+49 7541 70078-776
Privacy Policy
For the "Secure Password Share" web application
1. Person responsible
The following is responsible for the processing of personal data within the scope of this website in accordance with the provisions of the General Data Protection Regulation (GDPR):
doubleSlash Net-Business GmbH
Otto-Lilienthal-Str. 16
88046 Friedrichshafen
Telefon: +49 (0) 7541 70078-0
Web: www.doubleslash.de
E-Mail: info@doubleSlash.de
Our data protection officer at double Slash Net-Business GmbH is Christian Schmid.
Contact: datenschutz@doubleSlash.de.
2. Processing of personal data
To ensure the best possible user experience, Secure Password Share uses a range of services and technologies. In doing so, we attach great importance to processing personal data only to the extent necessary and using it exclusively for clearly defined purposes. In the following, we explain in detail how the functions and services mentioned are used:
When using Secure Password Share, the Azure IDs of both senders and recipients are recorded. This identification data is used to ensure secure communication and smooth processes.
In addition, relevant data such as the creation date and opening date of the transmitted passwords are recorded. This enables activities relating to the shared passwords to be tracked over time.
The IP addresses of the senders and recipients are recorded for security and authentication purposes. This information supports the verification of the parties involved and helps to create a protected environment.
Our approach to processing personal data aims to ensure transparency and protection. By using only the necessary information in a defined scope and pursuing clear objectives, we want to create a trustworthy platform for our users.
In order to provide certain functions of Secure Password Share, the following data is collected:
| Data | Purpose / Function |
| Time at which a password link/guest access link was created | Display on the dashboard for the users themselves. |
| Time at which a password link/guest access link was used | Display on the dashboard for the users themselves and notifications for the creator. |
When you sign in to Secure Password Share for the first time, Microsoft explicitly requests your consent to transfer data to Secure Password Share. Only give your consent if you agree to the exchange of data and to all of the terms and conditions described.
Secure Password Share uses Microsoft authentication with your Microsoft account to provide you with secure authentication and authorisation. To sign in to your Microsoft account, technically necessary cookies are stored in your browser. The following data from your Microsoft account is transmitted to Secure Password Share:
| Data from your Microsoft account | Purpose |
| Profile picture | Display in the web app for an optimal user experience. |
| First name, Lastname | Display in the web app for an optimal user experience. |
| Email address | Sending of notification emails. |
| Unique Microsoft account ID | Identification and unique assignment of generated password links/guest access links. |
Technically necessary cookies are set by Microsoft for signing in to your Microsoft account. More detailed information can be found in section 6. Information on cookies used.
2.3 Use of Sentry.io hosted by doubleSlash
We use Sentry.io a monitoring and error analysis service hosted by doubleSlash (on-premise). Sentry.io automatically collects and stores information about errors and crashes that may occur in Secure Password Share. This information can include the following data, which is used to analyse and resolve problems. For more detailed information about the cookies, please refer to section 6. Information on cookies used. No personal data, such as IP addresses, is collected.
| Information | Purpose |
| Operating system, browser (incl. versions) | Analysis of potential errors due to the operating system and/or browser used. |
| Click path of the last action performed | Analysis of potential errors due to performed user actions. |
3. Disclosure of data
We do not pass on your personal data to third parties unless this is necessary to fulfil legal obligations.
4 Duration of data storage
We save personal data only for as long as is necessary for the purposes for which it is being processed or until you withdraw your consent. Insofar as statutory retention requirements need to be complied with, the retention period for certain data can be up to 10 years, regardless of the purposes for which the data is being processed.
5 Rights of the data subject
5.1 Information
You can request information free of charge at any time about all personal data we are holding for you.
5.2 Correction, deletion, restriction of processing (blocking), objection
If you no longer agree to your personal data being stored or if your personal data is no longer correct, on receipt of a corresponding instruction from you, we will have your data deleted or blocked or make the necessary corrections (insofar as this is possible under applicable law). The same applies if we are to restrict the processing of your data in the future.
5.3 Data portability
On request we will provide your data to you in a commonly-used, structured, and machine-readable format so that you can transfer this data to another controller if you so wish.
5.4 Right of complaint
Users have the right to lodge a complaint with a supervisory authority: https://www.bfdi.bund.de/DE/Infothek/Anschriften_Links/anschriften_links-node.html
5.5 Right to revoke consent with effect for the future
You can revoke your consent at any time with effect for the future. Your revocation shall not affect the lawfulness of the processing based on consent until the time of revocation.
5.6 Restrictions
The above rights do not apply to data for which we are unable to identify the data subject (if the data has been anonymised for analysis purposes, for example). It may be possible for you to exercise your right to information, right to correction, deletion, blocking or transfer to another organisation of this data if you provide us with additional information that allows us to identify you.
5.7 Exercising your rights as a data subject
If you have any questions regarding the processing of your personal data or if you wish to obtain information, request the correction, blocking or deletion of your data, exercise your right to object, or transfer your data to another company, please contact datenschutz@doubleSlash.de.
6. information on cookies used
All information about the cookies used by Microsoft (for Microsoft sign-in) can be found here: https://learn.microsoft.com/de-de/azure/active-directory/authentication/concept-authentication-web-browser-cookies
All other cookies are listed below:
| Cookie-Name | Source / set by | Purpose |
| cookiesAccepted | Secure Password Share | Saves the user's selection regarding whether cookies are allowed to be set. |
| sudo | infra.doubleslash.de | Analysis and identification of anonymised error reports. |
| sentrysid | infra.doubleslash.de | Analysis and identification of anonymised error reports. |
| sc | infra.doubleslash.de | Analysis and identification of anonymised error reports. |
7 Changes to this privacy policy
We reserve the right to adapt or update this privacy policy to comply with changes to legal requirements or modifications to our services. You can find the most current privacy policy on Secure Password Share.
Please note that this privacy policy does not claim to be complete and is provided for information purposes only. In case of doubt, you should seek legal advice to ensure that Secure Password Share complies with applicable data protection regulations under German law.
