Application 42go Privacy Policy („42go“)
As a mobile intranet, the 42go app is intended to ensure that all employees can access the content of the intranet and are therefore reliably and regularly informed. For external users, it offers the perfect opportunity to access general information and news from d&b - without having to log in.
Here as well the protection and security of personal data is an important concern of d&b. Therefore, d&b conducts its activities in accordance with the applicable laws for the protection of personal data and data security. This Privacy Policy informs you what information d&b collects, how d&b uses and safeguards it, and to whom d&b may share it.
With this information on data protection we would therefore like to inform you when we store which data and for what purpose we use it - naturally in compliance with the applicable data protection regulations.
Should you have any further questions regarding the handling of your personal data, please do not hesitate to contact our data protection officer, whose contact details you will find below.
The constant technological development, changes in our services or the legal situation as well as other reasons may require adjustments to our data protection information. We therefore reserve the right to change this Privacy Policy at any time and ask you to inform yourself regularly about the current status.
Basic information
Unless otherwise stated in the following sections, no personal data is collected, processed or used when using the 42go App.
Definition of personal data
The term personal data is defined in the German Federal Data Protection Act. According to this, these are individual details about personal or factual circumstances of a specific or identifiable natural person. This includes, for example, your real name, your address, your telephone number or your date of birth.
In the basic EU data protection regulation (DSGVO), personal data are defined as follows:
All information relating to an identified or identifiable natural person (hereinafter "data subject"); an identifiable natural person is one who can be identified directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Legal basis for the collection of personal data
Insofar as we obtain your consent for the processing of personal data, Art. 6 para. 1 lit. a GDPR serves as the legal basis for the processing of your personal data.
If processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 para. 1 lit. f GDPR serves as the legal basis for processing.
Data erasure and storage time
The personal data of the person concerned will be deleted or blocked as soon as the purpose of storage ceases to apply. Furthermore, data may be stored if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the person responsible is subject. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfilment of a contract.
Collection and processing of personal data
Personal data is collected and processed in various ways and for various reasons during registration and use of 42go. Personal data is only collected and processed to the extent necessary to provide the functions and content of the app.
The personal data collected within the framework of 42go will only be used without your consent for order processing or processing your enquiries and, if necessary, passed on to the responsible company.
Your data is encrypted before transmission and processing in order to protect it from access by unauthorised persons.
Your data will not be sold, rented or made available to third parties in any other way than described here. Personal data will only be transferred to state institutions and authorities within the framework of mandatory national legislation. Our employees, agencies and dealers are bound by us to the strictest confidentiality.
Registration of 42go
To register for 42go, it is necessary to create a user account. When the user account is created, the following personal data is collected and processed:
- name of user
- e-mail address
- authentication data (password)
- User ID
- other required or voluntary profile information (e.g. phone number, position and department)
- contents of 42go: any other Personal Data contained in customer content, such as Personal Data in chats or media files
- technical information: IP address, operating system, timestamps of visits
- Usage data
- diagnostic data (for maintenance and support purposes).
The data is collected and processed on our behalf by
Staffbase SE
Annaberger Straße 73, 09111 Chemnitz
The purpose is usage of the 42go, in particular the provision of an employee app for the intranet. The legal basis for the usage is Art. 6 para. 1 lit. a GDPR. Processing of personal data outside the European Union does not take place.
Data transmission to other d&b companies
We will not transfer your data to third parties outside the d&b Group, unless we are legally obliged to do so, or the transfer of data is necessary for the performance of the contractual relationship, or you have given your express prior consent to the transfer of your data. External service providers and partner companies only receive your data if this is necessary to process their request. In these cases, however, the scope of the transmitted data is limited to the required minimum. As far as our service providers come into contact with your personal data, we ensure that they comply with the regulations of the data protection laws in the same way. Please also note the respective data protection information of the providers. The respective service provider is responsible for the contents of external services, whereby we check the services within the scope of reasonability for compliance with legal requirements.
Data transmission to external service providers (processors)
Your data will be passed on to service partners if they work on our behalf and support d&b audiotechnik in the provision of their services.
Processing of your personal data by contracted service providers takes place within the scope of order processing in accordance with Art. 28 GDPR.
The aforementioned service providers only have access to such personal information as is necessary for the performance of their respective activities. These service providers are prohibited from disclosing your personal information or using it for other purposes, in particular for their own advertising purposes.
Where external service providers come into contact with your personal data, we have taken legal, technical and organisational measures and carried out regular checks to ensure that they also comply with the applicable data protection regulations.
Your personal data will not be passed on commercially to other companies.
Data security
d&b audiotechnik uses technical and organizational security measures to protect your data managed by us against accidental or intentional manipulation, loss, destruction or access by unauthorized persons. Our security measures are continuously improved in line with technological developments.
Rights of the data subjects
If your personal data are processed, you are affected within the meaning of the GDPR and you have the following rights against the controller:
- Right to information according to article 15 GDPR
You can ask us to confirm whether personal data concerning you will be processed by us. Once we have processed your data, you have further rights to information as set out in Article 15 of the GDPR. - Right to correction
If the information we have collected from you is incorrect or incomplete, you may immediately request us to correct it in accordance with Article 16 of the GDPR. - Right to limitation of processing
Under the conditions of Article 18 of the GDPR, you may also request that the processing of personal data concerning you be restricted. After the restriction, your data may only be processed with your consent or for the purpose of asserting, exercising or defending rights, or for the protection of the rights of another natural or legal person, or on grounds of an important public interest of the Union or a Member State. We will inform you before the restriction is lifted. - Right to erasure
If one of the reasons in Article 17 para. 1 GDPR applies, you can request us to delete your personal data immediately, unless there is an exception to the deletion obligation in accordance with Article 17 para. 3 GDPR. - Right to information
If you have exercised your right to correct, delete or restrict processing against us, we are obliged under Article 19 GDPR to inform all recipients of your personal data of this, unless the notification is impossible or involves disproportionate effort. They also have the right to be informed of the recipients. The person responsible shall have the right to be informed of such recipients. - Right to data portability
In addition, according to Article 20 GDPR, you have the right to receive personal data concerning you from us in machine-readable format and to transmit the data to another person responsible without obstruction, provided that the requirements of Article 20 para. 1 lit. a GDPR are met, or to obtain that your personal data are transmitted directly by us to another person responsible, provided that this is technically feasible and no freedoms and rights of other persons are impaired thereby. This right shall not apply to the processing of personal data necessary for the performance of a task in the public interest or for the exercise of official authority. - Right of objection
You have the right to object at any time to d&b solutions GmbH & Co. KG processing your personal data in accordance with Art. 6 para. 1 lit. f GDPR. As soon as you have filed an objection, we will no longer process your personal data, unless there are legitimate reasons for the processing outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims. - Right to revoke the data protection declaration of consent
You have the right to revoke your data protection declaration of consent with declaration to d&b solutions GmbH & Co. KG at any time. The revocation of consent shall not affect the legality of the processing carried out on the basis of the consent until revocation. - Right of appeal to the supervisory authority
They shall at all times, without prejudice to any other administrative or judicial remedy, have the right of appeal to a supervisory authority, in particular in the Member State of your place of residence, of work or of the place of suspected infringement, if you consider that the processing of personal data concerning them is contrary to this Regulation.
Changes to this Privacy Policy
This Privacy Policy is constantly being adapted in the course of the further development of the Internet or our offer. Changes will be announced on this page in due time. In order to keep up to date with the current status of our data usage regulations, this page should be accessed regularly.
Data protection officer
c/o d&b audiotechnik GmbH & Co. KG
Eugen-Adolff-Straße 134
71522 Backnang
E-Mail: datenschutz@dbaudio.com
Contact details of the Controller
d&b audiotechnik GmbH & Co.KG
Eugen-Adolff-Straße 134
71522 Backnang
Tel: +49-7191-9669-0
Fax: +49-7191-95 00 00
E-mail: info@dbaudio.com
Represented by ist sole General Partner
Cubes Holding GmbH
Eugen-Adolff-Straße 134
71522 Backnang
Tel: +49-7191-9669-0
Fax: +49-7191-95 00 00
E-mail: info@dbaudio.com
Which is represented by its Managing Directors:
Harman, Amnon (CEO)
Nilsson, Jens
as of January 2025