The responsible party as defined by the General Data Privacy Regulation (hereinafter called “GDPR”) and other national data privacy laws of EU member states as well as other data privacy regulations is:
RMTsoft GmbH & Co. KG
Carl-Zeiss-Str. 14-16
28816 Stuhr
Phone: +49 (0) 421 806080 - 0
E-mail: info@rmtsoft.de
Authorised representative: RMTsoft Beteiligungs-GmbH, this is represented by its Managing Directors Dirk Fitzke, Gregor Soll, Dr. Stefan Wriggers, Nico Winzenried
The responsible party's data privacy officer is:
Data security officer
c/o nobilia-Werke J. Stickling GmbH & Co. KG
Waldstraße 53-57
33415 Verl
Germany
Phone: + 49 (0) 5246 508 - 0
E-Mail: datenschutz@rmtsoft.de
Description and purpose of data processing: When visiting our website, i.e. without registering or transmitting information otherwise, by using the browser on your end device, information is automatically sent to our website's server. This information is temporarily stored in so-called log files. The following can be captured in particular:
This data is not merged with other data sources.
Legal foundation: The legal foundation for the data processing required in connection with operation and hosting of our website is our predominantly legitimate interest in accordance with Art. 6(1)(f) GDPR. Our legitimate interests arise from the purposes mentioned above.
Recipients: Recipients of the data can be technical service providers tasked with the operation and maintenance of our website (e.g. hosting providers). They exclusively process the data based on a respective order processing agreement in accordance with Art. 28 GDPR.
Storage period: The data is deleted as soon as it is no longer required for the purpose for which it was collected. If data was collected to provide the website, this is the case as soon as the associated session is terminated. If data is saved in log files, it is deleted after no more than 30 days. Further storage is possible. In this case, the IP addresses of the user are deleted or made unidentifiable, so that it is no longer possible to associate them with the accessing client.
Specified or required provision: You are not legally or contractually required to provide your personal data. However, it is possible that specific functions of our websites depend on the provision of personal data. If you do not provide personal data in these cases, this can result in functions not being available, or being limited.
Our website does not use automated decision-making or profiling as defined by Art. 22 GDPR.
Description and purpose of data processing: Our website uses so-called “cookies“. Cookies are small files stored in the internet browser or by the internet browser on the user's computer system. When a user accesses a website, a cookie can be saved on the operating system of the user. This cookie contains a characteristic sequence of characters, which permits clear identification of the browser when the website is accessed again.
Some functions of our website may not be provided without using cookies. For these functions it is required for the browser to be recognised even after changing sites. The user data collected by technically required cookies is not used to create user profiles.
To improve the quality of our website and its content and to be able to provide you with personalised content, additional online services of third parties may get involved, including the use of technically non-required cookies on our website.
Legal foundation: Legal foundation for the use of technically required cookies is our predominantly legitimate interest in accordance with Art. 6(1)(f) GDPR in conjunction with Section 25(2) no. 2 German Telecommunications Digital Services Data Protection Act. Our legitimate interest is in the provision of central functions of our website as well as in ensuring system safety and the detection of misuse. In contrast, the use of technically non-required cookies only takes place based on your consent in accordance with Section 25(1) German Telecommunications Digital Services Data Protection Act in conjunction with Art. 6(1)(a) GDPR.
Recipients: Within the scope of this data processing, we may be transmitting personal data to third parties (e.g. providers of online services, cloud service providers). In these cases, all third parties are bound by confidentiality contractually, e.g. within the scope of a processing of data in accordance with Art. 28 GDPR, and must only act strictly according to instructions.
Storage period: Technically required cookies are usually only stored for the duration of one session, and automatically deleted when the browser is closed. In exceptional cases, they can have a longer storage period, if this should be technically required (e.g. to ensure the stability or safety). Technically non-required cookies are only stored for as long as is required for the respective purpose, the actual storage period can be found in our Consent Management tool.
Specified or required provision: Of course you can generally also browse our website without cookies. Web browsers are routinely configured to accept cookies. In general, you can deactivate the use of cookies at any time via your browser settings. Please note that individual functions of our website may not function if you have disabled the use of cookies.
Description and purpose of data processing: Our website includes two contact forms for requesting a software demo or a feature request. If a user uses this option, the data entered in the input mask is transmitted to us and stored. This data is:
In addition, the following data is saved at the time the message is sent:
We process personal data solely for the contact made or for providing the software demo. As you are contacting us or due to the feature request, this also constitutes the legitimate interest in processing this data. With regard to processing this data, the data privacy policy is referenced prior to transmission.
As an alternative, it is possible to use the provided e-mail address to get in contact. In this case, the user's personal data transmitted by e-mail is saved. No data is disclosed to third parties in this context. The data is only used for processing the conversation.
Legal foundation: The legal foundation for the processing of the data, which is transmitted in the course of the sending of an email or via the contact form, is our legitimate interest in the processing of your enquiry and in efficient communication in accordance with Art. 6(1)(f) GDPR. If software is provided as a demo, data processing occurs based on Art. 6(1)(b) GDPR.
Recipients: Depending on your enquiry, we may forward your data to our distributors, trade partners or other partners to meet the enquiry.
Storage period: The data is deleted as soon as it is no longer required for the purpose for which it was collected. For the personal data from the input mask of the contact form and the personal data transmitted by e-mail, this is the case when the respective conversation with the user is completed. The conversation is completed, when the circumstances indicate that the matter in question is completely settled.
Objection: Users can object to the processing of their data at any time. However, in this case, the conversation cannot be continued. To object, the data privacy contact ( datenschutz@rmtsoft.de ) can be used.
If your personal data is processed, you are the affected person as defined by GDPR and you have the following rights toward the responsible party:
You can request a confirmation by the responsible party indicating whether we are processing personal data related to your person. If this is the case, you can demand information on the following:
(1) The purposes for which your personal data is processed;
(2) The categories of personal data processed;
(3) The recipients or categories of recipients to which the personal data was disclosed or will still be disclosed;
(4) The planned duration of storage of your personal data or, if specific information in this regard cannot be provided, criteria for determining the duration of storage;
(5) The existence of a right to correction or deletion of your personal data, a right to limitation of processing by the responsible party or a right to object to this processing;
(6) The existence of a right to submit a complaint to a supervisory authority;
(7) All available information about the origin of the data, if the personal data is not collected from the affected person;
(8) The existence of automated decision-making including profiling in accordance with Art. 22(1) and (4) GDPR and - at least in these cases - meaningful information about the logic involved and the extent and envisaged effect of such a manner of processing on the affected person.
You have the right to request information from us as to whether the respective personal data is transmitted to a third party country or to an international organisation. In this context, you can demand to be informed about appropriate safeguards in accordance with Art. 46 GDPR regarding this transmission.
You have the right to demand that the responsible party rectify and/or complete any personal data related to your person, if this data is incorrect or incomplete. The responsible party must make the correction as soon as possible.
Under the following circumstances, you can demand that processing of your personal data be restricted:
(1) If you dispute the correctness of your personal data for a period of time, which enables the responsible party to review the correctness of your personal data;
(2) If processing is unlawful and you do not wish for your personal data to be deleted, but instead request restriction of the use of your personal data;
(3) If the responsible party no longer requires your personal data for processing purposes, but you still require the data for asserting, exercising or defending legal claims, or
(4) If you have filed an objection based on Art. 21(1) GDPR and it is not yet clear whether the responsible party's legitimate interests override yours.
If processing of your personal data was restricted, your personal data may only - with the exception of storage - be used with your consent or to assert, exercise or defend legal claims or to protect the rights of another natural or legal person or for reasons of important public interest of the European Union or a member state.
If processing was restricted according to the above-mentioned prerequisites, the responsible party will inform you before this restriction is lifted.
a) Deletion obligation
You have the right to request that your personal data be deleted immediately and the responsible party is obligated to delete this data immediately, if one of the following reasons applies:
(1) Your personal data is no longer required for the purposes for which it was collected or otherwise processed.
(2) You withdraw your consent on which processing was based in accordance with Art. 6(1)(a) or Art. 9(2)(a) GDPR and there is no other legal foundation for processing.
(3) You object to the processing based on Art. 21(1) GDPR, and there are no overriding legitimate reasons for processing, or you object to the processing based on Art. 21(2) GDPR.
(4) Your personal data was processed unlawfully.
(5) Deletion of your personal data is required to meet a legal obligation according to European Union law or the law of EU member states, to which the responsible party is subject.
(5) Deletion of your personal data is required to meet a legal obligation according to European Union law or the law of EU member states, to which the responsible party is subject.
(6) Your personal data was collected in relation to offered information society services according to Art. 8(1) GDPR.
b) Transmission of information to third parties
If the responsible party has published your personal data and is obligated to delete it according to Art. 17(1) GDPR, the responsible party will take adequate measures, including of a technical nature, taking into account the available technology and implementation costs, to inform those responsible for data processing – including the personal data in question – that you as the affected person have demanded that all links to this personal data or copies and duplicates of this personal data must be deleted.
c) Exceptions
There is no right to deletion, if processing is required
(1) For exercising the right to free speech and information;
(2) To meet a legal obligation which requires processing according to European Union law or the law of one of its member states, to which the responsible party is subject, or to fulfil a task that is in the public interest or in the exercise of official authority assigned to the responsible party;
(3) For reasons of public interest with regard to public health according to Art. 9(2)(h) and (i) as well as Art. 9(3) GDPR;
(4) For archival purposes in the public interest, scientific or historical research purposes or for statistical purposes in accordance with Art. 89(1) GDPR, to the extent that the right stated in paragraph a) foreseeably makes achieving these processing aims impossible or severely impairs them, or
(5) To assert, exercise or defend legal claims.
If you have exercised your right to correction, erasure or restriction of processing against the responsible party, the responsible party is obligated to report this correction or erasure of data or processing restriction to all recipients to whom your relevant personal data has been disclosed, unless this proves to be impossible or involves disproportionate effort.
You have the right to request that the responsible party inform you about these recipients.
You have the right to object to processing of your personal data at any time for reasons based on your specific situation, if this processing is based on Art. 6(1)(e) or (f) GDPR; this also applies to profiling based on these provisions.
The responsible party will discontinue processing your personal data, unless they can prove compelling and legitimate grounds for this processing which override your interests, rights and freedoms, or if processing is for the purpose of asserting, exercising or defending legal claims.
If the personal data related to your person is being processed for the purpose of targeted advertisement, you have the right to object to the processing of the personal data related to your person for the purpose of this type of advertising at any point; this also applies to profiling related to such targeted advertisement.
If you object to the processing of your personal data for the purpose of targeted advertising, your personal data will no longer be processed for this purpose.
You have the option of exercising your right to object in the context of use of information society services - irrespective of directive 2002/58/EC - by means of automated processes using technical specifications.
You may withdraw your declaration of consent under data protection law at any point. Withdrawal of your consent does not affect the legitimacy of the data processing performed up to that point based on your consent.
You have the right to receive your personal data you provided to us and which we process based on consent (Art. 6(1)(a) GDPR) or for the performance of a contract (Art. 6(1)(b) GDPR) using automated processes in a structured, common and machine-readable format. You also have the right to transmit this data to another responsible party without hindrance by us, as far as this is technically feasible and the rights and freedom of other persons are not affected (Art. 20 GDPR).
Without prejudice to other legal remedies based on administrative law or court decisions, you have the right to file a complaint with a supervisory authority, especially in the member state that is your location, the location of your workplace or the location of the alleged breach, if you believe that processing of your personal data violates GDPR.
The supervisory authority with which the complaint has been filed informs the complainant regarding the status and result of the complaint including the option of legal remedy according to Art. 78 GDPR.
The responsible supervisory authority is:
The state representative for data privacy Lower Saxony
Postfach 221
30002 Hannover
Phone: +49 (0)511 120-4500
E-mail: poststelle@lfd.niedersachsen.de
Last revised November 2025