Privacy Policy

Thank you for visiting our website www.valentin-software.com and your interest in our company and our products. Insofar as personal data is collected and processed on the occasion of your visit and during the use of our products and services, this is done in accordance with the applicable legal regulations as follows:

Responsible Office

Responsible for the processing of your personal data in accordance with Art. 4 (7) EU General Data Protection Regulation (GDPR) is

Valentin Software GmbH
Stralauer Platz 34
D-10243 Berlin
Germany

Managing Director: Nicola Rosenkranz
E-Mail: datenschutz@valentin-software.com
Link to imprint: Imprint

Data processing when visiting our website

When you access the website, the following access data is automatically collected by us or our internet provider and temporarily stored in a so-called log file:

The data is used to establish the connection to the website and to ensure system security. The access data will in no case be used to establish a reference to your person. The legal basis for data processing is Art. 6 (1) sentence 1 f) GDPR. Our legitimate interest in data processing arises from the aforementioned purposes.

The data will be deleted as soon as it is no longer required for the aforementioned purposes. The data required for establishing the connection is deleted as soon as you leave our website. Otherwise, the data in the log files are deleted after seven days at the latest.

TLS-encryption

The website uses the encryption method TLS (Transport Layer Security). The procedure corresponds to the current state of the art and serves to protect your personal data from access by third parties during transmission.

In addition, appropriate technical and organizational measures are taken for the security of your data to protect against accidental or intentional manipulation, loss, destruction or against unauthorized access. The security measures are adapted according to the technical development.

Data processing on the occasion of your contact

When you contact us (e.g. by e-mail, telephone or via a contact form), data such as your e-mail address, name and telephone number will be stored by us. When using the contact form, the data is requested as shown on the form. The data will be processed for the purpose of responding to your request and deleted as soon as your request has been dealt with. The legal basis for the data processing is our legitimate interest in processing your request in accordance with Art. 6 para. 1 sentence 1 f) GDPR.

If your request is made for the purpose of concluding a contract, the data will be processed at the same time for the implementation of pre-contractual measures or for the performance of the contract in accordance with Art. 6 para. 1 p. 1 b) GDPR (see section 6).

Contract execution

We process your data for the execution of the contract and for the implementation of corresponding pre-contractual measures, in particular for the purpose of processing orders in our web store as well as for the provision of our other services such as conceptual and strategic consulting, campaign planning, software and design development/consulting or maintenance, consulting and training services, etc.

For this purpose, we process personal data such as your name, address, e-mail address, telephone number and fax number, if applicable, as well as your text entries, videos and photos etc. that you submit. If you use our online forms, we process the data as shown in the respective form.

You can voluntarily create a customer account by clicking the appropriate box, so that your order data will be stored for future purchases. The legal basis for this is Art. 6 para. 1 p. 1 a) GDPR. You can withdraw your consent at any time by sending an e-mail to sales@valentin-software.com. Your customer account will then be deleted. Data that we need for the processing of an order placed or that are required for the fulfillment of our legal retention obligations remain unaffected by the deletion of the customer account.

The above-mentioned data is processed for the fulfillment of the contract or the implementation of pre-contractual measures in accordance with Art. 6 para. 1 p. 1 b) GDPR. After the contract has been fulfilled, the data will be deleted, insofar as no legal regulations, for example tax and commercial law retention obligations, conflict with this and you have not given us your express consent for further use.

Your contractual data will only be passed on to third parties if this is necessary for the processing of the contractual relationship with you in accordance with Art. 6 para. 1 p. 1 b) GDPR.

Your payment data will be processed for the purpose of processing your order by the payment service company commissioned with the payment (see section 7).

Transfer of data to third parties

Your personal data will only be transferred to third parties in the following cases:

Cookies

Cookies are small text files that are stored by the browser on your device when you visit our website. Different information can be stored within the cookies. The primary purpose of a cookie is to store information about a user (or the device on which the cookie is stored) during or after his or her visit to an online service.

Temporary cookies or "session cookies" or "transient cookies" are cookies that are deleted as soon as you close the browser. These cookies ensure essential functions of the website (e.g. navigation, transactions, etc.).

Others, so-called "permanent cookies", have a longer lifespan and are used to recognise your browser on a subsequent visit on the basis of the information stored in the cookie.

The legal basis for the use of cookies that are technically necessary or absolutely necessary for the fulfilment of pre-contractual measures and the execution of contracts (e.g. registration, shopping cart function) is Art. 6 para. 1 sentence 1 b) GDPR.

If cookies are used to save the settings you have made (e.g. language settings) for subsequent visits, the legal basis is Art. 6 para. 1 p. 1 f) GDPR. Our legitimate interest is to make your visit to our website user-friendly according to your preferences.

Insofar as you have given your consent to the use of cookies from third-party providers (so-called "third-party cookies"), in particular for analysis, advertising and marketing purposes, the legal basis is Art. 6 para. 1 p. 1 a) GDPR, § 25 TTDSG. Details can be found in the description of the respective service.

The lifetime of the cookies is a maximum of 24 months, unless otherwise stated in this privacy policy. At the end of their lifetime, they are automatically deleted

You can revoke your consent at any time by clicking on the "Revoke Given Consents" link on the website. Click on the "Change privacy settings" link on the website to access the cookie consent banner and manage your choices there by clicking in the appropriate box. Please refer to section 12 for detail

Alternatively, you can decide whether to reject cookies or have them removed when you close your browser by selecting the appropriate option in your browser settings. You can also delete stored cookies there. You will find further instructions in the settings of your browser in the "Help" area.

If you refuse cookies, you may not be able to use all the features of the website.

Cookie-consent-banner

We use the "Real Cookie Banner" on our website, a cookie consent tool from devowl.io GmbH, Tannet 12, 94539 Grafling, Germany. The service allows us to request your consent, where required, for the use of cookies and to store your decision for proof. For this purpose, a cookie is set so that your decision can be retrieved on future visits to our website. The cookie for consent management is stored for a maximum of 12 months and then automatically deleted.

You can access the cookie consent banner at any time by clicking on "Change privacy settings" and manage your consents (by ticking or un-ticking) in the settings. The cookie consent service serves our legal obligation to request and document the legally required consents. The legal basis is Art. 6 para. 1 p. 1 c) GDPR. Details of the service can be found on the provider's website at https://devowl.io/wordpress-real-cookie-banner/

Services from Google on the Website

The provider of the services described in this section is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Insofar as Google also processes data in the USA, this is done on the basis of standard contractual clauses pursuant to Art. 46 (2) c) GDPR, which have been approved by the European Commission. Nevertheless, it cannot be ruled out that US authorities and US intelligence services may access the data without informing data subjects of this.

You can view the European Commission's standard contractual clauses here: https://eur-lex.europa.eu/legal-content/EN/TXT/?locale-en=&uri=CELEX%3A32021D0915

You can access Google's privacy policy via the following link: https://policies.google.com/privacy?hl=en

a) Google Fonts

We use Google Fonts, a directory of open source fonts provided by Google, which can be downloaded from the internet. When the fonts are integrated, a connection to the Google server is established. In the process, personal data such as the IP address of the computer you are using is transferred to Google, which is also processed by Google in the USA.

The legal basis for data processing is your consent in accordance with Art. 6 para. 1 sentence 1 a) GDPR. You can revoke your consent at any time with effect for the future (see point 12 above).

You can also prevent data processing by deactivating JavaScript in your browser settings.

b) Registration by means of ReCaptcha

To avoid automated registrations, we use the ReCaptcha Enterprise service. ReCaptcha is a risk analysis service from Google that serves to protect us from abuse by malicious software on the website. The service recognises whether entries (for example in the online contact form) come from humans or whether they are bots or other automated attacks. The latter are stopped, at the same time valid users are not hindered.

For this purpose, a cookie is set and your user behaviour on the website as well as mouse movement and IP address are transmitted to a Google server in the USA and permanently stored there.

The legal basis for data processing is Art. 6 para. 1 sentence 1 a) GDPR. You can revoke your consent at any time with effect for the future (see point 12 above).

c) Google Universal Analytics

We use Google (Universal) Analytics, a method of Google Analytics in which user analysis is carried out on the basis of a pseudonymous user ID and thus a pseudonymous profile of the user is created with information from the use of various devices (so-called „Cross-Device-Tracking“).

We use the service for the purpose of analysing and statistically evaluating the use of our website. We use the information obtained in this way for marketing and optimising our website. Pseudonymised user profiles are created and cookies are used for this purpose (please see above section 11). The following information is collected by the cookie:

This data is transferred to Google servers in the USA and stored there. When using Google Analytics, we have activated the anonymisation of the IP address by "_anonymizeIp()", which means that your IP address is shortened and anonymised beforehand by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage for website optimisation purposes. Google also uses the information for its own purposes to provide the analysis and tracking service.

The data processing takes place on the basis of a joint responsibility agreement pursuant to Art. 26 GDPR, which we have concluded with Google.

The legal basis for data processing is your consent in accordance with Art. 6 para. 1 sentence 1 a) GDPR. You can revoke your consent at any time with effect for the future (see point 12 above). In addition, you can prevent the storage of cookies by setting your browser software accordingly (see point 11 above).

You can also prevent the collection of data generated by the cookie and related to your use of the website (incl. your IP address) by Google and the processing of this data by Google by downloading and installing the browser add-on for deactivating Google Analytics available under the following link: https://tools.google.com/dlpage/gaoptout?hl=en

For more information, please see Google's privacy policy here: https://policies.google.com/privacy?hl=en and here https://policies.google.com/technologies/partner-sites?hl=en

Plausible

In order to understand and improve the use of our website in accordance with our interest in analysing, optimising and economically operating our online offer, we use the open source web analysis tool "Plausible Analytics", offered by Plausible Insights OÜ, Västriku tn 2, 50403, Tartu, Estonia. Plausible does not set cookies and does not store any personal data. You can find more information on data protection at Plausible Analytics at: https://plausible.io/data-policy

Data processing when using our products

We use third-party service offerings in our products on the basis of our legitimate interests within the meaning of Art. 6 (1) p. 1 f) GDPR and in the interests of our business customers for the planning, design and simulation of the systems as follows:

a) Google Maps

We integrate the map service Google Maps. Cookies are set and data such as the IP address, browser and device type, operating system, date and time of the call and your location data are transferred to Google. The data is usually also transferred to a Google server in the USA and stored there.

Insofar as Google processes data in the USA, this is done on the basis of standard contractual clauses pursuant to Art. 46 (2) c) GDPR, which have been approved by the European Commission. Nevertheless, it cannot be ruled out that US authorities and US intelligence services may access the data without informing affected persons of this.

The legal basis is Art 6 para. 1 p. 1 f) GDPR. It is our legitimate interest and also in the interest of our business customers to make our products as user-friendly as possible.

Google Maps is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. You can access Google's privacy policy via the following link:https://policies.google.com/privacy?hl=en

b) OpenStreetMap

Users of our programmes can also use the maps of the OpenStreetMap service. OpenStreetMap is offered on the basis of the Open Data Commons Open Database License (ODbL) by the OpenStreetMap Foundation (OSMF).

Cookies are used for this purpose. The following information is collected by the cookie: IP address, browser and device type, operating system as well as date and time of the call. This data is transmitted to OSMF servers. Insofar as your location is also transmitted, this is only done approximately in the form of the country in which you are probably located. OSMF will only use the data for technical or security support of the service and in anonymised form for research and other purposes.

Insofar as data is also transmitted to OSMF servers in the United Kingdom, this is done on the basis of an adequacy decision issued by the European Commission pursuant to Art. 45 GDPR.

The legal basis is Art 6 para. 1 p. 1 f) GDPR. It is our legitimate interest and also in the interest of our business customers to make our products as user-friendly as possible.

More information about the OpenStreetMap Foundation, based at St John's Innovation Centre, Cowley Road, Cambridge, CB4 0WS, United Kingdom, can be found here: https://wiki.osmfoundation.org/wiki/about https://blog.openstreetmap.org/about/

You can find OSMF's privacy policy here: https://wiki.osmfoundation.org/wiki/Privacy_Policy

c) Bing Maps

Our software products also include the maps Bing Maps, a map service of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA. Cookies are set for the geographical display and data such as the IP address, browser and device type, operating system, date and time of the call and your location data are transferred to Microsoft. The data is usually also transferred to a Microsoft server in the USA and stored there.

Insofar as Microsoft processes data in the USA, this is done on the basis of standard contractual clauses pursuant to Art. 46 (2) c) GDPR, which have been approved by the European Commission. Nevertheless, it cannot be ruled out that US authorities and US intelligence services may access the data without informing data subjects of this.

The legal basis is Art 6 para. 1 p. 1 f) GDPR. It is our legitimate interest and also in the interest of our business customers to make our products as user-friendly as possible.

You can find the privacy policy under https://privacy.microsoft.com/en-us/privacystatement

d) Matomo

In our software PV*SOL we use the tool Matomo, an open source software for web analysis, to collect anonymous usage data for analysis purposes. No personal data is transmitted with the collected data: The IP address is anonymised and no project data is collected that could contain personal data. The legal basis for the data processing is Art. 6 para. 1 p. 1 f) GDPR. Our legitimate interest in data processing follows from the aforementioned purpose.

You can prevent the collection of your data by Matomo by switching off the data processing when installing the software. After installation, you can object to data processing at any time by making the appropriate setting in the programme option.

You can access Matomo's privacy policy via the following link: https://matomo.org/privacy-policy/

e) Microsoft Azure database

In our PV*SOL and GeoT*SOL software, we use a Microsoft Azure database to collect anonymous usage data. The transmission of this data is voluntary and can be switched off by the user during installation (PV*SOL) or the first start (GeoT*SOL) and later in the programme at any time via the programme options. No personal data is transmitted with the collected data: The IP address is anonymised and no project data is collected that could contain personal data. The database is hosted in a Microsoft data centre in Western Europe. To the privacy policy of Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA: https://azure.microsoft.com/en-us/explore/trusted-cloud/privacy/

f) Additional services: Interfaces for climate data

Various climate data are available to our users via interface. The provider named in each case is solely responsible for data processing when using the services named below:

i. PVGIS

You can access climate data for Europe, Africa, large parts of Asia and America from PVGIS (Photvoltaik Geographical Information System) of the European Commission, EU Science Hub, free of charge via an interface in our programmes. Under the link Privacy policy | European Commission (europa.eu) you will find further information on data protection.

ii. Solcast

We have integrated an interface for the predominantly fee-based climate data offer of Solcast, 32, Halloran St Lilyfield 2040, Sydney, Australia into our PV*SOL software. If you wish to use Solcast's service, you will be asked by the service provider to provide your e-mail address for the purpose of registering and creating an account. You will be directed to Solcast's online website and will receive an e-mail from Solcast inviting you to create a password in the API Toolkit account.

The data may be processed in Australia. Please note that no adequate protection can be guaranteed for your personal data. For more information on data protection, please click here: https://solcast.com/privacy-policy

iii. SolarAnywhere

SolarAnywhere is a paid climate data service from the USA that is integrated into our products via an interface. Clean Power Research is located at 1541 Third St., Napa, CA 94559. The company states in its privacy policy that it complies with the GDPR standards regarding data subjects' rights. You can find the privacy policy here: https://www.cleanpower.com/privacy-policy/. Nevertheless, we would like to point out the risk that the data will be processed in the USA and thus no adequate protection can be guaranteed for your personal data.

Business analyses and market research

Insofar as you have given us your consent in accordance with Art. 6 para. 1 p. 1 a) GDPR, we internally analyse the data we have on business transactions, contracts, enquiries, etc. in order to operate our business economically and to be able to recognise market trends and the wishes of contractual partners and users. In doing so, we process inventory data, communication data, contract data, payment data, usage data, metadata, whereby the persons concerned include contract partners, interested parties, customers, visitors and users of our online offer.

The analyses are carried out for the purpose of business evaluations. In doing so, we can take into account the profiles of the registered users with information, e.g. on the services they have used. The analyses serve us to increase user-friendliness, optimise our offer and improve business management.

The analyses are for internal purposes only and are not published unless they are anonymous analyses with summarised value.

If these analyses or profiles are personal, they will be deleted or made anonymous upon termination by the user, otherwise after two years from the conclusion of the contract. In other respects, the macroeconomic analyses and general tendency determinations are created anonymously wherever possible.

You can revoke your consent at any time by sending us a message to this effect by e-mail.

Application process

When you apply to us, we process your surname, first name, date of birth, address, e-mail address and telephone number. We also process personal data that you provide to us as part of the application process in your application documents (CV, certificates, etc.) and during the interview. The data is processed for the purpose of carrying out the application procedure for the selection of suitable applicants and, if suitable, for the establishment of an employment relationship. If you are employed by us after completion of the application process, your data collected during the application process will be stored in the personnel file insofar as this is necessary for the implementation of the employment relationship. Otherwise, the data will be deleted. The legal basis is Art. 6 para. 1 p. 1 b) GDPR and § 26 para. 1 p. 1 Federal Data Protection Act.

Insofar as we process special categories of personal data pursuant to Art. 9 (1) GDPR (e.g. health data) that you voluntarily provide to us, this processing is carried out pursuant to Art. 9 (2) a) GDPR. Insofar as the processing of these special categories of data is necessary in order to exercise or fulfil rights and obligations, for example under employment law, the legal basis is Art. 9 (2) (b) GDPR.

In the event of rejection, the data will be deleted within six months of you receiving our notification of rejection, unless we have your consent for the further use of the data. At your request, the data will be deleted before the end of the application process if you no longer wish to participate in the application process.

Links

Insofar as we link to the content of external websites, we are not responsible for the data protection on these websites. We can therefore not guarantee that the secure handling of your data guaranteed by us is equally guaranteed on the external websites. If you have any questions about data protection, please contact the respective operator.

Your rights

You have the right to request information from us at any time about your personal data stored by us (Art. 15 GDPR). This also concerns the recipients or categories of recipients to whom this data is passed on and the purpose of the storage. In addition, you have the right to demand correction under the conditions of Art. 16 GDPR and/or deletion under the conditions of Art. 17 GDPR and/or restriction of processing under the conditions of Art. 18 GDPR. Furthermore, you may request data transfer at any time under the conditions of Art. 20 GDPR.

Your right to complain to a supervisory authority

Pursuant to Art. 77 GDPR, without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, place of work or the place of the alleged infringement, if you consider that the processing of your personal data infringes the GDPR.

Your right to withdraw consent

Insofar as you have given us your consent to the processing of personal data relating to you in accordance with Article 6 (1) sentence 1 a) GDPR, you have the right to revoke your consent at any time in accordance with Article 7 (3) GDPR. The lawfulness of the processing carried out on the basis of the consent until the revocation is not affected by the revocation.

Right of objection

Insofar as we process your personal data to protect our legitimate interests pursuant to Art. 6 (1) p. 1 f) GDPR, you have the right under Art. 21 GDPR to object to the processing of your data at any time on grounds relating to your particular situation; this also applies to profiling based on this provision. We will no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defending legal claims.

If personal data are processed for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing; this also applies to profiling, insofar as it is related to such direct marketing.

If you object to processing for direct marketing purposes, the personal data will no longer be processed for these purposes.

To exercise your right to object, please send an e-mail to:datenschutz@valentin-software.com>

Provision of personal data

The provision of your personal data is neither legally nor contractually required and you are not obliged to provide us with personal data. If you enter into a contract with us, certain personal data, such as your contact details, are required for the conclusion of the contract. If you do not provide us with this data, we will not be able to conclude the contract with you.

Existence of automated decision making

We do not use automated decision making or profiling.

Changes to the privacy policy

This privacy policy is currently valid. In view of possible changes to the website and our products and services as well as future changes to legal requirements, it may be necessary to adapt our data protection declaration from time to time. The currently valid version of the data protection declaration can be found on our website under the link "Privacy Policy".

For information, revocations or objections to data processing, please contact:
Valentin Software GmbH Stralauer Platz 34 10243 Berlin E-Mail: datenschutz@valentin-software.com>

Berlin, February 2023