dots Software

Privacy Policy

Privacy Policy (17. 02. 2021)

The following information provides you with details about how we process your personal data and your rights under data protection law.

Responsibility for data processing and company data protection officer

In line with Article 4, Paragraph 7 of the EU General Data Protection Regulation (GDPR) responsibility lies with:

dots Gesellschaft für Softwareentwicklung mbH
Schlesische Str.  27, 10997 Berlin, Germany
Telephone: +49 (0) 30 695 799
(See our Legal Note)

If you have any questions about data protection, you are welcome to contact our company data protection officer at any time:

Dr. Frederike Rehker
Konica Minolta Business Solutions Europe GmbH
Europaallee 17, 30855 Langenhagen, Germany
Telephone: +49 (0)511 7404-0
E-mail: dataprotection(at)

Your rights

You hold the following rights with regard to your personal data processed by us:

  • Access to information on the categories of the processed data, purposes of processing, recipients or categories of recipients of your data, and the planned retention period (Article 15 of the GDPR)
  • Correction of inaccurate or incomplete data and/or their amendment (Article 16 of the GDPR)
  • Deletion of data in line with Article 17 of the GDPR, in particular if the personal data are no longer necessary for the intended purpose or are processed illegally, or if you withdraw your consent or have lodged an objection to processing
  • Restriction of data processing in line with Article 18 of the GDPR in certain circumstances insofar as, for instance, deletion is no longer possible or the deletion obligation is at issue
  • In line with Article 20 of the GDPR on data portability, to have us provide you or a third party with the personal data you supplied to us in a structured common machine-readable format
  • For reasons arising from your particular situation the right to object to data processing on account of a legitimate interest (Article 21, Paragraph 1 of the GDPR)
  • Withdrawal of your consent at any time to be effective in the future (Article 7, Paragraph 3 of the GDPR); this also of course also applies to the withdrawal of consents you granted us prior to the GDPR coming into effect
  • In line with Article 77 of the GDPR to lodge a complaint about data processing with the responsible supervisory authority

Collection of personal data when you visit our website

If you only visit our website for informational purposes, i.e. if you do not register or otherwise provide us with information, we shall only collect the personal data that your personal browser sends to our server. These data are necessary from a technical point of view to let you view our website. They are also required in order to ensure the stability and security of our website. (Legal basis is Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR).

  • IP address
  • Date and time of request
  • Country of origin of request
  • Content requested (specific web page)
  • Access status/http status code
  • Website from which the request is launched
  • Browser
  • Operating system and interface
  • Browser software language and version
  • Data volume sent in each case
  • Time zone difference to Greenwich Mean Time (GMT)

Some of the services offered on our website can only be performed if we are able to contact you. This means that availing yourself of these services is dependent on you providing us with specific personal (contact) data. We only collect, use and process these data insofar as this is necessary for the performance of the respective services. If you contact us via email or a contact form, the data you enter (your email address and other data you impart to us of your own free will, such as your name/telephone number) are stored by us so we can process your request and answer any questions you may have. We delete the data we have stored about you when it is no longer required. We restrict processing in the case of statutory retention obligations. We process your data in line with Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR.

Purpose of processing, legal basis and retention period

If we request consent to process your personal data, we do so in line with Article 6, Paragraph 1, Sentence 1, Letter a of the GDPR. If processing your personal data is required to fulfil a contact or pre-contractual measures prompted by your request, our processing is legally based on Article 6, Paragraph 1, Sentence 1, Letter b of the GDPR. In cases in which processing of personal data is required to fulfil our legal obligations, processing is in line with Article 6, Paragraph 1, Sentence 1, Letter c of the GDPR. If processing of personal data is necessary to protect a legitimate interest of our company or a third party, and if at the same time the interests, basic rights and freedoms of the data subjects, which require the protection of personal data, do not take precedence over our legitimate interest, Article 6, Paragraph 1, Letter f of the GDPR shall serve as legal basis for said processing.

Unless otherwise specified, we delete personal data in accordance with Article 17 and 18 of the GDPR or restrict their processing. We only process and store your personal data for as long as they are required to fulfil our contractual and legal obligations. Data no longer required for the intended purpose are deleted regularly unless temporary further processing is necessary, which may arise on account of other legally permissible purposes. In compliance with documentation and legal retention obligations in Germany, the necessary documents are stored for six years in line with Article 257, Paragraph 1 of the German Commercial Code (HGB) and ten years in line with Article 147, Paragraph 1 of the German Fiscal Code (AO).

We use cookies on our website. Cookies are small text files stored on your hard disk that are created when you use your browser to visit a website and are used by it to send specific information. All of the cookies we use are deleted at the end of the browser session (so-called session cookies). You can set your cookie preferences in the browser you use, and can refuse the use of cookies or restrict your refusal to the cookies of other parties, so-called third-party cookies. However your cookie preferences may result in you not being able to use all the functions offered on our Internet website.

Recipients of your data

In general, we neither sell nor loan user data. We only transfer data to third parties beyond the scope of this privacy statement if it is necessary for the fulfilment of the relevant service you have requested. We work with cooperation partners to render our services. The latter perform services for you on their own responsibility/in relation to your contract with us. You can order these services and consent to the inclusion of the cooperation partner, or inclusion is based on legal permission. In the areas of Marketing, Sales, IT, Logistics and HR we also work with processors in line with Article 28 of the GDPR. These processors are carefully selected by us. We continue to bear responsibility for the protection of your data in the case of processing by a processor. In other cases we send data to government agencies at their request. However, this only takes place if a legal obligation, such as a court order, exists.

Where is my data processed?

We always process your data in Germany and European countries (EU/EEA). Insofar as your data are exceptionally processed in very limited special cases in countries outside the European Union (thus in so-called third countries), this will only take place provided you have given your express consent, it is legally envisaged, or it is necessary for us to perform our service for you. Insofar as we process data in third countries in these exceptional cases, this is performed subject to specific measures (i.e. on the basis of the existence of an adequacy decision by the EU Commission or appropriate guarantees, Article 44 et seq. of the GDPR).

Note on data transfer to the USA

Videos and fonts from companies based in the USA are embedded on our website. When these videos and fonts are active, your personal data, such as your IP, may be transferred to the US servers of the respective companies. We would like to point out that the USA is not a safe third country in the sense of EU data protection law. US companies are obliged to hand over personal data to security authorities without you as a data subject being able to take legal action against this. It can therefore not be ruled out that US authorities (e.g. intelligence services) process, evaluate and permanently store your data located on US servers for monitoring purposes. We have no influence on these processing activities.


Our internet pages use so-called cookies. Cookies are small text files and do not cause any damage to your terminal device. They are temporarily stored on your end device for the duration of a session (session cookies). Session cookies are automatically deleted at the end of your visit.
On our pages that contain videos, an additional two cookies from YouTube are stored on your end device as soon as you call up these pages (third-party cookies). You can find more information about YouTube here.
Cookies have various functions. Many cookies are technically necessary, as certain website functions could not be provided without them (e.g. embedded videos).
Cookies that are necessary to carry out the electronic communication process (necessary cookies) or to provide certain functions that you have requested (functional cookies) or to optimise the website (e.g. cookies to prevent spam on our contact pages) are stored on the basis of Art. 6 (1) lit. f GDPR As the website operator, we have a legitimate interest in storing cookies for the technically error-free and optimised provision of our offers.

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. Deactivating cookies does not restrict the functionality of this website.

Youtube with enhanced privacy

This website embeds videos from YouTube. YouTube operator is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.
We use YouTube in extended data protection mode. According to YouTube, this mode causes YouTube not to store any information about visitors to this website before they watch the video. However, the transfer of data to YouTube partners is not necessarily excluded by the extended data protection mode. Thus, YouTube - regardless of whether you watch a video - establishes a connection to the Google DoubleClick network.
As soon as you start a YouTube video on this website, a connection to YouTube's servers is established. This tells the YouTube server which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.
Furthermore, YouTube can save various cookies on your end device after starting a video or use comparable recognition technologies (e.g. device fingerprinting). In this way, YouTube can obtain information about visitors to this website. This information is used, among other things, to collect video statistics, improve the user experience, and prevent fraud attempts.
Further data processing operations may be triggered after the start of a YouTube video, over which we have no control.
YouTube is used in the interest of an appealing presentation of our online offers. This represents a legitimate interest within the meaning of Art. 6 Para. 1 lit. f GDPR.
The YouTube privacy statement provides more information on the purpose and scope of data acquisition and processing, and also additional information on your rights and settings options to protect your privacy: Google also processes your personal data in the USA.

Adobe Typekit

We use Adobe Typekit Webfonts at Typekit is a service offered by the company Adobe. This service offers fonts which are rendered in the user's browsers after contacting Adobes server in the USA.

At least the IP address of the user's browser is saved by Adobe. In these cases in which personal data are transmitted to the USA, Adobe has submitted itself to the EU-US Privacy Shield (see ). More information can be found in the privacy policy of Typekit.

Social Bookmarks

On we integrate so called social bookmarks (Facebook, Twitter). Users of said services can thus collect links and news. The social bookmarks on our web site are just links to said services.

Only after clicking on such a link user are transfered to the web sites of these services. This means the transfer of user data is only initiated by the click, not before. Information about how these services utilize personal data is available in the privacy policy of their respective web sites.

Data protection for job candidates

Since we must process your data in the recruitment process please note the following:

Sole controller and processor of your personal data is:
dots Gesellschaft für Softwareentwicklung mbH
Schlesische Str. 27
10997 Berlin

If you have questions about this or if you wish to contact our Data Protection Coordination Manager (DPCM) Mr. Sambale please send an email to:

Our purpose to process your your data is to select a candidate for establishing an employment relationsship. We will not process your data for any other reason. The legal foundations for this processing are § 26 BDSG (German data protection law) in conjunction with Art. 6 para 1 lit. b) (Employment contract) und Art. 88 GDPR (data processing for an employment context). Providing personal data is essential to assess the application and, if applicable, to close an employment contract. An application without personal data cannot be considered. Automated decision-making does not happen.

Your data is exclusively distributed internally to the responsible and decision-making persons. We save your data only on our local servers in Berlin. It is not transfered to third countries.

We delete your data six month after the end of the recruitment process. The legal foundation is § 61b Abs. 1 ArbGG (The law governing labour courts) in conjunction with § 15 AGG (Anti discrimination law). If you would like to be considered for future job offers we will only save your data for up to 12 month after you gave us written consent to do so.

According to Art. 15 GDPR you have the right to receive information about the processing of your personal data. In addition you are at liberty to exercise your rights of the correction, deletion or, if deletion is not possible, of the restriction of processing and of the portability of your data according to Art. 16-18, 20 GDPR. If you want to make use of these rights, please contact our DPCM.

You further have the right to complain to the supervisory authority (This is: Berliner Beauftragte für Datenschutz und Informationsfreiheit) at any time.

If you consider our processing of your personal data not lawful, we kindly ask you to contact our DCPM.

In addition Art. 13 para. 2, lit b) GDPR gives you the right to veto the processing of your personal data at any time.

Konica Minolta Policy

Konica Minolta has set out the following policy as the global benchmark for its own conduct:

Global Personal Data Protection Policy of Konica Minolta Group

As a growing global company, being engaged in various business areas, We, Konica Minolta Group recognize that the confidence of our customers, business partners, officers and employees is our most valuable asset. Konica Minolta Group also recognizes that we are, not only to provide the best products and services, but also to meet the highest standards regarding compliance and social responsibility.

Konica Minolta Group is committed to respect the privacy of our customers, business partners, officers and employees and to protect the personal data of our customers, business partners, officers and employees.

Scope and applicability of this Policy

This policy applies to us, Konica Minolta, Inc. (“Konica Minolta”) and all of its affiliated companies (“Group Companies”) and our officers and employees. “Affiliated” in this instance means, that Konica Minolta may enforce the adoption of this Policy directly or indirectly, on the basis of voting majority, majority management representation or by agreement. Konica Minolta and Group Companies (“Konica Minolta Group”) establish and enforce internal rules such as regulations and procedures in accordance with this Policy.

This Policy sets forth the basic principles of Konica Minolta Group’s data protection and data security standards and ensures compliance with national and international data protection laws in force all over the world. Therefore it comprises the internationally accepted data protection principles, intending not to replace, but to supplement the respective national data protection and privacy laws (“National Legislation”). This means, that the content of this Policy has to be observed in the absence of a corresponding National Legislation or if a National Legislation provides lower requirements than this Policy. On the other hand, a National Legislation always takes precedence in case of a conflict with this Policy or if the National Legislation provides stricter requirements than this Policy.

This Policy extends to all processing of personal data. In countries where the data of legal entities are protected to the same extent as personal data, this Policy applies equally to data of legal entities. Anonymized data, e.g. for statistical evaluations or studies, is not subject to this Policy.

Konica Minolta Group’s principles for processing of personal data

Lawfulness, fairness and transparency

Personal data will be collected and processed in a lawful, fair and transparent manner to protect the individual rights of the data subjects.

Restriction to a specific purpose

Personal data will only be collected for specified explicit and legitimate purposes and will not be processed in a manner incompatible with those purposes.

Data accuracy / Data actuality

Personal data will be accurate and where necessary kept up to date. Konica Minolta Group will take every reasonable step to erase or rectify inaccuracies without delay.

Data economy / Data minimization

Personal data will be adequate, relevant and limited to what is necessary. Personal data will not be stored longer than necessary.

Rights of data subjects

Konica Minolta Group respects the rights of all data subjects including rights of access to their data, the right of restriction of processing or erasure, and the right of accuracy. Konica Minolta Group will provide clear and unambiguous information about how and why subjects' data are collected and processed.


Time limits for storage of personal data will be defined. Konica Minolta Group erases personal data that are no longer necessary in relation to the purposes for which they have been collected or in a case a given consent is withdrawn and no other legitimate purpose for processing applies.

Security of processing / Data security

Personal data will be processed securely. Appropriate to the risk, technical and organisational measures will be taken against unauthorised processing or alteration, and against loss or destruction or unauthorized disclosure of or access to personal data transmitted, stored or otherwise processed. Konica Minolta Group will ensure ongoing integrity, availability, confidentiality and authenticity. Konica Minolta Group will ensure resilience of our systems and services processing personal data. In the event of an incident Konica Minolta Group will have the ability to restore the availability and access to data in a timely manner.

Data protection by design and by default

Konica Minolta Group will implement appropriate technical and organisational measures for ensuring that, by default, only personal data that is necessary for each specific purpose of the processing is processed. The principle of Data Protection by design and by default will be followed during the development of new products.


There shall be accountability in all processing activities. Konica Minolta Group is responsible for and able to demonstrate compliance.

Konica Minolta Group’s data protection organisation

Each Konica Minolta Group company shall appoint a qualified person, who is responsible for the implementation and observance of the aforementioned principles.