Declaration of Consent: Data Protection and Data Security

Protecting the privacy of your data is important to us

The following offers a detailed explanation of how AEB protects the privacy of your personal data. Any storage or use of your data is based on your consent – or a statutory authorization, depending on the purpose of such storage or use.

1. Preliminary information

In the following, “GDPR” stands for the EU General Data Protection Regulation.

The following information provides transparent disclosure in compliance with the information requirements where AEB acts as the controller in collecting, processing, or using personal data.

AEB provides data subjects with detailed information about the collection of personal data pursuant to Art. 13 (or Art. 14 where applicable) GDPR. This is done in the interests of transparency.


The information below is organized as follows:

  • General information for all target groups

  • Specific information by target group, with a separate tab for each target group

2. General information for all target groups

Company name of controller (“responsible party” in earlier language of Germany’s Federal Data Protection Act (BDSG))

AEB SE

Managing Directors

Matthias Kiess, Markus Meissner

Head of Data Processing

Markus Wurdak

Data Protection Officer

Volkher Wegst

Contact: dtprtctnffcrbcm

Address of controller / responsible party

AEB SE
Sigmaringer Straße 109
D-70567 Stuttgart, Germany

Rights of data subjects

In the interests of fair and transparent processing, data subjects should be aware that their rights include the following:

  • Right of (further) access
  • Right to rectification, erasure, or restriction of processing
  • The right to withdraw my consent. To do so, you can contact nfbcm
  • Right to data portability

Please refer to Articles 15–22 GDPR for the legal basis of these rights.
If you wish to exercise these rights, please contact dtprtctnffcrbcm
Furthermore, you can file a complaint with a supervisory authority. 

Address of the supervisory authority responsible for the federal state in which AEB is located: 

Der Landesbeauftragte für den Datenschutz Baden-Württemberg
Lautenschlagerstraße 20 | 70173 Stuttgart
 P.O. Box 10 29 32 | 70025 Stuttgart
Tel.: +49 711 615541 0 | Fax: +49 711 615541 15
pststlllfdbwd | www.baden-wuerttemberg.datenschutz.de

Other information

  • Automated decision-making, including profiling, is not currently used.
  • If AEB intends to process personal data for a purpose other than that for which it was collected, AEB will notify the data subject of this other purpose along with all relevant information before such processing takes place. If the other purpose is consistent with the earlier purposes for which permission was obtained, or if AEB’s legitimate interests outweigh other considerations, then no separate notification is required.


3. Target groups

Website visitors and cookie-management

You are currently on our website. Here, we temporarily store your anonymized IP address in order to detect and repair technical errors.

Everything else – that is, which information you wish to share with us – is controlled by you through your cookie settings or your Customer Portal or Community account settings.

Use of cookies

Basic Cookies

We use basic cookies so that everything on our site works properly. Cookies are small text files that we store on your computer or smartphone. Cookies help you navigate the website quickly and easily. They use only anonymous data and do not allow us to identify you personally.

Would you rather not use basic cookies? This will prevent some website elements from functioning properly. If you still prefer not to use basic cookies, you can disable the use of cookies in your browser settings. Begin by deleting all previously saved cookies, then disable the option to save new cookies.

Disabling cookies

You can control whether cookies are saved and retrieved through your own browser settings. Your browser lets you disable any use of cookies or limit their use to certain websites, for example. You can also configure your browser to automatically alert you as soon as a cookie is offered and ask you how to proceed. You can block or remove individual cookies. For technical reasons, however, this may limit or disable some features of our website.

Cookies overview

Cookie name

Category


Purpose


Runtime

Provider

ppms-privacy

Consent Management


Stores the visitor's consent to data collection and use


1 year

ecommerce.aeb.com

WSESSIONID

Analytics


Session cookies facilitate the use of a website (e.g. completed online forms or survey responses are retained during a session). When the session has ended, the session cookies are deleted again.


Session

ecommerce.aeb.com

ppms_webstorage

Analytics


Prevents the loss of
visitor data due to some
mechanisms used by
browsers, such as B. Safari's ITP.


persistent


pk_id.***.*****

Analytics


Used to recognize
visitors and record their
various characteristics.


1 year 

ecommerce.aeb.com

_pk_ses.***.**

Analytics


Indicates an active
session of the visitor.


30 min

ecommerce.aeb.com

In_or

Analytics


This cookie registers
statistical data on users'
behaviour on the website. Used for internal analytics by the website operator.


24 hours

ecommerce.aeb.com

_gcl_au

Analytics, Advertising


Google uses cookies for advertising, including serving and displaying ads, personalizing ads limiting the number of ads shown to a user, muting ads you no longer want to see, and measuring the effectiveness of ads.


90 days

www.aeb.com

UserMatchHistory

Analytics


Used to enable ad
serving and retargeting


4 weeks 

.linkedin.com

AnalyticsSyncHistory

Analytics


This cookie is used to
store information about the time at which a
synchronization with the
lms_analytics cookie has
taken place for users in the designated countries.


4 weeks 

.linkedIn.com

bcookie

Analytics


Cookies from
LinkedIn used by share
buttons and advertising tags.


1 year 

.linkedIn.com

bscookie

Analytics


LinkedIn cookies used
by share buttons and ad tags.


1 year 

.www.linkedIn.com

lidc

Analytics


Cookies from LinkedIn used by share
buttons and advertising tags.


24 hours

.linkedIn.com

li_gc

Analytics


Used to store guest
consent to use cookies for non-essential purposes.


6 months

.linkedin.com

aeb.containers.piwik.pro

Analytics


Piwik Pro uses containers to manage tags and consent



piwikpro.de

aeb.piwik.pro


Analytics


Connection to Analytics Platform



piwikpro.de

li_sugr

Analytics


Store and track the identity of a visitor


90 days

linkedIn.com

test_cookie

Advertising


Is set as a test to check whether the browser allows cookies to be set. Does not contain any identifiers.



15 min

.doubleclick.net

_cfuvid

Analytics


Cloudflare cookie used to enforce rate limiting rules.


session

vimeo.com

YSC

Analytics


Registers a unique ID
to store statistics about which videos from YouTube the user
has seen.


session

.youtube.com

DEVICE_INFO

Analytics


This cookie supports
the video embed functionality
on our website


6 months

.youtube.com

VISITOR_INFO1_LIVE

Analytics


This cookie allows
Youtube to check bandwidth
usage.


6 months

.youtube.com

VISITOR_PRIVACY_METADATA

Analytics


Stores the user's cookie consent state for the current domain


180 days

.youtube.com

__cf_bm

Analytics


This cookie is part of Cloudflare’s Bot Management service and helps manage incoming traffic that matches criteria associated with bots


30 minutes

.vimeo.com

Web-Analytics

Piwik Pro (cookie-management)

AEB uses services of Piwik Pro GmbH, Germany (piwikpro.de) for web analysis on its websites. Here, cookies are used which enable the statistical analysis of the use of this website by its visitors as well as the display of usage-relevant content or advertising. Etracker cookies do not contain any information that could identify a user. Cookies from Piwik Pro transmit only anonymous data that do not allow identification of a user (this may be, for example, information about the browser used, language, operating system and country).

The data generated with Piwik Pro is processed and stored on behalf of AEB exclusively within the EU and is therefore subject to strict European data protection laws and standards.

Data processing is carried out exclusively with voluntary consent pursuant to Art. 6 para .1 lit a of the EU General Data Protection Regulation (EU-GDPR). Piwik Pro does not use it for any other purpose, combine it with other data, or pass it on to third parties.

Data protection in the Community

Are you part of the AEB Community? Are you interested in talking with us and others about your products and services and sharing your experience in the areas of customs, logistics, and IT? This is how we use your personal data:

When you register, we ask you for certain required information, including your name and email address. If you wish to share more about yourself with others in the Community, you can add other voluntary information and a photo to your personal profile. You can also delete this data from your profile at any time later.

After you register, we send you a newsletter with important news from the Community and notifications about new posts to the email address you provided. To stop receiving the newsletter and/or notifications, simply opt out in your profile.

If you use an AEB solution, you’ll also receive a “system info” email with notifications about technical issues, notices from customs authorities, and other information relating directly to the operation of your solution.

We allow third parties to access your personal data only for servicing and error correction in the Community. Third parties cannot view or use your data for any other purpose.

Under your personal profile settings, you have the option to delete your entire Community account on your own. Your earlier posts will remain online, but your name will be replaced by Account deleted.

Data protection in the AEB Customer Portal

Are you part of the AEB Customer Portal? Then you are using self-service features for your AEB products – for example, requesting and downloading feature packs for your software.
This is how we use your personal data:

When you create an account, you can create your own user name or let us choose one for you. We may also ask for certain required information, such as your name and email address. Any other data about you displayed in the AEB Service Portal is already known to us from the project phase. Don’t worry: No one else can see this data.

If you want to delete your personal data from the AEB Customer Portal, simply send an email to service@aeb.com with your name and a request to delete your AEB Customer Portal account.

Data protection in AEB Help Center and Chat

You are using our AEB Help Center or our Chat and would like to receive direct access to or help on our products and services or other information on AEB?
For the AEB Help Center and Chat, we use Zendesk Inc, San Francisco, USA as provider. For inquiries and contributions, your e-mail address is required to contact you. Optionally, further personal data may be provided by yourself or managed via cookies (e.g. name, telephone, IP address, etc.).
By submitting your inquiry in the AEB Help Center or contacting us via chat, you consent to us processing the personal data you voluntarily provide there.

Data protection with newsletter subscriptions

Are you receiving one or more AEB newsletters? Then you’re regularly receiving specialized content on global trade, logistics, and IT – plus the latest news about AEB. You receive this information only if you personally requested it.

This is how we use your personal data for newsletter subscriptions:

When you register for one or more of our newsletters, we ask you to select your preferred salutation and provide your first and last name, email address, and country. We need this information to check whether you personally requested the newsletter and whether your agree to receive this information. Once you click to confirm that you agree, we can use your information to send you the newsletters you have requested.

We may collect other voluntary information from you. We use this information to send you the information you requested and for occasional user satisfaction surveys or service calls (including from third parties) designed to bring you information tailored specifically to you on the topics you selected in response to your interest or requests.

You can change your newsletter subscriptions directly at any time by clicking the link “I wish to receive: Information about specific topics” in any newsletter.

You can unsubscribe directly from all subscriptions at any time by clicking the link “I wish to receive: No further communications” in any newsletter.

Data protection with inquiries and the use of services

Do you have a specific question for AEB? Are you interested in a specific service, such as registering for an event? Then you will receive the desired information in response to your request. You must provide additional information for us to process your request. This might include your mailing address, for example, if we need to mail you tickets for an event. You can provide further information if you like.

We use your data to provide you with the services you requested and for occasional user satisfaction surveys or service calls (including from third parties) designed to bring you information tailored specifically to you on the topics you selected in response to your interest or requests.

Job applicants

This section is for you if you are an applicant and wish to know more about your access.

Purpose of collection, processing, or use of data

Processing of application; review of qualifications; contact.

Legal basis for processing (Art. 6 GDPR)

  • Implementation of precontractual (and other) measures taken at the data subject’s request
  • Voluntary consent of the data subject through a corresponding declaration of intent

In general, AEB respects the requirements of data reduction and data economy with regard to the intended purposes of the processing, taking into account the interests of the data subjects that warrant protection.

Description of data subject groups and corresponding data or categories of data

Data subject group: AEB job applicants

Information on job applicants that is typical and necessary in the application process.

Recipients or categories of recipients with whom data may be shared

Data may be shared with any company employees authorized to perform the specified tasks, with banks insofar as needed to process payments, and with external agents (currently company Softgarden based in Germany, commissioned with technical processing of applicant data) acting as subcontractors as defined by Section 11 BDSG and Art. 28 GDPR, where access to personal data is not generally the purpose of the processing but cannot be ruled out.

Transmission of data outside the EU

Data is transmitted outside the EU only within the context of fulfilling the contract, for required communications, and other exceptions explicitly provided for in BDSG or GDPR.

Appropriate guarantees (standard data protection clauses) are in place for when non-EU subsidiaries of AEB are involved.

If AEB itself subcontracts its (data) processing activities, its subcontractors will sign data protection agreements that uphold AEB’s guarantees. Compliance will be regularly monitored. Further information is available upon request by contacting dataprotectionofficer@aeb.com.

Duration of storage or standard deadlines for deleting data

The law stipulates a variety of data retention periods and obligations. Once these periods have elapsed, the corresponding data is routinely deleted if it is no longer needed for the performance of the contract. The commercial or financial data of the past fiscal year, for example, is deleted after another ten years in keeping with applicable laws unless a longer period of retention is either stipulated or necessary for legitimate reasons. Data from certain sources is deleted sooner (such as human resources management: data from rejected applications or warnings). Any data to which this does not apply is deleted when the reasons for its storage no longer exist.

AEB business contacts

This section is for you if you are a business contact of AEB and wish to know more about your access.

Purpose of collection, processing, or use of data

Managing contacts, so that we can get in touch with you for business purposes.

Legal basis for processing (Art. 6 GDPR)

The legal basis might vary, depending on the phase of our contact:

  • Implementation of precontractual (and other) measures taken at the data subject’s request
  • Voluntary consent of the data subject through a corresponding declaration of intent
  • Processing necessary to fulfill contractual obligations (for AEB services, for example)
  • Protecting the legitimate interests of AEB, where applicable

In general, AEB respects the requirements of data reduction and data economy with regard to the intended purposes of the processing, taking into account the interests of the data subjects that warrant protection.

Description of data subject groups and corresponding data or categories of data

Data subject group: Business contacts of AEB, such as the contact persons of customers, service providers, and partners.

Typical and necessary information of the contacts (first and last name, salutation, company, department, phone number, email address). These contacts can be linked to transaction data such as history entries for documentation and to provide a basis of information for meetings, etc.

Recipients or categories of recipients with whom data may be shared

Data may be shared with any company employees authorized to perform the specified tasks, with banks insofar as needed to process payments, and with external agents acting as subcontractors as defined by Section 11 BDSG (commissioned processing of data) and Art. 28 GDPR, where access to personal data is not generally the purpose of the processing but cannot be ruled out.

Transmission of data outside the EU

Data is transmitted outside the EU only within the context of fulfilling the contract, for required communications, and other exceptions explicitly provided for in BDSG or GDPR.

Appropriate guarantees (standard data protection clauses) are in place for when non-EU subsidiaries of AEB are involved.

Duration of storage or standard deadlines for deleting data

The law stipulates a variety of data retention periods and obligations. Once these periods have elapsed, the corresponding data is routinely deleted if it is no longer needed for the performance of the contract. The commercial or financial data of the past fiscal year, for example, is deleted after another ten years in keeping with applicable laws unless a longer period of retention is either stipulated or necessary for legitimate reasons. Any data to which this does not apply is deleted when the reasons for its storage no longer exist. The contact data of persons known to have left their company is set as inactive, so it will no longer appear in standard search queries.

Seminar participants

This section is for you if you are a participant in an AEB seminar and wish to know more about your access.

Purpose of collection, processing, or use of data

Managing contacts, so that we can get in touch with you for business purposes.

Legal basis for processing (Art. 6 GDPR)

The legal basis might vary, depending on the phase of our contact:

  • Implementation of precontractual (and other) measures taken at the data subject’s request
  • Voluntary consent of the data subject through a corresponding declaration of intent
  • Processing necessary to fulfill contractual obligations (for AEB services, for example)
  • Protecting the legitimate interests of AEB, where applicable
In general, AEB respects the requirements of data reduction and data economy with regard to the intended purposes of the processing, taking into account the interests of the data subjects that warrant protection.

Description of data subject groups and corresponding data or categories of data

Data subject group: Business contacts of AEB, such as the contact persons of customers, service providers, and partners.

Typical and necessary information of the contacts (first and last name, salutation, company, department, phone number, email address). These contacts can be linked to transaction data such as history entries for documentation and to provide a basis of information for meetings, etc.

Recipients or categories of recipients with whom data may be shared

Data may be shared with any company employees authorized to perform the specified tasks, with banks insofar as needed to process payments, and with external agents acting as subcontractors as defined by Section 11 BDSG (commissioned processing of data) and Art. 28 GDPR, where access to personal data is not generally the purpose of the processing but cannot be ruled out.

Transmission of data outside the EU

Data is transmitted outside the EU only within the context of fulfilling the contract, for required communications, and other exceptions explicitly provided for in BDSG or GDPR.

Appropriate guarantees (standard data protection clauses) are in place for when non-EU subsidiaries of AEB are involved.

Duration of storage or standard deadlines for deleting data

The law stipulates a variety of data retention periods and obligations. Once these periods have elapsed, the corresponding data is routinely deleted if it is no longer needed for the performance of the contract. The commercial or financial data of the past fiscal year, for example, is deleted after another ten years in keeping with applicable laws unless a longer period of retention is either stipulated or necessary for legitimate reasons. Any data to which this does not apply is deleted when the reasons for its storage no longer exist. The contact data of persons known to have left your company is set as inactive, so it will no longer appear in standard search queries.

Survey participants

Purpose of collection, processing, or use of data

Personal data from surveys is collected, processed, or used for one or more of the following purposes:

  • Consultation with survey participants
  • Delivery of raffle prizes
  • Delivery of informational materials
  • Event registration

Legal basis for processing (Art. 6 GDPR)

The collection of personal data is based on voluntary agreement by the data subjects through a corresponding declaration of intent. In general, AEB respects the requirements of data reduction and data economy with regard to the intended purposes of the processing, taking into account the interests of the data subjects that warrant protection.

Description of data subject groups and corresponding data or categories of data

Data subject group: Employees, customers, prospects, external parties (depending on the target group defined in the survey)
Typical and necessary information of the contacts (first and last name, salutation, email address, possibly company, possibly department, possibly phone number, possibly postal address).

Recipients or categories of recipients with whom data may be shared

All company employees authorized to perform the specified tasks. External agents (currently the companies Lamano GmbH & Co. KG based in Germany and typeform S.L. based in Spain for the purpose of data collection) acting as subcontractors as defined by Section 11 BDSG (commissioned processing of data) and Art. 28 GDPR, where access to personal data is not generally the purpose of the processing but cannot be ruled out.

Transmission of data outside the EU

Data is transmitted outside the EU only within the context of fulfilling the contract, for required communications, and other exceptions explicitly provided for in BDSG or GDPR.
Appropriate guarantees (standard data protection clauses) are in place for when non-EU subsidiaries of AEB are involved.
If AEB itself subcontracts its (data) processing activities, its subcontractors will sign data protection agreements that uphold AEB’s guarantees. Compliance will be regularly monitored. Further information is available upon request by contacting dataprotectionofficer@aeb.com.

Duration of storage or standard deadlines for deleting data

The law stipulates a variety of data retention periods and obligations. Once these periods have elapsed, the corresponding data is routinely deleted if it is no longer needed for the performance of the contract. The commercial or financial data of the past fiscal year, for example, is deleted after another ten years in keeping with applicable laws unless a longer period of retention is either stipulated or necessary for legitimate reasons. Any data to which this does not apply is deleted when the reasons for its storage no longer exist.

Chat participants

This section is for you if you are a chat participant and wish to know more about your access.

Purpose of collection, processing, or use of data

The personal data is processed to contact you to reply to your requests.

Legal basis for processing (Art. 6 GDPR)

The processing of personal data is based on voluntary agreement by the data subjects through a corresponding declaration of intent. In general, AEB respects the requirements of data reduction and data economy with regard to the intended purposes of the processing, taking into account the interests of the data subjects that warrant protection.

Description of data subject groups and corresponding data or categories of data

Data subject groups: Website visitors using the chat

Typical and necessary information of the contacts (email address, possibly your information as a chat participant).

Recipients or categories of recipients with whom data may be shared

All company employees authorized to perform the specified tasks. External agents (currently the company Zendesk Inc based in san Fransisco for the purpose of data collection) acting as subcontractors as defined by Art. 28 GDPR. Here, it is generally the case that access to personal data is not the purpose of the processing but cannot be excluded.

Transmission of data outside the EU

Data is transmitted outside the EU only within the context of fulfilling the contract, for required communications, and other exceptions explicitly provided for in BDSG or GDPR.

If AEB itself subcontracts its processing activities, its subcontractors will sign data protection agreements that uphold AEB’s guarantees. Compliance will be regularly monitored. Further information is available upon request by contacting dataprotectionofficer@aeb.com.

Duration of storage or standard deadlines for deleting data

The law stipulates a variety of data retention periods and obligations. Once these periods have elapsed, the corresponding data is routinely deleted if it is no longer needed for the performance of the contract. The commercial or financial data of the past fiscal year, for example, is deleted after another ten years in keeping with applicable laws unless a longer period of retention is either stipulated or necessary for legitimate reasons.

Any data to which this does not apply is deleted when the reasons for its storage no longer exist.

SOLID app

This section is for you if you use the SOLID app and wish to know more about your access.

Purpose of collection, processing, or use of data

  • Online checks: Processing/use of the data is required to perform online checks and to access past checks.
  • Getting in contact (in case of new features, queries, etc.)
  • Delivery of informational material
  • Protecting the legitimate interests of AEB, where applicable

Legal basis for processing (Art. 6 GDPR)

The processing of personal data is based on voluntary agreement by the data subjects through a corresponding declaration of intent upon registration.
In general, AEB respects the requirements of data reduction and data economy with regard to the intended purposes of the processing, taking into account the interests of the data subjects that warrant protection.

Description of data subject groups and corresponding data or categories of data

Data subject group: SOLID app users
Usual and necessary contact data during registration: Last name, first name, e-mail

Recipients or categories of recipients with whom data may be shared

All company employees authorized to perform the specified tasks. In the case of payment transactions, credit institutions receive the necessary information. External agents acting as subcontractors as defined by Art. 28 GDPR. Here, it is generally the case that access to personal data is not the purpose of the processing but cannot be excluded.

Transmission of data outside the EU

Data is transmitted outside the EU only within the context of fulfilling the contract, for required communications, and other exceptions explicitly provided for in BDSG or GDPR.
If AEB itself subcontracts its processing activities, its subcontractors will sign data protection agreements that uphold AEB’s guarantees. Compliance will be regularly monitored. Further information is available upon request by contacting dataprotectionofficer@aeb.com.

Duration of storage or standard deadlines for deleting data

Users can delete their data themselves at any time using the SOLID app.