Everyday we receive messages from our users with questions about data protection or the GDPR. So we’ve collected the most common questions and answered them to help clarify what this means for you as a user.
Questions and answers
What data does Jimdo collect from users of my website?
When visiting a Jimdo website, our landing page jimdo.com, your own Jimdo site or websites of other Jimdo users, the Jimdo servers automatically save the information that the browser sends when the page is visited. The information includes the request, the IP address, the browser type and language, and the date and time of the visit.
The information is used to analyze and maintain the technical operation of our servers and the network, as well as to combat abuse and will be automatically deleted after three months.
If you run a shop on your Jimdo page, the following data will also be stored: name, address, order details and payment details. The payment details are only stored by the payment provider.
If your website visitors leave messages via the comment function, in the Guestbook or send you a message via the contact form, the content of the message will also be saved by us. However, we don’t store the IP addresses of entries in the Guestbook, comments or messages sent via the contact form.
Do you sell my data to other companies?
No data of Jimdo users will be sold to third parties. In addition, we will not disclose personal information without consent.
Transfer of any data only takes place if
- we’re legally obliged to do so;
- to enforce contractual services for Jimdo users and / or enforce rights and obligations under the Terms and Conditions or the contractual relationship between the Jimdo User and Jimdo.
- to fulfill the service package. It may be necessary for us to use third party services.
Since I’ve been a customer, I get more spam emails/calls!
The reason for this could be:
- If you’ve recently registered a .de or .com domain with us, you may not have enabled WHOIS privacy in the registration process. Your data is then visible on a WHOIS query of your domain online. To activate WHOIS Privacy, please contact Jimdo Support. Please note, however, that WHOIS privacy is not available on every domain extension.
Important: Due to changes by the GDPR, WHOIS queries will no longer be readily available.
- You have published your contact information including email address on your website.
In that case, people can use simple search queries on search engines or automated search engines (bots) to search for and write to e-mail addresses or phone numbers.
Note: An imprint or identification provider is an important part of a website and the removal or absence of this can lead to legal consequences. You can find more information about the imprint here.
Does Jimdo save log files or an activity log for my website?
Legally, Jimdo is under no obligation to maintain a detailed activity log of Jimdo Site users. Therefore, we don’t track when and where changes have been made to a Jimdo page. For example, when and where on the website content was created, modified or deleted.
Where are the Jimdo servers located?
The servers hosting the websites built with Jimdo are located in data centers within the EU. To maximize the security and accessibility of all Jimdo sites, we use Amazon Web Services (AWS) cloud-based solutions for data storage. The data centers of this provider are located in Ireland and are of course subject to EU laws.
How safe are Jimdo websites?
Jimdo-hosted websites are all HTTPS-encrypted (HTTPS). We use TLS version 1.2. The secure connection can be seen by the small green lock symbol in the address bar of your web browser.
Is the data transmitted via the Jimdo contact form encrypted?
Jimdo websites are delivered encrypted. This of course includes the contact form. The sending of messages in the contact form is encrypted via "Opportunistic TLS". Complete end-to-end encryption is currently not possible.
What about the Jimdo Shop and data security?
The Jimdo Shop Solution does not meet the requirements of the Principles for Duly Maintaining, Keeping and Storing Books, Records and Documents in Electronic Form and for Data Access (GOBD). In other words the Jimdo user, as detailed in the Jimdo Terms of Service, is responsible for the storage of data in accordance with the applicable legal requirements. In particular those pertaining to commercial and taxation law as well as accountancy and bookkeeping.
Will Jimdo provide a standardized template for the GDPR?
As mentioned in the previous point, the operator of the website is responsible for all the website content, data collected, as well as for compliance with all legal requirements. The GDPR topic is very extensive and we recommend you check the links and information page in the first steps.
Can Google fonts be turned off?
Google fonts are an integral part of our website builder and can’t be disabled. But don’t worry, we’re already working on a privacy-compliant integration of Google fonts.
How do I implement the "anonymize_ip" feature and opt-out of Google Analytics?
If you use our statistics function or your own Google Analytics account for the function provided by us, you don’t have to worry about the opt-out and the IP address anonymization—we’ve already incorporated this for you.
Is the data entered by customers during the ordering process encrypted?
Jimdo-hosted websites are all HTTPS-encrypted. This also includes the ordering process on a Jimdo website.
Is there a so-called two-click solution for the integration of “Like” buttons?
We are currently working on the implementation of a Shariff-like feature. We’ll inform our users as soon as there is news. To be on the safe side, until the whole topic becomes a bit more transparent, we recommend temporarily disabling the “Like” and “Share” buttons on your Jimdo website.