Any data

your trust

our responsibility

Any Data

your trust

our responsibility

The General Data Protection Regulation (GDPR) has been in force since 25 May 2018. The regulation contains rules on the collection, storage and processing of personal data for companies. In particular, the GDPR protects the fundamental rights and freedoms of natural persons and their right to the protection of personal data.

Security Statement

WE ENSURE DATA SECURITY
We protect participant data from access by third parties through pseudonymisation and encryption. We handle participant data confidentially and do not pass it on to third parties.

WE ALLOW PARTICIPANTS TO CORRECT THEIR DATA AT ANY TIME
Participants can correct their personal data at any time. And they can restrict or withdraw consent once given to process their data.

WE DELETE PARTICIPANTS’ DATA IMMEDIATELY UPON REQUEST
Participants can delete their personal data completely at any time. Or we will delete the data immediately if participants request it.

Committed to data protection

We already take the security of your data into account during the conception and development of our IT systems. You can count on that:

EMAIL SECURITY (SMTP SERVER SETUP, SPF, TLS)

DATA TRANSFER ENCRYPTION

DATA CENTRES ARE CERTIFIED TO VARIOUS INDUSTRY STANDARDS, INCLUDING SOC 1, SOC 2, PCI-DSS AND ISO 27001

DATA REDUNDANCY TO ENSURE RECOVERY FROM FAILURE

INDEPENDENT SECURITY AUDITS AND PENETRATION TESTS

CONTINUOUS NETWORK MONITORING

EU-US PRIVACY SHIELD CERTIFICATION

USERS CAN UNSUBSCRIBE FROM SYSTEMS OR NEWSLETTERS (OPT-OUT)

PASSWORD PARAMETERS AND VALIDITY CONTROL

PASSWORD SECURITY PARAMETERS AND ENCRYPTION

INDUSTRY STANDARD SECURITY CHECKS

APPLICATION-BASED AUTHENTICATION AND RIGHTS SYSTEM ON A USER AND ROLE BASIS

DATA ISOLATION: DATA IS STORED ON SEPARATE SERVERS BY CLIENT AND PROJECT

PERSONAL DATA SEPARATED FROM OTHER DATA

FIREWALL ON WEB APPLICATION AND OPERATING SYSTEM SIDE

SERVER ACCESS ONLY POSSIBLE FROM THE COMPANY NETWORK OR VIA COMPANY VPN

PATCH MANAGEMENT: SECURITY UPDATES WEB APPLICATION

NIGHTLY SYSTEM UPDATES

MULTI-LEVEL BACKUPS FOR DATABASE AND SERVER

DATA PROTECTION OFFICER

Dapro Serv GmbH
Auf der Hüls 128
52068 Aachen

Data Protection Officer of the SKOPOS CONNECT GmbH
Christian Willers
Tel.: 0241 / 55 96 77 02
Email: datenschutz@skopos-connect.de