPR.
Where we have made your personal data public and are obliged pursuant to the above requirements to erase the personal data, we, taking account of available technology and the cost of implementation, will take reasonable steps, including technical measures, to inform other controllers which are processing the personal data, that you have requested us to erase any links to, or copy or replication of, those personal data.
However, your right to erasure will not apply to the extent that processing is necessary for the following reasons (exceptions):
For exercising the right of freedom of expression and information
For compliance with a legal obligation which requires processing by Union or Member State law to which we are subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in us;
For reasons of public interest in the area of public health in accordance with points (h) and (i) of Article 9(2) as well as Article 9(3) GDPR;
For archiving purposes in the public interest, scientific or historical research purposes or statistical purposes in accordance with Article 89(1) GDPR in so far as the right referred to in paragraph 1 is likely to render impossible or seriously impair the achievement of the objectives of that processing; or
For the establishment, exercise or defence of legal claims.
Notification Obligation
If you have exercised your right of rectification, erasure or restriction against us, we are obliged to notify all recipients whom we have disclosed your personal data, of the rectification, erasure or restriction of the processing of your data, unless this proves impossible or involves a disproportionate effort.
Right to data portability
You have the right to receive the personal data you have provided to us, in a structured, commonly used and machine-readable format. You furthermore have the right to transmit those data to another controller, where:
the processing is based on consent pursuant to point (a) of Article 6(1) or point (a) of Article 9(2) GDPR or on a contract pursuant to point (b) of Article 6(1) GDPR; and
the processing is carried out by automated means.
You have the right to have your personal data transmitted directly by us to another controller, where technically feasible and if it does not adversely affect the rights and freedoms of others.
This right to data portability does not apply to processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in us.
Right to object
You have the right to object, on grounds relating to your specific situation, at any time to processing of your personal data, which is based on point (e) or (f) of Article 6(1) GDPR, including profiling based on those provisions.
In case of an objection, we will no longer process your personal data, unless we can demonstrate compelling legitimate grounds for processing which override your interests, rights and freedoms, or the processing serves the purposes of establishing, exercising or defending legal claims.
Where we process your personal data for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such marketing, which includes profiling to the extent that it is related to such direct marketing.
If you object to the processing for direct marketing purposes, we will no longer process your personal data for these purposes.
In the context of the use of information society services, and notwithstanding Directive 2002/58/EC (Directive on privacy and electronic communications), you may exercise your right to object by automated means using technical specifications.
Right to withdraw
Pursuant to Article 7(3) GDPR, you have the right to withdraw your consent at any time. The withdrawal of consent will not affect the lawfulness of processing based on consent before its withdrawal.
Right to lodge a complaint with a regulatory authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, especially in the Member State of your habitual residence, place of work or place of the alleged infringement, if you consider that the processing of your personal data infringes your rights under the GDPR.
For an overview of the respective data protection officers of the federal states as well as their contact details go to: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html .
Version and amendments to this Privacy Statement
Status: