We treat your personal data confidentially and in accordance with statutory data protection regulations as well as this privacy policy.
We point out that data transmission over the Internet (e.g., communication by email) may have security vulnerabilities. Complete protection of data against access by third parties is not possible.
Information on the Responsible Entity
The entity responsible for data processing is:
Lock GmbH
Freimut-Lock-Str. 2
D-88521 Ertingen
Purpose and Legal Basis of Processing
The myLock platform is a portal designed to clearly visualize individual system configurations and to maintain and optimize the operation of your system. To ensure this, data from your system must be transmitted to the portal.
Depending on how you wish to use our portal, different legal bases apply. Master data as well as, if applicable, specific system data are processed in all cases.
You can use our portal in different ways if you operate a system with our components:
- Voluntarily, as part of independent registration, including all sensors on our myLock platform (Art. 6(1)(a) GDPR). In this case, an objection is possible at any time up to complete deletion of account and operating data. In individual cases, we may be able to detect product failures at an early stage through data analysis. In this case, we would contact you. An objection is also possible at any time.
- As part of a software contract for the technical operation management of your entire system (Art. 6(1)(b) GDPR). All details are specified in the contract.
- As part of a maintenance contract with Lock GmbH to ensure the continuous operation of your system (Art. 6(1)(b) GDPR).
Lock collects operation-related data and anonymizes or consolidates it after a reasonable period; this data remains permanently stored in our systems.
The system data you transmit is analyzed by us very carefully. This serves not only the further development of our products, but may also reveal optimization potential in your system configuration. In some cases, this becomes apparent only after longer operation of your system. In such cases, we may provide you with improvement suggestions, for example for the use of additional products, unless you object to such recommendations.
Types of Data Processed
Bei der Registrierung und Nutzung des Portals verarbeiten wir folgende Daten:
When registering and using the portal, we process the following data:
- Master data: name, business email address, company address
- System location data: address of the system location
- Device and sensor data: device serial numbers, technical measurement values such as temperature, humidity, other non-personal sensor data
- Order information: ordered products and services
Recipients of Data / Data Disclosure
For operating our myLock portal, we work with Encoway GmbH, Konrad-Zuse-Straße 6, 28359 Bremen, and ITQ GmbH, Parkring 4, 85748 Garching. Hosting takes place in Germany on our servers. Both companies have access to the following data:
- Name
- Business email address
- Company address
- Ordered products and services
The protection of personal data is ensured through commissioned data processing agreements.
In addition, technical plugins are used for portal operation. The names and functionality of these plugins are supplemented in the current version of this privacy policy.
Used Plugins
- Keycloak: We use the Keycloak authentication plugin for secure login to the portal. As part of authentication, Keycloak processes the following personal data:
- Username (e.g., name, email address)
- Time of authentication and, if technically required, IP address
- Log file retention period: 30 days
For operating our webshop, we use Shopware (hosted in Germany). The following data is transmitted to Shopware:
- Name
- Business email address
- Company address
- Ordered products and services
In addition, technical plugins are used for webshop operation. The names and functionality of these plugins are supplemented in the current version of this privacy policy.
No data is transmitted to payment service providers or other third parties unless required by law.
Used Plugins
- Mail Archive: This plugin creates an archive for emails sent via Shopware, such as confirmation emails. The data is stored via hosting on servers in Germany. As part of archiving, Mail Archive processes the following personal data:
- Name
- Business email address
- Company address
- Ordered products and services
Retention period: until the user is deleted
Hosting and Technical Implementation
The myLock portal is hosted exclusively on servers in Germany. No transfer of personal data to third countries (outside the EU/EEA) takes place.
The webshop is hosted exclusively on servers in Germany. No transfer of personal data to third countries (outside the EU/EEA) takes place.
Data Retention Period
Personal data is generally stored by us only as long as necessary to fulfill contractual obligations or due to statutory requirements.
Your Rights
You have the right at any time to:
- Access (Art. 15 GDPR)
- Rectification (Art. 16 GDPR)
- Restriction of processing (Art. 18 GDPR)
- Data portability (Art. 20 GDPR)
- Object to processing (Art. 21 GDPR)
To exercise your rights, please contact our data protection officer.
Data Protection Officer
We have appointed a data protection officer:
Björn Lars Kuhn
Proteus Solutions GbR
Allmandsteige 11
78564 Reichenbach
Germany
Tel.: 07429 - 876 91 - 70
Any data subject may contact our external data protection officer at any time with questions or suggestions regarding data protection using the contact details stated in the legal notice or via the following email address:
datenschutz@lockdrives-nospam.com
You have the right at any time to obtain free information about your stored personal data, its origin and recipients, and the purpose of data processing, as well as the right to rectification, blocking, or deletion of this data. For this purpose and for further questions regarding personal data, you may contact us at any time using the address stated in the legal notice.
Security
We take technical and organizational measures to protect your data against loss, misuse, and unauthorized access.