Skip to content
We treat your data with care

Privacy Policy

Thank you for visiting our website and for your interest in the Inter­na­tional Software Architecture Quali­fi­cation Board. The protection and security of our visitors’ and users’ data is important to us. We have therefore designed our website and business processes to collect or process as little personal data as possible. The following privacy statement explains what information we collect during your visit to our website and what parts of this information are used, if any, and how. You are welcome to find out in detail below how we handle your personal data.

Respon­sible party within the meaning of data protection law

Inter­na­tional Software Architecture Quali­fi­cation Board
Feuer­bachstr. 6
14471 Potsdam

Contact details of the data protection officer

Our current data protection officer is Bitkom Servicege­sellschaft mbH, Albrecht­straße 10, 10117 Berlin, Germany. Contact inquiries can be made via email to


Our privacy policy is intended to be simple and under­standable for everyone. In this privacy policy, the official terms of the General Data Protection Regulation (GDPR) are generally used. All defin­i­tions can be found in Art. 4 GDPR.

This privacy policy describes what data we collect about you and how that data may be stored and processed. This website provides information to an educated profes­sional audience and is not intended for persons under the age of 18. We do not knowingly collect or store personal data from children under the age of 18.

What data do we collect from you?

We process so-called access data (in particular your IP address) on our website for statis­tical evalu­a­tions for the purpose of the operation, security and technical optimization of our website. This enables us to present our website to you more effec­tively and to identify errors. When accessing our website, the browser used on your terminal device will automat­i­cally send information to our website server, which means that when our website is accessed, we collect access data and temporarily store it in a so-called log file.. The name of the website accessed, the file accessed, the date and time of access, the amount of data trans­ferred and notifi­cation of successful access, the browser type and version, the operating system, the so-called referrer URL (the previ­ously visited page) and the requesting provider and your IP address. You are not identi­fiable to us from this data.

Log data is regularly deleted in a timely manner. The legal basis for this data processing is our legit­imate interest within the meaning of Art. 6 (1) (f) GDPR.

Access data:

  • IP address
  • Time stamp of the access
  • Name and version of the browser software
  • Origin of your page request
  • Operating system used

Based on your input in forms:

  • Surname/First name
  • Email address
  • Data released or entered by the user

How do we collect your data?

In the course of accessing our website, access data is automat­i­cally logged. Otherwise, all other data is collected through your input.

What do we use your data for?

To provide our products and services and to optimize and protect our website. With your consent, we use your input to respond to your contact requests/messages. We do not use your data for purposes other than those specified.

We also use your data for adver­tising, provided you have consented to this. Only in special excep­tions will your data be passed on to third parties, e. g. for criminal prose­cution in the event of misuse or attack on our IT systems.

Contact form

If you submit inquiries to us via our contact form, the information provided in the contact form as well as any contact information provided therein will be stored by us in order to handle your inquiry and in the event that we have further questions. We will not share this information without your consent.

The processing of these data is based on Art. 6 (1) (b) GDPR, if your request is related to the execution of a contract or if it is necessary to carry out pre-contractual measures. In all other cases the processing is based on our legit­imate interest in the effective processing of the requests addressed to us (Art. 6 (1) (f) GDPR) or on your agreement (Art. 6 (1) (a) GDPR) if this has been requested.

The information you have entered into the contact form shall remain with us until you ask us to eradicate the data, revoke your consent to the archiving of data or if the purpose for which the information is being archived no longer exists (e. g. after we have concluded our response to your inquiry). This shall be without prejudice to any mandatory legal provi­sions – in particular retention periods.


So-called “cookies” are used on our website. Cookies are small text files used by websites. These simplify and accel­erate the control of your visit to our website or are necessary to enable you to use our website. If you do not want our website to use cookies on your computer, you can disable cookies in your browser settings or adjust the settings so that you are informed when cookies are used on a website.

Depending on where a cookie comes from, a distinction can be made between so-called first-party cookies and third-party cookies: 

First-party cookies

Cookies that are generated and stored locally by the website operator, i. e. the controller, or by a processor commis­sioned by the controller. Only the operator has access to these cookies.

Third-party cookies

Cookies that are generated, set and accessed by third-party providers that are not acting as order processors on behalf of the operator of the website.

Depending on the validity period, a distinction can also be made between so-called transient and persistent cookies:

Transient cookies

Cookies that are automat­i­cally deleted when you close the browser. These include, in particular, session cookies.

Persistent cookies

Cookies that remain stored on your terminal device for a specified period of time after you close the browser.

Depending on their nature and purpose, the user’s consent may be required for the use of certain cookies. In this respect, cookies can be differ­en­tiated according to whether the user’s consent is mandatory for their use:

Non-consent cookies

Cookies that are strictly necessary for the website operator, expressly requested by the subscriber or user, to provide that service (“Strictly Necessary Cookies”).

Cookies requiring consent

Cookies that are used for all purposes other than those mentioned above.

Techni­cally necessary cookies

The cookies we use are so-called “techni­cally necessary cookies”. Techni­cally necessary cookies help make a website usable by enabling basic functions such as page navigation and access to secure areas of the website. The website cannot function properly without these cookies. These cookies are set automat­i­cally when you access our website or a particular function, unless you have prevented cookies from being set through settings in your browser.

Our cookies are only needed for the duration of your current service call or session and are deleted again or lose their validity as soon as you leave our website, or your current session expires (so-called “session cookies”).

Analysis tools

We use tracking technology on our website to measure and evaluate our website and optimize our content. To protect our users and partners, we can also detect and prevent fraud and security risks.

Google Analytics

This website uses functions of the web analysis service Google Analytics. The provider of this service is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

Google Analytics enables the website operator to analyze the behavior patterns of website visitors. To that end, the website operator receives a variety of user data, such as pages accessed, time spent on the page, the utilized operating system and the user’s origin. Google may consol­idate these data in a profile that is allocated to the respective user or the user’s device.

Google Analytics uses technologies that make the recog­nition of the user for the purpose of analyzing the user behavior patterns (e. g. cookies or device finger­printing). The website use information recorded by Google is, as a rule trans­ferred to a Google server in the United States, where it is stored.

This analysis tool is used on the basis of Art. (1) (f) GDPR. The operator of this website has a legit­imate interest in the analysis of user patterns to optimize both, the services offered online and the operator’s adver­tising activ­ities. If a corre­sponding agreement has been requested (e. g. an agreement to the storage of cookies), the processing takes place exclu­sively on the basis of Art. 6 (1) (a) GDPR; the agreement can be revoked at any time.

Data trans­mission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here:

IP anonymization

On this website, we have activated the IP anonymization function. As a result, your IP address will be abbre­viated by Google within the member states of the European Union or in other states that have ratified the Convention on the European Economic Area prior to its trans­mission to the United States. The full IP address will be trans­mitted to one of Google’s servers in the United States and abbre­viated there only in excep­tional cases. On behalf of the operator of this website, Google shall use this information to analyze your use of this website to generate reports on website activ­ities and to render other services to the operator of this website that are related to the use of the website and the Internet. The IP address trans­mitted in conjunction with Google Analytics from your browser shall not be merged with other data in Google’s possession.

Browser plug-in

You can prevent the recording and processing of your data by Google by downloading and installing the browser plugin available under the following link:

For more information about the handling of user data by Google Analytics, please consult Google’s Data Privacy Decla­ration at:


This website utilizes Hotjar. The provider is Hotjar Ltd., Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta, Europe (website:

Hotjar is a tool used to analyze your user patterns on this website. Hotjar allows us to, for instance, record your mouse and scroll movements as well as your click. During this process, Hotjar also has the capability to determine how long your cursor remained in a certain position. Based on this information, Hotjar compiles so-called Heatmaps, that make possible to determine which parts of the website the website visitor reviews with preference.

We are also able to determine how long you have stayed on a page of this website and when you left. We can also determine at which point you suspended making entries into a contact form (so-called conversion funnels).

Furthermore, Hotjar can be deployed to obtain direct feedback from website visitors. This function aims at the improvement of the website offerings of the website operator.

Hotjar uses technologies that make it possible to recognize the user for the purpose of analyzing the user patterns (e. g. cookies or the deployment of device fingerprinting).

The use of this analysis tool is based on Art. 6 (1) (f) GDPR. The website operator has a legit­imate interest in the analysis of user patterns in order to optimize the operator’s web offerings and adver­tising. If a corre­sponding agreement has been requested (e. g. an agreement to the storage of cookies), the processing takes place exclu­sively on the basis of Art. 6 (1) (a) GDPR; the agreement can be revoked at any time.

Deacti­vation of Hotjar

If you would like to deactivate the recording of data by Hotjar, please click on the link below and follow the instruc­tions provided under the link:

Please keep in mind that you will have to separately deactivate Hotjar for every browser and every device.

For more detailed information about Hotjar and the data to be recorded, please consult the Data Privacy Decla­ration of Hotjar under the following link:

Plug-ins and Tools

Twitter website tag for remarketing

Our website uses “website tag for remar­keting” of the Twitter network. The provider is Twitter Inter­na­tional Company, One Cumberland Place, Fenian Street Dublin 2, D02 AX07, Ireland. By using the website tag, a direct connection to the Twitter servers is estab­lished. It is thus trans­mitted to the Twitter server that you have visited our website. Twitter links this information to a unique ID that is stored on your terminal device in the form of a cookie or provided by your terminal device (“adver­tising ID” for smart­phones). If you visit other websites that also use the “website tag for remar­keting”, this information will also be linked to your unique ID.

Twitter thereby receives the information that you have visited our website with your IP address. We point out that we have no knowledge of the content of the trans­mitted (personal) data and their use by Twitter. For more information, please refer to Twitter’s privacy policy at:

The legal basis for the processing of your personal data is based on your previ­ously given consent according to Art. 6 para.1 lit. a GDPR.

You can change your privacy settings on Twitter in the account settings

Facebook Pixel

We use “Facebook Pixel” on our website, a service provided by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. (“Facebook”). Facebook Pixel enables Facebook to display our ads on Facebook, so-called “Facebook Ads”, only to those Facebook users who have been visitors to our website, in particular those who have shown interest in our online offer. Facebook Pixel also makes it possible to check whether a user was redirected to our website after clicking on our Facebook Ads. Facebook Pixel uses, among other things, cookies, which are small text files that are stored locally in the cache of your web browser on your end device. If you are logged in to Facebook with your user account, your visit to our online presence will be noted in your user account. The data collected about you is anonymous for us, so it does not offer us any conclu­sions about the identity of the user. However, this data can be linked by Facebook to your user account there. If you have a user account with Facebook and are regis­tered, Facebook can assign the visit to your user account.

Insofar as you have given your consent for the storage of Facebook Pixel, this is done on the basis of Art. 6 para.1 lit. a GDPR for marketing and optimization purposes, in particular to place relevant and inter­esting ads for you on Facebook and thus improve our offer, make it more inter­esting for you as a user and avoid annoying ads.

Since a transfer of personal data to the USA takes place, further protection mecha­nisms are required to ensure the level of data protection of the GDPR. To ensure this, we have agreed standard data protection clauses with the provider in accor­dance with Art. 46 (2) lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accor­dance with the level of protection in Europe. In cases where this cannot be ensured even by this contractual extension, we endeavor to obtain additional regula­tions and commit­ments from the recipient in the USA.

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected.

You can object to the afore­men­tioned collection by Facebook Pixel and the use of your data to display Facebook ads. You can make the relevant settings as to which types of adver­tise­ments are displayed to you within Facebook on the following Facebook website:

We would like to point out that this setting will be deleted when you delete your cookies. In addition, you can deactivate cookies that are used for range measurement and adver­tising purposes via the websites listed below:

Please note that this setting will also be deleted when you delete your cookies.

You can find further information on data protection from the third-party provider on the following Facebook website:

Information on the Facebook pixel can be found on the following Facebook website:

YouTube with expanded data protection integration

Our website embeds videos of the website YouTube. The website operator is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

We use YouTube in the expanded data protection mode. According to YouTube, this mode ensures that YouTube does not store any information about visitors to this website before they watch the video. Never­theless, this does not neces­sarily mean that the sharing of data with YouTube partners can be ruled out as a result of the expanded data protection mode. For instance, regardless of whether you are watching a video, YouTube will always establish a connection with the Google DoubleClick network.

As soon as you start to play a YouTube video on this website, a connection to YouTube’s servers will be estab­lished. As a result, the YouTube server will be notified which of our pages you have visited. If you are logged into your YouTube account while you visit our site, you enable YouTube to directly allocate your browsing patterns to your personal profile. You have the option to prevent this by logging out of your YouTube account.

Furthermore, after you have started to play a video, YouTube will be able to place various cookies on your device or compa­rable technologies for recog­nition (e. g. device finger­printing). In this way YouTube will be able to obtain information about this website’s visitors. Among other things, this information will be used to generate video statistics with the aim of improving the user friend­liness of the site and to prevent attempts to commit fraud.

Under certain circum­stances, additional data processing trans­ac­tions may be triggered after you have started to play a YouTube video, which are beyond our control.

The use of YouTube is based on our interest in presenting our online content in an appealing manner. Pursuant to Art. 6 (1) (f) GDPR, this is a legit­imate interest. If a corre­sponding agreement has been requested, the processing takes place exclu­sively on the basis of Art. 6 (1) (a) GDPR; the agreement can be revoked at any time.

For more information on how YouTube handles user data, please consult the YouTube Data Privacy Policy under:

Google Web Fonts

To ensure that fonts used on this website are uniform, this website uses so-called Web Fonts provided by Google. When you access a page on our website, your browser will load the required web fonts into your browser cache to correctly display text and fonts.

To do this, the browser you use will have to establish a connection with Google’s servers. As a result, Google will learn that your IP address was used to access this website. The use of Google Web Fonts is based on Art. 6 (1) (f) GDPR. The website operator has a legit­imate interest in a uniform presen­tation of the font on the operator’s website. If a respective decla­ration of consent has been obtained (e. g. consent to the archiving of cookies), the data will be processed exclu­sively on the basis of Art. 6 (1) (a) GDPR. Any such consent may be revoked at any time.

If your browser should not support Web Fonts, a standard font installed on your computer will be used.

For more information on Google Web Fonts, please follow this link: and consult Google’s Data Privacy Decla­ration under:

Google reCAPTCHA

We use “Google reCAPTCHA” (hereinafter referred to as “reCAPTCHA”) on this website. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

The purpose of reCAPTCHA is to determine whether data entered on this website (e. g. information entered into a contact form) is being provided by a human user or by an automated program. To determine this, reCAPTCHA analyzes the behavior of the website visitors based on a variety of parameters. This analysis is triggered automat­i­cally as soon as the website visitor enters the site. For this analysis, reCAPTCHA evaluates a variety of data (e. g. IP address, time the website visitor spent on the site or cursor movements initiated by the user). The data tracked during such analyses are forwarded to Google.

reCAPTCHA analyses run entirely in the background. Website visitors are not alerted that an analysis is underway.

Data are stored and analyzed on the basis of Art. 6 (1) (f) GDPR. The website operator has a legit­imate interest in the protection of the operator’s websites against abusive automated spying and against SPAM. If a respective decla­ration of consent has been obtained, the data will be processed exclu­sively on the basis of Art. 6 (1) (a) GDPR. Any such consent may be revoked at any time.

For more information about Google reCAPTCHA please refer to the Google Data Privacy Decla­ration and Terms Of Use under the following links: and


If you would like to subscribe to the newsletter offered on this website, we will need from you an email address as well as information that allow us to verify that you are the owner of the email address provided and consent to the receipt of the newsletter. No further data shall be collected or shall be collected only on a voluntary basis. We shall use such data only for the sending of the requested information and shall not share such data with any third parties.

The processing of the information entered into the newsletter subscription form shall occur exclu­sively on the basis of your consent (Art. 6 (1) (a) GDPR). You may revoke the consent you have given to the archiving of data, the email address, and the use of this information for the sending of the newsletter at any time, for instance by clicking on the “Unsub­scribe” link in the newsletter. This shall be without prejudice to the lawfulness of any data processing trans­ac­tions that have taken place to date.

The data deposited with us for the purpose of subscribing to the newsletter will be stored by us until you unsub­scribe from the newsletter or the newsletter service provider and deleted from the newsletter distri­b­ution list after you unsub­scribe from the newsletter or after the purpose has ceased to apply. We reserve the right to delete or block email addresses from our newsletter distri­b­ution list at our own discretion within the scope of our legit­imate interest in accor­dance with Art. 6 (1) (f) GDPR.

After you have unsub­scribed from the newsletter distri­b­ution list, your email address will be deleted by us or the newsletter service provider.


This website uses Sendinblue for the sending of newsletters. The provider is the Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany.

Sendinblue is a service that, by using the software of Newsletter2Go, allows, among other things, to organize and analyze the sending of newsletters. The data you enter for the purpose of subscribing to the newsletter are archived on Sendinblue’s servers in Germany.

This website uses Javascript, which is provided for the newsletter form by Sendinblue. When you call up a page, your browser loads the required Javascript into your browser cache in order to display the form correctly and the associated functions (should it be filled out and submitted).

For this purpose, the browser you use must connect to Sendin­blue’s server. This enables Sendinblue to know that this website has been accessed via your IP address. When you call up the sub-page with the form or each page on which the form appears, the IP address is transmitted.

The use is based on Art. 6 para. 1 lit. f DSGVO. If a corre­sponding consent was requested (e.g. consent to store cookies), the processing is based exclu­sively on Art. 6 para. 1 lit. a DSGVO; the consent can be revoked at any time.

If you do not want to permit an analysis by Sendinblue, you must unsub­scribe from the newsletter. We provide a link for you to do this in every newsletter message. Moreover, you can also unsub­scribe from the newsletter right on the website.

Data analysis by Sendinblue

Sendinblue enables us to analyze our newsletter campaigns. For instance, it allows us to see whether a newsletter message has been opened and, if so, which links may have been clicked. This enables us to determine which links drew an extra­or­dinary number of clicks.

Moreover, we are also able to see whether once the email was opened or a link was clicked, any previ­ously defined actions were taken (conversion rate). This allows us to determine whether you have made a purchase after clicking on the newsletter.

Sendinblue also enables us to divide the subscribers to our newsletter into various categories (i. e. to “cluster” recip­ients). For instance, newsletter recip­ients can be catego­rized based on age, gender, or place of residence. This enables us to tailor our newsletter more effec­tively to the needs of the respective target groups.

For detailed information on the functions of Sendinblue please follow this link:

Legal basis

The data is processed based on your consent (Art. 6 (1) (a) GDPR). You may revoke any consent you have given at any time by unsub­scribing from the newsletter. This shall be without prejudice to the lawfulness of any data processing trans­ac­tions that have taken place prior to your revocation.

Storage period

The data you provide for the purpose of receiving the newsletter will be stored by us or the newsletter service provider until you unsub­scribe from the newsletter and will be deleted from the newsletter distri­b­ution list after you unsub­scribe from the newsletter. Data that has been stored by us for other purposes remains unaffected by this. After you have unsub­scribed from the newsletter distri­b­ution list, your email address will be deleted by us or the newsletter service provider.

For more details, please consult the Data Protection Regula­tions of Sendinblue at:

Your data subject rights

With regard to the data processing listed here, you are entitled to various data subject rights that are regulated in the GDPR. First of all, you have the right to obtain information about your data trans­mitted to us and processed by us (Art. 15 GDPR). In addition, you can request the restriction (Art. 18 GDPR), correction (Art. 16 GDPR) and deletion (Art. 17 GDPR) of your data. You also have a right to object (Art. 21 GDPR) and a right to data porta­bility (Art. 20 GDPR).

If you wish to exercise any of your afore­men­tioned rights, you can contact us at

In addition, you have the right to complain to the super­visory authorities.

The State Commis­sioner for Data Protection and for the Right to Inspect Records (LDA Bbg)

Stahns­dorfer Damm 77, 14532 Klein­machnow, Germany

Phone: +49 33203 / 356–0         

Final provi­sions

The iSAQB GmbH reserves the right to adapt this data protection decla­ration at any time so that it always complies with the current legal requirements or in order to implement changes to the services in the data protection decla­ration, e. g. when new services are intro­duced, or changes are made to the website. The new data protection decla­ration will then apply to a renewed call-up of this website.

Status: December 2020

Stay Up-to-Date with the iSAQB® Newsletter!

Scroll To Top