‘Exactag GmbH collects and stores data on this website (www.exactag.com) and its subpages for marketing and optimisation purposes. From this data user profiles can be created under a pseudonym. For this purpose, cookies and a technique that is called fingerprint can be used. Cookies are small text files that are stored locally in the cashe of the visitor’s web browser. The fingerprint technology (also called IP-less Key) stores environment variables of the Internet browser in a database, without storing user-related data such as an IP address (IP address in Wikipedia). Cookies and/or fingerprints allow for the recognition of the Internet browser. The data collected by the Exactag technology is, without the explicit consent of the person concerned, not used to identify the user personally nor aggregated with any personal data about the bearer of the pseudonym. It is at all times possible to object to the data collection and storage with effect for the future (Opt-out).’
Compliance with the German and European data protection regulations remains our highest priority!
We are familiar with the data protection regulations and are in consistent correspondence with the regulatory authorities. This way we offer 100% compliant services in compliance with the latest requirements of the state’s privacy officers.
In addition to the compliance with legal requirements, it is very important to us to provide voluntary self-regulation. By this means we are in accordance with the recommendations of approved data privacy bodies.
In order to meet our own expectations and to give you the confidence of being optimally informed, we have compiled answers to key questions around the topic of “privay with Exactag” below.
What data is stored in Exactag?
Fundamentally, we have to differentiate between two types of data storage:
On the on hand, we store contact details of customers and service providers, who we have business relations with and wish to maintain in the future. This type of dats is called “customer data”.
On the other hand, we store “visitor data” for our clients and on our website. Visitor data is stored when a banner ad is viewed or clicked on as well as when a visitor lands on a client’s or our own website.
How does Exactag treat the data storage?
Fundamentally, we have to differentiate between two types of data storage:
Non-personal information comprises the information that is gathered, processed and stored anonymously and which cannot be assigned to one specific person. Among non-personal data is, in particular, the majority of the above mentioned visitor data. They contain aggregated key figures like the average length of stay, call frequencies of websites or the content of shopping baskets, however no data that can create a reference to a specific person. Therefore the data of one specific visitor is administered as a pseudonym, which will not and cannot be used to establish a relationship to a specific person. When storing visitor data, especially IP addresses and the domain data of the visitor are not stored, so that a reference to the specific visitor is not possible.
Information that implies a concrete reference to one specific person can be summarised as personal data. This category contains in particular customer data, which can involve details like company, name, address, telephone number and email. (opt-out)
We commit ourselves to only collect personal data in accordance with legal requirements. This way, personal data is only stored in our customer database for purposes of meeting contractual obligations and not passed on to third parties. Exactag does not use personal data for the purpose of advertising or market research. Within the framework of the regulations of the Telemedia Act, we willingly provide information about your personal data that is stored with us.
How do I object to the data storage?
Regarding personal data you can object to the storage of these at any time. Depending on legal requirements, your data will be immediately deleted or blocked as far as your data is not required to fulfill our obligations towards you. This is also done retrospectively for all personal data that has been stored in the past.
You can even object to the collection and storage of non-personal data with effect for the future in Exactag. In that case, no visitor data is stored when you visit our website and its subpages in the future. To object to the storage of your visitor data, please click here.
Will Exactag transfer the data on to third parties?
No, we don’t pass on any data to third parties. An exeption is made for authorised state bodies such as prosecuting authorities, which have to be involved in case of a misuse of our services.
Moreover, the visitor data that is stored for our clients solely belongs to this respective client. Without the client’s explicit approval this information will not be used to create internal statistics, to calculate industry averages or to track visitors across multiple websites of different clients.
Does Exactag handle data processing abroad?
We host all data in a European data center in Düsseldorf, Germany. We guarantee compliance with safety standards that are determined by German law and the European Community for the storage of data.
Does Exactag meet the requirements of the Düsseldorf district (Düsseldorfer Kreis)?
Yes, according to the decision of the principal supervisory authorities for privacy, Exactag provides privacy-compliant settings.
A brief overview of the decision of the Düsseldorf district (Düsseldorfer Kreis) of 26th/27th November in Stralsund, can be found on the website of the State Commissioner for privacy and freedom of information of North Rhine-Westphalia.
How does Exactag implement the technical policy?
Our core competence and fundamental part of our service is the operation of complex technological infrastructures. Therefore, it is our priority that our data centers are operated in accordance with the latest safety standards. Among these are the latest firewall and intrusion detection technologies as well as extensive physical controls and restrictions on access to our data centres. On application level, modern authentication methods for user and administrator rights take place, as well as daily backups of all data and its local archiving. For the collection of personal data, the “Secure Socket Layer” (SSL) transmission is used at all times. All information transmitted with this method is encrypted before it is sent. This transmission technology is supported by all newer browsers by default. It is therefore recommended to update your browser version regularly.
How does Exactag implement the organisational policy?
Apart from using the latest security technology, our employees are obliged to maintain absolute confidentiality. All employees were instructed about the handling of personal data and are bound by contract to maintain data confidentiality (§ 5 of the Federal Data Protection Act). The obligation to confidentiality shall survive the termination of their employment.
How do I inform visitors of my website about the use of Exactag?
In order to ensure that the use of the Exactag technology on your website is transparent for your visitors and they are informed about the use of Exactag, we recommend to publish the following or a similar formulation on a present location on your website. This formulation is also valid for this website.
“Exactag GmbH collects and stores data on this website (www.exactag.com) and its subpages for marketing and optimisation purposes. From this data user profiles can be created under a pseudonym. For this purpose, cookies and a technique that is called fingerprint can be used. Cookies are small text files that are stored locally in the cashe of the visitor’s web browser. The fingerprint technology (also called IP-less Key) stores environment variables of the Internet browser in a database, without storing user-related data such as an IP address (IP address in Wikipedia). Cookies and/or fingerprints allow for the recognition of the Internet browser. The data collected by the Exactag technology is, without the explicit consent of the person concerned, not used to identify the user personally nor aggregated with any personal data about the bearer of the pseudonym. It is at all times possible to object to the data collection and storage with effect for the future (opt-out)”.
We hope you found answers to some of the most important questions on “Privacy at Exactag GmbH”. If you require further information on this, please contact our Privacy Officer Herrn Dr. Sebastian Kraska at email@example.com gerne zur Verfügung.
* Exactag conforms to the decision of the Düsseldorf district of 26th/27th November 2009.