Privacy policy

Thank you for visiting our website and for your interest in our services. We take the protection of your data very seriously. This privacy policy explains our practices regarding the collection, use and disclosure of your personal data when you use our website, products and services.


1. responsible person

TEDATA Gesellschaft für technische Informationssysteme mbH is responsible for this privacy policy. This legal entity is hereinafter referred to as "we" or "us". You can contact us at the following address:

Königsallee 45
44789 Bochum
Bochum, Germany
Phone: +49 234 30703-0
Fax: +49 234 30703-99
E-mail: info(at)


2. data protection officer

If you have any questions, concerns or complaints regarding the application of this privacy policy or the exercise of your rights - as described under point 10 - you can contact our data protection officer. You can reach our data protection officer Ms. Bott at

Königsallee 45
44789 Bochum
E-Mail: privacy(at)


3. what data is collected and for what purpose
3.1 Exercise of our business activities (contract fulfillment)

We process personal data to establish, execute or terminate contracts with customers and business partners. The performance of contractual obligations includes various processing activities such as the preparation of quotations, the processing of orders, the provision of our products and services, the provision of customer support services or the improvement of our products and services. The following data, among others, is collected:

  • Master data: First and last name, salutation and title, position and department
  • Contact details: (company) address, telephone, fax, e-mail address, homepage
  • Payment data: Account or credit card data, contact and identification data
  • Contract data: Customer number, contractual relationship, products and services purchased
  • Other data: Information on authorizations (e.g. for study version), communication data, contact histories


3.2 Legal obligations

In some cases, we are legally obliged to process personal data. Such legal obligations may arise from certain provisions of national economic, commercial, tax and social law as well as European legislation.


3.3 For advertising purposes and customer surveys

We process personal data for the purposes of direct marketing and for market and opinion research. For example, after you have purchased MDESIGN, we will send you offers for similar products and services by e-mail. Or we contact you to find out what interests and demands exist with regard to future products and services. You can object to this processing at any time.


3.4 Making contact

We process personal data for the purposes of direct contact. This is the case, for example, if you fill out our contact form online or contact us by email, telephone, post or social media. The following data is collected when you contact us using one of these means of communication:

  • First and last name, title, department and position
  • (Company) address, e-mail address, telephone
  • Content and nature of the request

We do this to perform a contract you have entered into with us or to communicate with you in our legitimate interest and respond to your request.


3.5 Use of our website
3.5.1 Accessing the website

When you visit our website purely for information purposes, you automatically transmit data to our web server via your web browser. The following data is recorded during an ongoing session:

  • IP address
  • Directory protection user
  • Date and time of the request
  • Content of the request (specific page)
  • Protocols
  • Status code
  • Amount of data transferred in each case
  • Website from which you are visiting us (referrer URL)
  • User Agent
  • Called host name

IP addresses are stored anonymously. The last number block is removed for this purpose, i.e. becomes 127.0.0.x. IPv6 addresses are also anonymized. The anonymized IP addresses are stored for 60 days. Details of the directory protection user used are anonymized after one day.

This data is processed and stored to ensure a smooth connection setup and convenient use, as well as to identify faults and for security reasons.


3.5.2 Cookies

Cookies are set when you use our website. Cookies are small data fragments that are stored in text files on your end device (PC, laptop, tablet, smartphone) when websites are loaded in the browser. The following cookie categories are loaded on this website:

  • Transient cookies: Transient or temporary cookies are automatically deleted at the end of your session (e.g. by closing the browser). These include session cookies in particular. These store a so-called session ID, with which various requests from your browser can be assigned to the shared session. This allows your computer to be recognized when you return to our website.
  • Persistent cookies: Temporary cookies or functional cookies remember the user settings you have selected in order to improve the user experience. For example, we use a function cookie to save your consent to our cookie tracking. These cookies are deleted after a defined period of time.

We use cookies to ensure a consistent and efficient visitor experience and to enable basic functions. By using our website, you agree to our use of cookies. You can configure your browser settings according to your wishes and, for example, deactivate cookies or delete them after your visit. We would like to point out that you may not be able to use all the functions of our website if you block cookies.


3.5.3 Analysis and advertising tools
i. Google Analytics

We use "Google Analytics" to analyze the flow of visitors and visitor behavior on our website and to continuously derive optimization measures for our website. Google Analytics is a web analytics service provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). Google Analytics uses cookies to help the website analyze how users use the site. The information generated by the cookie (e.g. browser type and version) is usually transferred to a server in the USA and made available to us in anonymized form.

We have added the code "anonymize IP" to Google Analytics on this website. This guarantees that your IP address is masked so that all data is collected anonymously. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.

You can prevent the collection of data and the processing of data by Google. To do this, download and install the browser plugin available at the following link


ii. Google AdWords

We use Google AdWords including conversion tracking on our website. Google AdWords is a service provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, hereinafter referred to as "Google").

We use AdWords conversion tracking to advertise our offer in a targeted manner. If you click on an ad placed by Google, the conversion tracking we use stores a cookie on your end device. These so-called conversion cookies lose their validity after 30 days and are not used to identify you personally.

If the cookie is still valid and you visit a specific page within this website, both we and Google can evaluate that you have clicked on one of our ads placed on Google and that you have subsequently been redirected to our website.

Google uses the information collected in this way to compile statistics for us about visits to our website. We also receive information about the number of users who have clicked on our ad(s) and about the pages of our website that were subsequently accessed. However, neither we nor third parties who also use Google AdWords will be able to identify you in this way.

You can also prevent or restrict the installation of cookies by making the appropriate settings in your web browser. At the same time, you can delete cookies that have already been saved at any time. However, the steps and measures required for this depend on the specific Internet browser you are using. If you have any questions, please use the help function or documentation of your Internet browser or contact its manufacturer or support.


iii. Google Web Fonts

We use so-called web fonts provided by Google on this website for the uniform display of fonts. When you access the page, your browser loads the required web fonts into your browser cache in order to display texts and fonts correctly. For this purpose, the browser you are using must connect to Google's servers in the USA. As a result, Google becomes aware that our website has been accessed via your IP address.

Further information about Google's data processing can be found at


iiii. Use of reCAPTCHA

MDESIGN uses reCAPTCHA, an online service of the US company Google LLC, in some online offers. This service distinguishes whether an action (e.g. registration for a seminar offer) is carried out by a person or a computer program. The tool thus serves to protect MDESIGN from spam messages and automated malware. If Google reCAPTCHA is used in a country of the European Economic Area or in Switzerland, this service is provided by Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, otherwise by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (in each case "Google"). The processed data may include the IP address of your end device and your location data. Google is solely responsible under data protection law for the collection and processing of data in connection with reCAPTCHA. Google's privacy policy is available at available.


iiiii. Microsoft Clarity and Microsoft Advertising

We work with Microsoft Clarity and Microsoft Advertising to track how you use and interact with our website through behavioral metrics, heatmaps and session replay to improve and market our products/services. Website usage data is collected using first-party and third-party cookies and other tracking technologies to determine the popularity of products/services and online activity. In addition, we use this information to optimize the website, for fraud/security purposes and for advertising. For more information about how Microsoft collects and uses your data, please see the


3.5.4 Subscription to e-newsletter

On this website, you have the option of subscribing to our newsletter free of charge in order to receive regular updates on new products, training opportunities, events and tips & tricks. For this purpose, we collect your first and last name, your title and your e-mail address. The personal data collected in this context will be used exclusively for the purpose of sending the newsletter - within the scope of your consent. We use the so-called "double opt-in" procedure for registration. After registering on the website, we will send you a message to the e-mail address you have provided asking you to confirm your registration. You can revoke your consent at any time with effect for the future, e.g. via the corresponding unsubscribe link in every newsletter or by sending an email to


3.5.5 Test version

You have the option of requesting a free MDESIGN trial version on this website. This trial version is provided either as a download or cloud solution via AWS AppStream 2.0. The trial version is valid for up to 14 days and starts on the day you install MDESIGN with time-limited licenses or start using the cloud. When you request a trial, we collect information to identify you. This includes:

  • Company
  • First and last name, salutation
  • Address (zip code and town)
  • Phone number
  • E-mail address

This information is used to send you the download link to our trial version and to remind you of the end of the trial period. If the aforementioned cloud solution is provided via AWS AppStream 2.0, your first and last name and your e-mail address will be included in our account with AppStream 2.0 of Amazon Web Services, Inc. as your user name. Your e-mail address will also be used to send you the access data for this service. Registration for the free trial version is voluntary and you have the option to withdraw your consent at any time.

Amazon Web Services, Inc. (AWS) privacy notice can be found at the following link: AWS Privacy Notice - 2024-01-01_EN.pdf (


3.5.6 Registration of customer and download portals

Some of our services require the use of a registration (e.g. MDESIGN Roloff/Matek Edition). The data required for registration is requested during the registration process, including your first and last name, your title, your e-mail address and a password. The data requested will be stored by us for the purpose of managing your access to the respective product for which you have registered.

The MDESIGN customer forum is only intended for customers with a valid service contract. To give you access to the customer forum on our website, we process personal data (customer number and password). You will receive this access data from MDESIGN by post after your purchase.


3.5.7 Purchases

You have the option of purchasing certain products (MDESIGN student) on our website. The order is processed via the connected payment service Verifone. The following data is collected for the purchase of these products:

  • First and last name
  • Address (street, house number, town, country)
  • E-mail address
  • Payment method & currency

This is not an affiliated company, but we have concluded a contractual agreement with this company. Further information on data processing by Verifone can be found online at


3.5.8 Third-party links within our website and services

Our website and MDESIGN contain a large number of links to companies with which we maintain business relationships. We cannot accept any liability for this third-party content, nor are we responsible for compliance with data protection regulations. The providers or operators of these sites are responsible for the content and data protection of the linked sites. You should exercise caution and review the privacy statements of any third-party websites and services that you use.


3.5.9 Children

This online offer is not intended for children under the age of 16.


4. legal basis of the processing

We process personal data in accordance with the rules of the European General Data Protection Regulation (GDPR) and applicable national legislation. Specifically, our data processing processes are generally based on at least one of the following four operations:

  • You have given your consent to the processing of your personal data for one or more purposes (Art. 6 para. 1 lit. a GDPR).
  • The processing is necessary for the performance of a contract with you or for the implementation of pre-contractual measures taken at your request (Art. 6 para. 1 lit. b GDPR).
  • The processing is necessary to fulfill legal obligations to which we are subject (e.g. storage of documents for commercial and tax purposes) (Art. 6 para. 1 lit. c GDPR).
  • Processing is necessary for the purposes of the legitimate interests pursued by us or by a third party (Art. 6 (1) (f) GDPR).

These processing bases can be combined if necessary. If you do not provide the mandatory data that we request from you in connection with the request for a trial version or a purchase, this will mean that the trial version cannot be made available or the purchase cannot be completed.


5. disclosure of data

Our employees have access to your personal data to the extent that this is necessary for us to fulfill your task. In addition, your personal data may be accessed by our partner companies (TEDATA GmbH & DriveConcepts GmbH) so that they can, for example, provide services on our behalf or for customer management purposes. Your data may also be passed on to third parties who have been commissioned by us to perform certain tasks. These include advertising agencies, IT service providers, payment service providers, printing companies and telecommunications service providers. All third parties with whom we work and who have access to your personal data are subject to written data processing agreements, which guarantee that this data is processed exclusively for the above-mentioned purposes.


6. online presences in social media

We maintain online presences in social networks and career platforms in order to exchange information with the users registered there and to get in touch with them easily. We regularly publish and share content, offers and product recommendations on our social media presences.


6.1 Scope of processing

With every interaction on our social media presences, the operators of the respective social network automatically collect and store your personal data for market research and advertising purposes. It cannot be ruled out that the data collected may also be processed outside the European Union. Among other things, this can make it more difficult to enforce the rights of the data subjects. Usage profiles are created from the data collected using pseudonyms. These can be used, for example, to place advertisements inside and outside social networks that presumably correspond to your interests. Cookies or similar technologies that record your usage behavior on your end device are used for these purposes.

We generally collect any messages, content and other information you share with us when you visit our social media pages, such as when you post something on one of our social media pages or send us private messages. If you have an account with the relevant social network, we may also see your public information, such as your username, information in your public profile and content you share with a public audience.

The type, scope and purposes of the processing of your personal data in social networks are primarily determined by the operators of the social networks. Further information on data processing by the respective provider as well as your rights in this regard and setting options to protect your privacy can be found in the data protection information of the respective provider:


6.2 Legal basis for the processing

If you are asked by the respective operator of the social network for your consent to data processing, the legal basis for data processing is Art. 6 para. 1 lit. a GDPR. Otherwise, the legal basis is Art. 6 para. 1 lit. f GDPR. We have an overriding legitimate interest in an optimized presentation of our offers and effective communication with our customers and interested parties.


6.3 Right of withdrawal

You have the right to revoke your consent at any time without giving reasons with effect for the future. If you do not consent to the future transmission of your data when using our social media presences, you have the option of objecting to data processing:

In the event of a revocation, it is possible that not all functions of our websites will be fully available to you.


7. data transfer to third countries outside the EEA

Yes, your personal data may be transferred outside the European Union or outside the European Economic Area to one or more external service providers. For example, the transfer takes place when you visit our website (Google LLC), purchase our products (MDESIGN student & MDESIGN student pro) online (Verifone) or participate in one of our webinars (LogMeIn Inc.). The transfer is subject to legally recognized adequacy mechanisms such as EU standard contractual clauses: or the revised Swiss Data Protection Act nDSG of the FDPIC:


8. storage

Insofar as we process and use your personal data to initiate, execute and terminate a contract with you, we store your data for as long as the statutory retention periods, which primarily result from civil, commercial and tax law (AO & HGB), prescribe.

If the processing of your personal data is based on our legitimate interest or on your consent, we will store your data until you object to its use or revoke your consent. However, if longer storage of your data is required by law or if we need your data to assert legal claims, we will store your personal data until the relevant periods have expired or until the claims have been settled.


9. data security

We use the widespread SSL (Secure Socket Layer) method in conjunction with the highest level of encryption supported by your browser when you visit our website. As a rule, this is 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is encrypted by the green lock symbol in the browser window. We also use suitable technical and organizational security measures to protect your data from accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.


10. rights of data subjects

a) Withdrawal of consent (Art. 7 GDPR)

You can revoke your consent to the processing of your personal data at any time with effect for the future. Please note that the revocation does not extend to data processing operations for which there is a legal basis for permission and which may therefore be processed without your consent.

b) Information (Art. 15 GDPR)

You have the right to request confirmation from us as to whether personal data concerning you is being processed.

c) Rectification (Art. 16 GDPR)

You have the right to obtain from us without undue delay the rectification of inaccurate personal data concerning you or the completion of incomplete personal data.

d) Erasure (Art. 17 GDPR)

You have the right to obtain from us the erasure of personal data concerning you without undue delay, unless the processing is necessary for compliance with our legal obligations or for the establishment, exercise or defense of legal claims.

e) Restriction of processing (Art. 18 GDPR)

You have the right to demand that we restrict the processing of data concerning you if one of the conditions pursuant to Art. 18 para. 1 lit. a - d GDPR is met.

f) Data portability (Art. 20 GDPR)

You have the right to receive the personal data concerning you and provided by you in a structured, commonly used and machine-readable format or to have it transferred. (Data portability - e.g. transfer from one organization to another organization).

g) Objection (Art. 21 GDPR)

You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you for marketing or other purposes pursuant to Article 6(1)(f) GDPR.

h) Complaint to a supervisory authority (Art. 77 GDPR)

If you believe that we are processing your personal data in violation of applicable data protection law, you have the right to lodge a complaint with a supervisory authority. The following supervisory authority is responsible for us:

State Commissioner for Data Protection and Freedom of Information North Rhine-Westphalia
Kavalleriestr. 2-4
40213 Düsseldorf
Düsseldorf, Germany
Telephone: +49 211 38424-0
E-mail: poststelle(at)


This privacy policy was updated on July 16, 2024.


Data protection information for customers

Data protection information for applicants