Legal Matters

State: 2022

  • Legal Notices

Data Protection - Basic Information



We are very delighted that you have shown interest in our company. Data protection has particularly high importance for the management of Dlubal Software GmbH. The use of the internet pages of Dlubal Software GmbH is possible without any indication of personal data; however, if a data subject wants to use special enterprise services via our website, processing of personal data could become necessary. If the processing of personal data is necessary and there is no statutory basis for such processing, we generally obtain consent from the data subject.

Processing of personal data

The processing of personal data, such as the name, address, e-mail address, or telephone number of a data subject shall always be in line with the General Data Protection Regulation (GDPR), and in accordance with the country-specific data protection regulations applicable to Dlubal Software GmbH. By means of this data protection declaration, our company would like to inform the general public of the nature, scope, and purpose of the personal data we collect, use and process. Furthermore, data subjects are informed, by means of this data protection declaration, of the rights to which they are entitled.

The personal data of the users processed within the framework of these online services include user-related data (e.g. names and addresses of customers), contract data (e.g. services used, names of responsible persons, payment information), usage data (e.g. visited websites of our online services, interest in our products) and content data (e.g. entries in the contact form).

As the responsible party, Dlubal Software GmbH has implemented numerous technical and organizational measures to ensure the most complete protection of personal data processed through this website. However, internet-based data transmissions may in principle have security gaps, so absolute protection may not be guaranteed. For this reason, every data subject is free to transfer personal data to us via alternative means, e.g. by phone.


Responsible party

Responsible for the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in Member States of the European Union and other provisions related to data protection is:

Dlubal Software GmbH
Am Zellweg 2
93464 Tiefenbach

Phone.: +49 9673 9203-0
Fax: +49 9673 9203-51
E-mail: [email protected]

Data protection officer

For questions regarding the processing of personal information, you may contact our data protection officer at any time.

E-mail: [email protected]
Phone: +49 9673 9203-0

Collection of general data and information

The website of Dlubal Software GmbH collects a series of general data and information when a data subject or automated system calls up the website. This general data and information are stored in the server log files. Collected may be (1) the browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system reaches our website (so-called referrers), (4) the sub-websites which are visited by an accessing system on our internet site, (5) the date and time of access to the internet site, (6) an internet protocol address (IP address), (7) the internet service provider of the accessing system, and (8) any other similar data and information that may be used in the event of attacks on our information technology systems.

When using these general data and information, Dlubal Software GmbH does not draw any conclusions about the data subject. Rather, this information is needed to (1) deliver the content of our website correctly, (2) optimize the content of our website as well as its advertisement, (3) ensure the long-term functionality of our information technology systems and website technology, and (4) provide law enforcement authorities with the information necessary for criminal prosecution in case of a cyber attack. Therefore, Dlubal Software GmbH analyzes anonymously collected data and information statistically, with the aim of increasing the data protection and data security of our enterprise, and to ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored separately from all personal data provided by a data subject.

Routine erasure and blocking of personal data

The person responsible for processing shall process and store the personal data of the data subject only for the period necessary to achieve the purpose of storage, or as far as this is granted by the European legislator or other legislators in laws or regulations to which the controller is subject to.

If the storage purpose is not applicable, or if a storage period prescribed by the European legislator or another competent legislator expires, the personal data are routinely blocked or erased in accordance with legal requirements.

Product recommendations and practical tips by e-mail

As a Dlubal customer or user of our services (such as use of our demo, trial or student versions), you will receive regularly product recommendations and practical tips by e-mail. You will receive these product recommendations irrespective of whether or not you have subscribed to a newsletter. We aim to inform you about our products that might be of interest for you based on your recent purchases. Furthermore, you will receive useful tips for using our software.

If you do not wish to receive any newsletters or advertising messages from us anymore, you may terminate the subscription at any time. Please write your termination notice in text (e-mail, fax, letter) to our contact address. You will find, of course, a link to unsubscribe at the end of each e-mail.

Legal basis is Art. 6 (1) lit. f GDPR as well as Section 7 (3) UWG (Act Against Unfair Competition).

Data security

We have taken appropriate technical and organizational security measures to protect your data from loss, destruction, manipulation, and unauthorized access. All our employees and all those who are involved in data processing are bound by the General Data Protection Regulation and will treat your personal data confidentially.

In the event of personal data being collected and processed, the information shall be transferred in encrypted form, to prevent misuse of the data by third parties. Our security measures are improved on an ongoing basis in accordance with the development of technical standards.

Contact via website

The website of Dlubal Software GmbH contains information due to legal requirements which allow a fast electronic contact to our company as well as an immediate communication with us, which also contains a general address of the so-called electronic mail (e-mail address). If a concerned person contacts the responsible person for processing by e-mail or contact form, the personal data of the concerned person will be saved automatically. Such personal data voluntarily provided by a concerned person to the person responsible for processing will be saved to use it for processing or contact purposes with the concerned person.

In addition to information purposes of our website only, we offer different services which you can use. To do this, it is generally necessary to provide personal data which we will use to provide the service and for which the aforementioned principles of data processing apply.

There is no transfer of personal data to third parties for other purposes, except to our legally independent Dlubal offices in the shared customer relationship management system (CRM). When filling in website forms for downloading trial vesions, a transfer to our local resellers can take place depending on the country.

Data protection for applications and the application procedures

The data controller shall collect and process the personal data of applicants for the purpose of the processing of the application procedure. The processing may also be carried out electronically. This is the case, in particular, if an applicant submits corresponding application documents by e-mail or by means of a web form on the website to the controller. If the data controller concludes an employment contract with an applicant, the submitted data will be stored for the purpose of processing the employment relationship in compliance with legal requirements.

If it is not possible to offer the applicant a vacancy and we, however, believe due to the applicant profile that the application may be interesting for future job advertisements, we will save the personal application details twelve months, provided that the applicant does not contradict such storage and use. The data will never be passed on to third parties.

Legal basis for the processing

Art. 6 (1) lit. a GDPR serves as the legal basis for processing operations for which we obtain consent for a specific processing purpose. If the processing of personal data is necessary for the performance of a contract to which the data subject is party, as it is the case, for example, when processing operations are necessary for the supply of goods or to provide any other service, the processing is based on Art. 6 (1) lit. b GDPR. The same applies to such processing operations which are necessary for carrying out pre-contractual measures, for example in the case of inquiries concerning our products or services. Is our company subject to a legal obligation by which processing of personal data is required, such as for the fulfillment of tax obligations, the processing is based on Art. 6 (1) lit. c GDPR.

In rare cases, the processing of personal data may be necessary to protect the vital interests of the data subject or of another natural person. This would be the case, for example, if a visitor were injured in our company and his name, age, health insurance data or other vital information would have to be passed on to a doctor, hospital or other third party. Then the processing would be based on Art. 6 (1) lit. d GDPR. Finally, processing operations could be based on Art. 6 (1) lit. f GDPR. This legal basis is used for processing operations which are not covered by any of the abovementioned legal grounds, if processing is necessary for the purposes of the legitimate interests pursued by our company or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data. Such processing operations are particularly permissible because they have been specifically mentioned by the European legislator. He considered that a legitimate interest could be assumed if the data subject is a client of the controller (Recital 47 Sentence 2 GDPR).

Legitimate interests pursued by the controller or by a third party

Where the processing of personal data is based on Art. 6 (1) lit. f GDPR, our legitimate interest is to carry out our business in favor of the well-being of all our employees and our associate.

Period for which the personal data will be stored

The criteria used to determine the period of storage of personal data is the respective statutory retention period. After expiration of that period, the corresponding data is routinely deleted, as long as it is no longer necessary for the fulfillment of the contract or the initiation of a contract.

Provision of personal data as statutory or contractual requirement; requirement necessary to enter into a contract; obligation of the data subject to provide the personal data; possible consequences of failure to provide such data

We clarify that the provision of personal data is partly required by law (e.g. tax regulations) or can also result from contractual provisions (e.g. information on the contractual partner). Sometimes it may be necessary to conclude a contract that the data subject provides us with personal data, which must subsequently be processed by us. The data subject is, for example, obliged to provide us with personal data when our company signs a contract with him or her.

The non-provision of the personal data would have the consequence that the contract with the data subject could not be concluded. Before personal data is provided by the data subject, the data subject must contact one of our employees. Our employee clarifies to the data subject whether the provision of the personal data is required by law or contract or is necessary for the conclusion of the contract, whether there is an obligation to provide the personal data and the consequences of non-provision of the personal data.

Changes in our data protection regulations

We reserve the right to change this privacy policy at any time if this may be necessary due to legal requirements, new technologies or changes in our services, e.g. introduction of new services.

If fundamental changes are made to this data protection regulation, we will announce these changes on our website. For your repeated visit on our website, the new data protection regulation will apply.

Contact Us

Contact Dlubal

If you have any questions about this privacy policy and the processing of your personal data, you can contact our internal data protection officer via email at [email protected].

Our data protection officer can assist you with requested information, suggestions or concerns.

+49 9673 9203 0

[email protected]