Privacy Policy for supplier+s

Thank you for visiting our website and using our supplier+s platform. We take the protection of your privacy and the personal data you make available to us very seriously. The observance of data protection regulations is essential for us.

In the following, we describe our data processing activities in connection with the use of our services.

1. General Information

Personal data is all data that can be related to you personally, e.g. name, address, email address.

Controller pursuant to Article 4 No. 7 of the European General Data Protection Regulation (GDPR) and, therefore, responsible for the processing of your personal data when using our website or using our platform is: ctrl+s GmbH, Lohmühlenstr. 65, 12435 Berlin, Germany. In case of any data protection related questions, please contact data-protection@supplier-s.io.

2. Your Rights

You have the following rights towards us under the respective legal conditions with regard to your personal data:

- the right to request access;

- the right of rectification or erasure;

- the right to restrict processing;

- the right to object to processing;

- the right to data portability.

You also have the right to lodge a complaint with a supervisory authority about our processing of your personal data.

3. Collection of personal data for the technical operation of the website

When using the website only for information purposes, i.e. if you do not register or otherwise actively provide us with information, we only collect the personal data that your browser transmits to our server (in particular, IP addresses, information on server requests, referrer-URL). This is done in order to display the website to you and to ensure the required stability and security (legal basis is Article 6(1)f GDPR).

4. Collection of personal data at contact requests

When contacting us by email or via our support forms, the data you provide (your email address as well as your first and last name, possibly other voluntary information) will be stored by us in order to answer your enquiries. We delete the data accruing in this context after the storage is no longer necessary or restrict the processing if there are statutory retention obligations.

5. Cookies and technologies

We use cookies and similar technologies on our website. Cookies are small text files that are assigned to the browser you are using and stored on your hard drive by means of a specific character string, and through which certain information flows to the provider that sets the cookie. Cookies cannot execute programmes or transfer viruses to your computer and therefore cannot cause any damage.

Cookies can contain data that make it possible to recognise the device used. In some cases, however, cookies only contain information on certain settings that are not personally identifiable. However, cookies cannot directly identify a user.

We only use technologies that are absolutely necessary to navigate the platform, use basic functions and ensure the security of the website; this is our legitimate interest (Article 6(1)f GDPR). These technologies do not collect information about you for marketing purposes nor do they store which websites you have visited.

6. Collection and processing of personal data for running the supplier+s platform

When you register on our platform, we request the following data about you and your company, respectively, via our registration form:

- company name and industry,

- company address and country,

- company size and fiscal year (optional),

- DUNS number (optional),

- title (optional), first name, last name,

- email address,

- telephone number (optional),

- job title (optional).

This data request is necessary in order to provide the services of supplier+s. The legal basis is Article 6(1)b GDPR, and regarding optional data, Article 6(1)a GDPR. For the purpose of maintaining, monitoring and improving, and therefore, in order to ultimately provide you with our services in connection with supplier+s, we also collect certain statistical data (views, logins, etc.) without any personal reference.

All supplier data that you may provide us via the respective forms within the platform is without any personal reference. Please also refer to our Terms of Use in this regard. If and to the extent we act as data processor in the course of providing our services, we conclude data processing agreements.

Your data will be stored until we receive a request to delete your account or if we are legally obliged to do so. Legal storage obligations, in particular due to commercial or tax law requirements, remain unaffected.

7. Service provider and data recipients

In order to be able to offer you our services, we involve the following third-party providers who are bound by our instructions and with whom we have concluded a data processing agreement required under Article 28 GDPR:

For current list of sub processors, please refer to: https://supplier-s.io/subprocessors

In addition, we pass on your supplier data in refined form to the recipients (your B2B customers) that initially invited you to use supplier+s in accordance with our Terms of Use. This is part of the fulfilment of our contractual obligations. The data recipient is responsible for data processing operations outside the platform.

8. Data Security

Personal data is protected by us by means of suitable technical and organisational measures in order to ensure an appropriate level of protection and to safeguard the personal rights of the data subjects. The measures taken serve, among other things, to prevent unauthorised access to the technical equipment used by us and to protect personal data from unauthorised access by third parties. In particular, this website uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as your contact requests that you send to us as the website operator. You can recognise an encrypted connection by the address line of the browser changing from "http://" to "https://" and by the lock symbol in your browser line. If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties. Nevertheless, we would like to point out that data transmission on the internet (e.g. when communicating by email) may have security gaps. Complete protection of data against access by third parties is therefore not possible.

9. Updates of our Privacy Policy

Since this data protection notice may change from time to time as a result of legal changes or new functions within the scope of our services, we recommend that you check it regularly.

Last update: 27 January 2023

Get in touch today.