Our privacy policy
1. data protection
1.1. The following privacy policy explains how we handle personal data. We strive for comprehensible language and are happy to answer your questions about security and data protection.
1.2. This privacy policy regulates the handling of personal data of visitors to our websites, interested parties, customers, as well as registered users or unregistered users (“drivers”).
1.3. We offer our mostly commercial customers (“clients”) devices and software for GPS tracking (e.g. electronic logbooks), for recording operating data (e.g. sensors) and for employee scheduling (e.g. smartphone apps).
1.4. Data subjects affected by data processing have special rights under the EU General Data Protection Regulation: right of access, right to rectification, right to erasure (“right to be forgotten”), right to restriction of processing, right to data portability and right to object. We would like to point out that in our function as a processor, we only process requests from data subjects (“drivers”) of our (mostly commercial) customers if this has been approved in writing by our customer, as our customer, as the person responsible, must check the authenticity. We will also only send replies to the customer who is responsible for further processing.
1.5. Bei Fragen zur Erhebung, Verarbeitung oder Nutzung von personenbezogenen Daten, bei Auskünften oder für Berichtigungen, Sperrungen oder Löschungen von Daten sowie Widerruf erteilter Einwilligungen wendet sich der Betroffene per Mail an uns als verantwortliche Stelle im Sinne des Datenschutzrechtes: Software-Management GmbH, Linzer Straße 61/5, 4840 Vöcklabruck, info@gps.at).
1.6. Für weitere Informationen zu Ihren Rechten und zur Speicherung Ihrer personenbezogenen Daten wenden Sie sich mit ausreichender Legitimation an unseren externen Datenschutzbeauftragen unter dsb@gps.at : ODIS KG, vertreten durch Christoph Pötscher, Niederzirking 63, 4312 Ried/Riedmark, Firmenbuch-Nr.: FN 452662f, Firmenbuchgericht: LG Linz
1.7. As a data subject, you also have the right to lodge a complaint with the supervisory authority(dsb@dsb.gv.at).
2. data protection responsibility of our customers for registered and unregistered users
2.1. The data controller for registered users (“persons with access to the software, software users at the customer”) and unregistered users (“drivers of the customer, persons who are on the road with GPS-located vehicles and objects”) is our customer, who is usually the owner of the vehicle or fleet. In this respect, we are processors for our customers (“clients”).
2.2. Our customer is responsible for informing all affected registered users and unregistered drivers (e.g. in a separate privacy policy) that personal data is collected by our devices and that our customer has access to corresponding reports (electronic logbook, GPS tracking).
2.3. We recommend that our customers use a private mode (using the private switch or private function in the smartphone app) and enter as little user-related data as possible (“private mode by default”).
2.4. Depending on the device used, our customer decides which data is collected continuously: Vehicle location, speed, ignition status, private driving YES/NO as well as driver recognition, acceleration and engine-related data such as fuel consumption, engine speed and mileage. The specific information that is collected depends on the device installed in the vehicle.
2.5. Our customer decides for what purposes this information may be used later, who has access and how long the information is stored (e.g. retention obligations for winter road maintenance or electronic logbooks). Further information can usually be obtained from the customer’s fleet manager or responsible person.
2.6. Any claims by registered or unregistered users (“drivers”) must therefore always be addressed to our customer. This applies in particular to data protection claims for information, correction, blocking or deletion.
3. data protection for visitors to our websites, use of tracking cookies, storage of IP addresses
3.1. Our websites use cookies for web traffic analysis, website tracking or IP reverse tracing as well as the Facebook pixel (assignment to Facebook users). The information generated about the use of our websites is usually transferred to external servers, e.g. from Google or Facebook in the USA or the UK, and stored there.
3.2. Visitors to our websites can prevent the storage of cookies by selecting the appropriate settings in their browser software.
3.3. We or our SEO specialists collect information about activities on the websites (e.g. surfing behavior, clicked links). This information is used to improve the user experience or to show or communicate interesting offers, promotions or advertising.
3.4. Partners used by us for advertising purposes may, for example, set cookies when you visit our website. Visitors to our website can decide for themselves at any time to delete or block cookies in their browser or at least be warned before a cookie is stored by changing the settings in their Internet browser.
4. use of data by customers and registered users and information security
4.1. The use of our software is only possible for named, mostly commercial customers.
4.2. To activate the software, we collect the first and last name of the company contact person, gender of the contact person, e-mail and telephone number as well as further company data (e.g. company name, website, address, VAT ID). This data is required for the processing of our services.
4.3. Information about bank details is collected for direct debits and passed on to our payment service providers for processing. With the exception of the last four digits of the card number, credit card data is processed exclusively by the payment service provider. Please refer to the data protection provisions of the respective payment service provider.
4.4. We encrypt our websites using SSL and use technical measures to secure our systems against loss, destruction, modification or dissemination of your data by unauthorized persons.
4.5. After activation, the registered user receives the access link and a one-time password by e-mail and is asked to change their password the first time they log in and regularly thereafter.
4.6. Software access requires a password to be entered. All passwords are stored in encrypted form. Registered users must keep their passwords protected from access by third parties.
4.7. Passwords used by the customer are not visible to us. We will not pass on passwords to third parties and will not ask our customers for their passwords at any time.
4.8. If passwords are entered repeatedly, we reserve the right to restrict access for a reasonable period of time.
4.9. If users access with the same access data from unusual networks and geographical zones, we reserve the right to inform the user via email about the use of the access data from a new location.
4.10. For registered users, we store the IP address of the user during the registration process and the activities during the use of the software in log files on our servers. The IP addresses are used to protect against misuse.
4.11. We use automatic regular backups on our servers to secure data. Older backups are automatically overwritten, so all data stored in the software is deleted at the end of the storage period.
4.12. For servers owned by the customer, the customer is responsible for data security and backups.
5. storage period and deletion of data, passwords
5.1. The storage period of our customers’ personal data is determined on the basis of the associated contractual data underlying statutory minimum retention periods; after this period has expired, your personal data will be deleted from our systems.
5.2. The following storage durations only apply to our servers; other storage settings may apply to software installed at the customer’s premises.
5.3. All raw GPS data with movement data and speeds are stored on our servers for at least 100 days and then automatically deleted on a rolling basis.
5.4. The most important reporting data (“logbooks, operating times, etc.”) is stored on our servers for at least 24 months and up to 1000 days, after which it is automatically deleted on a rolling basis.
5.5. On request, all data can be made available for download on our servers for individual customers for longer in the software and in a data archive, usually for 36 months. Even if a vehicle is deleted, the data is retained in the data archive. The data is then automatically deleted.
5.6. Your passwords are encrypted in our databases, so we cannot give you any information about your password, we can only send you a re-initialization link.
6. disclosure of personal data to third parties
6.1. Our employees are obliged not to pass on or store any personal data or passwords by telephone or e-mail and to maintain company secrecy.
6.2. Our employees are obliged to exchange customer-specific data with our customers only with contact persons known to us and named by the customer. Information is usually exchanged via our support system to the email addresses of our customers stored there.
6.3. Our employees receive training on data protection when they join the company and annually.
6.4. Personal data of our customers will only be passed on to third parties (e.g. accountants/tax consultants, courier services or delivery of electronic mail) to the extent necessary to fulfill the order.
6.5. Any further disclosure of our customers’ personal data will only be considered if there is a legal obligation to do so or if it is necessary to enforce claims arising from the contractual relationship (receivables management).
6.6. We are authorized to engage subcontractors for processing even without prior approval by the customer, provided that an agreement also exists with the subcontractor regarding compliance with the data protection provisions.
6.7. We guarantee that no conclusions can be drawn about customers, registered users or unregistered drivers when anonymized movement data is passed on to third parties for traffic flow analysis and the compilation of statistics. The customer or registered user can also object to the forwarding of anonymized transaction data. Please contact our technical support.
6.8. The data generated in the software for our customers from Europe is stored on servers within the European Union.
7. revocation of consent to advertising (e.g. newsletter), market or opinion research
7.1. The data received from interested parties in the course of advertising campaigns (e.g. through test forms, inquiry forms, web forms) are usually stored in our database of interested parties together with the name of the company, contact person, telephone number, email address and address (in the case of web forms also the IP address) and are managed and sent by newsletter tools from third-party providers such as Mail-Chimph, which have committed themselves to strict data protection guidelines.
7.2. The data of interested parties may be passed on to companies and business partners who have a data protection agreement with us in the course of advising interested parties.
7.3. Newsletter recipients have the right to unsubscribe from receiving further newsletter emails with each newsletter email. You can unsubscribe using the unsubscribe link in the email newsletters or by sending an email to info@gps.at with the subject “Unsubscribe”
7.4. Interested parties have the right to object to the use of their data for the purposes of further advertising, e.g. by telephone contact, opinion research or post, at any time, the easiest way being to send an email to info@gps.at with the subject “Unsubscribe”.
7.5. Irrespective of a revocation to receive advertising, we reserve the right to communicate system-relevant information about updates and information in the course of order fulfillment by e-mail and/or telephone to our customers.
8. information, correction, blocking or deletion
8.1. As a registered user, the customer can view, edit, correct or delete the data and settings of his registered and unregistered users in the software.
8.2. Due to complex dependencies (GPS, vehicle, GSM, etc.), incorrect data or recording gaps may occur during automatic processing. The correction of incorrect automatic records (e.g. incorrect addresses) is not provided for and is not possible free of charge.
8.3. If an unregistered user (e.g. driver) contacts us, we are not authorized to access, process or delete their data. Unregistered users should get in touch with the contact person of the customer who uses our software.
8.4. Contact persons of potential interested parties, existing customers or former customers stored in our company database have a right to free information about the scope of the stored data and, if necessary, a right to correction, blocking or deletion of this data unless the data is necessary to fulfill a relevant corporate purpose (e.g. contract fulfillment, outstanding claims/liabilities).
8.5. In the event of termination (overall termination or termination of individual services), we are obliged to irrevocably delete the data of individual services (“e.g. logbooks of a vehicle) or all data of a customer (all vehicles and drivers) immediately after the termination date after expiry of the notice periods specified in the individual contract. The customer is responsible for exporting all data required for his purposes before the termination date. The data can no longer be restored after deletion.
8.6. If a customer requests information and receipt of all data stored in our systems prior to the termination date, we can provide information for a fee of EUR 250 plus VAT. transport costs and VAT, provide all exportable report data on a secure storage medium.
9. MISCELLANEOUS
9.1. The statements about the GPS Fleet software are only valid if the version is installed from Nov. 2017 is used. This will be available in November 2017. Customers with their own server are responsible for implementing this if they want to comply with the data protection regulation!
Status: June 2020
10. use of SalesViewer® technology
This website uses SalesViewer® technology from SalesViewer® GmbH to collect and store data for marketing, market research and optimization purposes on the basis of the website operator’s legitimate interests (Art. 6 (1) (f) GDPR).
For this purpose, a javascript-based code is used to collect and use company-related data. The data collected using this technology is encrypted using a non-reversible one-way function (known as hashing). The data is immediately pseudonymized and not used to personally identify the visitor to this website.
The data stored in the context of Salesviewer will be deleted as soon as it is no longer required for its intended purpose and the deletion does not conflict with any statutory retention obligations.
You can object to the collection and storage of data at any time with effect for the future by clicking on this link https://www.salesviewer.com/opt-out to prevent SalesViewer® from collecting data on this website in the future. An opt-out cookie for this website is stored on your device. If you delete your cookies in this browser, you must click this link again.