Find out more

Our experienced employees will lead you, detached from rigid theory and individual frameworks, to a modern Enterprise Service Management.

Our experts in Enterprise Solutions support your transformation to digitized service processes based on the market-leading Enterprise Service Management platform ServiceNow. We help you from the definition of the roadmap through the solution architecture and successful implementation to the stable application management and operation in a DevOps approach.

We help our customers to meet the constantly growing requirements for compliance, data protection and information security with appropriate concepts, processes, services and technical solutions. In doing so, we consider both your possibilities and framework conditions as well as the formal requirements.

We put our customers in a position to anchor the right and affordable measures in the organization from the multitude of possible and necessary measures.

With our experienced management consultants from the Future Service Enablement division, we develop our own answers to the Enterprise Service Management of the future and help our customers to profitably use the possibilities and advantages of digitization in their own business and service processes.

With the combined expertise of experienced consultants and educational professionals, we offer digital learning formats that are tailored to your needs. These include interactive learning experiences, knowledge nuggets and context-specific learning formats.


Read more

Our Scrum seminars cover not only the basics but also further aspects such as optimizing and increasing team productivity as well as product development in an agile environment.

Management of Risk (M_o_R®) is a framework for risk management. It helps companies to identify and control risks and to make appropriate decisions.

Privacy policy

Your personal data will always be treated confidentially by us, in strict compliance with the applicable data protection regulations. The following data protection information informs you about the personal data collected in connection with your visit to the website and its use.

This website and the range of services are provided by the iTSM Consulting GmbH

Am Kuemmerling 21 -25
55294 Bodenheim
Telefon: +49 61 35 93 34 0

Managing Director: Siegfried Riedel
Register entry: Eintragung im Handelsregister
Register court: Amtsgericht Mainz – HRB 47740


You can contact the iTSM Group's data protection officer as follows:

iTSM Consulting GmbH 
Am Kuemmerling 21 – 25
55294 Bodenheim

In the following, "iTSM Group" refers to the group of companies of iTSM Consulting GmbH and all companies in which iTSM Consulting GmbH holds a majority interest and is referred to in the following as "iTSM Group" in general and for each individual company of the group of companies.

Basic principles

The iTSM Group is pleased about your visit on our website and your interest in our company. We take the protection of your personal data seriously and want you to feel comfortable when visiting our website. Guarantying data protection and data security is one of the basic principles of the iTSM Group’s policies. Your personal data only will be processed compliant to the General Data Protection Regulation (GDPR).

All employees and cooperating partners are indentured to comply with all statutory provisions concerning data protection.

Please contact our data protection officer in case of date protection related questions, claims and requests.

Duration of data use

We'll store your data for that long,

  • as required by legal retention periods,
  • as we need them to assert, exercise or defend legal claims,
  • in the case of consent: at the latest after expiry of the agreed processing time or before, if you revoke your consent and there are no reasons to prevent deletion.

Within the process of data deletion, the iTSM Group ensures that all affected contract processors are immediately informed of your declared revocation of consent. The iTSM Group obliges its contract processors to delete the personal data immediately - unless there are legal reasons to the contrary - after knowledge of the revocation. 

Provision of the website

Every webserver automatically records the access to websites. When visiting our website, our webserver will record following data temporarily with the purpose of system security and system control compliant with Article 6 (1)(f) of the GDPR, which may allow conclusions to your person.

  • Computer address (IP address)
  • Page from which a file was requested.
  • Filename
  • Date and time of the request
  • Transferred amount of data
  • access status

Without the data it would not be possible to technically provide and display the website’s contents. Collection these data is mandatory. Furthermore, we use the anonymous data for statistical purposes. These statistics help to optimize our services and technologies. We reserve the rights to analyse the log files in case of the suspicion of abuse of our services.

Collected data will be deleted after 7 days.

Processing of personal data

We understand personal data as that kind of data you provide when using our forms, such as name, surname, postal address, e-mail address and phone number. You can use the website itself without providing any personal data, but you may not use all services offered.

By using the following services, the provision of your personal data is mandatory:

Use of the contact form

If you contact us using the contact form or via e-mail, we will process your data to answer your requests. That can only be done after your approval as claimed in Article 6 (1)(a) of the GDPR. You may revoke this approval at any time without stating any reasons. The following personal data will be collected within this processing:

  • Salutation (optional)
  • Company (optional)
  • Last name (optional)
  • First name (optional)
  • Telephone number (optional)
  • email address

Furthermore, you may approve us according to Article 6 (1)(a) of the GDPR, to store your personal data within our customer relationship system with the purpose to contact you within the context of sales activities. You may revoke this approval as well at any time without stating any reasons.

Booking of trainings

If you book trainings using our booking form we will processes your personal data with the purpose of handling your booking, including contract closing and billing, according to Article 6 (1)(b) of the GDPR. The following personal data will be collected within this processing:

  • Company (optional)
  • name
  • surname
  • phone number
  • street address
  • postcode
  • city
  • e-mail address
  • country

These data will be logged as well and serve as an evidence for booking a training via our website.

Furthermore, you have to provide the personal data of the training’s participants with the purpose of transmitting important information related to the training:

  • Salutation
  • name
  • surname
  • email address

If you are not willing to provide these data, you are not able to book our trainings online. You still have the possibility to book our trainings via phone or by sending an e-mail, though. If you do not wish to make your personal data available via the website, you cannot book the training courses online, but have the option of doing so by telephone or e-mail.

We provide you with the opportunity to have an offer for our training courses generated - this can be done anonymously or by using your personal data (name, address, reachability). Your data will only be used to generate the document and will not be available to us afterwards.

If you wish, you can have us contact you regarding the offer; for this purpose, you only need to provide an e-mail address and/or, if you wish, a telephone number. In this case, the data will be processed according to Article 6 (1)(a) of the GDPR (consent) or Article 6 (1)(b) of the GDPR (pre-contractual measures).

Additionally, you may approve us according to Article 6 (1)(a) of the GDPR, to store your personal data within our customer relationship system with the purpose to contact you within the context of sales activities. You may revoke this approval at any time without stating any reasons.

If the seminar includes an exam by external institutes, we may need to transmit your personal data in order to register yourself for the exam. The data includes surname, name, e-mail address and will be transmitted to the corresponding institute according to Article 6 (1)(b) of the GDPR. For further information regarding the proceeding of your personal data be aware of the institute’s data protection statements you can find on their websites.

We transmit your data to the following institutes:

  • PeopleCert ( with headquarters in Nicosia, Cyprus.
  • APMG (, headquartered in High Wycombe, England.

We do not transmit your personal data to the following institutes, but in order to take the exam you will have to register to their services

  • ( with headquarters in Burlington, USA
  • ServiceNow ( with headquarters in Santa Clara, USA.

In case the seminars are held by one of our partners, we have to transmit your personal data as well, according to Article 6 (1)(b) of the GDPR. Contracts and agreements with our partners guarantee the proceedings in conformity with the current data protection laws.

Registration for the newsletter

If you sign up for our newsletter, we process your personal data for the purpose of transmitting the newsletter and for the purpose of informing you within the registration process. That can only be done after your approval as claimed in Article 6 (1)(a) of the GDPR. You may revoke this approval at any time without stating any reasons. The following personal data will be collected within this processing:

  • E-mail address

Within the newsletter creation and transmitting processes we take advantage of a processor. That means that your personal data you provided for newsletter service need to be transmitted to the processor. To guarantee the protection of your personal data we closed a processor contract according to Article 28 (3) of the GDPR.

If you want to receive our newsletter you must provide a valid e-mail address. To exclude abuse of e-mail addresses we use the “Double-Opt-In” procedure. That means that you will receive a confirmation mail after signing up for the newsletter. You will not get a newsletter unless the confirmation has been transacted. In context of this procedure the order, the transmission of the confirmation email and the and the receipt of the registration confirmation will be logged. Therefore, your IP address, the date and the time of the registration and the date and the time of the confirmation will be recorded. These data serve as an evidence in case of abusing other’s e-mail addresses.

You may revoke your approval for the newsletter at any time without stating any reasons. To do so you may use the link provided in every single newsletter to starts the sign off procedure.

Application procedure

You have the opportunity to send us your application documents for vacant positions or an unsolicited application by e-mail.

You will find all essential information on the application procedure under the following links:


The iTSM Group operates a fan page on the social media platform Facebook. When using or visiting our Facebook fan page, your personal data is processed by Facebook for statistical evaluations regarding our fan page - regardless of whether you have a Facebook account yourself. If you have an account and are logged on to it when you visit our fan page, Facebook may process more of your personal data.

If you have any concerns about the processing of your personal data by Facebook, you should read the data protection information before using our fan page and, if necessary, refrain from using our fan page:

Facebook’s Privacy Policy
iTSM Group’s Facebook Fanpage Privacy Policy

Use of cookies

We use cookies to operate our website. Cookies are tiny files being created by your browser automatically and stored on your device (notebook, tablet, smartphone or others) when visiting our website. Cookies do not harm your devices, especially they do not contain viruses trojan horses, or other forms of malware. A cookie stores information related to the specific device you are using. That does not mean that we are able to make conclusions to your person. The data processed by the cookies for the states purposes are meant to ensure our or third parties’ legitimate interests according to Article 6 (1)(f) of the GDPR. Most of the browsers accept cookies automatically. You may configure your browser to the effect that no cookies will be stored, or a hint is displayed each time a cookie is going to be created.

It depends on your browser how to manage cookies. As follows we provide you some links, that may help you in cookie management. These links are valid at the time of the creation of this data protection statement and may not be up to date at the time you use them. In this case consult the browser developer’s website.

To deactivate the usage of third-parties’ advertising cookies  you may use the website of NAI, Network Advertising Initiative,

Further services and third-party content

Our services may include contents, services and performances of other providers. These include, for example, maps provided by Google Maps, videos from YouTube and graphics and images from other websites. In order to display these contents in your browser, the transmission of the IP address is necessary. The providers (hereinafter referred to as third party providers) thus perceive your IP address.

Even though we make every effort to only use third-party providers who only need the IP address to deliver content, we have no influence on whether the IP address may be stored. In this case, this process serves statistical purposes, among others. If we are aware that the IP address is being stored, we will inform you accordingly.

Rights of the data subject

As soon as your personal data is being processed according to the GDPR you are a data subject and therefore have the right to:

  • revoke your approval at any time according to Article 7(3) of the GDPR. As a consequence, we are not allowed to process your data in the context of the purpose your approval was given to anymore.

  • obtain information about your personal data being processes by us according to Article 15 of the GDPR. You may obtain information especially about the processing purposes, the category of personal data, the category of recipients to whom the personal data have been or will be disclosed, the envisaged period for which the personal data will be stored, the existence of the rights to rectification, erasure, restriction of processing, objection, complaint-lodging,  as well as information about the sources of the personal data when not collected by us and information about the existence of automated decision-making (including profiling).
  • claim the rectification of inaccurate data and the completion of incomplete data stored by us, without undue delay according to Article 16 of the GDPR.
  • claim the erasure of your personal data stored by us according to Article 17 of the GDPR unless the processing is necessary for exercising the right of freedom of expression and information, for compliance with a legal obligation, for reasons of public interest or for the establishment, exercise or defence of legal claims,
  • claim the restriction of processing your personal data according to Article 18 of the GDPR, as far as the accuracy of the data is contested by you, the processing is unlawful and you oppose the erasure of the personal data, we do not need your personal data anymore, but the data are still required for the establishment, exercise or defence of legal claims or you objected to processings pursuant to Article 21(1) of the GDPR.
  • to receive your personal data being processed by us in a structured, commonly used and machine-readable format and to have those data transmitted to another controller according to Article 20 of the GDPR.
  • to lodge a complaint with a supervisory authority according to Article 77 of the GDPR. You can find the supervisory authority in the Member State of your habitual residence, place of work or place of the alleged infringement. 

Rights to object

In cases of processing your personal data based on legitimate interests according to Article 6 (1)(f) of the GDPR, you have the right to object this processing according to Article 21 of the GDPR. This right includes profiling based on certain processings. The iTSM Group will no longer process your personal data, unless we demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or for the establishment, exercise or defence of legal claims.

If your personal data is processes for direct marketing purposes, you have the right to object the processing, which includes profiling to the extent that it is related to direct marketing, at any time. If you object processings for direct marketing purposes, we will not process your personal data for purposes like that anymore. To claim that right you can contact our data protection officer using the contact information given at the beginning of this statement.

Data security

This website uses the common TLS encryption protocol (Transport Layer Security) in association with the highest encryption level being supported by your browser. This encryption is used to securely transmit confidential content to the iTSM Group. A (green) lock symbol in the status bar of your browser labels a website to be secure.

Changes to our data protection statement

This data protection statement corresponds to the data protection requirements being stated in the GDPR. To ensure our data protection statement to be up to date and correspond to actual legal regulation, we reserve the right to make modifications at any time. That also covers the cases that the date protection statement needs to be updated due to new or update services. An updated data protection statement is valid at your next visit to our website.


Mathias Kranig