1. Name and contact details of the controller and the company Data Protection Officer
The following information on data protection applies to data processing by:
vis.dev UG (haftungsbeschränkt) & Co. KG
Phone: +49 160 611 5416
2. Collection and storage of personal data as well as type and purpose of use
Your data processed when using our SOFTWARE will be deleted or blocked as soon as the purpose of the ceases to apply, the deletion of the data does not conflict with any legal obligations to retain and no other information is given below about individual processing procedures.
The legal basis for processing operations in which we obtain consent for a specific processing purpose is always Art. 6 para. 1 p. 1 lit. a GDPR. Insofar as the processing of personal data is necessary for the performance of a contract to which you are a party, then the processing is based on Art. 6 para. 1 p. 1 lit. b GDPR. The above legal basis also applies in the case of the performance of pre-contractual measures (e.g. inquiries about our SOFTWARE).
If our company is subject to a legal (statutory) obligation through which a processing of personal data becomes necessary and which is based on Union law or the law of the or law of the member state to which we are subject, the processing is based on Art. 6 para. 1 S. 1 lit. c GDPR. Furthermore, the processing may be based on Art. 6 para. 1 p. 1 lit. d GDPR, if vital interests are affected (danger to life and limb and/or disasters).
In addition, the legal basis for the processing of personal data may be Art. 6 para. 1 p. 1 lit. f GDPR may be applicable. In this case, we will inform you of our legitimate interest pursuant to Art. 6 para. 1 p. 1 lit. f GDPR separately.
The duration of the storage of your data depends on our commercial and tax law retention obligations. In this case, the storage of your data is based on Art. 6 para.1 p.2 lit. c GDPR.
a) Use of our SOFTWARE
In the case of the conclusion of a contract for the use of our SOFTWARE, the required information for the conclusion of the contract to Atlassian. Pty Ltd. (hereinafter referred to as "Atlassian") in particular user name, e-mail address and customer number of your account (hereinafter referred to as "Customer Instance"), time of installation, payment information and the individual device identification number. We have no influence on this data collection and are not responsible for it.
When you use our SOFTWARE, we collect the personal data described below to enable you to use the data described below in order to enable you to use the functions of the SOFTWARE. If you wish to use our SOFTWARE we will collect the following data, which is technically necessary for us to offer you the functions of our SOFTWARE and to ensure stability and security:
IP address of the computer,
user name on the ATLASSIAN marketplace,
e-mail address, which has been deposited on the ATLASSIAN-Marketplace,
data stock of the customer instance on the ATLASSIAN-Marketplace, which according to the functions of the SOFTWARE due to their application by the customer are to be processed.
The data processing carried out by us is based on the Art. 6 Abs. 1 S. 1 lit. b GDPR as a legal basis. The purposes of data collection listed above are necessary for the implementation and fulfillment of the contractual relationship.
b) Business processing
3. Passing on of data
Your personal data will not be forwarded to third parties. A forwarding takes place
only in the following cases:
You have given your express consent in accordance with Art. 6 para. 1 p. 1 lit. a GDPR to the forwarding to third parties;
The forwarding is necessary according to Art. 6 para. 1 p. 1 lit. f GDPR to protect our legitimate interests or those of a third party, in particular for the assertion, exercise or defense of legal claims, and you do not have an overriding legitimate interest in the non-disclosure of your data;
A legal obligation according to Art. 6 para. 1 p. 1 lit. c GDPR exists;
The data is forwarded in accordance with Art. 6 para. 1 p. 1 lit. b GDPR for the processing of contractual relationships with you. A transfer of your personal data to third parties in this case will only be made to the service partners involved in the processing of the contract, such as the credit institution and the service company responsible for merchandise management and accounting, insofar as this is absolutely necessary for the fulfillment and processing of the contract. In the cases of forwarding to third parties, the scope of the data disclosed is limited to the minimum required for the minimum required for the execution of the contract.
4. Data subject rights
The new General Data Protection Regulation has significantly expanded your rights. These are enumerated below and briefly explained with reference to the legal basis.
Information, Art. 15 GDPR: You have the right to request information about your personal data processed by us. This includes, for example, information about processing purposes, the category of personal data, the categories of recipients to whom your data have been or will be disclosed, the planned storage period, the existence of a right to rectification, erasure, restriction of processing or objection, the existence of a right of complaint, the origin of your data, if it has not been collected by us, as well as about the existence of an automated decision-making including profiling and, if applicable, meaningful information about its details;
Right to rectification, Art. 16 GDPR: You can immediately request the rectification of inaccurate data or completion of your personal data stored by us;
Right to erasure ("right to be forgotten"), Art. 17 GDPR: You have a right to erasure of your personal data stored by us, unless processing is necessary for the exercise of the right to freedom of expression and information, the compliance with a legal obligation, for reasons of public interest or for the assertion, exercise or defense of legal claims is necessary;
Right to restriction of processing, Art. 18 GDPR: You may request that the processing of your personal data be restricted. The prerequisite is that the accuracy of the data is disputed by you or that the processing is unlawful, but you object to their deletion or that we no longer need the data, but that you need them for the assertion, exercise or defense of legal claims or you have objected to the processing pursuant to Art. 21 GDPR (item 7);
Right to data transfer, Art. 20 GDPR: You may request that we transfer your personal data that you have provided to us in a structured, common and machine-readable format, or to have it transferred to another controller; or transferred;
Revocation of consent, Art. 7 (3) GDPR: You can revoke your consent, once given, at any time against us. This has the consequence that we will not continue the data processing that was based on this consent may no longer be continued in the future. The legality of the processing carried out on the basis of the consent until the revocation is not affected;
Right of appeal, Art. 77 GDPR: You have the right to lodge a complaint with a supervisory authority, if you are of the opinion that the processing of your personal data violates the provisions of data protection law. Generally you can contact the supervisory authority at your usual place of residence or place of work or of our registered office.
5. Right to object
You also have a right to object according to Art. 21 GDPR. This applies to your personal data that is processed on the basis of legitimate interests pursuant to Art. 6 para. 1 p. 1 lit. e or f GDPR, and insofar as there are reasons for objecting to the Processing exist that arise from your particular situation. If the objection is directed against direct marketing, you have an unrestricted right to object, even without specifying a special situation.
You can exercise your right to object and also your other rights, for example, by sending an e-mail to firstname.lastname@example.org.
6. Data security
It is important to us to protect your data. Therefore, we take appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access. Our security measures are continuously improved in line with technological developments.
7. Existence of an automated decision-making process
Automatic decision-making or profiling does not take place.
8. Topicality and change of this data protection declaration