Data Privacy Statement

General Information

This data privacy statement informs you about the collection and processing of personal data on our websites and within the scope of our services. PTM EDV Systeme GmbH acts as the sole controller in accordance with Art. 4 GDPR and, as an ISO 27001-certified company, implements high standards in the area of information security.

Controller

PTM EDV Systeme GmbH
Bahnhofgürtel 59, 8020 Graz
Austria

Contact Information:
Phone: +43 316 680 880-0
Fax: +43 316 680 880-25
E-Mail: office@ptm-edv.at

Company Information:
Legal form: Limited liability company (GmbH)
Managing Director: Christian Ternek
Managing Director’s E-Mail: christian.ternek@ptm-edv.at
Commercial Register Number: 173442m
Commercial Register Court: Regional Court for Civil Law Matters (ZRS) Graz
Authority: District Commission (Bezirkshauptmannschaft) Graz City
VAT ID Number: ATU45695403

External Data Protection Officer:
Dominik Fünkner (PROLIANCE GmbH)

Supervisory Authority:
Austrian Data Protection Authority

External Data Protection Officer

PTM EDV Systeme GmbH takes data protection very seriously and has appointed an external Data Protection Officer (DPO) who monitors all matters related to data protection and compliance. Our Data Protection Officer, Dominik Fünkner from Proliance GmbH, ensures that we fulfill our legal obligations and implement best practices for the protection of personal data.

Data Protection Officer Contact Details:
PROLIANCE GmbH
Dominik Fünkner
Leopoldstraße 21
80802 Munich
Germany

Contact:
Phone: +49 89 250039227
E-Mail: datenschutzbeauftragter@datenschutzexperte.de
Website: https://www.proliance.ai

If you have any questions regarding data protection, please contact our Data Protection Officer directly using the contact details provided above.

Purposes of Processing, Legal Bases, and Data Recipients

Contract Execution and Customer Care

 
• Websites: All three websites

 

• Purpose of Processing: Management of customer orders, license provisioning, and support services. This data processing is carried out to fully fulfill our contractual obligations to our customers.

 

• Legal Basis: Performance of a contract pursuant to Art. 6 (1) (b) GDPR.

 

• Data Recipients: Internal departments such as customer service and support, and partner companies if applicable in case of international support. Data is stored in the context of fulfilling statutory retention obligations and is deleted as soon as it is no longer necessary for these purposes.

Contact and Communication

 
• Websites: All three websites

 

• Purpose of Processing: Answering inquiries submitted via the websites (contact forms, e-mail inquiries). This data processing enables effective communication and the answering of customer inquiries.

 

• Legal Basis: Implementation of pre-contractual measures pursuant to Art. 6 (1) (b) GDPR.

 

• Data Recipients: Inquiries are forwarded internally to the responsible departments. External data recipients only exist within the framework of legal obligations.

Marketing and Newsletter

 
• Websites: mscrm-addons.com, PowerAddons.com

 

• Purpose of Processing: Sending newsletters and information about products and services to inform customers about new features and offers. Newsletters are only sent if consent has been given.

 

• Legal Basis: Consent pursuant to Art. 6 (1) (a) GDPR.

 

• Data Recipients: Internal marketing departments and, if applicable, service providers for newsletter distribution. The data is only stored until consent is revoked.

Website Analysis and Optimization

 
• Websites: All three websites

 

• Purpose of Processing: Analysis of user behavior to improve the websites and optimize our offerings. This processing is carried out to optimize our services and improve user-friendliness.

 

• Legal Basis: Legitimate interest pursuant to Art. 6 (1) (f) GDPR.

 

• Data Recipients: External analysis service providers with whom data processing agreements have been concluded, as well as internal IT and marketing departments. No data is shared for other purposes.

Application Management

 
• Websites / Communication Channels: ptm-edv.at, mscrm-addons.com as well as other transmission methods (e.g., e-mail or job platforms)

 

• Purpose of Processing: Processing and administration of applications within the framework of the application process. The data is processed exclusively for the purpose of the application process.

 

• Processed Data: Contact details as well as submitted application documents (e.g., resume/CV, cover letter, certificates, and other voluntary information).

 

• Legal Basis: Implementation of pre-contractual measures at the request of the data subject pursuant to Art. 6 (1) (b) GDPR.

 

• Data Recipients: The responsible employees of PTM EDV Systeme GmbH as well as the HR software platform used, Factorial HR, as a processor pursuant to Art. 28 GDPR. Processing takes place on servers within the European Union.

 

• Automated Support: During the application process, an automated summary of the documents and an internal note regarding content alignment with the advertised position may be created. Automated decision-making pursuant to Art. 22 GDPR does not take place. The selection decision is made exclusively through human review.

 

• Storage Duration: Application data is deleted no later than six months after the conclusion of the application process, provided there are no conflicting statutory retention obligations.

Data Access within the Scope of Support Cases

 
• Websites: All three websites

 

• Purpose of Processing: In support cases where third-party data is affected, joint access with the customer takes place to solve the problem. This access always occurs in the presence of the customer.

 

• Legal Basis: Legitimate interest pursuant to Art. 6 (1) (f) GDPR.

 

• Data Recipients: Internal support department and only when needed and in the presence of the customer. Data is used exclusively for problem-solving and not for other purposes.

Legal Obligations to Disclose Data

 
• Websites: All three websites

 

• Purpose of Processing: PTM may be legally obligated to disclose data (e.g., for law enforcement). This obligation is based on applicable EU regulations.

 

• Legal Basis: Legal obligation pursuant to Art. 6 (1) (c) GDPR.

 

• Data Recipients: National and international authorities in the context of legal requests and only to the extent provided by law.

International Cooperation and Partner Companies

PTM works with partners who order licenses on behalf of their customers. In these cases, the customer data may not be known initially. Should customers require support later, PTM can, if necessary and in the presence of the customer, access third-party data. This is always done in compliance with GDPR requirements.

Data Collection on Our Websites

Data collected during the use of our websites includes:

 
• IP addresses,

 

• User behavior (e.g., pages visited, length of stay),

 

• Technical information (e.g., browser type, operating system).

This data is collected to ensure technical functionality and to optimize the websites.

Introduction to Cookies and Tracking Tools

Our websites use cookies and tracking tools to analyze user behavior and improve the service. Cookies are small files that are stored on your device and save certain settings and data for exchange with our systems.

Types of Cookies:

 
• Essential Cookies: These are necessary to provide the basic functions of the website.

 

• Analytics Cookies: Serve to improve our offerings and user-friendliness.

 

• Marketing Cookies: Used to display relevant advertising to you.