Privacy Statement

Introduction

With the following data protection declaration we would like to inform you which types of your personal data (hereinafter also referred to as “data”) we process for which purposes and to what extent. The data protection declaration applies to all processing of personal data carried out by us, both in the context of providing our services and in particular on our websites, in mobile applications and within external online presences, such as e.g. our social media profiles (hereinafter collectively referred to as “Online Offer”).

The terms used are not gender-specific.

Bestand: December 8, 2019

Overview of contents

Responsible

SlideVision GmbH
Gaudystraße 17A
10437 Berlin

Authorized representatives: Sabine Fentker, Alexander Illmayer, Tom Hanoldt

E-Mail-address: support@slidevision.io

Imprint: https://slidevision.io/impressum

The Data Protection Officer can be contacted as follows:

Tom Hanoldt
Gaudystraße 17A
10437 Berlin
E-Mail: tom@slidevision.io

Overview of processing

The following table summarises the types of data processed and the purposes of their processing and refers to the data subjects.

Types of data processed

  • Estance data (e.g. names, addresses).
  • Applicant data (e.g. personal details, postal and contact addresses, the documents relating to the application and the information contained therein, e.g. cover letter, curriculum vitae, certificates and other information relating to a specific position) or information voluntarily provided by applicants about their person or qualifications).
  • content data (e.g. text entries, photographs, videos).
  • Contact data (e.g. e-mail, telephone numbers).
  • Meta/Communication data (e.g. device information, IP addresses).
  • Usage data (e.g. websites visited, interest in content, access times).
  • Social data (data subject to social secrecy (§ 35 SGB I) and processed, for example, by social insurance institutions, social assistance institutions or pension authorities.).
  • location data (data specifying the location of an end user’s terminal).
  • Contract data (for example, contract object, term, customer category).
  • Payment data (for example, bank details, invoices, payment history).

Categories of persons affected

  • Employees (e.g. employees, applicants, former employees).
  • Applicant.
  • Business and contractual partners.
  • Interested parties.
  • Communication partner.
  • Customers.
  • users (e.g. website visitors, users of online services).

Purposes of processing

  • Affiliate tracking.
  • Provision of our online services and user friendliness.
  • visit action evaluation.
  • application procedure (justification and possible later implementation as well as possible later termination of the employment relationship.).
  • Office and organisational procedures.
  • click tracking.
  • Content Delivery Network (CDN).
  • Cross-Device Tracking (cross-device processing of user data for marketing purposes).
  • Direct marketing (e.g. by e-mail or post).
  • Feedback (e.g. collecting feedback via the online form).
  • Interest-based and behavioral marketing.
  • Contact requests and communication.
  • Conversion measurement (measurement of the effectiveness of marketing measures).
  • Profiling (Creating user profiles).
  • Remarketing.
  • Range measurement (e.g. access statistics, recognition of recurring visitors).
  • Security measures.
  • Tracking (e.g. interest/behaviour-related profiling, use of cookies).
  • Contractual Services and Service.
  • Managing and responding to requests.
  • Target group formation (determination of target groups relevant for marketing purposes or other content output).

Applicable legal bases

In the following we inform you about the legal basis of the data protection basic regulation (DSGVO), on the basis of which we process personal data. Please note that, in addition to the provisions of the DSGVO, the national data protection laws also apply. Data protection requirements in your or our country of residence and domicile may apply.

  • A Consent (Art. 6 para. 1 sentence 1 lit. a DSGVO) – The data subject has given his consent to the processing of his personal data for one or more specific purposes.
  • Fulfilment of contract and pre-contractual enquiries (Art. 6 Para. 1 S. 1 lit. b. DSGVO) – The processing is necessary for the fulfilment of a contract to which the data subject is a party, or for the performance of the contract. pre-contractual measures are required, which are taken at the request of the person concerned.
  • Legal obligation (Art. 6 Para. 1 S. 1 lit. c. DSGVO) – The processing is necessary to fulfil a legal obligation to which the controller is subject.
  • Protection of vital interests (Art. 6 para. 1 p. 1 lit. d. DSGVO) – The processing is necessary to protect vital interests of the data subject or another natural person.
  • Goodful interests (Art. 6 Par. 1 S. 1 lit. 1 f. DSGVO) – The processing is necessary for the protection of theood controller’s or a third party’s rightful interests, unless the interests or fundamental rights and obligations of the data controller are violated. The fundamental freedoms of the data subject which require the protection of personal data prevail.
  • Art. 9 Para. 1 S. 1 lit. b DSGVO (application procedure as pre-contractual or contractual relationship) (Insofar as special categories of personal data within the meaning of Art. 9 Para. 1 DSGVO are used within the framework of the application procedure, the following shall apply (e.g. health data, such as severely disabled status or ethnic origin) are requested from applicants so that the person responsible or the person concerned can inform him or her of the consequences of the labour law and the law on social security. and social security and social protection and to fulfil his or her obligations thereunder, their processing shall be carried out in accordance with Article 9(2)(b). DSGVO, in the case of the protection of vital interests of the Applicants or other persons pursuant to Art. 9 para. 2 lit. c. DSGVO or for purposes of preventive health care or occupational medicine, for the assessment of the employee’s ability to work, for medical diagnostics, care or Treatment in the health or social field or for the administration of systems and services in the health or social field pursuant to Art. 9 Para. 2 lit. h. DSGVO. In the case of notification based on voluntary consent by special categories of data, their processing is carried out on the basis of Art. 9 Para. 2 lit. a. DSGVO.) – .

National data protection regulations in Germany: In addition to the data protection regulations of the Basic Data Protection Regulation, national regulations apply to data protection in Germany. These include in particular the law on the protection of personal data. from misuse of personal data during data processing (Federal Data Protection Act – BDSG). In particular, the BDSG contains special provisions on the right to information, the right to deletion, the right of objection, the processing of special personal data and the processing of personal data. Categories of personal data, for processing for other purposes and for transmission and automated decision making in individual cases, including profiling. It also regulates data processing for the purposes of (§ 26 BDSG), in particular with regard to the establishment, execution or termination of employment relationships as well as the consent of employees. In addition, state data protection laws of the individual federal states.

Security measures

We will meet in accordance with the legal requirements, taking into account the state of the art, the implementation costs and the type, scope, circumstances and purposes of the processing as well as the different the likelihood and extent of the threat to the rights and freedoms of natural persons, appropriate technical and organisational measures shall be taken to ensure a level of protection adequate to the risk.

Actions shall include, in particular, ensuring the confidentiality, integrity and availability of data by controlling physical and electronic access to the data as well as access to, input into, and use of the data concerning them. the dissemination, the safeguarding of availability and its separation. In addition, we have established procedures to ensure the exercise of data subject rights, the deletion of data and reactions to data threats. Further we already take the protection of personal data into account during the development or selection of hardware, software and procedures in accordance with the principle of data protection, through technology design and through data-protection-friendly Preferences.

SSL encryption (https): In order to protect your data transmitted via our online service, we use SSL encryption. You can recognize such encrypted connections by the prefix https:// in the address line of your Browsers.

Data processing in third countries

In so far as we process data in a third country (i.e. outside the European Union (EU), the European Economic Area (EEA)) or in the context of the use of the services of third parties or the disclosure or transfer of data to third parties, we shall not be liable for any direct or indirect damage or injury resulting from the use of such data. of data to other persons, bodies or companies, this will only take place in accordance with the legal requirements.

Without express consent or transfer required by contract or by law, we will only process or have the data processed in third countries with a recognised level of data protection, to which the data protected under the “Privacy-Shield” is subject. certified US processors, or on the basis of special guarantees, such as a contractual obligation through so-called standard protection clauses of the EU Commission, the existence of certifications or binding internal Data protection regulations, process (Art. 44 to 49 DSGVO, information page of the EU Commission: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_de) ).

Use of Cookies

Cookies are text files that contain data from visited websites or domains and are stored by a browser on the user’s computer. A cookie is primarily used to store information about a user during or after a visit. after his visit within an online offer to store. The information stored may include, for example, the language settings on a website, the login status, a shopping cart or the location where a video was viewed. To the We also count other technologies that perform the same functions as cookies (e.g., if user information is stored using pseudonymous online identifiers, also referred to as “user IDs”)

The following cookie types and functions are distinguished:

  • Temporary cookies (also: session cookies): Temporary cookies are deleted at the latest after a user has left an online offer and closed his or her browser.
  • Permanent cookies: Permanent cookies remain stored even after closing the browser. For example, the login status can be saved or preferred content can be displayed directly when the user visits a website. visited again. The interests of users who are used for range measurement or marketing purposes can also be stored in such a cookie.
  • First-Party-Cookies: First-Party-Cookies are set by ourselves.
  • Third party cookies (also: third party cookies): Third party cookies are mainly used by advertisers (so-called third parties) to process user information.
  • Necessary (also: essential or absolutely necessary) cookies: Cookies can be absolutely necessary for the operation of a website (e.g. to save logins or other user inputs or for reasons of of safety).
  • Statistics, marketing and personalization cookies: In addition, cookies are usually used to measure the user’s range and when a user’s interests or behavior (e.g., when viewing a website, viewing a website, etc.) are at stake. of certain contents, use of functions etc.) are stored on individual web pages in a user profile. Such profiles are used, for example, to display content to users that corresponds to their potential interests. This procedure is also referred to as “tracking”, i.e. tracking the potential interests of users. . If we use cookies or “tracking” technologies, we will inform you separately in our privacy policy or within the framework of the Obtaining consent.

Information on legal bases: The legal basis on which we process your personal data with the aid of cookies depends on whether we ask you for your consent. If this is the case and you are involved in the use of Cookies, the legal basis of the processing of your data is the declared consent. Otherwise, the data processed with the help of cookies will be processed on the basis of our legitimate interests (e.g. in a The use of cookies is not processed by us (e.g. for the economic operation of our online offer and its improvement) or, if the use of cookies is necessary, in order to fulfil our contractual obligations.

General notes on revocation and objection (opt-out): Depending on whether the processing is based on consent or legal permission, you have the option at any time to withdraw a granted Opt-out from or revoke your consent to the processing of your data by cookie technologies (collectively, “opt-out”). You can first explain your objection using the settings of your browser, e.g, by deactivating the use of cookies (which may also restrict the functionality of our online services). An objection to the use of cookies for the purposes of online marketing can also be made by means of a A variety of services, especially in the case of tracking, via the websites http://optout.aboutads.info and http://www.youronlinechoices.com/ be explained. In addition, you may receive further objection notices within the framework of the information on the service providers used and cookies.

Processing of cookie data on the basis of consent: Before we process or have processed data within the framework of the use of cookies, we ask the user for consent that can be revoked at any time. Before the If you do not give your consent, we may use cookies that are required for the operation of our online service. They are used on the basis of our interest and the interest of the user in the expected Functionality of our online offer.

  • Processed data types: Usage data (e.g. visited websites, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
  • Affected persons: Users (e.g. website visitors, users of online services).
  • Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a DSGVO), Legitimate interests (Art. 6 para. 1 sentence 1 lit. f. DSGVO).

Commercial and business services

We process data of our contractual and business partners, e.g. customers and interested parties (collectively referred to as “contractual partners”) within the framework of contractual and comparable legal relationships as well as associated measures. and within the scope of communication with the contractual partners (or pre-contractual), e.g. to answer inquiries.

We process this data in order to fulfil our contractual obligations, to safeguard our rights and for the purposes of the administrative tasks associated with this data and the entrepreneurial organisation. The data of Within the framework of applicable law, we shall only pass on contractual partners to third parties to the extent that this is necessary for the aforementioned purposes or for the fulfilment of statutory obligations or with the consent of the contractual partners (e.g. to telecommunications, transport and other ancillary services as well as subcontractors, banks, tax and legal advisors, payment service providers or tax authorities). Further forms of processing, e.g. for marketing purposes, are used to contractual partner within the scope of this data protection declaration.

What data is required for the aforementioned purposes, we will inform the contractual partners prior to or within the scope of the data collection, e.g. in online forms, by special identification (e.g. colours) or symbols (e.g. asterisks or similar), or personally with.

We delete the data after expiry of legal warranty and comparable obligations, i.e., in principle after expiry of 4 years, unless the data is stored in a customer account, e.g., as long as they are from legal must be kept for reasons of archiving (e.g. for tax purposes, 10 years as a rule). Data disclosed to us by the contractual partner within the scope of an order will be deleted in accordance with the specifications of the order, always after the end of the order.

Insofar as we use third-party providers or platforms to provide our services, the terms and conditions and data protection notices of the respective third-party providers or platforms shall apply in the relationship between the users and the providers.

Customer account: Contractual partners can create an account within our online offer (e.g. customer or user account, in short “customer account”). If the registration of a customer account is necessary, contract partners become and the information required for registration. The customer accounts are not public and cannot be indexed by search engines. In the context of the registration as well as following registrations and For the use of the customer account we store the IP addresses of the customers together with the access times in order to be able to prove the registration and to prevent any misuse of the customer account.

If customers have terminated their customer account, the data relating to the customer account will be deleted, subject to retention, which is required for legal reasons. It is incumbent on the customers to store their data in the event of termination of the account. Save customer accounts.

Economic analyses and market research: For economic reasons and in order to identify market trends, the wishes of contractual partners and users, we analyse the data available to us on business transactions, contracts, inquiries, etc., whereby the group of persons concerned may include contractual partners, interested parties, customers, visitors and users of our online services.

The analyses are carried out for the purpose of business management evaluations, marketing and market research (e.g. to determine customer groups with different characteristics). If available, we can use the profiles of registered users together with their details, e.g. on services used. The analyses serve us alone and are not disclosed externally, unless they are anonymous analyses with summarized, i.e. anonymous values. Furthermore, we respect the privacy of the users and process the data for analysis purposes as pseudonymously as possible and, if feasible, anonymously (e.g. as summarized data).

Project and development services: We process the data of our customers and clients (hereinafter uniformly referred to as “customers”) in order to enable them to select, acquire or commission the selected services. or works as well as related activities as well as their payment and provision or execution or performance.

The required details are identified as such within the framework of the conclusion of the order, order or comparable contract and include the details required for the provision of services and invoicing as well as contact information in order to be able to to be able to have consultations. Insofar as we gain access to information from end customers, employees or other persons, we process it in accordance with the legal and contractual requirements.

Publication activity: We process the data of our contact partners, interview partners and other persons who are the subject of our journalistic, editorial, journalistic and related activities. are. In this context, we refer you to the validity of protective provisions of freedom of expression and freedom of the press pursuant to Art. 85 DSGVO in conjunction with the respective national laws. The processing serves the fulfilment of our obligations. and is otherwise based in particular on the general public’s interest in information and media offerings.

Offer of software and platform services: We process the data of our users, registered users and any test users (hereinafter uniformly referred to as “users”) in order to provide them with our contractual services. and on the basis of legitimate interests in order to guarantee the security of our offer and to be able to further develop it. The required information is to be provided as such within the framework of the order, order or comparable The contract conclusion and include the information required for the provision of services and billing as well as contact information in order to be able to hold any consultations.

Comparison and mediation services: We process the information provided by the interested parties in the context of the request for comparison for the purpose of establishing, implementing and, if applicable, terminating a contract for the mediation of Offered by providers of the products or services requested by you.

We use the contact data of the interested parties to specify their request by means of the agreed or otherwise permitted communication channel (e.g. telephone or e-mail) and to provide them with suitable providers on the basis of the specified request. or propose offers. In addition, we can ask interested parties questions about the success of our brokerage service at a later point in time, in accordance with legal requirements.

We process the data of the prospective customers as well as the offerer for the fulfilment of our contractual obligations, in order to link the inquiry of the prospective customers offered to us with the offers of the offerer fitting to it and to transfer them to the corresponding to forward providers, or to propose providers.

We can log the entries in the online form sent by interested parties in order to verify the existence of the contractual relationship and the agreement of the interested parties in accordance with the statutory accountability obligations (Art. 5 para. 2 DSGVO). to be able to prove. This information will be stored for a period of three to four years if we have to prove the original request (e.g. to prove the right to contact the interested party).

  • Processed data types: Inventory data (e.g. names, addresses), payment data (e.g. bank details, invoices, payment history), contact data (e.g. e-mail, telephone numbers), contract data (e.g. subject of contract, duration), customer category), usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
  • People affected: Interested parties, business and contractual partners, customers.
  • Purposes of processing: Contractual services, contact enquiries and communication, office and organisational procedures, administration and answering of enquiries, security measures, evaluation of visits, Interest-based and behavioural marketing, profiling (creating user profiles), conversion measurement (measuring the effectiveness of marketing measures).
  • Legal basis: Performance of contract and pre-contractual enquiries (Art. 6 Para. 1 S. 1 lit. b. DSGVO), Legal obligation (Art. 6 Para. 1 S. 1 lit. c. DSGVO), Legitimate interests (Art. 6 Para. 1 S. 1 lit. f. DSGVO), Consent (Art. 6 para. 1 p. 1 lit. a DSGVO).

Payment service provider

Within the framework of contractual and other legal relationships, due to legal obligations or otherwise on the basis of our legitimate interests, we offer the persons concerned efficient and secure payment options and set In addition to banks and credit institutions, other payment service providers (collectively referred to as “payment service providers”) are also included.

The data processed by the payment service providers includes inventory data, such as name and address, bank data, such as account numbers or credit card numbers, passwords, TANs and checksums, as well as contract, total and credit card numbers. recipient-related information. This information is required to carry out the transactions. However, the data entered will only be processed and stored by the payment service providers. I.e., we do not receive any account or Credit card-related information, but only information with confirmation or negative information about the payment. The data may be transmitted by the payment service provider to credit reference agencies. These The purpose of transmission is to check identity and creditworthiness. In this regard, we refer to the GTC and the data protection information of the payment service providers.

For payment transactions, the terms and conditions and the data protection information of the respective payment service providers, which can be accessed within the respective websites or transaction applications, apply. We also refer to these for the purpose of further information and assertion of revocation, information and other data subject rights.

  • Processed data types: Inventory data (e.g. names, addresses), payment data (e.g. bank details, invoices, payment history), contract data (e.g. object of contract, term, customer category), usage data (e.g. visited websites, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
  • Affected persons: Customers, prospects.
  • Purposes of processing: Contractual services, contact requests and communication, affiliate tracking.
  • Legal basis: Performance of contract and pre-contractual enquiries (Art. 6 Para. 1 S. 1 lit. b. DSGVO), Legitimate interests (Art. 6 Para. 1 S. 1 lit. f. DSGVO).

Services and service providers in use:

Blogs and publication media

We use blogs or comparable means of online communication and publication (hereinafter “publication medium”). The reader’s data will only be processed for the purposes of the publication medium to the extent necessary for its presentation and use. the communication between authors and readers is necessary or for security reasons. For the rest, we refer you to the information on the processing of visitors to our publication medium within the framework of this data protection notice.

Comments and posts: If users leave comments or other posts, their IP addresses may be stored on the basis of our legitimate interests. This is done for our security, if someone in leaves comments and contributions illegal contents (insults, forbidden political propaganda etc.). In this case, we can be prosecuted ourselves for the comment or contribution and are therefore connected to the identity of the author interested.

We also reserve the right, on the basis of our legitimate interests, to process user information for the purpose of spam detection.

On the same legal basis, we reserve the right, in the case of surveys, to store the IP addresses of users for their duration and to use cookies in order to avoid multiple voting.

The personal information provided in the course of comments and contributions, any contact and website information as well as the content information will be stored permanently by us until the user objects.

Retrieve WordPress emojis and smilies: Within our WordPress blog, graphical emojis (or smilies), i.e. small graphical files that express feelings, are used for efficient integration of content elements, used, obtained from external servers. The providers of the servers collect the IP addresses of the users. This is necessary so that the emoji files can be transmitted to the user’s browser.

Akismet Anti-Spam Check: We use the “Akismet” service based on our legitimate interests. With the help of Akismet, comments from real people are distinguished from spam comments. All Comments are sent to a server in the USA, where they are analyzed and stored for four days for comparison purposes. If a comment has been classified as spam, the data is stored beyond that time. About these Information includes the name entered, the e-mail address, the IP address, the comment content, the referrer, information about the browser used, the computer system and the time of the entry.

users are welcome to use pseudonyms or dispense with entering their name or email address. They can completely prevent the transmission of data by not using our comment system. That would be a pity, but unfortunately see we do not offer alternatives that work just as effectively.

Profile pictures of Gravatar: We use the service Gravatar within our online offer and in particular in our blog.

Gravatar is a service where users can register and store profile pictures and their e-mail addresses. If users with the respective e-mail address on other online presences (especially in blogs) posts or comments their profile pictures can be displayed next to the posts or comments. For this purpose, the e-mail address given to Gravatar by the users is encrypted in order to check whether a profile is stored for it. is transmitted. This is the sole purpose of transmitting the e-mail address. It will not be used for any other purpose, but will be deleted afterwards.

The use of Gravatar is based on our legitimate interests, as we use Gravatar to offer contribution and comment writers the opportunity to personalize their contributions with a profile picture.

By displaying the images, Gravatar knows the IP address of the user, as this is necessary for communication between a browser and an online service.

If users do not want a user image linked to their e-mail address to appear in the comments at Gravatar, they should use an e-mail address which is not stored at Gravatar for commenting. We also assign that it is also possible to use an anonymous e-mail address or no e-mail address at all if users do not wish their own e-mail address to be sent to Gravatar. Users can prevent the transmission of data completely, by not using our comment system.

  • Processed data types: Inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), content data (e.g. text input, photographs, videos), usage data (e.g. websites visited, interest in content), access times), meta/communication data (e.g. device information, IP addresses), contract data (e.g. subject of contract, duration, customer category).
  • Affected persons: Users (e.g. website visitors, users of online services).
  • Purposes of processing: Contractual services and service, feedback (e.g. collection of feedback via online form), security measures, administration and answering of inquiries, provision of our online offer and usability.
  • Legal basis: Performance of contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b. DSGVO), Legitimate interests (Art. 6 Para. 1 S. 1 lit. f. DSGVO), Consent (Art. 6 Para. 1 S. 1 lit. a DSGVO), Protection vital interests (Art. 6 para. 1 p. 1 lit. d. DSGVO).

Services and service providers in use:

Contacting

When contacting us (e.g. via contact form, e-mail, telephone or via social media), the data of the inquiring persons will be processed as far as this is necessary to answer the contact enquiries and any requested measures. is required.

Response to contact enquiries within the framework of contractual or pre-contractual relationships is made in order to fulfil our contractual obligations or to answer (pre)contractual enquiries and, otherwise, on the basis of the legitimate interests in answering the questions.

  • Processed data types: Inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), content data (e.g. text input, photographs, videos), usage data (e.g. websites visited, interest in content), access times), meta/communication data (e.g. device information, IP addresses).
  • Persons affected: Communication partner.
  • Purposes of processing: Contact requests and communication, management and response of requests.
  • Legal basis: Performance of contract and pre-contractual enquiries (Art. 6 Para. 1 S. 1 lit. b. DSGVO), Legitimate interests (Art. 6 Para. 1 S. 1 lit. f. DSGVO).

Services and service providers in use:

  • Zoho Desk: Management of contact requests and communication; service provider: Zoho Corporation Pvt. Ltd, Chengalpattu, Tamil Nadu, India; Website: https://www.zoho.com; Privacy policy: https://www.zoho.com/privacy.html; Standard contractual clauses (guarantee data protection level for processing in third countries): On request from the provider.

Communication via Messenger

We use Messenger services for communication purposes and therefore request that you provide the following information on the functionality of the Messenger, on encryption, on the use of the metadata of communication and on your Please note the possibilities of contradiction.

You can also contact us by alternative means, e.g. telephone or e-mail. Please use the contact options provided to you or the contact options provided within our online service.

In the case of end-to-end encryption of content (i.e., the content of your message and attachments) we would like to point out that the communication content (i.e., the content of the message and attachments) is encrypted from end to end. will be. This means that the content of the messages will not be viewable, not even by the messenger providers themselves. You should always use a current version of Messenger with encryption enabled so that the encryption of the message contents is ensured.

However, we would also like to point out to our communication partners that although Messenger providers do not see the content, they can find out that and when communication partners are communicating with us and when they are using technical means. information on the device used by the communication partners and, depending on the settings of your device, also location information (so-called metadata).

Information on legal bases: If we ask communication partners for permission before communicating with them via Messenger, the legal basis of our processing of their data is their consent. By the way, if we do not ask for your consent and you contact us e.g. on your own initiative, we use Messenger in relation to our contractual partners as well as in the context of the contract initiation as a contractual measure and in the case of other interested parties and communication partners on the basis of our legitimate interests in fast and efficient communication and meeting the needs of our communication partners in communication via messengers. Further we would like to point out that we do not transmit the contact data provided to us to the messengers for the first time without your consent.

Withdrawal, objection and deletion: You can revoke your consent at any time and object to communication with us via Messenger at any time. In the case of communication via Messenger, we will delete the Messages in accordance with our general deletion guidelines (e.g., as described above, after the end of contractual relationships, in the context of archiving requirements, etc.) and otherwise, as soon as we can assume, any information from the communication partner, if no reference to a previous conversation is to be expected and there are no legal storage obligations to prevent the deletion.

Reservation of reference to other communication channels: Finally, we would like to point out that we reserve the right for reasons of your safety not to answer inquiries via Messenger. This is the case if e.g. Internal contract information requires special secrecy or an answer via Messenger does not meet the formal requirements. In such cases, we refer you to more appropriate communication channels.

Skype: The end-to-end encryption of Skype requires its activation (unless it is activated by default).

  • Processed data types: Contact data (e.g. e-mail, telephone numbers), usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses), Content data (e.g. text input, photographs, videos).
  • Persons affected: Communication partner.
  • Purposes of processing: Contact requests and communication, direct marketing (e.g. by e-mail or post).
  • Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a DSGVO), Legitimate interests (Art. 6 para. 1 sentence 1 lit. f. DSGVO).

Services and service providers in use:

Online conferences, meetings and webinars

We use platforms and applications of other providers (hereinafter referred to as “third-party providers”) for purposes of conducting video and audio conferences, webinars and other types of video and audio meetings. When selecting the Third party providers and their services we observe the legal requirements.

In this context, data of the communication participants are processed and stored on the servers of the third party providers as far as they are part of communication processes with us. This data may be used in particular for registration and Contact data, visual and vocal contributions as well as input in chats and shared screen content belong.

If users are referred to the third party provider or its software or platforms in the course of communication, business or other relationships with us, the third party provider may process usage data and metadata that they provide to us. security, service optimization or marketing purposes. We therefore ask you to observe the data protection information of the respective third party providers.

Information on legal bases: If we ask the users for their consent to the use of third party providers, the legal basis of the processing is consent. Furthermore, their use can be a component of our (pre)contractual services, provided that the use of the third party provider was agreed within this framework. Otherwise the data of the users on the basis of our legitimate interests (i.e., interest in effizie In this context we would also like to refer you to the information on the use of cookies in this privacy statement.

  • Processed data types: Inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), content data (e.g. text input, photographs, videos), usage data (e.g. websites visited, interest in content), access times), meta/communication data (e.g. device information, IP addresses).
  • Affected persons: Communication partners, users (e.g. website visitors, users of online services).
  • Purposes of processing: Contractual services, contact inquiries and communication, office and organisational procedures.
  • Legal basis: Consent (Art. 6 Para. 1 S. 1 lit. a DSGVO), performance of contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b DSGVO), legitimate interests (Art. 6 Para. 1 S. 1 lit. f. DSGVO).

Services and service providers in use:

Chatbots and chat functions

We offer a so-called “chatbot” as a communication option. A chatbot is a piece of software that answers users’ questions or informs them about messages. When you chat with our chatbot, we may process your personal data.

If you communicate with the chatbot within an online platform, your identification number will also be stored within the respective platform. We may also collect information about which users communicate with our website and when. Chatbot interact. Furthermore, we store the content of your conversations with the chatbot and log registration and consent processes in order to be able to prove these according to legal requirements.

We would like to point out that the respective platform provider can find out that and when users communicate with our chatbot, as well as technical information about the user’s device used and, depending on the settings of their device can also collect location information (so-called metadata) for purposes of optimizing the respective services and for security purposes. Likewise, the metadata of communication via chatbot (i.e., the information as to who is connected to the chatbot) could also be collected. (who has communicated with) may be used by the respective platform provider for marketing purposes or to display advertising tailored to the user in accordance with their provisions, to which we refer for the purpose of further information.

If users agree to the chatbot to activate information with regular messages, they have the option at any time to unsubscribe from the information for the future. The chatbot instructs users to how and with which terms they can unsubscribe from the messages. By unsubscribing from chatbot messages, user data is deleted from the directory of message recipients.

We use the above information in order to operate our chatbot, e.g. to address users personally, to answer their requests to the chatbot, to transmit any requested content and also to use our chatbot. (e.g. to “teach” him answers to frequently asked questions or to recognize unanswered questions).

Information on legal bases: We use the chatbot on the basis of a consent if we have previously obtained permission from the user to have their data processed by the chatbot (this applies in the cases, in which to whom users are asked for their consent, e.g. so that the chatbot can send them messages on a regular basis). If we use the chatbot to respond to user enquiries about our services or our company, this is done for contractual and pre-contractual communication. In addition, we use the chatbot on the basis of our legitimate interests in optimising the chatbot, its economic viability and increasing the positive impact of the chatbot. User experience one.

Withdrawal, objection and deletion: You can revoke your consent at any time or object to the processing of your data in the context of our use of chatbots.

  • Processed data types: Contact data (e.g. e-mail, telephone numbers), content data (e.g. text input, photographs, videos), usage data (e.g. websites visited, interest in content, access times), Meta/communication data (e.g. device information, IP addresses).
  • Affected persons: Communication partners, users (e.g. website visitors, users of online services).
  • Purposes of processing: Contact requests and communication, direct marketing (e.g. via e-mail or postal mail), range measurement (e.g. access statistics, recognition of returning visitors), tracking (e.g. interest/behavioural profiling, use of cookies), remarketing, visitor action evaluation, profiling (creation of user profiles), conversion measurement (measurement of the effectiveness of marketing measures).
  • Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a DSGVO), Legitimate interests (Art. 6 para. 1 sentence 1 lit. f. DSGVO).

Surveys and surveys

The surveys and surveys we conduct (hereinafter referred to as “surveys”) are evaluated anonymously. Personal data will only be processed to the extent that this is necessary for the provision and technical execution of the surveys. (e.g. processing the IP address in order to display the survey in the user’s browser or to enable the survey to be resumed using a temporary cookie (session cookie)) or have consented to the user.

Information on legal bases: If we ask the participants for their consent to the processing of their data, this is the legal basis for the processing, otherwise the processing of the participants’ data is carried out on Basis of our legitimate interests in conducting an objective survey.

  • Processed data types: Contact data (e.g. e-mail, telephone numbers), content data (e.g. text input, photographs, videos), usage data (e.g. websites visited, interest in content, access times), Meta/communication data (e.g. device information, IP addresses).
  • Affected persons: Communication partners, users (e.g. website visitors, users of online services).
  • Purposes of processing: Contact requests and communication, direct marketing (e.g. by e-mail or postal mail), tracking (e.g. interest/behavioural profiling, use of cookies), feedback (e.g. collection of Feedback via online form).
  • Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a DSGVO), Legitimate interests (Art. 6 para. 1 sentence 1 lit. f. DSGVO).

Services and service providers in use:

Provision of the online offer and web hosting

In order to provide our online services safely and efficiently, we use the services of one or more web hosting providers from whose servers (or servers managed by them) the online services are accessed. can. For these purposes, we may use infrastructure and platform services, computing capacity, storage space and database services, as well as security and technical maintenance services.

The data processed within the framework of the provision of the hosting offer may include all information relating to the users of our online offer that is collected within the scope of use and communication. This includes regularly the IP address, which is necessary in order to be able to deliver the contents of online offers to browsers, and all entries made within our online offer or from websites.

E-mail dispatch and -hosting: The webhosting services used by us also include the dispatch, receipt and storage of e-mails. For these purposes, the addresses of the recipients and sender as well as other information concerning the sending of e-mails (e.g. the providers involved) and the contents of the respective e-mails. The aforementioned data may also be processed for SPAM detection purposes. Please note that e-mails on the Internet are generally not sent in encrypted form. As a rule, e-mails are encrypted during transport, but (unless a so-called end-to-end encryption procedure is used) they are not sent in encrypted form. is used) not on the servers from which they are sent and received. Therefore, we cannot accept any responsibility for the transmission path of e-mails between the sender and the reception on our server.

Collection of access data and logfiles: We (or our webhosting provider) collect data on each access to the server (so-called server logfiles). For the server logfiles, the address and name of the retrieved Web pages and files, date and time of access, transferred data volumes, notification of successful access, browser type and version, the user’s operating system, referrer URL (the previously visited page) and, as a rule, IP addresses and the requesting providers belong to.

The server log files can on the one hand be used for security purposes, e.g. to avoid overloading the servers (especially in the case of abusive attacks, so-called DDoS attacks) and on the other hand to increase the load on the server. the server and ensure its stability.

Content-Delivery-Network: We use a “Content-Delivery-Network” (CDN). A CDN is a service with the help of which the contents of an online offer, in particular large media files such as graphics or program scripts, can be accessed with the help of the CDN. Help from regionally distributed servers connected via the Internet can be delivered faster and more securely.

  • Processed data types: Content data (e.g. text input, photographs, videos), usage data (e.g. visited websites, interest in content, access times), meta/communication data (e.g. device information), IP addresses).
  • Affected persons: Users (e.g. website visitors, users of online services), customers.
  • Purposes of processing: Content Delivery Network (CDN), Contractual services, security measures.
  • Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f. DSGVO), performance of contract and pre-contractual enquiries (Art. 6 Para. 1 S. 1 lit. b. DSGVO).

Services and service providers in use:

Application procedure

The application procedure requires that applicants provide us with the data necessary for their assessment and selection. The information required can be obtained from the job description or, in the case of online forms, from the information there.

In general, the required information includes personal details such as name, address, contact details and proof of the qualifications required for a job. On request we will also share which information is required.

If you have made your application available to us, you can submit it using an online form. The data will be transmitted to us encrypted according to the state of the art. Applicants can also send their applications to us via Send e-mail. Please note, however, that e-mails on the Internet are generally not sent in encrypted form. As a rule, e-mails are encrypted during transport, but not on the servers from which they are sent. be sent and received. Therefore, we cannot assume any responsibility for the transmission path of the application between the sender and the reception on our server.

For the purposes of applicant search, submission of applications and selection of applicants, we may, in compliance with legal requirements, make use of applicant management or recruitment software and platforms and services of third parties. take.

Applicants are welcome to contact us to find out how to submit their application or to send us their application by post.

Processing of special categories of data: Insofar as special categories of personal data within the meaning of Art. 9 Para. 1 DSGVO (e.g. health data, such as e.g. (e.g. health data, such as e.g. health data, or data relating to severely disabled persons or ethnic origin) are requested from applicants so that the person responsible or the person concerned can identify him or her as being covered by labour law and social security and social protection law. and to comply with his or her obligations in this respect, their processing shall be carried out in accordance with Art. 9 Para. 2 lit. b. DSGVO, in the case of the protection of vital interests of applicants or other persons in accordance with Art. 9 para. 2 lit. c. DSGVO or for the purposes of health care or occupational medicine, for the assessment of the employee’s ability to work, for medical diagnostics, for care or treatment in the health or occupational medicine sector, for the protection of the applicant’s vital interests pursuant to Art. 9 para. 2 lit. c. Social sector or for the administration of systems and services in the health or social sector pursuant to Art. 9 Para. 2 lit. h. DSGVO. In the case of a communication of the special categories of data based on voluntary consent, the following shall take place their processing on the basis of Article 9(2)(a). DSGVO.

Deletion of data: In the event of a successful application, the data provided by the applicants may be further processed by us for the purposes of the employment relationship. Otherwise, provided that the If an application for a job offer is not successful, the applicant’s data is deleted. Applicant data is also deleted if an application is withdrawn, which applicants are entitled to do at any time. Deletion subject to a justified revocation by the applicant, at the latest after the expiration of a period of six months, so that we can answer any follow-up questions regarding the application and fulfil our obligations to provide evidence under the regulations on equal treatment of applicants. Invoices for any reimbursement of travel expenses are archived in accordance with tax law requirements.

Admission to an applicant pool: Admission to an applicant pool, if offered, is based on consent. Applicants are informed that their consent to be included in the talent pool is voluntary. has no influence on the ongoing application process and you can revoke your consent at any time for the future.

  • Processed data types: Applicant data (e.g. personal details, postal and contact addresses, the documents pertaining to the application and the information contained therein, such as cover letter, curriculum vitae, references and references). other personal or qualification information voluntarily provided by applicants), inventory data (e.g. names, addresses), usage data (e.g. websites visited, interest in content), access times), meta/communication data (e.g. device information, IP addresses).
  • People affected: Applicants, employees (e.g. salaried employees, applicants, former employees).
  • Purposes of processing: Application procedure (justification and possible later implementation as well as possible later termination of employment.).
  • Legal basis: Art. 9 Para. 1 S. 1 lit. b DSGVO (application procedure as pre-contractual or contractual relationship) (Insofar as special categories of personal data as defined in of Art. 9 para. 1 DSGVO (e.g. health data, such as severely disabled status or ethnic origin) are requested from applicants so that the person responsible or the person concerned can inform him or her of the consequences of the labour law and the law on the employment of the person concerned. of social security and social protection and to fulfil his or her obligations thereunder, their processing shall be carried out in accordance with Article 9(2)(b). DSGVO, in the case of the protection of vital rights and obligations Interests of applicants or other persons pursuant to Art. 9 para. 2 lit. c. DSGVO or for the purposes of health care or occupational medicine, for the assessment of the employee’s ability to work, for medical diagnostics, for the Health or social care or treatment or for the administration of health or social care systems and services pursuant to Art. 9 para. 2 lit. h. DSGVO. In the case of a voluntary agreement based on Notification of special categories of data, their processing is carried out on the basis of Art. 9 para. 2 lit. a. DSGVO), contract performance and pre-contractual enquiries (Art. 6 para. 1 sentence 1 lit. b. DSGVO), legitimate interests (Art. 6 para. 2 lit. a.). 1 p. 1 lit. f. DSGVO).

Services and service providers in use:

Cloud Services

We use software services (so-called “Cloud Services”, also referred to as “Software as a Service”) that are accessible via the Internet and executed on the servers of their providers for the following purposes: document storage and administration, Calendar management, emailing, spreadsheets and presentations, sharing documents, content, and information with specific recipients, or publishing web pages, forms, or other content and information. as well as chats and participation in audio and video conferences.

In this context, personal data may be processed and stored on the servers of the providers, insofar as these are part of communication processes with us or from us otherwise, as in the context of this privacy policy. are processed. This data may include in particular master data and contact data of users, data on processes, contracts, other processes and their contents. The providers of the cloud services also process usage data and metadata used by you for security purposes and for service optimization.

If we use cloud services to provide forms or content to other users or publicly accessible Web sites, providers may place cookies on users’ devices for web analytics purposes or to allow users to view, analyze, or download documents or content. to memorize user settings (e.g. in case of media control), save them.

Information on legal bases: If we ask for consent to the use of cloud services, the legal basis for processing is consent. Furthermore, their use can be a component of our (pre)contractual services, provided that the use of the cloud services has been agreed within this framework. Otherwise, the user’s data will be processed on the basis of our legitimate interests (i.e., interest in efficient and secure (administrative and collaboration processes) processed

  • Processed data types: Inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), content data (e.g. text input, photographs, videos), usage data (e.g. websites visited, interest in content), access times), meta/communication data (e.g. device information, IP addresses).
  • Affected persons: Customers, employees (e.g. employees, applicants, former employees), interested parties, communication partners.
  • Purposes of processing: Office and organisational procedures.
  • Legal basis: Consent (Art. 6 Para. 1 S. 1 lit. a DSGVO), performance of contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b DSGVO), legitimate interests (Art. 6 Para. 1 S. 1 lit. f. DSGVO).

Services and service providers in use:

Newsletter and Broadcasting

We send newsletters, e-mails and other electronic notifications (hereinafter referred to as “newsletters”) only with the consent of the recipient or a legal permission. If in the context of a registration to the newsletter its contents they are decisive for the consent of the user. In addition, our newsletters contain information about our services and us.

In order to subscribe to our newsletters, it is sufficient to enter your e-mail address. However, we may ask you to provide a name for the purpose of addressing you personally in the newsletter, or further information, provided this is required for the purposes of the newsletter are necessary to make.

Double-Opt-In-Procedure: The subscription to our newsletter is always done in a so-called Double-Opt-In-Procedure. I.e., you will receive an e-mail after the registration, in which you ask for the confirmation of your registration. be asked. This confirmation is necessary so that nobody can register with foreign e-mail addresses. The registrations for the newsletter are logged in order to prove the registration process according to the legal requirements. can. This includes storing the login and confirmation times as well as the IP address. Likewise the changes of your data stored with the dispatch service provider are logged.

Deletion and limitation of processing: We may store the unsubscribed email addresses for up to three years based on our legitimate interests before deleting them in order to obtain a previously given consent to the processing of your email address. to be able to prove. The processing of these data is limited to the purpose of a possible defense against claims. An individual request for deletion is possible at any time, provided that the former existence of a consent is confirmed at the same time. will be. In the case of obligations to permanently observe contradictions, we reserve the right to store the e-mail address solely for this purpose in a blacklist.

The registration procedure is recorded on the basis of our legitimate interests for the purpose of proving that it has been carried out properly. If we commission a service provider to send e-mails, this is done on the following basis Basis of our legitimate interests in an efficient and secure shipping system.

Notes to legal bases: The dispatch of the newsletter takes place on the basis of a consent of the receiver or, if a consent is not necessary, on the basis of our entitled interests at the Direct marketing, if and to the extent permitted by law, e.g. in the case of existing customer acquisition. If we commission a service provider to send e-mails, this is done on the basis of our legitimate interests. The Registration procedures are recorded on the basis of our legitimate interests to demonstrate that it has been conducted in accordance with the law.

Contents: Information about us, our services, promotions and offers.

Success measurement: The newsletters contain a so-called “web-beacon”, i.e. a pixel-sized file, which can be downloaded from our server when the newsletter is opened, or, if we use a mail service provider, from its server. is retrieved. Within the scope of this retrieval, technical information such as information about the browser and your system, as well as your IP address and the time of the retrieval, are first collected.

This information is used for the technical improvement of our newsletter on the basis of technical data or target groups and their reading behaviour on the basis of their places of call (which can be determined with the aid of the IP address) or the Access times used. This analysis also includes determining whether newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be sent to the individual be assigned to newsletter recipients. However, it is neither our endeavour nor, if used, that of the mail-order service provider to observe individual users. Rather, the evaluations serve us to improve the reading habits of our users. and to adapt our contents to them or to send different contents according to the interests of our users.

The evaluation of the newsletter and the performance measurement are carried out, subject to the express consent of the user, on the basis of our legitimate interests for the purposes of the use of a user-friendly and secure newsletter system, which serves our business interests as well as the expectations of the users.

A separate revocation of the performance measurement is unfortunately not possible, in this case the entire newsletter subscription must be cancelled or contradicted.

Prerequisite for the use of free services: Consent to the sending of mailings can be a prerequisite for the use of free services (e.g. access to certain content or participation in certain actions). If the users would like to take advantage of the free service without registering for the newsletter, please contact us.

  • Processed data types: Inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), meta/communication data (e.g. device information, IP addresses), usage data (e.g. websites visited, interest in of content, access times).
  • Affected persons: Communication partners, users (e.g. website visitors, users of online services).
  • Purposes of processing: Direct marketing (e.g. by e-mail or post), contractual services and service.
  • Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a DSGVO), Legitimate interests (Art. 6 para. 1 sentence 1 lit. f. DSGVO).
  • Opposition (Opt-Out): You can cancel the receipt of our newsletter at any time, i.e. revoke your consent or object to further receipt. Find a link to unsubscribe the newsletter Either at the end of each newsletter or you can use one of the contact options listed above, preferably e-mail.

Services and service providers in use:

Promotional communication via mail, fax or phone

We process personal data for the purposes of advertising communication, which can take place via various channels such as e-mail, telephone, post or fax. In this context, we comply with the legal requirements and obtain the required consents, unless the communication is not legally permitted.

Recipients have the right to revoke consent given at any time or to object to advertising communication at any time.

After revocation or objection, we may store the data required to prove consent for up to three years on the basis of our legitimate interests before we delete them. The processing of this data is carried out for the purpose of of a possible defense against claims. An individual deletion request is possible at any time, provided that the former existence of a consent is confirmed at the same time.

  • Processed data types: Inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers).
  • Persons affected: Communication partner.
  • Purposes of processing: Direct marketing (e.g. by e-mail or post).
  • Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a DSGVO), Legitimate interests (Art. 6 para. 1 sentence 1 lit. f. DSGVO).

Web Analysis and Optimization

The web analysis (also referred to as “range measurement”) serves to evaluate the visitor flows of our online offering and may include behavior, interests or demographic information about visitors, such as age or gender, as pseudonymous values. With the help of the range analysis we can, for example, recognize at which time our online offer or its functions or contents are most frequently used or invite for reuse. We can also understand which areas require optimization.

In addition to web analysis, we can also use test procedures, e.g. to test and optimize different versions of our online offering or its components.

For these purposes, so-called user profiles can be created and stored in a file (so-called “cookie”) or similar procedures with the same purpose can be used. This information may include, for example, content viewed, visited web pages and the elements and technical data used there, such as the browser used, the computer system used and information on the times of use. If users have consented to the collection of their location data, depending on the provider these are also processed.

The IP addresses of the users are also stored. However, we use an IP masking procedure (i.e. pseudonymisation by shortening the IP address) to protect the user. In general, the IP masking methods used for web analysis, A/B testing and Optimization does not store user plain data (such as e-mail addresses or names), but pseudonyms. This means that we as well as the providers of the software used do not know the actual identity of the user, but only the identity of the user used for the purposes of of the respective procedures in their profiles.

Information on legal bases: If we ask the users for their consent to the use of third party providers, the legal basis of the processing of data is consent. Otherwise the data of the users on The basis of our legitimate interests (i.e. interest in efficient, economic and recipient friendly services). In this context, we would also like to draw your attention to the information on the use of cookies in this privacy statement.

  • Processed data types: Usage data (e.g. visited websites, interest in content, access times).
  • Affected persons: Users (e.g. website visitors, users of online services).
  • Purposes of processing: Range measurement (e.g. access statistics, recognition of returning visitors), tracking (e.g. interest/behavioural profiling, use of cookies), visitor action evaluation, profiling (creation of user profiles), interest based and behavioural marketing.
  • Security measures: IP masking (pseudonymization of the IP address).
  • Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a DSGVO), Legitimate interests (Art. 6 para. 1 sentence 1 lit. f. DSGVO).

Services and service providers in use:

Online marketing

We process personal data for the purposes of online marketing, including in particular the marketing of advertising space or the presentation of advertising and other content (collectively referred to as “content”) using potential The interests of users as well as the measurement of their effectiveness may fall.

For these purposes, so-called user profiles are created and stored in a file (so-called “cookie”) or similar procedures are used, by means of which the user data relevant for the representation of the aforementioned contents are stored. can be saved. This information may include, for example, content viewed, websites visited, online networks used, but also communication partners and technical information, such as the browser used, the computer system used and information about times-of-use. If users have consented to the collection of their location data, these can also be processed.

The IP addresses of the users are also stored. However, we use available IP masking methods (i.e. pseudonymisation by shortening the IP address) to protect users. In general, in the context of the Online marketing methods do not store any user data (such as e-mail addresses or names), but pseudonyms. This means that we as well as the providers of the online marketing procedures do not know the actual identity of the users, but only the information stored in their profiles.

The information in the profiles is usually stored in the cookies or using similar procedures. These cookies can later be used on other websites that use the same online marketing process, read out and stored. The data may be analysed for the purposes of presenting content and supplemented with further data and stored on the server of the online marketing procedure provider.

Exceptionally, plain data can be assigned to the profiles. This is the case, for example, if the users are members of a social network whose online marketing methods we use and the network uses the profiles of the users in the the aforementioned data. We kindly ask you to note that users can make additional agreements with the providers, e.g. by consenting within the scope of registration.

We only get access to summarized information about the success of our advertisements. However, within the framework of so-called conversion measurements, we can check which of our online marketing procedures are suitable for a so-called “conversion”. conversion, i.e. to conclude a contract with us, for example. The conversion measurement is only used to analyze the success of our marketing measures.

Unless otherwise stated, we ask you to assume that cookies used will be stored for a period of two years.

Information on legal bases: If we ask the users for their consent to the use of third party providers, the legal basis of the processing of data is consent. Otherwise the data of the users on The basis of our legitimate interests (i.e. interest in efficient, economic and recipient friendly services). In this context, we would also like to draw your attention to the information on the use of cookies in this privacy statement.

Target grouping with Google Analytics: We use Google Analytics to display ads placed by Google and its partners within advertising services only to those users who are also interested in our online offer or which have certain characteristics (e.g. interests in certain topics or products which are determined on the basis of the websites visited) which we transmit to Google (so-called “remarketing”, or “remarketing”). “Google Analytics Audiences”). With the help of remarketing audiences, we also want to ensure that our ads match the potential interest of users

.

Google Universal Analytics: We use Google Analytics in the form of Universal Analytics (https://support.google.com/analytics/answer/2790010?hl=de&ref_topic=6010376) one. “Universal Analytics” refers to a Google Analytics process in which user analysis is performed on the basis of a pseudonymous user ID, thereby creating a pseudonymous profile of the user with information from the use of various devices (so-called “cross device tracking”).

Facebook pixel: With the help of the Facebook pixel it is possible for Facebook on the one hand to determine the visitors of our online offer as a target group for the presentation of ads (so-called “Facebook ads”). Accordingly we use the Facebook pixel to display the Facebook ads that we have switched to only those users on Facebook and within the services of the partners cooperating with Facebook (so-called “Audience Network” https://www.facebook.com/audiencenetwork/ ), which have also shown an interest in our online offer or which have certain characteristics (e.g. interest in certain topics or products, which can be identified by the visited websites) that we transmit to Facebook (so-called “custom audiences”). By using the Facebook pixel, we also want to ensure that our Facebook ads correspond to the potential interest of the users, and not to be a nuisance. The Facebook pixel also enables us to track the effectiveness of Facebook ads for statistical and market research purposes by seeing if users click on a Facebook advertisement was forwarded to our website (so-called “conversion measurement”).

Advanced matching for the Facebook pixel: When using the Facebook pixel, the additional function “advanced matching” is used. In this context, data, such as e-mail addresses or Facebook IDs of the users, for the formation of target groups (encrypted) to Facebook.

Facebook – Target groups Education via data upload: Uploading data, such as telephone numbers, e-mail addresses or Facebook IDs to the Facebook platform. The data is encrypted. The upload process only serves to to display advertisements to the owners of the data or persons whose user profiles match any user profiles of the owners of the data on Facebook. This is to ensure that ads are only displayed to users, who are interested in our information and services.

  • Processed data types: Usage data (e.g. web pages visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses), location data (data that identifies the location of the terminal device), data about the location of the terminal device (e.g. data about the location of the terminal device), data about the location of the terminal device (e.g. data about the location of the terminal device). of an end user), social data (data that is subject to social secrecy (§ 35 SGB I) and is processed, for example, by social insurance institutions, social assistance institutions or pension authorities.).
  • Affected persons: Users (e.g. website visitors, users of online services), interested parties, customers, employees (e.g. employees, applicants, former employees), communication partners.
  • Purposes of processing: Tracking (e.g. interest/behaviour-related profiling, use of cookies), remarketing, visitor action evaluation, interest-based and behavior-related marketing, profiling (creation of user profiles), conversion measurement (measurement of the effectiveness of marketing measures), range measurement (e.g. access statistics, recognition of recurring visitors), cross-device tracking (cross-device processing of user data). for marketing purposes), target group formation (determination of target groups relevant for marketing purposes or other output of content), click tracking, direct marketing (e.g. by e-mail or post).
  • Security measures: IP masking (pseudonymization of the IP address).
  • Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a DSGVO), Legitimate interests (Art. 6 para. 1 sentence 1 lit. f. DSGVO).
  • Opposition possibility (Opt-Out): We refer to the data protection references of the respective providers and the opposition possibilities indicated to the providers (so-called “Opt-Out”). If there is no explicit opt-out possibility you have the option of deactivating cookies in the settings of your browser. However, this may restrict the functions of our online service. We therefore additionally recommend the following Opt-out options, which are offered in a summarized form for the respective areas: a) Europe: https://www.youronlinechoices.eu. b) Canada: https://www.youradchoices.ca/choices. c) USA: https://www.aboutads.info/choices. d) Cross-regional: http://optout.aboutads.info.

Services and service providers in use:

Affiliate Programs and Affiliate Links

In our online services we include so-called affiliate links or other references (to which e.g. discount codes may belong) to the offers and services of third parties (collectively referred to as “affiliate links”). When Users If we follow the affiliate links or subsequently take advantage of the offers, we may receive a commission or other benefits (collectively, “Commission”) from these third parties.

In order to be able to track whether the users have noticed the offers of an affiliate link used by us, it is necessary for the respective third-party providers to find out that the users have made a connection to an affiliate link within our online offer. affiliate link used. The assignment of the affiliate links to the respective business transactions or to other promotions (e.g. purchases) serves the sole purpose of commission settlement and is cancelled as soon as they have been used for the purpose is no longer required.

For the purposes of the aforementioned assignment of affiliate links, the affiliate links can be supplemented by certain values that are part of the link or can otherwise be stored, e.g. in a cookie. The following values can be added in particular the source website (referrer), the time, an online identifier of the operator of the website on which the affiliate link was located, an online identifier of the respective offer, the type of link used, the type of offer and an online identification of the user.

Information on legal bases: If we ask the users for their consent to the use of third party providers, the legal basis of the processing of data is consent. Furthermore, their use can be a component of of our (pre)contractual services, provided that the use of the third party provider was agreed within this framework. Otherwise, user data will be processed on the basis of our legitimate interests (i.e. interest in efficient, economic and receiver-friendly services). In this context, we would also like to draw your attention to the information on the use of cookies in this data protection declaration.

  • Processed data types: Contract data (e.g. subject of contract, duration, customer category), usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
  • Affected persons: Users (e.g. website visitors, users of online services).
  • Purposes of processing: Affiliate tracking.
  • Legal basis: Consent (Art. 6 Para. 1 S. 1 lit. a DSGVO), performance of contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b DSGVO), legitimate interests (Art. 6 Para. 1 S. 1 lit. f. DSGVO).

Affiliate Program Offer

We offer an affiliate program, i.e., commissions or other benefits (collectively referred to as “Commission”) to users (collectively referred to as “Affiliates”) who refer to our offers and services. The reference is made by means of a link associated with the Affiliate or other methods (e.g., discount codes) that allow us to recognize that the use of our services was based on the reference (collectively, “Affiliate Links”).

In order to be able to track whether the users have perceived our services based on the affiliate links used by the affiliates, it is necessary for us to know that the users have followed an affiliate link. The assignment of Affiliate links to the respective business transactions or to other use of our services serve solely the purpose of commission billing and will be removed as soon as it is no longer required for the purpose.

For the purposes of the aforementioned assignment of affiliate links, the affiliate links can be supplemented by certain values that are part of the link or can otherwise be stored, e.g. in a cookie. The following values can be added in particular the source website (referrer), the time, an online identifier of the operator of the website on which the affiliate link was located, an online identifier of the respective offer, the type of link used, the type of offer and an online identification of the user.

Information on legal bases: If we ask the users for their consent to the use of third party providers, the legal basis of the processing of data is consent. Furthermore, their use can be a component of of our (pre)contractual services, provided that the use of the third party provider was agreed within this framework. Otherwise, user data will be processed on the basis of our legitimate interests (i.e. interest in efficient, economic and receiver-friendly services). In this context, we would also like to draw your attention to the information on the use of cookies in this data protection declaration.

  • Processed data types: Contract data (e.g. subject of contract, duration, customer category), usage data (e.g. websites visited, interest in content, access times).
  • Affected persons: Users (e.g. website visitors, users of online services), business and contractual partners.
  • Purposes of processing: Contractual services and service, affiliate tracking.
  • Legal basis: Consent (Art. 6 Para. 1 S. 1 lit. a DSGVO), performance of contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b DSGVO), legitimate interests (Art. 6 Para. 1 S. 1 lit. f. DSGVO).

Rating platforms

We take part in evaluation procedures to evaluate, optimise and advertise our services. If users evaluate us via the participating evaluation platforms or procedures or otherwise provide feedback, the following also apply General terms and conditions of business or use and the data protection information of the providers. As a rule, the evaluation also requires registration with the respective provider.

In order to ensure that the evaluators have actually made use of our services, we transmit the data required for this with the consent of the customer with regard to the customer and the services used. Service to the respective evaluation platform (including name, e-mail address and order number or article number). This data is used solely to verify the authenticity of the user.

Rating widget: We include so-called “rating widgets” in our online offer. A widget is a functional and content element integrated into our online offering that displays variable information. It can e.g. in the form of a seal or comparable element, partly also called “badge”. The corresponding content of the widget will be displayed within our online offer, but it will be displayed by the servers of the respective widget provider. This is the only way to always show the current content, especially the current rating. For this purpose, a data connection must be established from the website called up within our online offer to the widget provider’s server and the widget provider receives certain technical data (access data, including IP address) necessary for the widget content to be delivered to the user’s browser.

In addition, the widget provider receives information that users have visited our online services. This information may be stored in a cookie and used by the widget provider to determine which Online offers that participate in the evaluation process visited by the user. The information may be stored in a user profile and used for advertising or market research purposes.

  • Processed data types: Contract data (e.g. subject of contract, duration, customer category), usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
  • Affected persons: Customers, users (e.g. website visitors, users of online services).
  • Purposes of processing: Feedback (e.g. collection of feedback via online form), range measurement (e.g. access statistics, recognition of returning visitors), visitor action evaluation, interest based and behavioural marketing, profiling (creation of user profiles).
  • Legal basis: Consent (Art. 6 para. 1 sentence 1 lit. a DSGVO), Legitimate interests (Art. 6 para. 1 sentence 1 lit. f. DSGVO).

Services and service providers in use:

Presences in social networks

We maintain online presences within social networks in order to communicate with the users active there or to offer information about us there.

We would like to point out that user data may be processed outside the territory of the European Union. This can result in risks for users, e.g. because it makes it more difficult to enforce the rights of users. could. With regard to US vendors that are certified under the Privacy Shield or offer comparable guarantees of a secure level of data protection, we would like to point out that they are committed to complying with EU data protection standards. to be observed.

Furthermore, user data is usually processed within social networks for market research and advertising purposes. For example, user profiles can be created on the basis of user behaviour and the resulting interests of users. will be. The user profiles can in turn be used, for example, to place advertisements within and outside the networks which are presumed to correspond to the interests of the users. For these purposes, cookies are usually stored on the The user’s computers in which the user’s usage behaviour and interests are stored. Furthermore, data may be stored in the user profiles independently of the devices used by the users (in particular, if the users are members of the respective platforms and are logged in to them).

For a detailed description of the respective forms of processing and the possibilities for objection (opt-out), we refer to the data protection declarations and information provided by the operators of the respective networks.

Also in the case of requests for information and the assertion of rights of data subjects, we point out that these can be asserted most effectively with the providers. Only the providers have access to the data of the users. and can directly take appropriate measures and provide information. If you still need help, please do not hesitate to contact us.

  • Processed data types: Inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), content data (e.g. text input, photographs, videos), usage data (e.g. websites visited, interest in content), access times), meta/communication data (e.g. device information, IP addresses).
  • Affected persons: Users (e.g. website visitors, users of online services).
  • Purposes of processing: Contact requests and communication, tracking (e.g. interest/behavioural profiling, use of cookies), remarketing, range measurement (e.g. access statistics, recognition of recurring Visitors).
  • Legal basis: Legitimate interests (Art. 6 para. 1 sentence 1 lit. f. DSGVO).

Services and service providers in use:

Plugins and embedded functions and content

We include functional and content elements in our online offer which are obtained from the servers of their respective providers (hereinafter referred to as “third party providers”). This may include, for example, graphics, videos or social media buttons and contributions (hereinafter uniformly referred to as “Content”).

The integration always presupposes that the third-party providers of this content process the IP address of the user, since they could not send the content to their browser without the IP address. The IP address is therefore not required for the display of this Content or functions required. We strive to use only those contents, whose respective offerers use the IP address only for the distribution of the contents. Third party providers may also use so-called pixel tags (invisible graphics, also known as “web beacons”) for statistical or marketing purposes. Pixel tags” can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the user’s device and may contain, among other things, technical information about the browser and operating system, websites to be referred to, visiting times and other information about the use of our website. online offer as well as with such information from other sources.

Information on legal bases: If we ask the users for their consent to the use of third party providers, the legal basis of the processing of data is consent. Otherwise the data of the users on The basis of our legitimate interests (i.e. interest in efficient, economic and recipient friendly services). In this context, we would also like to draw your attention to the information on the use of cookies in this privacy statement.

Integration of third-party software, scripts or frameworks (e.g. jQuery): We integrate into our online offer software which we retrieve from servers of other providers (e.g. function libraries which we use for the purpose of displaying or user-friendliness of our online offer). The respective providers collect the IP address of the user and may use it for the purpose of transmitting the software to the user’s browser as well as for security purposes, as also for the evaluation and optimization of your offer.

  • Processed data types: Usage data (e.g. visited websites, interest in content, access times), meta/communication data (e.g. device information, IP addresses), inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), content data (e.g. text input, photographs, videos).
  • Affected persons: Users (e.g. website visitors, users of online services).
  • Purposes of processing: Provision of our online services and user friendliness, contractual services and service, security measures, administration and response to inquiries.
  • Legal basis: Legitimate interests (Art. 6 Para. 1 S. 1 lit. f. DSGVO), consent (Art. 6 Para. 1 S. 1 lit. a DSGVO), performance of contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b. DSGVO).

Services and service providers in use:

Planning, organisation and tools

We use the services, platforms and software of other providers (hereinafter referred to as “third parties”) for the purposes of organizing, administering, planning and providing our services. In the selection of the third party providers and of their services, we observe the legal requirements.

In this context, personal data may be processed and stored on the servers of third parties. This may affect various data that we process in accordance with this data protection declaration. About this data can include in particular master data and contact data of the users, data to procedures, contracts, other processes and their contents.

If users are referred to the third-party providers or their software or platforms in the context of communication, business or other relationships with us, the third-party providers may use data and metadata for security purposes, for service optimization or marketing purposes. We therefore request that you observe the data protection information of the respective third party providers.

Information on legal bases: If we ask the users for their consent to the use of third party providers, the legal basis of the processing of data is consent. Furthermore, their use can be a component of of our (pre)contractual services, provided that the use of the third party provider was agreed within this framework. Otherwise, user data will be processed on the basis of our legitimate interests (i.e. interest in efficient, economic and receiver-friendly services). In this context, we would also like to draw your attention to the information on the use of cookies in this data protection declaration.

  • Processed data types: Inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), content data (e.g. text input, photographs, videos), usage data (e.g. websites visited, interest in content), access times), meta/communication data (e.g. device information, IP addresses).
  • Affected persons: Communication partners, users (e.g. website visitors, users of online services).
  • Purposes of processing:Range measurement (e.g. access statistics, recognition of recurring visitors), tracking (e.g. interest/behavioral profiling, use of cookies), profiling (creation of user profiles), contact requests and communication.
  • Legal basis: Consent (Art. 6 Para. 1 S. 1 lit. a DSGVO), performance of contract and pre-contractual inquiries (Art. 6 Para. 1 S. 1 lit. b DSGVO), legitimate interests (Art. 6 Para. 1 S. 1 lit. f. DSGVO).

Services and service providers in use:

Deletion of data

The data processed by us will be deleted in accordance with the statutory provisions as soon as their consent permitted for processing is revoked or other permissions no longer apply (e.g. if the purpose of the processing of this data is not in accordance with the law). data has been omitted or they are not required for the purpose).

If the data are not deleted because they are required for other and legally permissible purposes, their processing will be limited to these purposes. This means that the data will be blocked and not processed for other purposes. This applies e.g. for data which must be stored for commercial or tax reasons or their storage for the assertion, exercise or defence of legal claims or for the protection of the rights of another natural or legal person. legal person is required.

Further information on the deletion of personal data may also be provided within the framework of the individual data protection notices of this data protection declaration.

Rights of the persons concerned

You are entitled to various rights under the DSGVO, in particular those arising from Articles 15 to 18 and 21 of the DSGVO:

  • Right of objection: You have the right, for reasons arising from your particular situation, to object at any time to the processing of personal data concerning you which are processed pursuant to Art. 6 Para. 1 lit. e or f DSGVO This also applies to profiling based on these provisions. If personal data concerning you are processed for the purpose of direct marketing, you have the right to object at any time to the processing of your personal data. against the processing of the personal data concerning you for the purpose of such advertising; this also applies to profiling, insofar as it is connected with such direct advertising.
  • Right of revocation for consents: You have the right to revoke consents given at any time.
  • Right of access: You have the right to obtain confirmation as to whether the data in question will be processed and to request access to this data as well as further information and a copy of the data in accordance with the provisions of legal requirements.
  • Correction right: You have the right, in accordance with the law, to request the completion of the data concerning you or the correction of the incorrect data concerning you.
  • Right to deletion and restriction of processing: You have the right, in accordance with the statutory provisions, to demand that data concerning you be deleted immediately, or alternatively, in accordance with the provisions of the to demand a restriction of the processing of the data according to the legal requirements.
  • Right to Data Transferability: You have the right to receive the data concerning you that you have provided to us in a structured, common and machine-readable format in accordance with the legal requirements. or to demand their transmission to another responsible person.
  • Complaint to the supervisory authority: You also have the right, in accordance with the statutory provisions, to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, your place of work or your place of work. the location of the alleged violation if you are of the opinion that the processing of your personal data is in violation of the DSGVO.

Last update: December 19, 2019