Privacy

Datenschutz

We are very pleased about your interest in Symbioticon 2020 (hereinafter "Symbioticon"). Symbioticon is a hackathon, conference and networking event of the Sparkassen-Finanzgruppe. Developers, creative professionals and representatives of the Fintech industry as well as companies of the SFG come together at this event to jointly develop innovative solutions for the customers of Sparkassen in Germany. Symbioticon is registered, organised and carried out as an online event via a platform which can be accessed at www.symbioticon.de (Platform). During the implementation of Symbioticon, data protection is of particular importance to STAR FINANZ-Software Entwicklung und Vertriebs GmbH (Star Finanz) as the organiser. The processing of personal data on the Platform, for example the name or e-mail address of a user, is always carried out in accordance with the General Data Protection Regulation (GDPR) and the provisions of the German Federal Data Protection Act (FDPA). By means of this privacy policy, our company wishes to inform users, i.e. both visitors of our website as well as participants in the hackathon, and the general public about the type, scope and purpose of the personal data collected, used and processed by us. In addition, this data protection declaration is intended to inform data subjects about their rights. Star Finanz, as the controller of the processing, has implemented numerous technical and organisational measures to ensure the most complete possible protection of the personal data processed via this webpage. Nevertheless, web-based data transmissions can generally have security gaps, so that absolute protection cannot be guaranteed. 1. Definitions The data protection declaration of Star Finanz is based on the terminology used by the European legislator when passing the GDPR. We use the following terms, among others, in this privacy policy: 1.1 Personal data Personal data means any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. 1.2 Data subject Data subject means any identified or identifiable natural person whose personal data are processed by the controller. 1.3 Processing Processing means any operation or set of operations which is performed upon personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction. 1.4 Restriction of processing Restriction of processing is the marking of stored personal data with the aim of limiting their future processing. 1.5 Profiling Profiling means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects concerning that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or movement. 1.6 Pseudonymisation Pseudonymisation means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures which ensure that the personal data is not attributed to an identified or identifiable natural person. 1.7 Controller Controller means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union law or Member State law, the controller or the specific criteria for its nomination may be provided for by Union law or Member State law. 1.8 Processor Processor means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller. 1.9 Recipient Recipient means a natural or legal person, public authority, agency or other body to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry, in accordance with Union or Member State law shall not be regarded as recipients. 1.10 Third party Third party means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or the processor, are authorised to process the personal data. 1.11 Consent Consent of the data subject means any freely given, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action signifies agreement to the processing of personal data relating to him or her. 2. Name and address of the controller Controller within the meaning of the General Data Protection Regulation, other data protection laws applicable in the Member States of the European Union and other data protection regulations is Star Finanz - Software Entwicklung und Vertriebs GmbH Grüner Deich 15 D 20097 Hamburg Local Court of Hamburg HRA 64916 Phone +49 40 23728 - 0 E-mail contact web@starfinanz.de 3. Name and address of the Data Protection Officer The data protection officer of the controller can be contacted by post at the address of Star Finanz given above. E-mail contact hallo@symbioticon.de Fax +49 40 23728 - 350 Every data subject can contact our data protection officer directly at any time with all questions and suggestions concerning data protection. 4. Recording of general data and information when the platform is accessed The Platform collects certain general data and information for every call of the Platform by a data subject or an automated system. These general data and information are stored in the log files of the server. The following items may be recorded • the browser types and versions used, • the operating system used by the accessing machine, • the website from which an accessing system reaches our website (so-called referrer), • the sub-websites, which are accessed via an accessing system on the Platform, • the date and time of access to the Platform, • an internet protocol address (IP address), • the Internet service provider of the accessing system, and • other similar data and information which serve to avert danger in the event of attacks on our information technology systems. When using this general data and information, Star Finanz does not draw any conclusions about the data subject. This information is rather required in order to (1) deliver the contents of the Platform correctly, (2) optimise the contents of the Platform and (3) ensure the permanent functionality of our information technology systems and the technology of the Platform. These collected data and information are anonymised by Star Finanz and processed in this form for the creation of usage statistics. 5. Collection of data during the use of the Platform Depending on the use of different functions available on the Platform, further personal data is processed. 5.1 Registration on the Platform When registering on the Platform, the following personal data are collected: • e-mail address • password

5.2 Creation of a user profile or team profile When the user creates a user profile, we also process the following personal data: • name • job title • indication of different skills • user profiles on third-party platforms • photos • assignment of a role (participant or observer)

5.3 Use of integrated contents and functions Users have the opportunity to share third-party content, such as images, videos, texts or functionalities of third parties ("Third Party Content") with other users via the Platform. In this context, Star Finanz can transfer the personal data mentioned under section 4 to the respective third party provider in order to enable the user to view the respective Third Party Content. If third party providers process personal data of the users, the respective third-party provider is solely responsible for this. Users can integrate Third Party Content from the following third party providers: 5.3.1 Adobe XD Adobe XD is a graphics software for designing graphical user interfaces for web apps and mobile apps and is based on vectors. With Adobe XD interactive prototypes can be iterated and released for testing on devices and platforms. The operating company of Adobe XD is Adobe Systems Software Ireland Companies, 4-6 Riverwalk Citywest Buseiness Park, Dublin 24, Ireland. Adobe Systems Software Ireland Companies is a subsidiary of Adobe Inc. 245 Park Avenue, San Jose, CA 95110-2704 United States. If a user accesses Third Party Content from Adobe XD via the Platform or if such Third Party Content is displayed to the user via the Platform, user information (such as IP address and information on the browser used) is transmitted by Star Finanz to the Adobe Systems Software Ireland Companies in Ireland and if applicable to Adobe Inc. in the USA. Adobe's current data protection policy is available at https://www.adobe.com/de/privacy/policy.html. 5.3.2 Axure RP 9 Axure RP 9 is software that allows users to create prototypes and specifications for websites or applications without the need for programming. This can be done by resizing, drag-and-drop placement or formatting widgets. The operating company of Axure RP 9 is Axure Software Solutions, Inc, 311 4th Avenue, Apt 617 San Diego, CA 92101 United States. If a user accesses Third Party Content from Axure RP 9 via the Platform or if such Third Party Content is displayed to the user via the platform, user information (such as IP address and information on the browser used) is transmitted by Star Finanz to Axure Software Solutions, Inc. in the USA. Axure's current data protection policy is available at https://www.axure.com/privacy. 5.3.3 Doodle Doodle is an online service that allows you to create appointment polls or simple online surveys. The operating company of Doodle is Doodle AG, Werdstrasse 21, 8021 Zurich. If a user accesses Third Party Content from Doodle via the Platform or if such Third Party Content is displayed to the user via the Platform, user information (such as IP address and information on the browser used) will be transmitted by Star Finanz to Doodle AG in Switzerland. Doodle's current data protection policy is available at https://doodle.com/de/datenschutzrichtlinie. 5.3.4 Figma Figma is a software for collaborative web-based prototype development. Figma's operating company is Figma, Inc, 116 New Montohmery St, Suite 700, San Francisco, CA 94105 United States. If a user accesses Third Party Content from Figma via the Platform or if such Third Party Content is displayed to the user via the Platform, user information (such as IP address and information on the browser used) is transmitted by Star Finanz to Figma, Inc. in the USA. Figma's current data protection policy is available at https://www.figma.com/privacy/. 5.3.5 GitHub GitHub is a development and version control service for software development projects. The operating company of GitHub is GitHub B.V., Vijzelstraat 68-72, 1017 HL Amsterdam, The Netherlands. It is a subsidiary of GitHub, Inc, 88 Colin P. Kelly Jr. Street, San Francisco, CA 94107 United States. If a user accesses Third Party Content from GitHub via the Platform or if such Third Party Content is displayed to the user via the Platform, user information (such as IP address and information on the browser used) will be transmitted by Star Finanz to GitHub B.V. in the Netherlands and if applicable to Adobe Inc. in the USA. GitHub's current data protection policy is available at https://docs.github.com/en/free-pro-team@latest/github/site-policy/github-privacy statement. 5.3.6 GitLab GitLab is an open source software development platform that provides a web application for version management of software projects based on Git. The operating company of GitLab is GitLab B.V., Ondiep 108, Utrecht, 3552 EK, The Netherlands. It is a subsidiary of GitLab, Inc, 268 Bush St, San Francisco, CA 94104, United States. If a user accesses Third Party Content from GitLab via the Platform or if such Third Party Content is displayed to the user via the Platform, user information (such as IP address and information on the browser used) will be transmitted by Star Finanz to GitLab B.V. in the Netherlands and, if applicable, to GitLab, Inc. in the USA. GitLab's current data protection policy is available at https://about.gitlab.com/privacy/. 5.3.7 InVision InVision is a design development platform for creating, developing or managing high-fidelity web and mobile prototypes. The operating company of InVision is InVisionApp Inc. 41 Madison Ave, Floor 25, NY 10010, United States. If a user accesses Third Party Content from InVision via the Platform or if such Third Party Content is displayed to the user via the Platform, user information (such as IP address and information on the browser used) is transmitted by Star Finanz to InVisionApp Inc. in the USA. InVision's current data protection policy is available at https://www.invisionapp.com/legal/privacy-policy. 5.3.8 Mentimeter Mentimeter is an online platform on which presentations can be created, introduced and analysed interactively. The operating company of Mentimeter is Mentimeter AB, Alströmergatan 22, SE-112 47 Stockholm, Sweden. If a user accesses Third Party Content from Mentimeter via the platform or if such Third Party Content is displayed to the user via the Platform, user information (such as IP address and information on the browser used) is transmitted by Star Finanz to Mentimeter AB in Sweden. Mentimeter's current data protection policy is available at https://www.mentimeter.com/privacy. 5.3.9 Miro Miro is an online task management service that uses collaborative whiteboards to manage tasks through project management tools. This allows teams to plan and coordinate tasks and workflows online. The operating company of Miro is RealtimeBoard Inc, 3651 Road Suite D1134 Las Vegas, NV 89103 United States. If a user accesses Third Party Content from Miro via the Platform or if such third party content is displayed to the user via the Platform, user information (such as IP address and information on the browser used) is transmitted by Star Finanz to RealtimeBoard Inc. in the USA. Miro's current data protection policy is available at https://miro.com/legal/privacy-policy/. 5.3.10 Slack Slack is a web-based instant messaging service that can be used for communication within working groups. Slack offers a chat function for individuals and groups for this purpose. The operating company of Slack is Slack Technologies Limited, 4th Floor, One Park Place, Hatch Street Upper, Dublin 2, Ireland. Which in turn is a subsidiary of Slack Technologies, Inc., 500 Howard Street, San Francisco, CA 94105, United States. If a user accesses Third Party Content from Slack via the Platform or if such Third Party Content is displayed to the user via the Platform, user information (such as IP address and information on the browser used) is transmitted by Star Finanz to Slack Technologies Limited in Ireland and, if applicable, to Slack Technologies, Inc. in the USA. Slack's current data protection policy is available at https://slack.com/intl/de-de/trust/privacy/privacy-policy?geocode=de-de. 5.3.11 Trello Trello is an online task management service that can be used as a project management tool. Using so-called boards, tasks can be managed in lists. The tasks can also for example be supplemented with checklists, attachments and deadlines. The operating company of Trello is Atlassian, Inc, 350 Bush Street, Floor 13, San Francisco, CA 94104, United States. If a user accesses Third Party Content from Trello via the Platform or if such Third Party Content is displayed to the user via the Platform, user information (such as IP address and information on the browser used) is transmitted by Star Finanz to Atlassian Inc. in the USA. Trello's current data protection policy is available at https://www.atlassian.com/legal/privacy-policy. 5.3.12 Twitch Twitch is a live streaming video portal that allows users to create their own channel and broadcast live streams on it. Other users can be allowed by the streamer to view, rate and comment on these streams, also free of charge. The operating company of Twitch is Twitch Interactive, Inc., 350 Bush Street, 2nd Floor, San Francisco, CA 94104, If a user accesses Third Party Content from Twitch via the Platform or if such Third Party Content is displayed to the user via the Platform, user information (such as IP address and information on the browser used) is transmitted by Star Finanz to Twitch Interactive, Inc. in the USA. Twitch's current data protection policy is available at https://www.twitch.tv/p/de-de/legal/privacy-notice/. 5.3.13 Data protection policy on the use of Twitter Twitter is a publicly accessible micro-blogging service where users can post and distribute tweets, i.e. short messages limited to 140 characters. These short messages are accessible to everyone, including people who are not registered on Twitter. The operating company of Twitter is Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. If a user accesses Third Party Content from Twitter within via the Platform or if such Third Party Content is displayed to the user via the Platform, user information (such as IP address and information on the browser used) is transmitted by Star Finanz to Twitter, Inc. in the USA. The current data protection policy of Twitter is available at https://twitter.com/privacy?lang=de. 5.3.14 Vimeo Vimeo is an Internet video portal that allows users to publish, view, rate and comment on videos. The operating company of Vimeo is Vimeo, LLC, 555 West 18th Street New York, NY 10011 United States. If a user accesses Third Party Content from Vimeo via the Platform or if such Third Party Content is displayed to the user via the Platform, user information (such as IP address and information about the browser used) will be transmitted by Star Finanz to Vimeo, LLC in the USA. Vimeo's current data protection policy is available at https://vimeo.com/privacy. 5.3.15 Data protection policy on the use of YouTube YouTube is an internet video portal that allows users to publish, view, rate and comment on videos. YouTube is operated by YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google Inc, 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA. If a user accesses Third Party Content from YouTube via the Platform or if such Third Party Content is displayed to the user via the Platform, user information (such as IP address and information on the browser used) is transmitted by Star Finanz to YouTube, LLC and if applicable to Google Inc. in the USA. The data protection policy published by YouTube, which can be accessed at https://www.google.de/intl/de/policies/privacy/, provides information about the collection, processing and use of personal data by YouTube and Google. 5.4 How to contact us via the website Due to statutory provisions, the Platform contains information that allows you to contact our company quickly and electronically as well as to communicate directly with us, which also includes a general address for so-called electronic mail (e-mail address). If a data subject contacts Star Finanz by e-mail or via a contact form, the personal data transmitted by the data subject is automatically stored. Such personal data voluntarily transmitted to Star Finanz is stored for the purpose of processing or contacting the data subject. These personal data are not passed on to third parties. 6. Hosting The hosting services we use serve to provide the following services: Infrastructure and platform services, computing capacity, storage space and database services, security services as well as technical maintenance services which we use for the purpose of operating this online service. In doing so, we or our hosting provider process inventory data, contact data, content data, contract data, usage data, meta and communication data of customers, interested parties and visitors of this online service on the basis of our legitimate interests in the efficient and secure provision of this online service in accordance with art. 6 para. 1 letter f GDPR in conjunction with art. 28 GDPR (conclusion of contract processing agreement). 7. Legal basis of the processing Art. 6 para. 1 letter a GDPR serves as a legal basis for our company for processing operations for which we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which you are a party, as is the case, for example, with processing operations that are necessary for the delivery of goods or the provision of another service or consideration, the processing is based on art. 6 para. 1 letter b GDPR. The same applies to such processing operations which are necessary for the implementation of pre-contractual measures, for example in cases of enquiries about our products or services. If our company is subject to a statutory obligation which makes it necessary to process personal data, for example to fulfil tax obligations, the processing is based on art. 6 para. 1 letter c GDPR. In rare cases, the processing of personal data may become necessary to protect the vital interests of the data subject or another natural person. This would be the case, for example, if a visitor to our company were to be injured and his or her name, age, health insurance details or other vital information had to be disclosed to a doctor, hospital or other third party. The processing would then be based on art. 6 para. 1 letter d GDPR. Finally, processing operations could be based on art. 6 para 1) letter f GDPR. Processing operations which are not covered by any of the above legal bases are based on this legal basis if the processing is necessary to safeguard a legitimate interest of our company or of a third party, provided that the interests, fundamental rights and freedoms of the data subject do not prevail. 8. Receiver of data In order to provide you with the Platform, we work together with various third parties. Some of them provide the services we need to operate the platform in technical terms. These providers act as processors on our behalf, i.e. they act according to our instructions. Some of the service providers we use are based in third countries, so that data is transferred to these third countries. This concerns the following service providers 8.1 Twilio Star Finanz uses the SendGrid service from Twilio Inc, 375 Beale Street, Suite 300, San Francisco, CA 94105, United States, to organise and automate the creation and sending of e-mails to users. For this purpose, user information (such as the email address) is transmitted by Star Finanz to Twilio Inc. in the USA. Twilio's current data protection policy is available at https://www.twilio.com/legal/privacy. 8.2 Cloudinary Star Finanz uses the service of Cloudinary Inc, 111 W Evelyn Ave Suite 206, Sunnyvale, California 94086, United States, to optimise the display of images on the platform. For this purpose, user information (in particular the IP address) is transmitted by Star Finanz to Cloudinary Inc. in the USA. Twilio's current data protection policy is available at https://cloudinary.com/privacy. 8.3 Itteco Software Star Finanz uses the Iframely service of Itteco Software Corp. Ottawa, Canada, to optimise the integration of third-party content on the platform. For this purpose, user information (in particular the IP address) is transmitted by Star Finanz to Itteco Software Corp. in Canada. Twilio's current data protection policy is available at https://iframely.com/docs/privacy. 8.4 InnoCraft Ltd StarFinanz uses the open source service "Matomo" (formerly "Piwik"), which is a web analytics service provided by InnoCraft Ltd. For this purpose, user information is stored by Matomo and analyzed by us. The information stored in Matomo is not passed on to third parties. The applicable privacy policy of Innocraft can be accessed at https://matomo.org/privacy-policy/. 8.5 CleverReach GmbH & Co. KG StarFinanz uses the service "CleverReach" of CleverReach GmbH & Co. KG, Schafjückenweg 2, 26180 Rastede, Germany, to organize and automate the creation and sending of e-mails to users. For this purpose, information of the user (such as the e-mail address) is transmitted from StarFinanz to CleverReach GmbH & Co. KG. The applicable data protection provisions of CleverReach GmbH & Co. KG are available at https://www.cleverreach.com/en/privacy-policy/. 9. Transfer of data to third countries Some of the service providers used by us within the meaning of section 8 as well as some of the third party providers listed in section 5.3 are based in third countries, so that data is transferred to these third countries. Some of these companies are themselves based in a Member State of the European Union or the European Economic Area, but they themselves transfer data to third countries, in particular to their parent companies based there. In this way, data is transferred for example to Canada, but especially also to the USA. For a transfer to Canada, the Commission has confirmed the existence of an adequate level of data protection by means of an adequacy decision within the meaning of art. 45 GDPR. There is currently no such adequacy decision for the USA. This means that the EU Commission has so far not positively concluded that the country-specific level of data protection in the USA corresponds to that of the European Union. In the absence of an adequacy decision, the GDPR generally requires so-called suitable guarantees for data transfers to third countries. No such guarantees exist for the data transfer to the USA described here. In addition, the described data transfer is associated with the following risks in particular: • Users' personal data may be passed on to other non-governmental and governmental bodies or may be accessed and processed by them. • In particular, personal data of users may be subject to impromptu surveillance by US intelligence services. • Users may not be able to assert or enforce the rights of data subjects to which they are entitled under the GDPR vis-à-vis the aforementioned companies or other bodies that process their data. • There may be a higher probability that data processing will be incorrect or insecure because the technical and organisational measures to protect personal data do not meet the requirements of the GDPR.

If there is a lack of suitable guarantees in the sense of the GDPR, Star Finanz only transfers personal data to companies in third countries if the user has given his or her consent in the knowledge of the risks mentioned. The user can revoke the consent at any time vis-à-vis Star Finanz with effect for the future. 10. Routine deletion and storage of personal data Star Finanz processes and stores personal data of the data subject as necessary for the duration of the contractual relationship with the user. The data is then deleted. In addition, we are subject to various storage and documentation obligations arising from the German Commercial Code (HGB) and the German Fiscal Code (AO), among others. The periods of retention or documentation stipulated there are two to ten years. Finally, the storage period is also assessed according to the statutory limitation periods, which can be up to thirty years, for example, according to sections 195 et seq. of the German Civil Code (BGB), with the regular limitation period being three years. After the deadline has expired, the data is routinely deleted. 11. Rights of the data subject You have the following rights vis-à-vis Star Finanz regarding your personal data: • Right of access pursuant to art. 15 GDPR, • Right to rectification or erasure pursuant to art. 16 and 17 GDPR, • Right to restriction of processing pursuant to art. 18 GDPR, • Right to object to processing pursuant to with art. 21 GDPR, • Right to data portability pursuant to art. 20 GDPR, • Right to revoke consents granted pursuant to art. 7 GDPR. In connection with the processing of your personal data, you also have a right to lodge a complaint with the following supervisory authority responsible for us with regard to the protection of personal data: The Hamburg Commissioner for Data Protection and Freedom of Information Prof. Dr. Johannes Caspar Ludwig-Erhard-Strasse 22 20459 Hamburg Phone: (040) 4 28 54 - 40 40 Fax: (040) 4 279 - 11811 e-mail: mailbox@datenschutz.hamburg.de Homepage: http://www.datenschutz-hamburg.de 11.1 Right to access You have the right to receive information free of charge from Star Finanz at any time about the personal data concerning you that is stored by us and to receive a copy of this information (art. 15 GDPR). The data subject also has the right to know whether personal data have been transferred to a third country or to an international organisation. If this is the case, the data subject also has the right to be informed of the appropriate safeguards relating to the transfer. If you would like to make use of this right to access, you can contact our data protection officer at any time. 11.2 Right to rectification You have the right to request immediate correction of incorrect personal data concerning you. You also have the right to request the completion of incomplete personal data, including by means of a supplementary declaration, taking into account the purposes of the processing (art. 16 GDPR). 11.3 Right to erasure (right to be forgotten) You have the right to demand from Star Finanz that the personal data concerning you is deleted immediately if one of the following reasons applies and insofar as the processing is not necessary (art 17 GDPR):

  • The personal data has been collected or otherwise processed for purposes for which it is no longer necessary.
  • You revoke your consent on which the processing was based in accordance with art. 6 para1 letter a GDPR or art. 9 para2 letter a GDPR, and there is no other legal basis for the processing.
  • You have lodged an objection to the processing in accordance with art. 21 para. 1 GDPR and there are no overriding legitimate reasons for the processing, or you object to the processing in accordance with art. 21 para. 2 GDPR.
  • Personal data were processed unlawfully.
  • The deletion of the personal data is necessary to fulfil a legal obligation pursuant to Union Law or the law of the Member States to which Star Finanz is subject.
  • The personal data were collected in relation to information society services offered in accordance with art. 8 para. GDPR. If the personal data has been made public by Star Finanz and our company as the controller is obligated to delete the personal data in accordance with art. 17 para. 1 GDPR, Star Finanz will take appropriate measures, also of a technical nature, under consideration of the available technology and the implementation costs, in order to inform other controllers, that process the published personal data, that you have requested the deletion of all links to your personal data or of copies or replications of your personal data, insofar as the processing is not necessary. 11.4 Right to restrict processing You have the right to request Star Finanz to restrict processing if one of the following conditions is met:
  • The accuracy of the personal data is contested by you, for a period of time that allows the person responsible to verify the accuracy of the personal data.
  • The processing is unlawful, you refuse to have your personal data deleted and instead demand that the use of your personal data be restricted.
  • Star Finanz no longer needs your personal data for the purposes of processing, but you do need it for the assertion, exercise or defence of legal claims.
  • You have lodged an objection against the processing in accordance with art. 21 para. 1 GDPR and it is not yet clear whether justified reasons of Star Finanz outweigh your reasons. 11.5 Right to data portability You have the right to receive the personal data concerning you, which was provided by Star Finanz, in a structured, common and machine-readable format (art. 20 GDPR). You also have the right to transfer this data to another controller without hindrance from Star Finanz, to whom your personal data has been made available, provided that the processing is based on consent in accordance with art. 6 para. 1 letter a GDPR or art. 9 para. 2 letter a GDPR or on a contract in accordance with art. 6 para. 1 letter b GDPR and the processing is carried out with the aid of automated procedures, provided that the processing is not necessary for the performance of a task that is in the public interest or is carried out in the exercise of public authority that has been assigned to the controller. Furthermore, when exercising your right to data portability pursuant to art. 20 para. 1 GDPR, you have the right to request that your personal data be transferred directly from Star Finanz to another controller, as far as this is technically feasible and as long as this does not affect the rights and freedoms of other persons. 11.6 Right to objection You have the right to object at any time, for reasons arising from your particular situation, to the processing of personal data concerning you which is carried out on the basis of art. 6 para. 1 letter n, e or f GDPR (art. 21 GDPR). This also applies to profiling based on these provisions. Star Finanz no longer processes the personal data in the event of an objection, unless we can prove compelling reasons for processing worthy of protection, which outweigh the interests, rights and freedoms of the data subject, or the processing serves to assert, exercise or defend legal claims. If Star Finanz processes personal data in order to carry out direct advertising, you have the right to object to the processing of your personal data for the purpose of such advertising at any time. This also applies to profiling, insofar as it is associated with such direct advertising. If you object vis-à-vis Star Finanz to the processing for the purposes of direct marketing, Star Finanz will no longer process your personal data for these purposes. You also have the right to object, for reasons arising from your particular situation, to the processing of personal data concerning you, which is carried out at Star Finanz for scientific or historical research purposes or for statistical purposes in accordance with art. 89 para. 1 GDPR, unless such processing is necessary for the fulfilment of a task in the public interest. You are free to exercise your right of objection in connection with the use of information society services by means of automated procedures involving technical specifications. 11.7 Automated decisions in individual cases including profiling You have the right not to be subjected to a decision based exclusively on automated processing - including profiling - that has legal effect on you or that significantly affects you in a similar way, provided that the decision (1) is not necessary for the conclusion or fulfilment of a contract between you and Star Finanz, or (2) is permitted by legal provisions of the Union or the member states to which Star Finanz is subject and these legal provisions contain appropriate measures to safeguard the rights and freedoms as well as your legitimate interests, or (3) is made with your express consent. If the decision (1) is necessary for the conclusion or fulfilment of a contract between you and Star Finanz or (2) is made with your express consent, Star Finanz will take appropriate measures to protect your rights and freedoms as well as your legitimate interests, which includes at least the right to obtain the intervention of a person on the part of Star Finanz, to present your own position and to challenge the decision. 11.8 Right to revoke consent under data protection law You have the right to revoke your consent to the processing of personal data at any time (art. 21 GDPR).
  1. Existence of automated decision making As a responsible company, we refrain from making automatic decisions in accordance with art. 22 DSGVO.
  2. Amendment of the data protection declaration We reserve the right to occasionally adapt the data protection declaration to the current legal requirements as well as to changes to our offer. Your visit or use is covered by the current data protection declaration in each case.
#Gam
echan
ger
Symbioticon
20/21

Symbioticon is the saving banks finance groups annual hackathon organised by the Sparkassen Innovation Hub (S-Hub). In recent years, the concept has already gone far beyond a pure developer competition. The fusion of Hackathon, conference and networking event brought together different interest groups. The teams created trend-setting product ideas for the Sparkasse of tomorrow - the best won highly remunerated prizes.

Star Finanz-Software
Entwicklung und Vertriebs GmbH

Grüner Deich 15
20097 Hamburg

+49 40 23728-0

hello@symbioticon.de
sparkassen-hub.com