Skip to the main content.
Contact
Contact
ISTQB-Bildmarke ISTQB Certified Tester
IREB_Bildmarke IREB Certified Professional for Requirements Engineering
a4q-Bildmarke A4Q - Alliance for Qualification
XRAY-Bildmarke Xray - Testmanagement für Jira
TestSolutions-Bildmarke TestSolutions Originals
Seminarthemen
Trainingsformen
Inhouse Seminare
Fragen und Antworten (FAQ)

Privacy Notice


I. Name and address of the controller

The controller within the meaning of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations is

TestSolutions GmbH
Georg-Voigt-Strasse 17
60325 Frankfurt am Main
Frankfurt am Main, Germany
Telephone: +49 (0) 69 / 945 08 031
E-mail: info@testsolutions.de

II. Name and address of the data protection officer

The data protection officer of the controller is
Sabri Deniz Martin
Telephone: +49 (0) 69 / 945 08 031
E-mail: deniz.martin@testsolutions.de

III General information on data processing

Scope of the processing of personal data
We only process our users' personal data to the extent necessary to provide a functional website and our content and services. The processing of our users' personal data only takes place regularly with the user's consent. An exception applies in cases where prior consent cannot be obtained for factual reasons and the processing of the data is permitted by law.

Legal basis for the processing of personal data
Insofar as we obtain the consent of the data subject for the processing of personal data, Art. 6 para. 1 lit. a EU General Data Protection Regulation (GDPR) serves as the legal basis.
When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Art. 6 para. 1 lit. b GDPR serves as the legal basis. This also applies to processing operations that are necessary to carry out pre-contractual measures.
Insofar as the processing of personal data is necessary to fulfill a legal obligation to which our company is subject, Art. 6 para. 1 lit. c GDPR serves as the legal basis.
In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 para. 1 lit. d GDPR serves as the legal basis.
If the processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 para. 1 lit. f GDPR serves as the legal basis for the processing.

Data erasure and storage duration
The personal data of the data subject will be erased or blocked as soon as the purpose of storage no longer applies. Data may also be stored if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the controller is subject. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfillment of a contract.

IV. Provision of the website and creation of log files

Description and scope of data processing
Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer.
The following data is collected:
- Information about the browser type and version used
- The user's operating system
- The IP address of the user
- Date and time of access

Legal basis for data processing
The legal basis for the temporary storage of data and log files is Art. 6 para. 1 lit. f GDPR.

Purpose of the data processing
The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user's computer. For this purpose, the user's IP address must remain stored for the duration of the session. The data is stored in log files to ensure the functionality of the website. We also use the data to optimize the website and to ensure the security of our information technology systems. The data is not analyzed for marketing purposes in this context. These purposes also constitute our legitimate interest in data processing in accordance with Art. 6 para. 1 lit. f GDPR.

Duration of storage
The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended. If the data is stored in log files, this is the case after seven days at the latest. Storage beyond this period is possible. In this case, the IP addresses of the users are deleted or anonymized so that it is no longer possible to identify the accessing client.

Objection and removal options
The collection of data for the provision of the website and the storage of data in log files is absolutely necessary for the operation of the website. Consequently, there is no possibility for the user to object.

V. Cookies and consent management

Our Internet pages use so-called cookies. Cookies do not cause any damage to your computer and do not contain viruses. Cookies are used to make our website more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser.

Use of a cookie consent banner
We use a consent management tool (cookie banner) on our website to obtain your consent to the storage of certain cookies on your end device or to the use of certain technologies and to document this in accordance with data protection regulations.
When you enter our website, you have the option of selecting individual categories of cookies or accepting all cookies via the banner.

Most of the cookies we use are so-called "session cookies". They are automatically deleted at the end of your visit. Other cookies remain stored on your end device until you delete them. These cookies enable us to recognize your browser on your next visit.

Legal basis and setting options
The use of technically necessary cookies is based on our legitimate interest (Art. 6 para. 1 lit. f GDPR) in a functioning website. All other cookies (e.g. for marketing or analysis) are set exclusively on the basis of your consent (Art. 6 para. 1 lit. a GDPR), which you can give and revoke at any time via the cookie banner.
You can also set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser.

VI Contact form and e-mail contact

Description and scope of data processing
There is a contact form on our website that can be used to contact us electronically. If a user makes use of this option, the data entered in the input mask will be transmitted to us and stored.
These data are
- Name
- e-mail address
- Company name
- message
- and other information provided by you.

The following data is also stored when the message is sent:
- The IP address of the user
- Date and time

Your consent to the processing of the data is obtained during the sending process and reference is made to this privacy policy.
Alternatively, you can contact us via the e-mail address provided. In this case, the user's personal data transmitted with the e-mail will be stored.

Processing via Microsoft 365
We use the cloud services of Microsoft 365 (provider: Microsoft Ireland Operations Ltd.) for e-mail traffic and internal organizational processes. This includes the storage and management of emails, calendar entries and contact data on Microsoft servers in Europe. As a processor, Microsoft guarantees the protection of your data. In exceptional cases (e.g. technical support), access from the USA is technically not completely excluded; Microsoft is certified under the EU-US Data Privacy Framework, which ensures an adequate level of data protection.

Legal basis for data processing
The legal basis for the processing of the data is Art. 6 para. 1 lit. a GDPR if the user has given consent.
The legal basis for the processing of data transmitted in the course of sending an email is Art. 6 para. 1 lit. f GDPR. If the e-mail contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR.

Purpose of the data processing
The processing of the personal data from the input mask serves us solely to process the contact. If you contact us by email, this also constitutes the necessary legitimate interest in processing the data.

Duration of storage
The data will be deleted as soon as it is no longer required for the purpose for which it was collected. For the personal data from the input mask of the contact form and those sent by e-mail, this is the case when the respective conversation with the user has ended.

Possibility of objection and removal
The user has the option to withdraw their consent to the processing of personal data at any time. If the user contacts us by email, they can object to the storage of their personal data at any time.

VII Google Analytics

Our website uses Google Analytics, a web analytics service provided by Google LLC ("Google"). Google Analytics uses "cookies", which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there.
IP anonymization
We have activated IP anonymization on this website. This means that your IP address will be shortened by Google within member states of the European Union or in other signatory states to the Agreement on the European Economic Area before being transmitted to the USA.

Browser plugin & objection
You can prevent the storage of cookies by selecting the appropriate settings in your browser software. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available at the following link: https://tools.google.com/dlpage/gaoptout?hl=de.

EU-US Data Privacy Framework
Google is certified under the EU-US Data Privacy Framework. This means that Google undertakes to comply with European data protection standards.

VIII. Google Ads & Conversion Tracking

We use the online advertising program "Google Ads" and conversion tracking as part of this. Google Ads is a service provided by Google Ireland Limited. When you click on an ad placed by Google, a cookie for conversion tracking is stored on your computer. These cookies lose their validity after 30 days and are not used for personal identification. If you visit certain pages of our website and the cookie has not yet expired, Google and we can recognize that you have clicked on the ad and have been redirected to this page.

The information collected using the conversion cookie is used to generate conversion statistics for us as an Ads customer. We learn the total number of users who clicked on our ad and were redirected to a page with a conversion tracking tag. However, we do not receive any information with which users can be personally identified.

Legal basis
The processing is based on your consent (Art. 6 para. 1 lit. a GDPR), which we request via our consent management tool. You can withdraw your consent at any time via the cookie settings.

IX. HubSpot (CRM, forms, email marketing & tracking)

We use the HubSpot service on our website and for our sales and marketing activities. The provider is HubSpot Ireland Limited, 2nd Floor 30 North Wall Quay, Dublin 1, Ireland (parent company: HubSpot, Inc., USA).

Scope of the processing
HubSpot is an integrated software solution that we use for various aspects of our online marketing and sales. This includes, among other things:
- CRM system: management of contact data.
- Email marketing & communication: Sending newsletters and automated emails.
- Landing pages and contact forms: Storage of your entries.
- Data enrichment: Enrichment of data records in the CRM with information from publicly accessible sources (e.g. LinkedIn) or HubSpot Insights. This is done on the basis of our legitimate interest (Art. 6 para. 1 lit. f GDPR).

Email tracking (web beacons)
We use tracking pixels in our emails (newsletters & some B2B correspondence) to measure open rates and click behavior. This serves to optimize our communication and sales processes.
- Newsletter: Consent (Art. 6 para. 1 lit. a GDPR).
- B2B direct e-mails: Legitimate interest (Art. 6 para. 1 lit. f GDPR).
Opt-out: Tracking can be technically prevented by deactivating the display of images in your email program.

Data transfer to the USA
HubSpot is certified under the EU-US Data Privacy Framework (DPF), which ensures an adequate level of data protection.

X. Online meetings and webinars via Microsoft Teams

We use Microsoft Teams for webinars and online meetings.
We store registration data (e.g. name, email) in our CRM system (HubSpot) to organize participation (legal basis: consent, Art. 6 para. 1 lit. a GDPR).
During webinars, participants are "passive" (camera/microphone deactivated). Recordings only include presenters and shared content.
Microsoft is certified under the EU-US Data Privacy Framework.

XI. Contract processing (seminar and academy operations)

The data transmitted by you for the use of our services (e.g. seminar bookings) are processed by us for the purpose of contract processing and are necessary in this respect. The legal basis for the processing is Art. 6 para. 1 lit. b) GDPR.

Advertising use for existing customers
If you are already a customer of ours or have participated in our events, we will merge your master data and history in our CRM system (see Section IX HubSpot) in order to inform you in a targeted manner about similar offers from our Academy (direct advertising for our own similar goods/services in accordance with Section 7 (3) UWG). Our legitimate interest lies in maintaining the customer relationship. You can object to this use at any time.

In the context of contract processing, we may pass on your data to service providers (e.g. lecturers or IT service providers) insofar as this is necessary for the provision of the service.

XII. Google reCAPTCHA

We use Google reCAPTCHA to avoid interactions by bots. Google determines, among other things, the IP address and duration of the visit. The legal basis is Art. 6 para. 1 lit. f) GDPR (security of the website).

XIII Google Fonts

We use Google Fonts to display external fonts. This establishes a connection to Google servers (transmission of the IP address). The legal basis is Art. 6 para. 1 lit. f) GDPR (legitimate interest in uniform presentation). Google is certified under the EU-US Data Privacy Framework.

XIV Presence in social media (LinkedIn)

We maintain an online presence on LinkedIn (LinkedIn Ireland Unlimited Company). The processing is based on our legitimate interests in communication and information (Art. 6 para. 1 lit. f GDPR). Please note that data may also be processed in the USA.

XV Rights of the data subject

If your personal data is processed, you have the following rights vis-à-vis the controller
- Right of access
- Right to rectification
- Right to restriction of processing
- Right to erasure
- Right to information
- Right to data portability
- Right to object (in particular to direct marketing)
- Right to withdraw consent
- Right to lodge a complaint with a supervisory authority

We would always like to accommodate you in this regard.