2.4 Third Party Web Analysis, Tracking & Tracing
BroadSoft Uses the Following Third Party Services where information collected about your use of this website may in some cases be transferred to servers in the US and may be stored in the US, thus both the service providers and government authorities may be able to access this data, this data may also be linked to other data such as search history, personal accounts, usage data from other devices and any other data that service providers may have about you.
You can prevent Google Analytics from collecting data on our website by clicking on the following link. An opt-out cookie is set to prevent future collection of your information when you visit this website: [https://tools.google.com/dlpage/gaoptout?hl=en]
You can find more information on this at: [https://policies.google.com/privacy?hl=en] (general information on Google Analytics and data protection).
Furthermore, the BroadSoft website uses Google Analytics to evaluate data from AdWords and the double-click cookie for statistical purposes. [https://support.google.com/ads/answer/2662922?hl=en-GB#zippy=%2Cif-youre-signed-out-of-your-google-account]
You can disable this function when you configure the corresponding settings in http://www.google.com/settings/ads.
Google AdWords We use the online advertising programme "Google AdWords" and, within the framework of Google AdWords, conversion tracking. Google conversion tracking is an analysis service. When you click on an ad placed by Google, a conversion tracking cookie is placed on your computer. These cookies expire after 30 days and, according to Google, do not contain any personal data and are therefore not used for personal identification. If you visit certain pages on our website and the cookie has not expired, Google and we may recognise that you have clicked on the ad and been directed to that page. Each Google AdWords customer receives a different cookie. As a result, there is no way that cookies can be tracked across the websites of AdWords customers.
The information collected using the conversion cookie is used to generate conversion statistics for AdWords customers who have opted for conversion tracking. This information includes the total number of users who have clicked on their ad and been redirected to a page with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users.
If you do not wish to take part in tracking, you can object to this use by preventing the installation of cookies through a corresponding setting in your browser software (deactivation option). You will then not be included in the conversion tracking statistics. You can find further information and the Google data protection declaration at: [https://policies.google.com/privacy?hl=en]
Google Tag Manager This website uses the Google Tag Manager. Google Tag Manager is a solution that allows marketers to manage website tags through one interface. The Tag Manager tool itself (which implements the tags) is a cookie-free domain and does not collect any personal information. The tool triggers other tags, which in turn may collect data. Google Tag Manager does not access this data. If disabled at the domain or cookie level, it will remain disabled for all tracking tags implemented with Google Tag Manager.
Google reCAPTCHA This website uses Google reCAPTCHA to check and avoid interactions on our website through automated access, e.g. through so-called bots. It is a service of Google LLC, Gordon House, Barrow Street, Dublin 4, Ireland, hereinafter only referred to as "Google".
The legal basis is your consent. Google offers further information on the general handling of your user data at [https://policies.google.com/privacy].
Hotjar This website uses Hotjar, a web analytics tool provided by Hotjar Ltd (Level 2, 3, Elia Zammit Street, St Julians STJ 1000, Malta, Europe) to record randomly selected individual visits (with anonymised IP address only). This creates a log of mouse movements and clicks with the intention of randomly replaying individual website visits and deriving potential improvements for the website. The information is not personal and will not be passed on. If you do not wish to have a recording, you can deactivate it on all websites that use Hotjar by clicking on the following link: http://www.hotjar.com/opt-out.
VWO This website carries out analyses of user behaviour via so-called A/B testing by our service provider VWO (Visual Website Optimizer, Wingify Software Private Limited, Delhi,India; https://vwo.com/privacy-policy/). With the help of cookies and similar technologies, we can display our website under pseudonymised processing of your data with slightly different contents, depending on the profile allocation. This is how we can display our offer regularly and make it more interesting for you as a user. Data will be deleted or made anonymous as soon as their processing is no longer necessary for the above purposes. You can object to the described data processing with VWO on our website under point 8.c.(2) or here your objection to the use of VWO per se to express your opinion: https://vwo.com/opt-out/.
Microsoft Advertising For our online marketing measures, we also use the Microsoft Advertising program of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA. This is a Microsoft advertising program that is based on a pay-per-click system. This means advertisers can place ads on the Bing and Yahoo! search engines and only pay when a user clicks on the ad. We want to make people aware of the high quality of our products and/or services.
We have integrated a conversion tracking day from Microsoft Advertising into our website. This is known as the Universal Event Tracking (UET) Day. If you come to our website via a Microsoft advertisement, we can use this tracking tool to find out more about your user behaviour on our website. For example, we learn which keyword or ad you used to come to our site, what you click on on our site, how many people visit our site through Microsoft Ads, and how long you stay on our site. All this data relates to user behaviour and not personal data. We therefore only receive data or evaluations of your web behaviour, but no personal information. Microsoft uses the data to optimise its own advertising and other services. If you have a Microsoft account, the data collected may be linked to your account. Microsoft may also recognise and store your IP address.
We have no influence on how Microsoft uses the collected user data. Microsoft operates its own servers worldwide. Most of them are located in the United States and therefore your data may also be stored, managed and processed on American server sand both Microsoft and government authorities may have access to this data, and this data may also be linked to other data such as search history, personal accounts, usage data from other devices and any other data Microsoft has about that user. Microsoft stores data (especially personal data) as long as it is necessary for the provision of its own services or products or for legal purposes. Microsoft also mentions that the actual retention period varies greatly and depends on the respective product. For searches via Bing, Microsoft deletes your stored searches after 6 months by deleting your IP address. Cookie IDs, such as those generated by the MUID cookie, are made unrecognisable after 18 months.
ADITION Adserving & Targeting We use Adition (https://www.adition.com) to present you with advertisements that are relevant to you. The provider of Adition is Adition technologies AG, Am Gatherhof 44, 40472 Düsseldorf, Germany. If you do not want Adition to continue to collect anonymised data, you can deactivate the data collection here (http://de.adition.com/privacy/). This OptOut cookie deletes the previously stored information and prevents further collection of information. If you have already activated the "OptOut", you can reverse this setting at any time by clicking on the "OptIn" button.
This website uses ADITION adserving technology from ADITION technologies AG to collect and store data for marketing and optimisation purposes. Pseudonymised user profiles can be created from this data. Cookies can be used for this purpose. The data collected with ADITION adserving technology is not used to personally identify the visitor to this website and is not merged with personal data about the holder of the pseudonym. ADITION technologies AG does not store any personal data by setting cookies. All information contains only technical information such as the browser used or the operating system installed. For more information, please visit: http://de.adition.com/privacy/.
kununu CDN We use kununu CDN for the proper provision of the content of our website. kununu CDN is a service of kununu GmbH, which acts as a content delivery network (CDN) on our website.
A CDN helps to provide content of our online offer, especially files such as graphics or scripts, more quickly with the help of regionally or internationally distributed servers. When you access this content, you establish a connection to servers of kununu GmbH, Neutorgasse 4-8, Top 3.02, A - 1010 Vienna, whereby your IP address and possibly browser data such as your user agent are transmitted. This data is processed exclusively for the above-mentioned purposes and to maintain the security and functionality of kununu CDN.
The use of the CDN is based on our legitimate interests, which means the interest in a secure and efficient provision as well as the optimisation of our online offer according to Art. 6 para. 1 lit. f) GPDR.
The specific storage period of the processed data cannot be influenced by us, but is determined by kununu GmbH. Further information can be found in the data protection declaration for kununu CDN: https://privacy.xing.com/de/datenschutzerklaerung
Web tracking technologies are used to create pseudonymous user profiles. These profiles cannot be linked to you as a natural person, but are used, for example, for segmentation when displaying advertisements. We process data with the help of DrawBridge for the purpose of optimising our advertising campaigns and for marketing purposes on the basis of your consent pursuant to Art. 6 (1) a) GDPR.
The specific storage period of the processed data cannot be influenced by us, but is determined by Gimbal, Inc. Further information can be found in the data protection declaration for DrawBridge: https://gimbal.com/gdpr/
Adobe Typekit We use Adobe Typekit for the visual design of our websites. Typekti is a service provided by Adobe Systems Software Ireland Companies (4-6 Riverwalk, Citywest Business Campus, Dublin 24, Republic of Ireland; hereinafter "Adobe"), which gives us access to a font library. To integrate the fonts your browser must establish a connection to an Adobe server in the USA and download the font required for our website. This provides Adobe with the information that our website was accessed from your IP address. You can find more information about Adobe Typekit in the data protection information: www.adobe.com/privacy/policy.html. We do not collect any personal data through the integration of Adobe Typekit web fonts.
2.5 Social media
On our pages are plugins of the social networks Twitter, Youtube, Xing and Instragram. When you visit our pages, the plugin establishes a direct connection between your browser and the social network server. We process your personal data when you communicate with us through our social media accounts (e.g. Facebook, Instagram, LinkedIn, YouTube).
The content of the plugin is transmitted directly from the social network to your browser and integrated into the page. Through this integration, the social network receives the information that your browser has called up the corresponding page of our website, even if you do not have a social network profile or are not logged on to your profile. This information (including your IP address) is transmitted directly from your browser to a social network server (probably USA) and stored there.
If you are logged in the social network, it can assign your visit to our website directly to your profile. If you interact with the plug-ins, for example by clicking on the "Like" button or making a comment, this information is also transmitted directly to a social network server and stored there. The information might also be published on your profile and displayed to your friends.
If you do not want the social network to associate the data collected through our website directly with your profile, you must log out of the social network before visiting our website. You can also completely prevent the loading of social network plugins with add-ons for your browser.
BroadSoft has fan pages on social media sites such as Instagram, Facebook (both Facebook Inc., Menlo Park, California), YouTube (YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA). YouTube, LLC is a subsidiary of Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA), LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland), Xing (New Work SE, Dammtorstraße 30, 20354 Hamburg, Germany) and Twitter (Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA) in order to communicate with users active there and to inform them about our products. In doing so, users' data may be processed outside the EU. The aforementioned US providers have signed the EU standard contractual clauses and thus guarantee compliance with European data protection laws.
When using the Facebook fan page, the following data is collected from you for the purpose of user communication and target group advertising:
· User interactions (postings, likes, etc.)
· Facebook cookies
· Demographic data (e.g. based on age, place of residence, language or gender)
· Statistical data on user interactions in aggregated form, i.e. without personal reference (e.g. page activities, page views, page previews, likes, recommendations, posts, videos, page subscriptions incl. origin, times of day)
The promotional use of personal data is particularly important for Facebook. We use the statistics function to learn more about the visitors to our fan page. The use of this function enables us to adapt our content to the respective target group. In this way, we also use demographic information on the age and origin of users, for example, although it is not possible for us to make any personal reference here.
In order to provide the social media service in the form of our Facebook fan page and to use the Insights function, Facebook usually stores cookies on the user's end device. These include session cookies, which are deleted when the browser is closed, and persistent cookies, which remain on the end device until they expire or are deleted by the user.
2.6 Contacting us via the Webex.shop messaging system (Intercom)
As a commercial enterprise or as Broadsoft customer you can use our messaging system to contact us and ask our team questions about any of our products. In order for us to be able to answer you, your email address, the time of registration to the messaging system and the data contained in the message to us are required. The legal basis of the processing is legitimate interest under GDPR in the course of providing customers with services and support.
Cookies from Adform A/S (Wildersgade 10B, 1, 1408 Copenhagen K, Denmark) are used to place interest-related advertisements. For this purpose, information on the operating system, browser version, IP addresses, geographical location and number of clicks or views is stored in pseudonymous user profiles. This data is used for the following purposes:
• Recording the number of visitors to our websites.
• Defining the order in which a visitor visits the various pages of our website.
• Assess which parts of our website need to be adapted.
• Optimisation of the website.
The legal basis for this is your consent. Your deactivation option:
If you click on this link, you can have an opt-out cookie set that prevents any further data collection: https://site.adform.com/privacy-center/website-privacy/opt-out/#:~:text=Adform%20needs%20to%20set%20an%20anonymous%20%E2%80%9Copt-out%E2%80%9D%20cookie,in%20your%20browser%20and%20accessible%20to%20Adform.%202.
You can also prevent cookies from being set in the settings of your browser or have already set cookies regularly deleted. In this case, please note that the opt-out cookie will then also be deleted so that you will have to exercise any objections again.
The support function is used via the ticket system of the provider Freshworks GmbH. The use is only possible if you have already created an account. All relevant data which the customer can enter in his ticket will be used exclusively for the processing of the support ticket in accordance with our obligations with respect to the performance of a contract. Details about data protection at Freshworks GmbH can be found under the following link: https://www.freshworks.com/privacy/.
The order processing in the shop is carried out by the service provider COMPLUS Generaldistribution GmbH. Name, postal address and order address are passed on in accordance with our obligations with respect to the performance of a contract exclusively for the purpose of processing the online order. Your data will only be passed on if this is actually necessary for the processing of the order and thus the contractual obligations. Details on data protection at COMPLUS Generaldistribution GmbH and the data protection declaration of COMPLUS Generaldistribution GmbH can be viewed under the following link: [https://www.complus.de/en/dataprotection].
2.12 The Trade Desk
This site uses technology from The Trade Desk Inc, 42 N Chestnut St, Ventura, California, CA - 9300, USA. Information about the surfing behaviour of website visitors is collected for marketing purposes in a purely anonymous form and cookies are set for this purpose. No personal data is collected or stored in this process. You can object to the processing of cookie data generated by The Trade Desk at any time at https://www.adsrvr.org/. Further information on data protection at The Trade Desk can be found at https://www.thetradedesk.com/general/privacy-policy.
3. Use of personal data when purchasing BroadSoft products
BroadSoft offers different products for which different types of personal data are required and collected. This concerns, among other things, the purchase of terminal equipment.
Establishment and execution of contractual relationships
In order to offer our products to you, we collect, process and use the personal data of our customers and their users.
Contract-related data (e.g. name, company name, address, etc.) is stored insofar as this is necessary for the establishment, content or modification of the contractual relationship. Personal data will not be passed on to third parties without your express consent or without BroadSoft being required to do so by law or in accordance with contractual requirements. After termination of the contractual relationship, the subscriber data will be deleted at the end of the calendar year following the termination. In the event of any longer statutory storage obligations, access to the data will be blocked instead of deleting the information. We collect and process in particular:
• Contact data, such as first and last name, company name, telephone number(s), e-mail address(es), address, commercial registration number, name and first name of contact persons in the company, tax number
• Contract master data (contractual relationship, product or contract interest)
• Contract billing and payment data, such as method of payment, the applicable credit institution with the account number, the account holder, etc.
• Customer history
• Planning and control data
• Information (from third parties, e.g. credit agencies or from public directories
• Other data provided to us as subscriber data
As a registered customer, you can view and administer your contract data at any time on the BroadSoft portal.
By order of the competent authorities, BroadSoft may, in individual cases, provide information about subscriber data if this is necessary for the purposes of criminal prosecution, for police and national security purposes to the police authorities or for the enforcement of intellectual property rights.
4. Data Retention Period
We retain your data to enable us to perform the contract we have entered into with you or to provide services while you are an active user of our site, or when required by law or to protect legal rights.
We always aim to keep your data as short as possible in line with data protection principles and our processes. For example, we store:
· Records of payment information in line with tax law and audit requirements.
· Customer feedback and correspondence with our customer service teams for up to 2 years, depending on the nature of the interaction and any applicable legislation, e.g. health and safety. This allows us to respond to any queries or complaints.
· Information to keep records in accordance with the regulations that apply to us.
We may keep your information longer if we cannot delete it for legal, regulatory or technical reasons.
5. To which Third Countries will we transfer your data?
Where information is transferred outside the EEA, and where this is to a Broadcast affiliate or vendor in a country that is not subject to an adequacy decision by the EU-Commission, data is adequately protected by EU-Commission approved standard contractual clauses (https://ec.europa.eu/info/strategy/justice-and-fundamental-rights/data-protection/data-transfers-outside-eu/model-contracts-transfer-personal-data-third-countries_en for further information).
6. Data Subject Rights
As a visitor to the website and registered customer of the Webex.shop, you have the following rights:
6.1 Right to information and access (Art. 15 GDPR)
Upon request, BroadSoft will provide the customer with information about the personal data stored about him/her in accordance with the GDPR. If you request information about the personal data stored about you by BroadSoft, you can contact the data protection officer in writing. Please contact the data protection officer for information using the information contained in Section 1.
If we use your data for marketing purposes, you can object to the use of your personal data at any time and free of charge. You can send objections by e-mail to firstname.lastname@example.org.
6.2 Right of objection (Art. 21 GDPR)
If your personal data are processed on the basis of our legitimate interests, you have the right to object to the processing of your personal data, if there are reasons for doing so arising from your particular situation
In some cases, we may continue to process your personal data even if you have objected to us processing it. This is the case, for example, if we can demonstrate compelling legitimate interest for further use that outweigh your interests, or if the further use is for the purpose of asserting, exercising or defending legal claims.
You also have a general right of objection in relation to the processing of personal data used by BroadSoft for direct marketing, which will be implemented by us without indicating any special situation.
Please contact the data protection officer for information using the information contained in Section 1.
6.3 Data portability (Art. 20 GDPR)
If your data processing is based on consent or a contractual relationship, you can request that this data be handed over to another provider in a common, structured and machine-readable format at any time.
6.4 Right to rectification (Art. 16 GDPR)
As a data subject, you have the right to request the rectification of inaccurate personal data without undue delay. Taking into account the purposes of the processing, you have the right to request the completion of incomplete personal data.
6.5 Right to erasure ("right to be forgotten") (Art. 17 GDPR)
As a data subject, you may have a right to erasure. This is the case, for example, if your personal data is no longer necessary for the original purposes, you have revoked your declaration of consent under data protection law or the personal data was processed unlawfully.
6.6 Right to restriction of processing (Art. 18 GDPR)
As a data subject, you have the right to restrict processing in the cases prescribed by law (for example, where you contest the accuracy of the personal data and we are in the process of verifying the data).
6.7 Right to complain to a data protection authority (Art. 77 GDPR)
You have the right to complain to a supervisory authority, in particular in the Member State of your residence, workplace or the place of the suspected infringement, if you consider that the processing of personal data concerning you violates the GDPR.
6.8 If you have any questions about your data
If you have any questions about the processing of your personal data, please feel free to contact our data protection officer, the contact information can be found in Section 1.