Security of the German data centre.
The Questback server farm is reliably protected against external access. The BSI-certified data centre is subject to extremely high data protection and security requirements according to ISO 27001 on the basis of IT basic protection. This standard is also used by public authorities of the Federal Republic of Germany. In order to be awarded the certificate, an audit by an ISO 27001 Basic Protection Auditor certified by the BSI (Federal Office for Information Security) is required.
Cooperation with professional IT service providers.
DATAGROUP is one of the few IT service companies in Germany certified according to ISO 20000, the highest possible ISO certificate in IT service management. ISO 20000 is an internationally recognized standard for IT service management. The certificate guarantees consistently high quality and safety of service.
Questback’s data protection measures meet the highest standards as regularly confirmed by security audits performed by data protection officers. Questback is regularly audited by independent experts. Data stored on our servers are kept strictly confidential and are accessible to only a few Questback employees who have access rights. Questback meets the legal requirements of the German Federal Data Protection Act.
Questback uses state-of-the-art technologies and industry-proven data encryption methods during transmission. Encryption protection also applies to the duration of storage.
We ensure continuous availability of software and the restoration of stored data. Questback guarantees its clients an excellent availability rate of 99.8% on average. If a malfunction still occurs, our specialists will rectify such shortly. Our production environment has high redundancy, which ensures availability in the event of an error.
Quality assurance of the EFS software.
An experienced in-house testing team for quality assurance checks the software on a regular basis. For example, load and performance tests are performed constantly. Questback has a fully automated test-channel environment and an agile team of developers using SCRUM and KANBAN. Security tests are performed manually and automatically to eliminate threats at an early stage, which include: injection flaws, cross site scripting, disruption to authentication and session management, and uncertain direct object reference.
Measures on data protection and data security.
Data processing systems cannot be used by unauthorized persons. Exclusively those persons who are authorized to use a data processing system can access this data. Personal data cannot be read, copied, modified or removed without authorization. Personal data cannot be read, copied, modified or removed unauthorized electronically during electronic transmission or during its transport or its storage on data carriers. It can be subsequently checked and ascertained whether and by whom personal data has been entered, changed or removed in data processing systems. Personal data processed on order can only be processed according to the instructions of the customer. Personal data are protected against accidental destruction or loss.
Note: Google Analytics is used exclusively on this website (www.unipark.com), not on Unipark’sEFS Survey surveying software.
This website uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of the website will generally be transmitted to and stored by Google on servers in the United States.
In the case of the activation of IP anonymisation on this website, however, your IP address will be abbreviated by Google within the Member States of the European Union or in other Contracting States of the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the US and abbreviated there. IP anonymisation is active on this website. Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet use.
The IP address provided by your browser as part of Google Analytics will not be merged with other Google data. You can prevent cookies from being saved by setting your browser software accordingly. We would like to point out, however, that in this case you may not be able to fully use all the functions of this website. In addition, you may prevent Google from collecting and processing data related to your use of the website (including your IP address), as well as the processing of such data by Google, by downloading and installing the browser plug-in available at the following link.