Disclaimer:
Liability for content
As service providers, we are liable for own contents of these websites according to Sec. 7, paragraph 1 German Telemedia Act (TMG). However, according to Sec. 8 to 10 German Telemedia Act (TMG), service providers are not obligated to permanently monitor submitted or stored information or to search for evidences that indicate illegal activities.
Obligations to remove information or to block the use of information in accordance with general laws remain unaffected. In this case, liability is only possible at the time of knowledge about a specific violation of law. If we become aware of such violations of law, we will remove this content immediately.
Liability for links
Our offer contains links to external third-party websites over whose content we have no influence. We therefore cannot accept any liability for this external content. The respective provider or operator of the pages is always responsible for the content of the linked pages. The linked pages were checked for possible legal violations at the time of linking. Illegal content was not apparent at the time of linking.
However, permanent monitoring of the content of linked pages is not reasonable without concrete evidence of a legal violation. If we become aware of any legal violations, we will remove such links immediately.
copyright
The content and works on these pages created by the site operators are subject to German copyright law. Duplication, processing, distribution and any type of exploitation outside the limits of copyright law require the written consent of the respective author or creator. Downloads and copies of this page are only permitted for private, non-commercial use.
Insofar as the content on this site was not created by the operator, the copyrights of third parties are respected. In particular, third-party content is marked as such. Should you nevertheless become aware of a copyright infringement, please inform us accordingly. If we become aware of any infringements, we will remove such content immediately.
DOCUMENTATION OF THE PROCESSING ACTIVITY
Information about the person responsible
Responsible body (according to Art. 4 No. 7 GDPR)
icigai1 GmbH, Moritz-von-Rohr-Str. 1 a , 07745 Jena
Legal representative (= management)
Jan Oertel, Moritz-vor-Rohr-Strasse 1a 07745 Jena.
1. Contract Performance 1 – Area – Licenses to 1. Contract Performance one2play – Area – Licenses
1. Contract Performance 1 – Area – Licenses
2. Payment processing
Responsible contact person (including department, telephone number and email address):
1. Jan Oertel, Moritz-vor-Rohr-Strasse 1a 07745 Jena.
Status:
Type of processing:
• Existing customer management
GENERAL DATA PROTECTION REQUIREMENTS GDPR
Purpose of use
Processing activity “Existing customer management”
• The purpose is to provide support and contact with our customers in accordance with the contract and to fulfil our contractual services.
Lawfulness of processing, Art. 6 GDPR
Art. 6 Para. 1 lit. a, Article 7
Is there a high risk to the rights and freedoms of natural persons under Article 35?
The email address is the only directly personal information and is only used to contact the relevant employees in our customer's company by email. The collection of information by forming groups in Game 1 is completely voluntary and only by players of Game 1. Players or outsiders cannot establish personal references within the game. From today's perspective, the risk is assessed as low.
DATA COLLECTION
Circle of people affected
Customers / Area – Licensee of icigai1 GmbH
Type of data or categories of data stored:
Company details and contact persons in the company
Origin of the data
Voluntary participation in the game by a player as an employee of a corporate client.
RECIPIENTS OR CATEGORIES OF RECIPIENTS TO WHOM THE DATA MAY BE COMMUNICATED
Internal recipients (within the responsible body)
• Accounting
• Customer Support Department
External recipients and third parties:
• No
STANDARD TIME LIMIT FOR DELETION OF DATA
Storage period
• Existing customer data: Unlimited
• Former customer data: The data will be deleted 8 weeks after termination of the contractual relationship
ASSESSMENT OF TECHNICAL ADEQUACY AND ORGANICAL MEASURES (TOM)
General description of the technical and organizational measures (Art. 30 para. 1 lit. g, Art. 32 para. 1 GDPR)
Customer data and contact details are stored and retrieved in a secure system, outside of our own online offering
• To offer a higher level of protection, as the service provider “plentymarkets GmbH” can currently offer a higher level of protection, which is used by us and the entire service to offer our customers the highest possible level of protection.
• To prevent us and our/future/former employees from stealing customer data from the company in printed form, on a USB stick or via a file transfer service.
• Customer data is located in an area to which employees or personnel do not have access.
• Employees of icigai1 GmbH who need this data, for example to provide support or billing for our customers, can access this data
Our customer data is kept pseudonymised and encrypted in the databases
The game data is encrypted in our databases so that even people who work on our databases cannot read customer data
If our databases are stolen, outsiders will not be able to decrypt the system because the data is unreadable in encrypted form.
The database system is subject to automated testing mechanisms that test the functionality of the security mechanisms every 1-2 minutes.
In the event of disruptions (hacker attacks, overload, etc.), a system alarm is triggered, which immediately informs those responsible via smartphone
In exceptional cases, the database can be immediately put into a protection mode that deactivates the accessibility of the server.
STATEMENT OF THE DATA PROTECTION OFFICER
Examination by the data protection officer
Recorded on 07.09.2018
Is further action required?
Currently not
Open measure
No
Date of documentation
05.09.2018
Review by management
Created on 07.09.2018
Date, signature
Jena, 07.09.2018, signature Jan Oertel