Privacy Policy

General information

This website contains links to external websites, and it may load external content like fonts or pictures.

Our website is hosted and maintained by Webflow. Webflow may log the I.P. addresses and other information of users that visit our website.

For up-to-date information on what exactly what information Webflow collects and what it does with it, please read their privacy policy: https://webflow.com/legal/privacy.

We will not share your data with third parties unless the service you signed up for requires it.

In accordance with the European General Data Protection Regulation (GDPR), you may ask us to send you a copy of your stored personal data and may ask us to correct or delete this data.

For transport security, this website uses the TLS protocol. We keep our privacy policy under review and it may be updated periodically. Laws, regulations, and industry standards evolve, which may make those changes necessary, or we may make changes to our Services or business. We will notify you by posting an updated, date-stamped version of this privacy policy on our website. If we make changes that materially alter the privacy policy, we will provide notice to you in accordance with applicable law. 

a) Notice concerning the party responsible for this website
The party responsible for processing data on this website is:
Edgeless Systems GmbH Registered address
Stadionring 1
44791 Bochum, Germany
Main office
Stadionring 1
44791 Bochum, Germany
Contact
E-Mail: [email protected]

b) Purpose of the processing of personal data
We process your personal data as a user of this website only to the extent necessary to provide a functional website as well as our contents and services. Your personal data will only be processed with your consent for the specific purpose, unless data processing is permitted by law without prior consent. The purposes of the processing are as follows:
• Provision of our public website https://www.oc3.dev/, its functions and content
• Answering contact requests and communication with users
• Security measures
• Reach measuring/marketing.

c) Legal basis for the processing of personal data
Insofar as we obtain your consent for the processing of personal data, e.g., for the use of analysis tools, Art. 6 para. 1a) GDPR serves as the legal basis. If the processing of your data is necessary for the performance of a contract to which you are a party, Art.6 para.1 b) GDPR serves as the legal basis. This also applies to processing operations which are necessary to carry out pre-contractual measures. If processing of your personal data is necessary to fulfil a legal obligation to which we are subject, Art.6 para.1c) GDPR serves as the legal basis. If the processing is necessary to safeguard a legitimate interest of our company or of a third party and if your interests, fundamental rights and freedoms do not outweigh the former interest, Art.6 para.1f) GDPR serves as the legal basis for the processing.

d) Your rights as a data subject
Revocation of your consent to data processing
You can revoke a previously granted consent at any time. For this purpose, an informal notification by email to us is sufficient. The legality of the data processing that took place up to the revocation remains unaffected by the revocation.
Right to file complaints with regulatory authorities
If there has been a breach of data protection legislation, the person affected may file a complaint with the competent regulatory authorities. The competent regulatory authority for matters related to data protection legislation is the data protection officer of the German state in which our company is headquartered.
Right to data portability
You have the right to have your personal data processed by us delivered to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another person responsible, this will only be done to the extent that it is technically feasible.
Information, blocking, deletion
Within the framework of the applicable legal provisions, you have the right to obtain information free of charge at any time about your stored personal data, its origin and recipients and the purpose of the data processing and, if applicable, a right to correct, block or delete this data. For this purpose, as well as for further questions on the subject of personal data, you can contact us at any time by using the contact details given in sections 1a or 2.
Right of objection (Art. 21 GDPR)
You also have the right to object to the processing of your personal data under certain conditions. The right of objection may arise from your particular situation to object at any time to the processing of personal data concerning you. This only applies if the processing is carried out on the basis of Art. 6 para. 1 e) or f) GDPR (safeguarding of public interests or protection of legitimate interests by the controller). We then no longer process the personal data unless we can prove compelling reasons for processing worthy of protection that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims. In order to exercise this right of objection, you may also send us an informal message stating your intention, stating your e-mail address, to [email protected].

Data collection

Registration form
If you fill the registration form for OC3, your details from the form, including the contact data you provide there, will be stored by us and shared with our Sponsors for the purpose of processing the enquiry and in the event of follow-up questions. We will not pass on this data without your consent. The OC3 website uses the Hopin platform for the registration form and event hosting. The provider is RingCentral Germany GmbH, Hamburg Business Center, Poststrasse 33, Hamburg, 20354, Germany. Email address: [email protected] (hereinafter: RingCentral). Further information on data protection, security, and other legal issues under Hopin can be found online at: https://hopin.com/legal/privacy. The processing of the data entered in the form is, thus, exclusively based on your consent (Art. 6 para. 1 lit. a GDPR). You can revoke this consent at any time. For this purpose, an informal notification by email to us is sufficient. The legality of the data processing operations carried out up to the time of revocation remains unaffected by the revocation. The data you enter in the registration form will remain with us until you request us to delete it, revoke your consent for storage, or the purpose for which the data was stored no longer applies (e.g., after your request has been processed). Mandatory legal provisions – retention periods – remain unaffected. Customer Database We store and use contact data and information received (such as business communication histories) from customers and interested parties for the purpose of processing or initiating the business relationship. The processing is based on Art. 6 (1) lit. b GDPR. As a customer database, we use HubSpot. The provider is HubSpot, Inc, 25 First Street, 2nd Floor, Cambridge, MA 02141, USA (hereinafter: HubSpot). The data is stored on HubSpot’s servers in the EU or US. Further information on data protection, security and other legal issues under HubSpot can be found online at: https://legal.hubspot.com/legal-stuff.

Data transfer to recipients outside the EU
If we process data in a third country (i.e., outside the European Union (EU) or the European Economic Area (EEA)) or the processing takes place in the context of the use of third-party services or the disclosure or transfer of data to other persons, entities or companies, this will only be done in accordance with the legal requirements. Subject to your express consent or a contractually or legally required transfer, we process or have the data processed only in third countries with a recognized level of data protection, contractual obligations based on the standard contractual clauses of the EU Commission, in the presence of certifications or the existence of binding internal data protection regulations (Art. 44 to 49 GDPR). The data collected by the products listed within the scope of this declaration from US providers or their affiliated companies, such as Google, may be stored and processed by them in the USA, among other places. We have no influence on the further data processing by the US service providers. For a data transfer to a third country, i.e. a country outside the EU or the EEA, appropriate guarantees for the protection of your personal data are generally required. After the European Court of Justice invalidated the Commission’s Implementing Decision (EU) 2016/1250 of July 12, 2016 on the adequacy of the protection provided by the EU-US Privacy Shield (“EU-US Privacy Shield”), the EU-US Privacy Shield can no longer be used as a guarantee for an adequate level of protection in the USA according to EU standards. Thus, there is currently no level of data protection in the U.S. equivalent to that in the EU within the meaning of Art. 45 GDPR, and we are also unable to provide appropriate safeguards under Art. 46 GDPR to compensate for this deficit. Thus, data transfer to the USA is only permissible here with your express consent pursuant to Art. 49 (1) a) GDPR, which can be granted by you with the cookie notice by selecting optional categories. Possible risks of this data transfer are that access by state authorities, such as security authorities and/or intelligence services, cannot be ruled out and your data could be processed by them, possibly without you being informed separately and without enforceable rights and effective legal remedies being available to you, for reasons of national security, law enforcement or for other purposes in the public interest of the USA. Otherwise, we will only share your data with third parties if: you have expressly given your consent to this in accordance with Art. 6 para. 1 p. 1 a) GDPR, the disclosure according to Art. 6 para. 1 p. 1 f) GDPR is necessary for the assertion, exercise or defense of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data, there is a legal obligation for the disclosure according to Art. 6 para. 1 p. 1 c) GDPR or this is legally permissible and necessary for the processing of contractual relationships with you according to Art. 6 para. 1 p. 1 b) GDPR. The transfer to tax offices and social security institutions will only take place if there is a legal obligation to do so; the legal basis is Art. 6 para. 1 p. 1 c) GDPR. The transfer to service providers only takes place on the basis of a proper contract processing agreement in accordance with Art. 28 GDPR.

Google Analytics

For the purpose of demand-oriented design and continuous optimization of our websites, we use Google Analytics, a web analysis service of Google Inc. (https://www.google.de/intl/de/about/) (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; hereinafter: “Google”). In this context, pseudonymised user profiles are compiled and cookies are used (see section 4).The information generated by the cookie regarding your use of this website, such as

  • browser type/version,
  • operating system used,
  • referrer URL (the website visited before),
  • host name of the accessing computer (internet protocol address),
  • time of the server query,


are transferred to servers of Google in the USA and stored there within the context of the agreement on contract data processing that we have entered into with Google. The information is used in order to evaluate use of the website in order to compile reports on the website activities and in order to provide further services connected to use of the website and use of the internet for the purpose of market research and demand-oriented design of these internet websites. This information may also be transferred to third parties if this is required by law or as far as third parties process these personal data based on a contract. In no case will your internet protocol address be combined with any other data of Google. The internet protocol addresses are rendered anonymous so that they cannot be assigned (IP masking). Sessions and campaigns shall be ended after the end of a specific period of time. By default, sessions shall be ended after 30 minutes without any activity, and campaigns after six months.The time limit for campaigns may be up to two years.

You may prevent installation of the cookies by making the corresponding settings in your browser software; however, note that you may be unable to fully use all functions of the website in such a case.

You may furthermore prevent recording of the data generated by the cookie and referring to your use of the website (including your internet protocol address) and processing of these personal data by Google by downloading and installing a browser add-on here. For more information on data protection related to Google Analytics, see the Google Analytics Help here.