top of page

Data protection information in accordance  with the General Data Protection Regulation (GDPR)

We, CSS Computer Security Service GmbH, collect and process personal data that we receive from our customers or other parties concerned in the course of our business relationship. Personal data are all data that can be related to a natural person, e.g. name, address, e-mail addresses.

The collection and processing of data is generally necessary for the establishment and execution of a contract and is based in this respect on Article 6 paragraph 1 b) DSGVO and § 26 paragraph 1 BDSG (new). If necessary, we will also process your data to protect legitimate interests within the meaning of Article 6 Paragraph 1 S.1 lit. f of the DSGVO, e.g. for data exchange with credit agencies, to determine creditworthiness information, for advertising purposes - unless you have objected to the use of your data for this purpose -, for the assertion of legal claims and defence in the event of legal disputes, for video surveillance to protect the householder's rights or for similar purposes. Finally, the need to process your data may also arise due to legal regulations or similar provisions. For example, in the course of operating our emergency call control centre, we are required to record incoming telephone calls for security purposes.

Within the responsible body, those persons who need access to your data to fulfil our contractual or possibly existing legal obligations are granted access to your data. Furthermore, your data may be passed on to other companies that perform administrative tasks for us, or to external service providers and other third parties, if this is necessary to fulfil our contractual or legal obligations, if you have consented to the passing on of your data, or if there is a legitimate interest in the passing on of personal data. External service providers in particular have been carefully selected and commissioned and are regularly checked. The data is deleted as soon as it is no longer required for the purpose of its processing and there are no legal obligations to retain it.

As a data subject, you have the following rights in relation to the personal data concerning you:

  • The right of access to information,

  • the right of correction or deletion,

  • The right to restrict processing,

  • If you have given your consent to process your data, you can revoke it at any time. Such revocation will affect the permissibility of processing your personal data after you have given it to us.

  • Insofar as we base the processing of your personal data on the balancing of interests in accordance with Art. 6 Para. 1 S.1 lit. f DSGVO, you can lodge an objection to the processing. If you do so, please explain the reasons why we should not process your personal data as we have done. In the event of your justified objection, we will examine the facts of the case and will either stop or adapt the data processing or show you our compelling reasons for continuing the processing which are worthy of protection.

You also have the right to complain to a data protection supervisory authority about the processing of your personal data by us. Should you exercise your rights to cancellation, restriction of processing or the right to object to processing, this may make it impossible to establish or implement a contract.

If you have any questions or suggestions, you can contact our data protection officer at


bottom of page