Which functions does RPLAN Connect offer?
RPLAN Connect is a collaborative project management app for planning, implementing and controlling projects. To seamlessly integrate project participants and jointly edit the project, objects (e.g. project, task, milestone, function component) can be shared with other users.
The following personal data are visible to other users:
- E-Mail Address
- Abbreviation (if voluntarily entered)
- First and last name (if voluntarily entered)
- Profile picture (if voluntarily entered)
- Activity log of user activities for shared objects (e.g. project created, tasks processed, start date changed, note changed).
General information about data processing when you use our app
We collect and use your personal data only to the degree necessary to provide our app and our content and services.
We use your personal data exclusively for the execution of the contract of use (Art. 6 Abs.1 lit.b DSGVO).
Your personal data will be stored for as long as the user account exists. In the account settings you have the possibility to delete your data at any time. Furthermore, data may be stored if this has been provided for by the European or national legislator in EU regulations, laws or other regulations to which ACTANO GmbH is subject as the person responsible. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data.
Which of your personal data are used by us?
When you subscribe to RPLAN Connect, we use the following personal data:
- E-mail address (mandatory for registration)
- Password (mandatory for registration)
- data that are technically necessary for us to display our website to you and to ensure stability and security
In addition, we use the following data, which you can voluntarily add to your user profile:
- First name
- Last name
- Individual abbreviation
- Personal profile picture
If you want to use the paid version of RPLAN Connect, we will send the following data to our payment service provider for payment processing:
- Email address
- Company name
- First and last name
- Name of the cardholder
- Card number
This data is not stored by us, but is forwarded directly to the payment service provider.
Which sources did the data come from?
We process the personal data that we receive directly from you.
In addition, we will process your profile picture (avatar) stored with the service provider Gravatar, Automattic Inc, 60 29th Street #343, San Francisco, CA 94110, USA, if you activate this option in your profile.
What options do I have to restrict the permissions for my created objects?
RPLAN Connect provides you with a comprehensive permission concept. Permissions are assigned to individual objects (e.g. projects, tasks, folders). Different permissions (e.g. Manager, Editor, Reading) are available. The user only sees the object released for him.
Who will receive your data?
We work with carefully selected external service providers to fulfill our contractual responsibilities and to receive more detailed information on the usage of our product:
External service providers:
- Hosting: 1&1 IONOS
1&1 IONOS Enterprise Cloud is a webhosting service provided by 1&1 IONOS Cloud GmbH, Greifswalder Str. 207, 10405 Berlin. For more information about privacy, please visit: https://www.ionos.de
- Hosting: Google Cloud Platform
Google Cloud Platform provides several web hosting services provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, California 94043, USA. For more information about privacy, please visit: https://policies.google.com/privacy
- Web analysis: Google Analytics
Google Analytics is a web analytics service provided by Google Inc, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA. For more information about privacy, please see section: Google Analytics.
- Live chat: Intercom
Intercom is a live chat service of Intercom Inc, 55 2nd Street, 4th Fl. San Francisco, CA 94105, USA. For more information about privacy, please see section: Intercom.
- Payment: Stripe Payments
Furthermore, your personal data will only be passed on to third parties if:
- you have given your explicit consent,
- the disclosure is necessary to assert, exercise or defend legal claims and there is no reason to assume that you have an overriding protective interest in the non-disclosure of your data,
- in the event that a legal obligation exists for the transfer, and
- this is legally permissible and necessary for the execution of contractual relationships with you.
When data is transferred outside the European Union, the high level of European data protection does not exist in principle. In the case of a transmission, it may be that there is currently no adequacy resolution of the EU Commission within the meaning of Art. 45 para. 1, 3 DS-GVO. This means that the EU Commission has not yet positively determined that the country-specific data protection level corresponds to the data protection level of the European Union due to the DS-GVO, which is why we have created the above-mentioned appropriate guarantees.
Potential risks that may not be completely excluded in connection with data transmission are in particular:
- Your personal data could possibly be processed beyond the actual purpose.
- In addition, you may not be able to assert and enforce your rights under data protection law, such as your right to information, correction, deletion or data transferability.
- There may also be a higher likelihood that incorrect data processing may occur and that the protection of personal data does not fully comply quantitatively and qualitatively with the requirements of the DS-GVO
Will your data be transferred to any countries outside the European Union (so-called third countries)?
Countries outside the European Union (and the European Economic Area "EEA") handle the protection of personal data in a different way from countries within the European Union. We also use service providers located in third countries outside the European Union to process your data. There is currently no decision by the EU Commission that these third countries generally offer an adequate level of protection.
We have therefore taken special measures to ensure that your data are processed in third countries as securely as within the European Union. We conclude the standard data protection clauses provided by the Commission of the European Union with service providers in third countries. These clauses provide appropriate guarantees for the protection of your data with service providers in third countries.
Our service provider Google Inc., with whom we work to conduct the web analysis, is certified in the USA according to the EU-US Privacy Shield Agreement.
If you wish to review the existing warranties, you can contact us at email@example.com.
What are cookies and how are they used?
Differentiation Type of cookies
Technically necessary cookies
- UPDATESID This is a session cookie. This allows us to store your session information while you use our app. Storage time: Until the end of the session
- SID This is a session cookie. This allows us to store your session information while you use our app. Storage time: Until the end of the session
- cookie-accepted This is how we save your selection of the cookie banner. Storage time: Until the end of the session.
Cookies for range measurement
Reach measurement cookies collect information about the use of our website. These cookies do not store any information that allows the user to be identified. The information collected is exclusively aggregated and thus evaluated anonymously.
aa) Google Analytics
This website uses Google Analytics, a web analysis service of Google Inc, (1600 Amphitheatre Parkway Mountain View, CA 94043, USA; “Google”).
Google Analytics Deactivation Plugin
How is the live chat function of the provider Intercom integrated?
In order to efficiently process questions from prospects and subscribers for RPLAN Connect, we provide you with a live chat function from Intercom Inc. 55 2nd Street, 4th Fl. San Francisco, CA 94105, USA on our website. This allows us offer a live chat that enables close contact with our interested parties and subscribers as well as to inform them about updates and other news.
In order to use the live chat function, we provide Intercom with some information (e-mail address and date of registration) from registered users. The legal basis for this action is derived from the user agreement according to Art. 6 para. 1 lit.b DSGVO.
Additionally, the following data are processed: IP address, browser type, browser version, operating system, browser language, preferred language setting, date and time of last access, date and time of first access, web session and city and country. The legal basis for the temporary storage of this data is Art. 6 para.1 lit.f DSGVO (justified interest as operator of the web app).
The personal data required for the use of the live chat function will be deleted after termination of the user contract, unless there are legal requirements for retention periods. In the event of a statutory retention period, the personal data will be deleted after the end of the relevant period.
For non-registered visitors, the IP address and the origin of the user will be deleted after 9 months if the visitor does not visit the web app during this period. If the visitor revisits the Web App after 9 months, he will be treated as a new user.
Intercom is certified according to the Privacy Shield Agreement and guarantees an adequate level of data protection for data transfers to the USA. (https://www.privacyshield.gov/participant?id=a2zt0000000TNQvAAO&status=Active).
The use of the chat function is optional and can be deactivated via the menu item "Settings" within the web app. In this case, the other contact option is to submit inquiries via e-mail.
Further information about Intercom's data protection can be found at: https://www.intercom.com/security
Which data do we collect for stability testing and monitoring?
We use the Sentry Service from Functional Software, Inc. dba Sentry, 132 Hawthorne Street, San Francisco, CA 94107 to monitor the technical stability of our "RPlan Connect" app and to detect any code errors.
The usage and metadata collected in this context are used only for the analysis and correction of errors. No data is evaluated for commercial purposes.
What happens to my data during a job application?
You can apply to our company electronically under the heading "Jobs". We will of course use your details exclusively for processing your application and will not pass them on to third parties. You are welcome to encrypt your documents with 7zip and send us the password separately. Please note that unencrypted e-mails are not transmitted with access protection. Further information about the data processing of applicants can be found here.
What rights do you have in relation to the processing of your data?
Every data subject has the right to information, the right to correction, the right to cancellation, the right to limitation of processing, the right to opposition and the right to data transferability. The legal restrictions according to the BDSG apply to the right to information and the right of cancellation.
Right of objection
You can revoke the use of your data for advertising purposes at any time without any fees other than the transmission costs according to the basic tariffs.
What right do you have in the case of data processing in your legitimate or public interest?
They have the right to object at any time, on grounds arising from their particular situation, to the processing of personal data concerning them, which is carried out on the basis of data processing in the public interest or data processing in order to protect a legitimate interest, including profiling based on this provision.
In the case of your objection, we will no longer process your personal data unless we can prove that there are compelling, legitimate reasons for the processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
What right do you have in the case of data processing for direct marketing purposes?
If we process your personal data for direct marketing purposes, you have the right to object at any time to the processing of your personal data for the purpose of such advertising, this also applies to profiling insofar as it is associated with such direct marketing.
In the case of your revocation of the processing for the purpose of direct marketing, we will no longer use your personal data for these purposes.
Right of revocation
You can revoke your consent to the processing of personal data at any time. Please note that the revocation is only valid for the future.
Right of access
You may demand information as to whether we have stored personal data about you. If you wish, we will inform you of the data concerned, the purposes for which the data will be processed, to whom this data will be revealed, how long the data will be stored and what further rights you have in relation to this data.
In addition, you have the right to have your data corrected or deleted. If there is no reason for further storage, we will delete your data, otherwise we will reduce the processing. You may also request that we provide all personal information that you have provided to us in a structured, current and machine-readable manner, either to you or to a person or company of your choice.
In all other cases, there is a right of complaint to the responsible data protection authority.
Exercising your rights
To exercise your rights, you can contact our data protection officer via email:
Phone +49 89 / 20 60 44-100
We will process your inquiries immediately and in compliance with legal requirements and inform you of the measures we have taken.
Is there an obligation to provide your personal data?
For the execution of the contract of use, you must provide us with the personal data required for the execution of the contractual relationship or which we are required to collect by law. If you do not provide us with this data, it is not possible for us to carry out and process the contractual relationship.
How can you contact the data protection officer?
You can contact our data protection officer at:
Data protection officer
80336 Munich, Germany