data protection

data protection declaration

Version 2.0 from 05/09/2018

GUTcert attaches great importance to the protection of your personal data. Therefore, the use of our website is normally possible without providing personal data.

If the entry of personal data (e.g. name, address or e-mail address) is required on certain pages (forms), this is done, as far as possible, on a voluntary basis. We treat all personal data provided to us confidentially, in accordance with the legal data protection regulations and this data protection declaration. They will not be passed on to third parties without your express consent.

However, we would like to point out that data transmission over the Internet (e.g. communication by e-mail) may be subject to security gaps. A complete protection of the data against access by third parties is therefore not possible.

Responsible for data processing is

GUT Certifizierungsgesellschaft
für Managementsysteme mbH
Eichenstraße 3b
12435 Berlin

Contact: Prof. Dr.-Ing. Jan Uwe Lieback, Managing Director

Questions or comments regarding this data protection information should be directed to the company data protection officer at

Server log files

The provider of the pages automatically collects and stores the information in so-called server log files, which your browser automatically transmits to us. The following information is collected without your intervention and stored until it is automatically deleted after 14 days:

  • the IP address of the requesting computer
  • the date and time of access
  • the name and URL of the retrieved file
  • the website from which the access was made (referrer URL)
  • the browser you are using and, if applicable, the operating system of your computer as well as the name of your access provider

The data is not merged with other data sources. If we become aware of concrete indications of illegal use, we reserve the right to subsequently check this data.

Contact form

If you send us enquiries using the contact form, your details from the enquiry form, including the contact data you provided there, will be stored for the purpose of processing the enquiry and in the event of follow-up questions. We will not pass on this data without your consent. The only exception here may be our parent company AFNOR, the French standards institute, which is just as committed to data protection as we are, and with whom we work particularly on international certifications.

Newsletter data

If you would like to receive the newsletter offered on the website, we will ask you for the following data:

  • Salutation (required)
  • Title (optional)
  • First name (optional)
  • Surname (required)
  • E-mail address (required)

Further data will not be collected. This data is stored on our web server. We use them exclusively for the dispatch of the requested information and do not pass them on to third parties.

You can revoke your consent to the storage of the data, the e-mail address and their use for sending the newsletter at any time, for example via the "Unsubscribe" link on our website.

Google Analytics and Cookies

This website ( uses Google Analytics, a web analysis service of Google Inc. "("Google"). Google Analytics uses "cookies", which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about your use of this website is usually transferred to a Google server in the USA and stored there. However, if IP anonymisation is activated on this website, Google will reduce your IP address within Member States of the European Union or in other states party to the Agreement on the European Economic Area beforehand. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there.

On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide the website operator with other services relating to website and Internet use.

The IP address transmitted by your browser in the context of Google Analytics is not merged with other Google data. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available under the following link (

For more information on terms of use and data protection, please visit or Please note that the code "gat._anonymizeIp();" has been added to Google Analytics on this website to ensure anonymous collection of IP addresses (so-called IP masking).

Recipients outside the EU

With the exception of the processing described under Google Analytics and Cookies, we do not pass on your data to recipients based outside the European Union or the European Economic Area.

Links to other websites

This data protection declaration only extends to the website In our website linked websites of other providers including Twitter, Xing and Youtube are not covered by this data protection declaration. These are independent persons responsible who do not act on behalf of GUTcert. If you leave the GUTcert website via such a link, we recommend that you carefully read the data protection guidelines of any website that may collect personal data.


YouTube videos are integrated in the extended data protection mode on some pages of the GUTcert website. Once you start an embedded video, cookies may be stored in this mode, but they do not contain any personal data.

SSL-TLS Encryption

This site uses SSL encryption for security reasons and to protect the transmission of confidential content, such as requests you send to us as a site operator. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line. If SSL encryption is activated, the data you transmit to us cannot be read by third parties.
We also use suitable technical and organisational security measures to protect your personal data stored with us against manipulation, partial or complete loss and against unauthorised access by third parties. Our security measures are continuously improved in line with technological developments.

Right to information, deletion, blocking

If the respective legal requirements are met, in addition to the right to revoke your consent given to us, you are entitled to the following further rights:

  • Right to information about your personal data stored by us according to Art. 15 DSGVO
  • Right to correct incorrect or complete correct data in accordance with Art. 16 DSGVO
  • Right to delete your data stored with us in accordance with Art. 17 DSGVO
  • Right to restrict the processing of your data in accordance with Art. 18 DSGVO
  • Right to data transferability in accordance with Art. 20 DSGVO
  • Right of appeal to the competent supervisory authority

Under the conditions of Art. 21 para. 1 DSGVO, data processing may be interrupted for reasons arising from the processing of data subject.

The above general right of objection applies to all processing purposes described in this data protection information. According to the DSGVO, we are only obliged to implement such a general objection if you give us reasons of overriding importance (e.g. a possible danger to life or health).

Customer satisfaction survey

We use the Survey Monkey service to survey our customers about their satisfaction with the project implementation. For this purpose, the e-mail address is transmitted. You can find the data protection declaration at