top of page
PIL_Logo

PRIVACY POLICY / DATENSCHUTZ

1. Data protection at a glance
 
General information
 
The following notes provide a simple overview of what happens to your personal data when you visit this website. Personal data are all data that can be used to personally identify you. For detailed information about data protection, please refer to the privacy policy set out below.
 
Data collection on this website
 
Who is responsible for data collection on this website?
 
The data processing on this website is carried out by the website operator. Their contact details can be found in the section “Information on the controller” in this privacy policy.
 
How do we collect your data?
 
Your data is collected partly because you provide it to us (e.g., data entered in a contact form).
 
Other data is collected automatically by our IT systems or after your consent when you visit the website. This is primarily technical data (e.g., internet browser, operating system or time of page view). The collection of this data occurs automatically as soon as you enter the website.
 
What do we use your data for?
 
Some of the data is collected to ensure the error-free provision of the website. Other data can be used to analyze your user behavior. Where contracts are concluded or initiated via the website, the transmitted data may also be processed for contract offers, orders or other service requests.
 
What rights do you have regarding your data?
 
You have the right at any time to obtain free information about the origin, recipients and purpose of your stored personal data. You also have the right to request the correction or deletion of this data. If you have given consent to data processing, you may revoke this consent at any time for the future. You also have the right to request the restriction of processing of your personal data under certain circumstances. Furthermore, you have the right to lodge a complaint with the competent supervisory authority.
 
For the above and further questions about data protection, you may contact us at any time.
 
Analysis tools and third-party tools
 
When you visit this website, your surfing behavior may be statistically evaluated. This primarily happens with so-called analysis programs.
 
Detailed information on these analysis programs can be found in the following privacy policy.
 
2. Hosting

We host the content of our website with the following providers:
 
Bauer und Guse GmbH
 
We host parts of our website with Bauer und Guse GmbH. A contract for order processing (data processing agreement) exists between us and Bauer und Guse GmbH in accordance with the applicable EU implementing decision.
 
Provider details and data processing provisions can be found in Bauer und Guse’s privacy information: https://bauerundguse.de/datenschutz/

All-Inkl

Domain hosting is provided by ALL-INKL.COM – Neue Medien Münnich, René Münnich, Hauptstraße 68, 02742 Friedersdorf (hereinafter “All-Inkl”). Details are available in All-Inkl’s privacy information: https://all-inkl.com/datenschutzinformationen/

The use of All-Inkl is based on Art. 6(1)(f) GDPR. We have a legitimate interest in the most reliable presentation of our website. If a consent is requested, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25(1) TTDSG, insofar as the consent covers the storage of cookies or access to information on the user’s device (e.g., device fingerprinting). Consent can be revoked at any time.

WIX

Provider for parts of this site is Wix.com Ltd., 40 Namal Tel Aviv St., Tel Aviv 6350671, Israel (hereinafter “WIX”). Wix is a tool for building and hosting web pages. When you visit our website, Wix may analyze user behavior, traffic sources, visitor regions and visitor numbers and stores cookies in your browser that are necessary for site display and security. Data collected via Wix may be stored on servers worldwide, including in the USA. Details: https://de.wix.com/about/privacy and https://de.wix.com/about/privacy-dpa-users.

 
3. General notes and mandatory information

Data protection

The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the applicable legal data protection regulations and this privacy policy.
 
When you use this website, various personal data are collected. Personal data are data with which you can be personally identified. This privacy policy explains which data we collect and for what purpose we use it. It also explains how and for what purpose this happens.
 
We point out that data transmission on the Internet (e.g., when communicating by e-mail) may have security gaps. A complete protection of data against access by third parties is not possible.

Information about the controller

The controller for the data processing on this website is:
 
MF SOFTWARE Sales & Service Group GmbH
Robert-Bosch-Straße 7
64293 Darmstadt

Phone: +49 (0) 6151 8504-0
E-mail: theissen@moldflow.eu

 
The controller is the person or legal entity that alone or jointly with others decides on the purposes and means of the processing of personal data (e.g., names, e-mail addresses).
 
Storage duration

If no special storage period is mentioned in this privacy policy, your personal data will remain with us until the purpose for data processing ceases. If you assert a legitimate deletion request or revoke consent to data processing, your data will be deleted, unless we have legally permissible reasons to retain it (e.g., tax or commercial retention obligations). In that case, deletion takes place after these reasons no longer apply.
 
Legal bases of data processing on this website

If you have given consent to data processing, we process your personal data on the basis of Art. 6(1)(a) GDPR (or Art. 9(2)(a) GDPR for special categories of personal data). If consent involves transfer of personal data to third countries, processing may also rely on Art. 49(1)(a) GDPR. If you have consented to storage of cookies or access to information on your device, processing may also be based on § 25(1) TTDSG. Where your data is processed for the fulfillment of a contract or to carry out pre-contractual measures, we process data on the basis of Art. 6(1)(b) GDPR. If processing is necessary for compliance with a legal obligation, we rely on Art. 6(1)(c) GDPR. Processing may also be based on our legitimate interest under Art. 6(1)(f) GDPR. The specific legal basis for each processing operation is explained in the following paragraphs of this privacy policy.
 
Note on data transfers to third countries

We use tools from companies based in countries that do not provide an adequate level of data protection under EU law and US providers that may not be certified under the EU-US Data Privacy Framework (DPF) in some cases. When these tools are active, your personal data may be transmitted to and processed in these states.
 
We point out that in third countries there is not necessarily an equivalent level of data protection to that in the EU. For transfers to the USA, where the provider is DPF-certified, a comparable level of protection may exist; otherwise, appropriate safeguards such as standard contractual clauses (SCCs) are used where applicable. You will find details on transfers to third countries, including recipients, in the respective sections below.
 
Recipients of personal data

As part of our business activities, we work with various external parties. An onward transfer of personal data to these external parties may be necessary. We only transfer personal data to external parties when required for contract performance, we are legally obligated to do so (e.g., disclosure to tax authorities), we have a legitimate interest under Art. 6(1)(f) GDPR, or another legal basis permits the transfer. Where processors are used, we transfer data to them only on the basis of a valid data processing agreement. In case of joint processing, a joint processing agreement is concluded.
 
Withdrawal of consent

Many processing operations are only possible with your express consent. You can withdraw consent at any time. The lawfulness of processing carried out up to the time of withdrawal remains unaffected.

Right to object and to opt out

If data processing is based on Art. 6(1)(e) or (f) GDPR, you can object at any time for reasons arising from your particular situation. Where your personal data is processed for direct marketing purposes, you have the right to object at any time without giving reasons; processing will then cease.

Right to lodge a complaint with the supervisory authority

If there are breaches of the GDPR, you can lodge a complaint with a supervisory authority, e.g., in the EU member state of your habitual residence.
 
Right to data portability

You have the right to receive data that we process automatically on the basis of consent or for the performance of a contract in a machine-readable format, and to request transmission of this data to another controller where technically feasible.
 
Access, rectification and erasure

You have the right to request information about your stored personal data, their sources and recipients, and the purpose of processing, as well as a right to rectification or erasure under applicable law. For questions on personal data you may contact us at any time.
 
Right to restrict processing

You have the right to request restriction of processing in certain cases, for example while we verify the accuracy of data you dispute, or if processing is unlawful and you prefer restriction instead of erasure.

SSL / TLS encryption

For security reasons and to protect the transmission of confidential content (e.g., orders or inquiries) we use SSL/TLS encryption. You can recognize an encrypted connection by the “https://” and the lock icon in your browser address bar.
 
Objection to advertising e-mails

The use of contact details published under the imprint for sending unsolicited advertising and information materials is hereby explicitly objected to. The site operators reserve the right to take legal action in case of unsolicited sending of advertising, e.g. by spam e-mails.

4. Data collection on this website

Cookies

Our web pages use so-called “cookies”. Cookies are small data packages and do not harm your device. They are stored either temporarily for the duration of a session (session cookies) or permanently (persistent cookies). Session cookies are deleted after your visit. Persistent cookies remain until you delete them or they are automatically deleted by your browser.

Cookies can be set by us (first-party cookies) or by third parties (third-party cookies). Third-party cookies enable integration of certain third-party services (e.g., cookies for payment processing).

Cookies have different functions. Many are technically necessary for website functions (e.g., shopping cart or video display). Other cookies are used to evaluate user behavior or for advertising.

Cookies necessary for the electronic communications process, for providing certain desired features (e.g., shopping cart) or for website optimization (e.g., measuring web audience) are stored on the basis of Art. 6(1)(f) GDPR, unless another legal basis is specified. If consent is requested, processing is carried out on the basis of Art. 6(1)(a) GDPR and § 25(1) TTDSG. Consent is revocable at any time.

You can configure your browser to be informed about cookie setting, to allow cookies only in individual cases, block cookies for certain cases or generally, and to activate automatic deletion of cookies when closing the browser. Deactivating cookies may restrict functionality.

Which cookies and services are used on this website can be found in this privacy policy.

Server log files

The provider of these pages automatically collects and stores information in so-called
server log files that your browser transmits to us. These are:
 

  • Browser type and browser version

  • Operating system used

  • Referrer URL

  • Host name of the accessing computer

  • Time of the server request

  • IP address


A merging of this data with other data sources is not carried out. The recording of this data is based on Art. 6(1)(f) GDPR. We have a legitimate interest in the technically error-free and optimized presentation of our website.

Contact form

If you send us inquiries via the contact form, your details from the contact form, including the contact data you provide there, will be stored to handle your inquiry and for follow-up questions. We do not share this data without your consent.

Processing of this data is based on Art. 6(1)(b) GDPR if your inquiry is related to contract performance or pre-contractual measures. In other cases, processing is based on our legitimate interest in effective handling (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR), if requested.

The data you enter in the contact form remains with us until you ask for deletion, revoke consent, or the processing purpose ceases. Statutory retention obligations remain unaffected.

Contact by e-mail, telephone or fax

If you contact us by e-mail, phone or fax, your inquiry including personal data will be stored to handle your request. Processing is based on Art. 6(1)(b) GDPR where necessary for contract performance or pre-contractual measures; otherwise on Art. 6(1)(f) GDPR or your consent (Art. 6(1)(a) GDPR).

 
5. Social media

Facebook

This website includes elements of the social network Facebook. Provider is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. When a social media element is active, a direct connection between your device and Facebook’s servers is established. Facebook thereby receives information that your IP address visited this website. If you click the Facebook “Like” button while logged into Facebook, the content can be linked to your Facebook profile. We do not receive information about the content of the transmitted data or its use by Facebook. More information: https://de-de.facebook.com/privacy/explanation.

If consent is obtained, use is based on Art. 6(1)(a) GDPR and § 25 TTDSG. If no consent is obtained, use may be based on our legitimate interest in visibility on social media. Where personal data are collected with this tool and forwarded to Facebook, we and Meta Platforms Ireland Limited are joint controllers for the collection and forwarding of such data (Art. 26 GDPR), limited to that collection and forwarding. The subsequent processing by Facebook is not part of this joint responsibility. Details and controller addendum: https://www.facebook.com/legal/controller_addendum

Data transfers to the USA are based on the EU Commission’s standard contractual clauses where applicable. Facebook holds a certification under the EU-US Data Privacy Framework (DPF). More info on the DPF participant search page.

X (formerly Twitter)

Functions of X are embedded on this website. Provider is X Corp., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. For persons outside the USA, Twitter International Unlimited Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland is responsible for data processing. When X elements are active, a direct connection to X servers is established and X receives info about the visit. Further info: https://twitter.com/de/privacy
 
If consent is obtained, use is based on Art. 6(1)(a) GDPR and § 25 TTDSG. If no consent is obtained, use may be based on our legitimate interest in visibility. Data transfers are based on SCCs and other legal safeguards. Your X privacy settings can be managed in your X account settings.

Instagram

Functions of Instagram are embedded on this website. Provider is Meta Platforms Ireland Limited. When Instagram elements are active, a direct connection between your device and Instagram’s servers is established. Instagram receives information about your website visit. If you are logged into Instagram and click Instagram buttons, your visit may be associated with your Instagram account. Use is based on your consent (Art. 6(1)(a) GDPR) and § 25 TTDSG, or otherwise on our legitimate interest. For details see Instagram’s privacy information: https://privacycenter.instagram.com/policy/

LinkedIn

Our website uses functions of LinkedIn. Provider is LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. When LinkedIn elements are active, a connection to LinkedIn servers is established and LinkedIn receives the information that you visited this website. If you click LinkedIn buttons while logged in, LinkedIn can associate your visit with your LinkedIn account. Use is based on your consent (Art. 6(1)(a) GDPR) or our legitimate interest (Art. 6(1)(f) GDPR) where applicable. Further information: https://www.linkedin.com/legal/privacy-policy
 
6. Newsletter

Newsletter data

If you want to receive the newsletter offered on this website, we need an e-mail address and information that allows us to verify that you are the owner of the specified e-mail address and agree to receive the newsletter. Further data are not collected or only on a voluntary basis. These data are used solely to send the requested information and are not passed on to third parties.

Processing of the data entered in the newsletter form is based solely on your consent (Art. 6(1)(a) GDPR). You may withdraw consent at any time, for example using the “unsubscribe” link in the newsletter. Lawfulness of processing prior to withdrawal remains unaffected.

Newsletter data will be stored by us until you unsubscribe and will be deleted on unsubscribe or purpose lapse. We reserve the right, under our legitimate interest (Art. 6(1)(f) GDPR), to delete or block e-mail addresses in the newsletter list. After unsubscribing, your e-mail address may be added to a blacklist to prevent further mailings where necessary; such blacklist entries are used only for that purpose and are not merged with other data. You can object to blacklist storage if your interests override our legitimate interest.

7. Plugins and Tools

YouTube (enhanced privacy mode)

This website embeds YouTube videos. Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. We use YouTube in enhanced privacy mode. In this mode, YouTube states that it does not store information about site visitors before they play a video; however, activation of videos can still trigger data transfers and may load parts of the Google Marketing Network. If you play a YouTube video, a connection to YouTube servers is established and YouTube receives which subpage you visited. If you are logged into YouTube, your behavior may be associated to your account. Playing a video may set cookies or local storage entries. Use is based on our legitimate interest in attractive presentation (Art. 6(1)(f) GDPR), or if consent is requested, on Art. 6(1)(a) GDPR and § 25(1) TTDSG. More info: https://policies.google.com/privacy?hl=en
 
Google Fonts

This site uses Google Fonts for uniform font display. If Google Fonts are not locally hosted, the browser loads them from Google servers and Google receives the information that the page was requested via your IP address. Use is based on legitimate interest (Art. 6(1)(f) GDPR) or, if consent is requested, on Art. 6(1)(a) GDPR and § 25(1) TTDSG. More info: https://developers.google.com/fonts/faq

Google Maps

We use Google Maps. Provider: Google Ireland Limited. Use of Google Maps requires storing your IP address; this is usually transmitted to Google servers in the USA. The use is in our legitimate interest for user-friendly presentation and finding locations (Art. 6(1)(f) GDPR). Where consent is obtained, processing is based on Art. 6(1)(a) GDPR and § 25(1) TTDSG. Data transfers use SCCs where applicable. More info: https://privacy.google.com/businesses/gdprcontrollerterms/

Google reCAPTCHA

We use Google reCAPTCHA to check whether entries are made by humans or automated bots. Provider: Google Ireland Limited. reCAPTCHA analyses the visitor’s behavior and evaluates e.g., IP address, pages visited and mouse movements. The analyses run automatically in the background. Use is based on Art. 6(1)(f) GDPR for site protection, or on Art. 6(1)(a) GDPR and § 25(1) TTDSG if consent is requested. More info: https://policies.google.com/privacy?hl=en

Complianz

We use Complianz to manage cookie consent. These data are not shared with third parties. See Complianz privacy documentation for details.
 
Microsoft Bookings

We use Microsoft Bookings for appointment scheduling online. Provider: Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland. Processed data may include name, phone number, e-mail address, brief description, software version and appointment details. Processing is based on your consent (Art. 6(1)(a) GDPR). You can withdraw consent at any time. Further information: https://privacy.microsoft.com/de-de/privacystatement

Eventbrite

We use Eventbrite for event management and ticketing. Provider: Eventbrite Inc., 535 Mission Street, 8th Floor, San Francisco, CA 94103, USA. If you book a ticket through Eventbrite, the following personal data may be shared with Eventbrite: name, date of birth, address, e-mail address, payment information and invoice amount. Data processing takes place on Eventbrite’s servers in the USA. The legal basis is Art. 6(1)(f) GDPR and where required for contract performance Art. 6(1)(b) GDPR. Eventbrite retains data as required to provide services and comply with obligations. You may contact Eventbrite for opt-out: privacy@eventbrite.com

Google Analytics

We use Google Analytics for website usage analysis. Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google processes usage data on our behalf and is contractually obligated to take appropriate security and confidentiality measures. Collected data includes pages visited, conversion events (e.g., contact requests, newsletter sign-ups), on-site behavior (time on page, clicks, scroll behavior), approximate location (country, city), shortened IP address, and technical information (browser, ISP, device, screen resolution), and referrer source. No direct personal identifiers (name, address) are transmitted to Google. Data are transferred to Google servers in the USA; see legal basis and safeguards in the Google documentation. Google Analytics stores cookies for two years by default. User-related data used to create pseudonymous profiles is typically kept for two months for user-level reports and in aggregated form longer. You can opt out by disabling cookies in the cookie settings or via browser add-ons.

Google Ads & Remarketing

We use Google Ads Conversion to measure the success of ad placements and to display interest-based ads. When a user clicks on our Google ad and visits our website, Google may set cookies to recognize the browser. Remarketing allows us to show ads to users based on their prior website interactions. Cookies used for this purpose can remain on the device for up to 180 days and are governed by the user’s consent where applicable (Art. 6(1)(a) GDPR).

Mailchimp

We use Mailchimp (The Rocket Science Group LLC) for newsletter distribution. Data transferred may include e-mail address, optional first and last name and phone number, and usage data collected via cookies and tracking (e.g., IP, device info, open/click metrics). Mailchimp uses these data to ensure security, system reliability and to compile performance statistics. Data processing is based on your consent (Art. 6(1)(a) GDPR). Mailchimp implements safeguards for international transfers using SCCs. More information: https://mailchimp.com/legal/data-processing-addendum/

Microsoft Clarity

Our website uses Microsoft Clarity to analyze user behavior (e.g., mouse movements and clicks) to better understand site usage. Clarity collects pseudonymous identifiers and interaction data, including page visits, device info, and session recordings with IP masking. Use of Clarity requires explicit consent via the cookie manager and is processed on the basis of Art. 6(1)(a) GDPR. More: https://clarity.microsoft.com

WhatsApp

We offer the option to contact us via WhatsApp. Provider: WhatsApp Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (and WhatsApp Inc., USA where applicable). If you contact us via WhatsApp, your phone number and message content will be processed to handle your request. Processing is based on Art. 6(1)(b) GDPR where the inquiry relates to contract performance, otherwise on our legitimate interest for efficient communication (Art. 6(1)(f) GDPR) or on your consent (Art. 6(1)(a) GDPR) where required. For more information see WhatsApp’s privacy documentation.

Microsoft Teams

We use Microsoft Teams for online meetings, video conferences and collaboration. Provider: Microsoft Ireland Operations Limited. Processed data may include account registration information (e-mail address), status, read receipts, chat messages, voice notes, audio/video content in conferences, screen sharing content, uploaded/shared files, calendar entries, task statuses and contents created/edited in Office apps and Teams integrations, as well as technical usage data required for functionality and security. Use is based on contract performance (Art. 6(1)(b) GDPR) or consent (Art. 6(1)(a) GDPR) where applicable. Meetings are recorded only with explicit prior consent of all participants. Data access and retention rules follow our processing agreements with Microsoft and lawful retention requirements.


Data processing for job applicants (applicant privacy notice)

We are pleased that you are interested in us and in applying for a position in our company. The following provides information about the processing of your personal data in connection with your application.

Who is responsible?

Controller: MF SOFTWARE Sales & Service Group GmbH, Robert-Bosch-Straße 7, 64293 Darmstadt. Further company information and authorized representatives are in our imprint on the website.

What data do we process and for which purposes?

We process the data you submit with your application to assess your suitability for the position and to carry out the application process. Lawful basis is primarily Art. 6(1)(b) GDPR for processing data necessary to take steps prior to entering into an employment contract. If the data need to be retained for legal claims, processing may rely on Art. 6(1)(f) GDPR (legitimate interests).

How long will your data be stored?

Applicant data are stored for 6 months in case of rejection. If you consent to further storage for our applicant pool, data will be kept for up to two years. If you receive an employment offer, applicant data will be transferred to our personnel information system.

Who receives your data?

We use a specialized software provider for the application process as a service provider and have concluded a data processing agreement with that provider. Only persons necessary for the recruitment process will access your data.

Where is the data processed?

Applicant data are processed in data centers located in the Federal Republic of Germany.

Your rights as a data subject

You have the right to access, correct or delete data and to lodge a complaint with a supervisory authority.

Source: https://www.e-recht24.de/ (without translation)

bottom of page