Privacy Policy

Privacy Policy for the Testify service

This Privacy Policy applies to "Testify," including the websites and services that display or link to this notice, and to online services available on the Testify online portal. Please note that the service "Testify" is offered only to companies and not to consumers!

Testify is not responsible for the privacy practices of its customers or third parties, except as described below.

Testify notes that the infrastructure used to operate the Testify service is sometimes not operated by Testify. Time recording and signal data collected using Testify is stored and processed using the cloud computing service Microsoft Windows Azure. Accordingly, testing and subscribing to "Testify" also applies to the privacy policies of Microsoft Online Services.

The protection of your personal data is very important to us. Therefore we process your data exclusively on the basis of the legal regulations (DSGVO, TKG 2003). In this privacy statement we inform you about the most important aspects of data processing within our website and beyond.


If you contact us by means of a form on the website or by e-mail, your data will be stored for a limited time in order to process the request and in case of follow-up questions. We will not share this information without your consent.


Testify collects and uses personal information provided to users for the purpose of providing, operating, and improving this and other Testify products and services.

Testify may also use the information collected to process support requests, troubleshoot service issues, or provide critical service information.

Testify may collect information about your interaction with Testify websites and services. For example, our websites may use site analytics tools to retrieve information from your browser, including the website you've switched to, the search engine, and the keywords you've used to search our sites, the pages you visit on our websites, the add-ons of your browser and the width and height of your browser. Additionally, Testify may use certain technologies, such as: Cookies, to collect information about the pages you visit, the links you click on, and other actions you take on our websites and our services. You may also be collecting certain standard information that your browser sends to every website you visit, such as: For example, Internet service provider, IP address, browser type and language, access times, and referring web site addresses.

The information collected may be supplemented by information from other companies. For example, Testify may use other companies' services to roughly derive a geographic area based on your IP (Internet Protocol) address.

You can prevent this by setting up your browser so that no cookies are stored. We have concluded a corresponding contract data processing contract with the provider.

Personal information collected through Testify websites or services may be stored and processed in the EU or any other country where Testify, Testify affiliates, subsidiaries or service providers have facilities.

Testify may access or disclose information about you, including the contents of your communication

  1. To comply with laws or to respond to legal or judicial
  2. to protect the rights or property of Testify or our customers, including the enforcement of our contracts or policies governing your use of the service, or
  3. to act when we reasonably believe that such access or disclosure is required to protect the personal safety of employees or customers of Testify or the public.

User agrees to receive information about products and services from Testify and its affiliates.

communication settings

The contact information provided to us may be used to send registration information or other service emails to the Account Owner or End User. Testify wants to provide better tailored information and may therefore use customized links or similar technologies to determine if the email has been opened and which links have been clicked to provide you with better-matched information.


Testify's goal is to protect the security of your information. We use technical and organizational measures to ensure the security of the service. This includes a set of security technologies and procedures designed to protect your information from unauthorized access, unauthorized use, and unauthorized disclosure.

Some personal information may be subject to particularly high confidentiality for you or your organization and therefore require a level of security that Testify does not offer. It is your responsibility or that of your organization to determine if our safety meets your requirements.

If you have specific information security issues, please contact


If an authorized representative of your company makes a support request, Testify will assume that your company agrees to the processing of personal information in connection with your account for processing this support request. It may also pass on information of this nature inside and outside of Testify in order to process your support request with the optimum level of expertise and in the shortest possible time.

Testify may collect additional information, such as: As for the support case hardware and software.

This information may be retained at Testify and used to assist in diagnosing future problems with your account, understanding your business needs, or improving our services and support. The information may be combined with other support information from other Testify products and services to help you better understand your experience and needs.

You may receive regular e-mails from Testify informing you of technical support issues related to the products and services you request. You can not unsubscribe from these shipments, as they make up a significant part of the service. If you contact Support, we may call you to conduct a survey on your experience with the latest services or possible new services, or to inform you about important security issues.


Testing services is offered for testing purposes prior to purchase. If you decide to purchase the service later, Testify may temporarily retain personal information beyond the end of the trial period that was collected while testing a Customer Experience Improvement Service. However, this personal information may be deleted from the service at any time after the end of the trial period.

Privacy policy and consent

Table of Contents
1. Objective and responsible body
2. Basic information on data processing
3. Processing of personal data
4. Collection of access data
5. Cookies & reach measurement
6. Google Analytics
7. Google Re / marketing services
8. Facebook social plugins
9. Facebook remarketing
10. Newsletter
11. Integration of services and contents of third parties
12. User rights and deletion
13. Changes to the privacy policy

1. Objective and responsible body

This Privacy Policy clarifies the nature, scope and purpose of the processing (including collection, processing, use and consent) of personal information contained in our online offering and the related websites, features and content (collectively referred to as "online offer" or "online offer") "Website"). The privacy policy applies regardless of the domains, systems, platforms and devices used (eg desktop or mobile) on which the online offer is executed.

Provider of the online offer and the data protection law responsible body is Testify GmbH, owner: Sebastian Spindler, Business Park Urfahr 8, 4040 Linz (hereinafter referred to as "Provider", "we" or "us"). For the contact possibilities we refer to our imprint

The term "user" includes all customers and visitors of our online offer. The terms used, such as "users" are to be understood gender neutral.

2. Basic information on data processing

We only process personal data of users in compliance with the relevant data protection regulations in accordance with the requirements of data minimization and data avoidance. This means that the data of the users are processed only if a legal permission exists, in particular if the data for the performance of our contractual achievements as well as on-line services are required, or prescribed by law or in the presence of a consent.

We take organizational, contractual and technical security measures in accordance with the state of the art to ensure that the provisions of the data protection laws are complied with and in order to protect the data processed by us against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons protect.

If, within the framework of this data protection declaration, content, tools or other means are used by other providers (collectively referred to as "third-party providers") and their registered office is abroad, it can be assumed that data will be transferred to the states of residence of the third-party providers , The transfer of data to third countries takes place either on the basis of a legal permission, the consent of the users or special contract clauses, which ensure a legally required security of the data.

3. Processing of personal data

The personal data are, in addition to the use expressly mentioned in this privacy policy, processed for the following purposes on the basis of legal permissions or consent of the users:
- The provision, execution, maintenance, optimization and security of our services, services and user services;
- Ensuring effective customer service and technical support.

We only transfer the data of the users to third parties if this is necessary for billing purposes (eg to a payment service provider) or for other purposes, if these are necessary to fulfill our contractual obligations towards the users (eg address notification to suppliers).

When contacting us (via contact form or e-mail), the details of the user are stored in order to process the request as well as in the event that follow-up questions arise.
Personal data will be deleted if they have fulfilled their purpose and deletion does not conflict with any retention requirements.

4. Collection of access data

We collect data about every access to the server on which this service is located (so-called server log files). The access data includes name of the retrieved web page, file, date and time of retrieval, amount of data transferred, message about successful retrieval, browser type and version, the user's operating system, referrer URL (the previously visited page), IP address and the requesting provider ,

We use the log data without assignment to the person of the user or other profiling according to the statutory provisions only for statistical evaluations for the purpose of operation, security and optimization of our online offer. However, we reserve the right to retrospectively check the log data if, on the basis of concrete evidence, the legitimate suspicion of unlawful use exists.

5. Cookies & reach measurement

Cookies are information transmitted from our web server or third-party web servers to users' web browsers and stored there for later retrieval. The use of cookies in the context of pseudonymous range measurement informs users in the context of this privacy policy.

The consideration of this online offer is also possible to the exclusion of cookies. If users do not want cookies stored on their computer, they will be asked to disable the option in their browser's system settings. Saved cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer.

There is the possibility of many online ad cookies from companies through the US side or the EU side manage.

6. Google Analytics

We use Google Analytics, a web analytics service provided by Google Ireland Ltd. ("Google"). Google uses cookies. The information generated by the cookie about the use of the online offer by the users are usually transmitted to a Google server in the USA and stored there.

Google will use this information on our behalf to evaluate the use of our online offer by users, to compile reports on the activities within this online offer and to provide us with further services related to the use of this online offer and the internet usage. In this case, pseudonymous user profiles of the processed data can be created.

We only use Google Analytics with activated IP anonymization. This means that the IP address of the users will be shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the US and shortened there.

The IP address submitted by the user's browser will not be merged with other data provided by Google. Users can prevent the storage of cookies by setting their browser software accordingly; Users may also prevent the collection by Google of the data generated by the cookie and related to their use of the online offer and the processing of such data by Google by downloading and installing the browser plug-in available under the following link:

For more information on data use for advertising purposes by Google, recruitment and on redress can be found on the websites of Google: ("Google Uses Your Data When You Use Our Partners Websites or Apps"), ("Use of data for advertising purposes"), ("Managing information that Google uses to show you advertising") and ("Determine which Google advertising shows you").

7. Google Re / marketing services

We use the Marketing and Remarketing Services ("Google Marketing Services") of Google Ireland Ltd., Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland, ("Google").

Google Marketing Services allows us to better target advertisements for and on our website so that we only present ads to users that potentially match their interests. If, for example, users see ads for products that they are interested in on other websites, this is called "remarketing". For these purposes, when Google and our other websites that use Google Marketing Services are activated, Google immediately codes Google and so-called (re) marketing tags (invisible graphics or code, etc.) are added to the website as "Web beacons") incorporated into the website. With their help, the user's device stores an individual cookie, ie a small file (instead of cookies, comparable technologies can also be used). Cookies can be set by different domains, including,,,, or In this file is noted which websites the user visited, for what content he is interested and what offers he has clicked, as well as technical information about the browser and operating system, referring websites, visit time and other information on the use of the online offer. The IP address of the users is also recorded, whereby in the context of Google Analytics we announce that the IP address is shortened within member states of the European Union or other parties to the Agreement on the European Economic Area and only in exceptional cases to one Google server in the United States transferred and shortened there. The IP address will not be merged with data of the user within other offers from Google. This information above may also be associated with such information from other sources. If the user subsequently visits other websites, they may be shown according to his interests, the ads tailored to him.

The data of the users are pseudonym processed in the context of the Google marketing services. For example, Google does not store and process users' names or e-mail addresses, but processes the relevant data in a cookie-related manner within pseudonymous user profiles. That is, from the perspective of Google, the ads are not managed and displayed to a specifically identified person, but to the cookie owner, regardless of who the cookie owner is. This does not apply if a user has explicitly allowed Google to process the data without this pseudonymization. The information collected about users by "DoubleClick" is transmitted to Google and stored on Google's servers in the United States.

Among the Google marketing services we use is the online advertising program "Google AdWords". In the case of Google AdWords, each advertiser receives a different "conversion cookie". Cookies can not be tracked through the websites of advertisers. The information gathered through the cookie is used to generate conversion statistics for AdWords advertisers who have opted for conversion tracking. Advertisers will see the total number of users who clicked on their ad and were redirected to a conversion tracking tag page. However, they do not receive any information that personally identifies users.

We embed third-party ads based on Google's DoubleClick marketing service. DoubleClick uses cookies, which allow Google and its affiliate websites to serve ads based on users' visits to this site or other sites on the Internet.

We also engage third-party ads based on the Google AdSense marketing service. AdSense uses cookies, which allow Google and its affiliate websites to serve ads based on users' visits to this site or other sites on the Internet.

Another Google marketing service we use is the "Google Tag Manager", which allows additional Google analytics and marketing services to be integrated into our website (eg "AdWords", "DoubleClick" or "Google Analytics"). ,

For more information about Google's data usage for marketing purposes, see the overview page:, Google's privacy policy is under accessible.

If you want to opt out of Google Marketing Services, you can take advantage of Google's recruitment and opt-out options:

8. Facebook social plugins

Our online offering uses social plugins ("plugins") from the social network, which is operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland ("Facebook"). The plugins are recognizable by one of the Facebook logos (white "f" on blue tile, the terms "Like", "Like" or a "thumbs up" sign) or are marked with the addition "Facebook Social Plugin". The list and the look of the Facebook social plugins can be viewed here:

When a user invokes a feature of this online offering that includes such a plugin, their device establishes a direct connection to the Facebook servers. The content of the plugin is transmitted by Facebook directly to the device of the user and incorporated by him into the online offer. In the process, user profiles can be created from the processed data. We therefore have no influence on the amount of data that Facebook collects with the help of this plugin and therefore informs users according to our level of knowledge.

By integrating the plugins, Facebook receives the information that a user has accessed the corresponding page of the online offer. If the user is logged in to Facebook, Facebook can assign the visit to his Facebook account. If users interact with the plugins, for example, press the Like button or leave a comment, the information is transmitted from your device directly to Facebook and stored there. If a user is not a member of Facebook, there is still the possibility that Facebook will find out and save their IP address. According to Facebook, only an anonymous IP address is stored in Germany.

The purpose and scope of the data collection and the further processing and use of the data by Facebook as well as the related rights and setting options to protect the privacy of users, these can be found in the privacy policy of Facebook:

If a user is a Facebook member and does not want Facebook to collect data about him through this online offer and associate it with his member data stored on Facebook, he must log out of Facebook and delete his cookies before using our online offer. Other settings and inconsistencies regarding the use of data for promotional purposes are possible within the Facebook profile settings: or via the US side or the EU side, The settings are platform-independent, ie they are adopted for all devices, such as desktop computers or mobile devices.

9. Facebook remarketing

Within our online offer Facebook Facebook, Facebook Facebook, 1 Hacker Way, Menlo Park, CA94025, USA or, if you are located in the EU, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland is operated ("Facebook"). With the help of the Facebook pixel, Facebook is able to designate the visitors of our offer as a target group for the presentation of advertisements, so-called "Facebook Ads". Accordingly, we use the Facebook pixel to display the Facebook ads we have been sent only to those Facebook users who have also shown an interest in our website. In other words, with the help of the Facebook pixel, we want to make sure that our Facebook ads are in line with the potential interest of users and are not annoying. With the help of the Facebook pixel, we can also understand the effectiveness of the Facebook ads for statistical and market research purposes by seeing if users were redirected to our site after clicking on a Facebook ad.

The Facebook pixel is integrated when calling our website directly through Facebook and can store on your device a so-called cookie, ie a small file. If you subsequently log in to Facebook or visit Facebook in the logged-in state, the visit of our offer will be noted in your profile. The data collected about you are anonymous to us, so do not give us any conclusions about the identity of the users. However, the data is stored and processed by Facebook, so that a connection to the respective user profile is possible. The processing of the data by Facebook is part of Facebook's data usage policy. As a result, you'll learn more about how the remarketing pixel works, and more about how Facebook ads are displayed in Facebook's Data Usage Policy:

You may object to the capture by the Facebook Pixel and use of your data to display Facebook Ads. To do this, you can go to the page set up by Facebook and follow the instructions for the settings of usage-based advertising: or the contradiction on the US side or the EU side to explain. The settings are platform-independent, ie they are adopted for all devices, such as desktop computers or mobile devices.

10. Newsletter

With the following information, we will inform you about the contents of our newsletter as well as the registration, shipping and statistical evaluation procedures as well as your right of objection. By subscribing to our newsletter, you agree to the receipt and the procedures described.

Content of the newsletter: We send newsletters, e-mails and other electronic notifications with advertising information (hereinafter "newsletter") only with the consent of the recipient or a legal permission. Insofar as the content of a newsletter is concretely described in the context of an application for the newsletter, it is decisive for the consent of the user. Incidentally, our newsletters contain the following information: our products, offers, promotions and our company.

Double opt-in and logging: Registration for our newsletter is done in a so-called double-opt-in procedure. This means you will receive an e-mail after logging in to ask for confirmation of your registration. This confirmation is necessary so that nobody can register with external e-mail addresses. The registration for the newsletter will be logged in order to prove the registration process according to the legal requirements. This includes the storage of the login and the confirmation time, as well as the IP address. Likewise, changes to your data stored with the shipping service provider will be logged.

Shipping service provider: The newsletter is sent by means of "" (hereinafter referred to as "shipping service provider"). The privacy policy of the shipping service provider can be viewed here: .

The e-mail addresses of our Newsletter recipients, as well as their other data described in the context of these notes, are stored on the servers of the shipping service provider. The shipping service provider uses this information to send and evaluate the newsletter on our behalf. Furthermore, the shipping service provider may use this information for the purpose of optimizing or improving their own services, eg for the technical optimization of shipping and the presentation of newsletters or for economic purposes, in order to determine from which countries the recipients come. However, the shipping service provider does not use the data of our newsletter recipients to write them down or to pass them on to third parties.

Credentials: To subscribe to the newsletter, it is sufficient to provide your e-mail address.

Statistical survey and analysis - The newsletters contain a so-called "web-beacon", ie a pixel-sized file which is retrieved from the server of the shipping service provider when the newsletter is opened. As part of this call, technical information, such as information about the browser and your system, as well as your IP address and time of the call are collected. This information is used to improve the technical performance of services based on their specifications or audience and their reading habits, based on their locations (which can be determined using the IP address) or access times. The statistical surveys also include determining whether the newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is neither our endeavor nor that of the shipping service provider to observe individual users. The evaluations serve us much more to recognize the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.

Termination / Revocation - You can cancel the receipt of our newsletter at any time, ie revoke your consent. At the same time, your consent for shipping by the shipping service provider and the statistical analyzes expire. A separate revocation of the shipment by the shipping service provider or the statistical evaluation is unfortunately not possible. A link to cancel the newsletter can be found at the end of each newsletter.

11. Integration of services and contents of third parties

It may happen that contents or services of third-party providers, such as city maps or fonts from other websites are included in our online offer. The inclusion of content from third-party providers always requires that the third-party providers perceive the IP address of the users, since they could not send the content to the users' browser without the IP address. The IP address is therefore required for the presentation of this content. Furthermore, providers of third-party content can set their own cookies and process users' data for their own purposes. In the process, user profiles can be created from the processed data. We will use this content as much as possible in a data-saving and data-avoiding manner and will select reliable third-party providers with regard to data security.

The following presentation provides an overview of third-party providers as well as their contents, as well as links to their privacy statements, which contain further notes on the processing of data and, in some cases already mentioned here, possibilities of contradiction (so-called opt-out):

- External fonts from Google, Inc., ("Google Fonts"). The integration of Google fonts is done by a server call on Google (usually in the US). Data protection:, Opt-out:

- Maps of the service "Google Maps" of the third party provider Google Ireland Ltd., Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. Data protection:, Opt-out:

- Videos from the third-party platform YouTube, Google Ireland Ltd., Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. Data protection:, Opt-out:

12. Rights of users and deletion of data

Users have the right, upon request, to obtain free information about the personal data that we have stored about them.
In addition, users have the right to correct inaccurate data, revoke consent, block and delete their personal information, and to file a complaint with the appropriate regulatory authority in the event of unlawful processing.

The data stored with us are deleted as soon as they are no longer necessary for their purpose and the deletion does not conflict with any statutory storage requirements.

13. Changes to the privacy policy

We reserve the right to change the privacy policy in order to adapt it to changed legal situations, or to changes in the service and data processing. However, this only applies to declarations of data processing. If users' consent is required or elements of the privacy policy contain provisions of the contractual relationship with the users, the changes will only be made with the consent of the users.
Users are requested to inform themselves regularly about the content of the privacy policy.

Stand: 11.07.2019 13: 57