Legal & Data Protection
      Back to home
      1. reteach help-center
      2. Account & Admin
      3. Legal & Data Protection

      General Information about data protection

      Data protection and data security are first priority. Therefore, find important information here.

      Important points on the topic of data protection

      To us, data protection and data security are of utmost importance. We host in the server location Germany, so you can comply with the requirements of the GDPR. In addition to this, there are further points such as the AVV, which we intend to explain here.

      Agreement to the contract data processing (AVV)

      Since we process personal data on behalf of our customers, the closing of an AVV is required. This can be done electronically via the customer profile. The sample text and attachments (including TOA) can be found here as >> PDF download. Further information regarding the AVV can be found >>here in the Support Center

      Screenshot 2024-07-24 at 14.11.19

      Server location Germany

      We host with AWS and Digital Ocean with server location Germany. With these companies, we have entered agreements regarding the processing of data and therefore use the companies as secondary service providers for data processing.

      In two special cases we utilise further secondary service providers:

      • If you publish Scorm files with us, we use Scormcloud by Rustici Software for streaming of said Scorm files.
      • If you use our eCommerce Addd-On, we utilise Stripe for the processing of sales.

       

      We have selected all of our secondary service providers carefully and made all arrangements to comply with the current legal situation and data protection requirements.

      All our secondary service providers with seat outside of the EU comply with the new Data Privacy Framework and have therefore been certified companies since 17 July 2023. Following the European Commission's resolution passed in June 2023 ("adequacy decision"), there is legal security as, due to the compliance of AWS and Digital Ocean, the level of data protection is considered adequate. More information can be found on the Website of the BfDI https://www.bfdi.bund.de/SharedDocs/Kurzmeldungen/DE/2023/17_Angemessenheitsbeschluss-EU-US-DPF.html with link to the list of certified US-based companies under https://www.dataprivacyframework.gov/s/participant-search.

       

      As precaution, we have completed the Transfer Impact Assessment (TIA) in accordance with clause 14 of the SCC.

      You can download relevant documents here:

      Additionally, our DPA with Rustici Software can be found here: >> DPA Susell < > Rusticii Software (ScormCloud). Important note: AWS as well as Digita Ocean carry the DPA as addition to the main contract, therefore a separate signing/agreement is not required in either case.
      We have agreed to new standard contract clauses (SCC) with our hosting providers AWS and Digital Ocean. Further information to the SCC with AWS can be found here and for Digital Ocean here
       
      We are aware that data transfer to the USA is subject to special requirements after the Schrems II judgment. Therefore, we have taken aforementioned measures to ensure the highest level of data protection for the storage of data at AWS and Digital Ocean. For instance, we have contractually agreed to an exclusively European data storage location with AWS and Digital Ocean to eradicate the possibility of data transfer into the USA.
      Unfortunately, we will not be able to provide alternatives to AWS or Digital Ocean/Rustici Software in the short or medium term as this would result in significant price raises.
       

      Data security

      In addition, you can find our >> Security Concept here.

       

      More useful information on the topic of data protection can be found in our blog article.

       
      For further questions we are happy to assist. Please contact datenschutz@reteach.io