Privacy made in Germany

Datenschutz nach DSGVO

You can rely on our data protection!

Data protection pursuant to the EU General Data Protection Regulation (GDPR )

We want you to be able to use easyfeedback without worrying about data protection. Therefore we take this opportunity to explain, clearly and comprehensibly, how we actively protect your data and those of your participants.

The most important points at a glance:

Certified Server Location Germany (ISO27001)

  • Our servers are located and remain in Germany and are located in the Strato AG Data Processing Service Centre. We collect, store and process data exclusively in the Strato AG Data Processing Service Centre without using any foreign servers or Cloud services
  • The Strato AG Data Processing Service Centre and therefore your data are certified and protected in accordance with ISO27001
  • Maximum availability provided by emergency power generators, fire detectors, cooling systems and a battery-supported uninterruptible power supply
  • Redundant data processing service centre architecture makes blackout almost impossible
  • Modern laser fire detectors and the use of quenching gas
  • Guidelines, logs, authorisation concepts and restricted access protect the system from unauthorised access

Data encryption from the very start

  • Each survey is protected by the SSL encryption  method as a standard feature. This means that the responses are secured when entered and are securely transferred and cannot be intercepted.
  • Customer log-in is also secured by the SSL encryption method and therefore your data and those of your participants are protected from access by unauthorised persons.
  • Each access by employees to data systems is encrypted and access is available only to authorized persons
  • Each back-up is fully encrypted and stored in a separate fire compartment
  • Each password and the IP addresses of your participants are stored in a hash, which cannot be decrypted. This means that no-one can read your password and at no time have we stored participants’ IP addresses on our servers.

Maximum security for participation in surveys

  • Each survey is protected by the SSL encryption method as a standard feature. This means that the responses are secured when entered and are securely transferred and cannot be intercepted.
  • Google & Co. has no access to easyfeedback surveys and has to stay locked out
  • We do not store any of your participants’ IP addresses in readable form. Once the IP address has been read, it is converted to a 32-digit hash, impossible to decrypt and only then is it stored on our server.
  • Anonymous participation is the basic setting for every survey. Data is personalised only if you actively enter these or request personal data.

Trained, committed employees

  • All our employees are trained in data protection and know how to handle sensitive, personal data
  • All our employees are bound by data secrecy and the duty of non-disclosure
  • Our internal authorisation concept permits only selected employees to access sensitive, personal data
  • Standardised guidelines for the private use of Internet or e-mail and the use of private terminals apply to all employees

Only selected service providers

  • Each service provider was checked in advance for the implementation of data protection and carefully selected
  • We have concluded a Supplier Contract with each service provider and ensure that they undertake the same obligations as we do
  • We use no foreign tools or service providers to process your participants’ personal data

Maximum protection and security

  • All data transfers are protected by the SSL encryption method
  • Each customer and user has access solely to his data (multi-client capability)
  • Regular vulnerability scans, installation of patches and the use of the most up to date equipment and software maintain the standard of security
  • Daily back-ups (on a 14 day cycle) on a separate server in a separate fire compartment, protect your data in case of incidents
  • Complex password guidelines and rhythm changes in data processing systems protect against unauthorised access