Privacy Policy
As of January 2023
Personal data (usually referred to just as “data” below) will only be processed by us to the extent necessary and for the purpose of providing a functional and user-friendly website, including its contents, and the services offered there.
Per Art. 4 No. 1 of Regulation (EU) 2023/679, i.e. the General Data Protection Regulation (hereinafter referred to as the “GDPR”), “processing” refers to any operation or set of operations such as collection, recording, organization, structuring, storage, adaptation, alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment, or combination, restriction, erasure, or destruction performed on personal data, whether by automated means or not.
The following privacy policy is intended to inform you in particular about the type, scope, purpose, duration, and legal basis for the processing of such data either under our own control or in conjunction with others. We also inform you below about the third-party components we use to optimize our website and improve the user experience which may result in said third parties also processing data they collect and control.
Our privacy policy is structured as follows:
I. Name and Address of the Controller
II. Contact Details of the Data Protection Officer
III. General Information on Data Processing
IV. Rights of the Data Subject
V. Provison of the Website and Creation of Log Files
VI. Use of Cookies
VII. Email contact
VIII. Contact Form
IX. Application via Email
X. Corporate Profile
XI. Use of Corporate Profile on Professional Networks
XIII. Hosting
XIIII. Geotargeting
XIV. Utilzed Plugins
I. Name and Address of the Controller
The party responsible for this website (the “controller”) for purposes of data protection law is:
VadoTech Deutschland GmbH
Bismarckstr, 7
10625 Berlin
Germany
Telephone: +49 30 327 644 13
E-Mail: info@vadotech.com
II. Contact Details of the Data Protection Firm
DataCO GmbH
Dachauer Straße 65
80335 München
Germany
+49 89 7400 45840
ww.dataguard.de
III. General Information on Data Processing
1. Scope of Personal Data Processing
We process personal data of our users only to the extent necessary for providing a functioning website and our content and services. The processing of personal data of our users is regularly done only with the user’s consent. An exception applies in cases where prior consent is not possible for factual reasons and the processing of data is required by legal regulations.
2. Legal Basis for Personal Data Processing
When we obtain consent from the data subject for processing personal data, Art. 6 (1) lit. a GDPR serves as the legal basis. For processing personal data necessary for the performance of a contract with the data subject, Art. 6 (1) lit. b GDPR serves as the legal basis. This also applies to processing operations necessary for carrying out pre-contractual measures. If the processing of personal data is necessary to fulfill a legal obligation to which our company is subject, Art. 6 (1) lit. c GDPR serves as the legal basis. In the event that vital interests of the data subject or another natural person require the processing of personal data, Art. 6 (1) lit. d GDPR serves as the legal basis.
If processing is necessary to safeguard a legitimate interest of our company or a third party, and if the interests, fundamental rights and freedoms of the data subject do not outweigh the first-mentioned interest, Art. 6 (1) lit. f GDPR serves as the legal basis for processing.
3. Data Erasure and Storage Duration
The personal data of the data subject will be deleted or blocked as soon as the purpose of storage ceases to apply. Storage may also occur if provided for by the European or national legislator in EU regulations, laws or other provisions to which the controller is subject. Blocking or deletion of data also takes place when a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for conclusion or performance of a contract.
IV. Rights of the Data Subject
If your personal data is processed, you are a data subject within the meaning of the GDPR and you have the following rights against the controller:
1. Right to Information (Art. 15 GDPR)
You have the right to request confirmation from us as to whether personal data concerning you is being processed. If this is the case, you have the right to be informed about this data and the following information:
- Purposes of processing
- Categories of personal data
- Recipients or categories of recipients
- Planned storage duration or criteria for determining this duration
- Existence of rights to correction, deletion, or restriction, as well as objection
- Right to lodge a complaint with the competent supervisory authority
- If applicable, the origin of the data (if collected from a third party)
- If applicable, the existence of automated decision-making, including profiling, with meaningful information about the logic involved, the scope, and the expected consequences
- If applicable, the transfer of personal data to a third country or international organization
2. Right to Rectification (Art. 16 GDPR)
If your personal data is incorrect or incomplete, you have the right to request prompt correction or supplementation of the personal data.
3. Right to Restriction of Processing (Art. 18 GDPR)
If any of the following conditions are met, you have the right to request a restriction of the processing of your personal data:
- You dispute the accuracy of your personal data for a period enabling us to verify the accuracy of the personal data.
- In the case of unlawful processing, you oppose the deletion of the personal data and instead request the restriction of its use.
- We no longer need your personal data for the purposes of processing, but you require the data for the assertion, exercise, or defence of legal claims, or after you have objected to the processing, for the duration of the review whether our legitimate grounds prevail over yours.
4. Right to Erasure (“Right to be Forgotten”) (Art. 17 GDPR)
If any of the following grounds apply, you have the right to request the immediate deletion of your personal data:
- Your data is no longer necessary for the purposes for which it was originally collected.
- You revoke your consent and there is no other legal basis for processing.
- You object to the processing and there are no overriding legitimate grounds for the processing, or you object pursuant to Art. 21 para. 2 GDPR.
- Your personal data has been unlawfully processed.
- Deletion is necessary to fulfill a legal obligation under Union law or the law of the Member State to which we are subject.
- The personal data was collected in relation to services offered by the information society in accordance with Article 8 para. 1 GDPR.
Please note that the above reasons do not apply in cases where processing is necessary:
- For the exercise of the right to freedom of expression and information.
- To fulfill a legal obligation or to perform a task carried out in the public interest or in the exercise of official authority.
- For reasons of public interest in the area of public health.
- For archiving purposes in the public interest, scientific or historical research purposes, or statistical purposes.
- For the establishment, exercise, or defense of legal claims.
5. Right to Data Portability (Art. 20 GDPR)
You have the right to receive your personal data in a structured, commonly used, and machine-readable format, or to request the transfer to another Controller.
6. Right to Object to Certain Data Processing (Art. 21 GDPR)
You have the right, for reasons arising from your particular situation, to object at any time to the processing of your personal data concerning you, which is carried out on the basis of Art. 6 para. 1 sentence 1 lit. e or f GDPR. This also applies to profiling based on these provisions.
If your personal data concerning you is processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct marketing.
7. Right to Lodge a Complaint with a Supervisory Authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority if you believe that the processing of your personal data concerning you is in breach of the GDPR. The supervisory authority with which the complaint was lodged shall inform the complainant of the status and results of the complaint, including the possibility of a judicial remedy under Art. 78 GDPR.
A list of locally competent supervisory authorities in Germany can be obtained from the website of the Federal Commissioner for Data Protection at the following link:
https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html
You have the right to complain to a data protection supervisory authority about the processing of your personal data.
Austrian Data Protection Authority
Barichgasse 40-42 1030 Vienna
Telephone: +43 1 52 152-0
Email: dsb@dsb.gv.at
V. Provision of the Website and Creation of Log Files
1. Description and Scope of Data Processing
Upon each visit to our website, our system automatically collects data and information from the computer system of the accessing device.
The following data is collected:
- User’s IP address
- Number of visitors, regional origin of visitors, traffic sources, duration of visit, average number of pages accessed per visit
These data are stored in our system’s log files. They are not stored together with any other personal data of the user.
2. Purpose of Data Processing
The temporary storage of the IP address by the system is necessary to enable the delivery of the website to the user’s device. For this purpose, the user’s IP address must be stored for the duration of the session.
The storage in log files is carried out to ensure the functionality of the website. Additionally, the data serves us for optimising the website and ensuring the security of our information technology systems. In this context, there is no evaluation of the data for marketing purposes.
These purposes also constitute our legitimate interest in data processing according to Art. 6 para. 1 sentence 1 lit. f GDPR.
3. Legal Basis for Data Processing
The legal basis for the temporary storage of data and log files is Art. 6 para. 1 sentence 1 lit. f GDPR.
4. Duration of Storage
The data is deleted as soon as it is no longer necessary for the purpose of its collection. In the case of data collected for the provision of the website, this occurs when the respective session is terminated.
In the case of data stored in log files, this happens no later than seven days after collection. Further storage is possible. In this case, the users’ IP addresses are either deleted or anonymised, making it no longer possible to associate them with the accessing client.
5. Possibility of Objection
The collection of data for the provision of the website and the storage of data in log files is imperative for the operation of the website. The user can object to this. Whether the objection is successful is to be determined within the scope of a balancing of interests.
VI. Use of Cookies
1. Description and Scope of Data Processing
During your visit to our website, we employ technical tools, particularly cookies, which may be stored on your end device. Upon accessing our website and at any time thereafter, you have the option to allow or choose specific additional functions for setting cookies. You can make changes in your browser settings or through our consent manager. Cookies are text files or information in a database that are stored on your hard drive and associated with the browser you are using. This allows certain information to flow to the entity setting the cookie. Below, we describe the types of cookies we utilise:
We employ technically necessary cookies that are essential for the technical structure of the website. Without these cookies, our website may not be displayed (fully correctly) or support functions may not be possible.
The following data is stored and transmitted by technically necessary cookies:
- Language settings
- Log-in information
- Utilisation of website functions
- Session ID for analytics and AdWords
We use cookies on our website that are not technically necessary. Non-essential cookies are considered text files that serve not only the functionality of the website, but also collect other data.
By setting non-essential cookies, the following data is processed:
- Date and time of website visit
- Linking of website visit to other social media platforms
2. Purpose of Data Processing
The purpose of using technically necessary cookies is to ensure the functionality of our website. Some functions of our website cannot be offered without the use of cookies. It is necessary for the browser to be recognized even after changing pages.
We require technically necessary cookies for the following applications:
- Adopting language settings
- Functionality of the website
The use of technically non-essential cookies is intended to improve the quality of our website, its content, and thus our reach and profitability. By setting these cookies, we learn how the website is used and can continuously optimize our offering. In particular, these cookies serve us for the following purposes:
Non-essential cookies are used to evaluate specific usage behavior of website visitors for market research or analytical purposes.
3. Legal Basis for Data Processing
The provisions of the Telecommunications-Telemedia Data Protection Act (TTDSG) apply to the storage of information in the end user’s device and/or access to information already stored in the end user’s device. If setting and reading cookies is technically necessary, this is done to ensure the functionality of our website. In this case, the storage of and access to cookies on your end device is based on § 25 para. 2 no. 2 TTDSG. This storage and access to information in your end device serve to facilitate your use of our website and to offer you our services as desired. Some functions of our website also do not work without the use of these cookies and therefore could not be offered. Cookies are generally deleted after the session ends (e.g., logging out or closing the browser) or after a specified period has elapsed. You can find information about different storage periods for cookies in the following sections of this privacy policy.
If cookies are used that are not technically necessary, this is done based on your explicit consent, which you can grant via the cookie banner. The legal basis for the storage and access to information in this case is § 25 para. 1 TTDSG in conjunction with Art. 6 para. 1 lit. a), Art. 7 GDPR. You can revoke your consent at any time with effect for the future or subsequently grant it again by configuring your cookie settings accordingly. Alternatively, you can prevent the storage of cookies by adjusting your browser software settings. Please note that the browser settings made will only apply to the respective browser used. If personal data is processed following the storage of and access to information on your end device, the provisions of the GDPR apply. You can find information about this in the following sections of this privacy policy.
VII. Email Contact
1. Description and Scope of Data Processing
On our website, it is possible to contact us via the provided email address. In this case, the user’s personal data transmitted via email is stored.
The data is used exclusively for processing the conversation.
2. Purpose of Data Processing
In the case of contact via email, there is also a legitimate interest in processing the data.
3. Legal Basis for Data Processing
The legal basis for processing the data transmitted in the course of sending an email is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is to provide an optimal response to your email inquiry.
If the email contact aims to conclude a contract, an additional legal basis for processing is Art. 6 para. 1 lit. b GDPR.
4. Duration of Storage
The data is deleted as soon as it is no longer necessary for the purpose of its collection. For the personal data sent via email, this is the case when the respective conversation with the user is concluded. A conversation is deemed concluded when it can be inferred from the circumstances that the matter in question has been finally clarified.
Any additional personal data collected during the sending process will be deleted no later than seven days after.
5. Possibility of Objection
Objection If the user contacts us via email, they can object to the storage of their personal data at any time. In such a case, the conversation cannot be continued.
All personal data stored in the course of the contact will be deleted in this case.
VIII. Contact Form
1. Description and Scope of Data Processing
Our website includes a contact form that can be used for electronic communication. If a user chooses this option, the data entered in the input fields is transmitted to us and stored.
At the time of sending the message, the following data is stored:
- Email address
- Last name
- First name
- Optional company name
- No other data than mentioned in Point 3, and the data is only sent via email.
2. Purpose of Data Processing
The processing of personal data from the input fields of the contact form or via the provided email address is solely for the purpose of handling the contact.
The other personal data processed during the sending process is used to prevent misuse of the contact form and to ensure the security of our information technology systems.
3. Legal Basis for Data Processing
The legal basis for processing the data transmitted in the course of sending an email is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest is to provide an optimal response to your inquiry submitted via the contact form. If the email contact aims to conclude a contract, an additional legal basis for processing is Art. 6 para. 1 sentence 1 lit. b GDPR.
4. Duration of Storage
The data is deleted as soon as it is no longer necessary for the purpose of its collection. For the personal data from the input fields of the contact form and those sent via email, this is the case when the respective conversation with the user is concluded. A conversation is deemed concluded when it can be inferred from the circumstances that the matter in question has been finally clarified.
Any additional personal data collected during the sending process will be deleted no later than seven days after.
5. Possibility of Objection
If the user contacts us via the contact form, they can object to the storage of their personal data at any time.
All personal data stored in the course of the contact will be deleted in this case.
IX. Application via Email
1. Description and Scope of Data Processing
You can submit your application via email. We collect your email address and the data provided by you in the email.
- Salutation
- First name
- Last name
- Address
- Phone / Mobile number
- Email address
- Salary expectations
- Educational and school background information
- Language skills
- Resume
- Certificates
- Photo
2. Purpose of Data Processing
The processing of personal data from your application email is solely for the purpose of handling your application.
3. Legal Basis for Data Processing
The legal basis for processing your data is the initiation of a contract at the request of the data subject, Art. 6 para. 1 sentence 1 lit. b Alt. 1 GDPR, and § 26 para. 1 sentence 1 BDSG.
4. Duration of Storage
After the conclusion of the application process, the data will be stored for up to six months. Your data will be deleted no later than the expiration of six months. In the case of a legal obligation, the data will be stored in accordance with applicable regulations.
X. Corporate Profile
Youtube:
YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, United States
On our company page, we provide information and offer the YouTube users the opportunity to communicate. When you perform an action on our YouTube company presence (such as comments, posts, likes, etc.), you may disclose personal data (such as your real name or photo of your user profile). However, since we generally have limited or no influence over the processing of your personal data by the companies jointly responsible for the VadoTech Deutschland GmbH – company presence on YouTube, we cannot provide binding information on the purpose and scope of your data processing.
We use our company presence on social networks for communication and information exchange with (potential) customers. In particular, we use the company presence for:
Social media, Marketing purposes (service announcements, blog posts, promotion of trial lessons, quizzes & more).
The publications through the company presence may contain the following content:
- Information about services
- Contests
- Advertising
- Customer contact
It is up to each user to disclose personal data through activities.
To the extent that we process your personal data to evaluate your online behavior, offer you contests, or conduct lead campaigns, this is based on your explicit consent, Art. 6 para. 1 sentence 1 lit. a, Art. 7 GDPR. The legal basis for processing personal data for the purpose of communicating with customers and prospects is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest is to provide an optimal response to your inquiry or to provide the requested information. If the contact aims to conclude a contract, an additional legal basis for processing is Art. 6 para. 1 lit. b GDPR.
The data generated through the company presence is not stored in our own systems.
For the processing of your personal data in third countries, we have provided suitable guarantees in the form of standard data protection clauses according to Art. 46 para. 2 lit. c GDPR. A copy of the standard data protection clauses can be requested from us.
You can object to the processing of your personal data that we collect in the course of your use of our YouTube company presence at any time and assert your rights as mentioned under section IV. of this privacy policy. To do so, please send us an informal email to marketing@vadotech.com. For further information on the processing of your personal data by YouTube and the corresponding options for objection, please refer to the following link:
YouTube: https://policies.google.com/privacy?gl=DE&hl=de
XI. Use of Corporate Profile on Professional networks
1. Scope of Data Processing
We utilize the option of maintaining company presences on professional networks. We have a company presence on the following professional networks:
LinkedIn:
LinkedIn, Unlimited Company Wilton Place, Dublin 2, Ireland
https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv
XING:
XING SE, Dammtorstraße 30, 20354 Hamburg, Germany
https://privacy.xing.com/de/datenschutzerklaerung
On our page, we provide information and offer users the opportunity to communicate.
The company presence is used for applications, information/PR, and active sourcing.
We do not have information regarding the processing of your personal data by the companies jointly responsible for the company presence. For further information, please refer to the privacy policies of the relevant entities.
When you take action on our company presence (such as comments, posts, likes, etc.), you may disclose personal data (such as your real name or photo of your user profile).
2. Purpose of Data Processing
Our company presence serves to inform users about our services. It is up to each user to disclose personal data through activities.
3. Legal Basis for Data Processing
The legal basis for processing personal data for the purpose of communication with customers and prospects is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest is to provide an optimal response to your inquiry or to provide the requested information. If the contact aims to conclude a contract, an additional legal basis for processing is Art. 6 para. 1 lit. b GDPR.
4. Duration of Storage
We store your activities and personal data published via our company presence until the withdrawal of consent. In addition, we adhere to the legal retention periods.
5. Possibility of Objection
You can object to the processing of your personal data that we collect in the course of your use of our company presence at any time and assert your rights as mentioned under section IV. of this privacy policy. To do so, please send us an informal email to the email address mentioned in this privacy policy.
XII. Hosting
The website is hosted on servers provided by a service provider contracted by us.
Our service provider is:
Domain Factory GmbH, Oskar-Messter-Str. 33, 85737 Ismaning, Germany
The servers automatically collect and store information in so-called server log files, which your browser automatically transmits when you visit the website. The stored information includes:
- Browser type and version
- Operating system used
- Referrer URL
- Hostname of the accessing computer
- Date and time of the server request
- IP address
These data are not merged with other data sources. The collection of this data is based on Art. 6 para. 1 lit. f GDPR. Our legitimate interest in processing this data is to display our website error-free and optimize its functions.
The location of the website’s server is geographically within the European Union (EU) or the European Economic Area (EEA).
XIII. Geotargeting
We use the IP address and other information provided by the user (in particular, postal code within the registration or order process) for regional targeting of our audience (known as “geotargeting”).
Regional targeting is used, for example, to automatically display regional offers or advertisements that are often more relevant to users. The legal basis for using the IP address, as well as potentially other information provided by the user (especially postal code), is Art. 6 para. 1 lit. f GDPR, based on our interest in ensuring a more precise targeting of our audience and thus providing offers and advertisements with higher relevance to users.
In this process, a portion of the IP address and the additional information provided by the user (especially postal code) are only read and not stored separately.
You can prevent geotargeting by, for example, using a VPN or proxy server that prevents accurate localization. In addition, depending on the browser you use, you can also disable location tracking in the respective browser settings (if supported).
We use geotargeting on our website for the following purposes: Advertising.
XIV. Utilized Plugins
For various purposes, we employ plugins. The utilized plugins are listed below:
Use of Facebook Pixel
1. Scope of Personal Data Processing
On our online presence, we utilize the Facebook Pixel by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA and their representative in the Union, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal H, D2 Dublin, Ireland (hereinafter referred to as “Facebook”). With its help, we can track the actions of users after they have viewed or clicked on a Facebook ad. This may involve the storage and evaluation of personal data, especially the user’s activity (specifically which pages have been visited and which elements have been clicked), device and browser information (especially the IP address and operating system), data about displayed advertisements (especially which ads were shown and whether the user clicked on them), and also data from advertising partners (especially pseudonymized user IDs). This allows us to measure the effectiveness of Facebook ads for statistical and market research purposes. Data may be transmitted to Facebook servers in the USA. The data collected in this manner is anonymous to us, meaning we do not see the personal data of individual users. However, Facebook stores and processes this data. Facebook can associate this data with your Facebook account and use it for their own advertising purposes, in accordance with Facebook’s data usage policy. For further information on data processing by Facebook, please refer to: https://www.facebook.com/policy.php
2. Purpose of Data Processing
The use of the Facebook Pixel is for the analysis and optimisation of advertising measures.
3. Legal basis for the processing of personal data
The legal basis for processing the personal data of users is primarily the user’s consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.
4. Duration of storage
The legal basis for processing the personal data of users is primarily the user’s consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.
5. Withdrawal and deletion options
You have the right to revoke your data protection consent at any time. Revoking your consent does not affect the lawfulness of the processing carried out based on the consent prior to revocation. You can prevent the collection and processing of your personal data by Facebook by preventing the storage of third-party cookies on your computer, using the “Do Not Track” feature in a supporting browser, disabling the execution of script code in your browser, or by installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser. For further information on options to object and eliminate against Facebook, please refer to: https://www.facebook.com/policy.php
Use of Google AdWords
1. Scope of Personal Data Processing
We utilize Google AdWords provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, and its representative in the Union, Google Ireland Ltd., Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as “Google”). Through this service, we run advertisements. Google places a cookie on your computer. This may result in the storage and analysis of personal data, particularly user activity (specifically which pages have been visited and which elements have been clicked), device and browser information (especially the IP address and operating system), data about displayed advertisements (especially which ads were shown and whether the user clicked on them), and also data from advertising partners (especially pseudonymized user IDs). For further information on data processing by Google, please refer to: https://policies.google.com/privacy?gl=EN&hl=en
2. Purpose of Data Processing
We only receive information about the total number of users who have responded to our ad. No information is shared that could identify you. The use is not for tracking purposes.
3. Legal basis for the processing of personal data
The legal basis for processing the personal data of users is primarily the user’s consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.
4. Duration of storage
Your personal information will be stored for as long as is necessary to fulfil the purposes described in this privacy policy or as required by law, e.g. for tax and accounting purposes.
5. Withdrawal and deletion options
You have the right to revoke your data protection consent at any time. Revoking your consent does not affect the lawfulness of the processing carried out based on the consent prior to revocation. You can prevent the collection and processing of your personal data by Google by preventing the storage of third-party cookies on your computer, using the “Do Not Track” feature in a supporting browser, disabling the execution of script code in your browser, or by installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser. You can disable the use of your personal data by Google through the following link: https://adssettings.google.com. For further information on options to object and eliminate against Google, please refer to: https://policies.google.com/privacy?gl=EN&hl=en.
Use of Google Analytics
1. Scope of personal data processing
We employ Google Analytics, a web analytics service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, and its representative in the Union, Google Ireland Ltd., Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as “Google”). Google Analytics examines, among other things, the origin of visitors, their duration on individual pages, and the use of search engines, allowing for better assessment of advertising campaign effectiveness. Google places a cookie on your computer. This may result in the storage and analysis of personal data, particularly user activity (specifically which pages have been visited and which elements have been clicked), device and browser information (especially the IP address and operating system), data about displayed advertisements (especially which ads were shown and whether the user clicked on them), and also data from advertising partners (especially pseudonymized user IDs). We use Google Analytics (Universal Analytics) to evaluate your use of our online presence, to compile reports on your activities, and to utilize other services related to the use of our online presence and internet usage by Google. – We have requested the anonymization of IP addresses, which means Google will shorten your IP address as soon as technically feasible. However, it cannot be ruled out that your data will be transmitted to servers of Google LLC located in the USA. On behalf of the operator of this online presence, Google will use this information to evaluate your use of the online presence, to compile reports on the activities of the online presence, and to provide other services related to the use of the online presence and internet usage to the operator of the online presence. For further information on data processing by Google, please refer to: https://policies.google.com/privacy?gl=EN&hl=en
2. Purpose of data processing
The use of Google Analytics (Universal Analytics) is for evaluating the use of our online presence and for targeted advertising to individuals who have already expressed initial interest through their site visit.
3. Legal basis for the processing of personal data
The legal basis for processing the personal data of users is primarily the user’s consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.
4. Duration of storage
Your personal information will be stored for as long as is necessary to fulfil the purposes described in this privacy policy or until you exercise your right to revoke.
5. Revocation possibility
You have the right to revoke your data protection consent at any time. Revoking your consent does not affect the lawfulness of the processing carried out based on the consent prior to revocation. You can prevent the collection and processing of your personal data by Google by preventing the storage of third-party cookies on your computer, using the “Do Not Track” feature in a supporting browser, disabling the execution of script code in your browser, or by installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser. Additionally, you can prevent Google from collecting and processing data related to your use of the online presence (including your IP address) by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en. You can disable the use of your personal data by Google through the following link: https://adssettings.google.com. For further information on options to object and eliminate against Google, please refer to: https://policies.google.com/privacy?gl=EN&hl=en.
6. Warning
Your personal data will also be transferred to the USA. There is no adequacy decision according to Art. 45 para. 3 GDPR for the USA. We would like to inform you that data transmission without an adequacy decision involves certain risks, which we may inform you about below: US intelligence services use certain online identifiers (such as the IP address or unique numbers) as a starting point for monitoring individuals. In particular, it cannot be ruled out that these intelligence services have already collected information about you, with the help of which the data transmitted here can be traced back to you. Providers of electronic communication services headquartered in the USA are subject to monitoring by US intelligence services in accordance with 50 U.S. Code § 1881a (“FISA 702”). Accordingly, providers of electronic communication services headquartered in the USA are obligated to provide personal data to US authorities in accordance with 50 U.S. Code § 1881a, without you having possibly legal remedies. Even encryption of data in the data centers of the provider of electronic communication services cannot provide adequate protection, as a provider of electronic communication services has a direct obligation to grant access to or surrender the imported data that are in its possession, custody or under its control. This obligation can expressly also extend to cryptographic keys without which the data are not readable. The fact that this is not merely a “theoretical risk” is demonstrated by the judgment of the ECJ of July 16, 2020 (Case C-311/18, “Schrems-II”). We have concluded guarantees with Google in the form of standard data protection clauses pursuant to Art. 46 para. 2 lit. c GDPR. A copy of the standard data protection clauses can be requested from us.
Use of Google Ads Remarketing
1. Scope of personal data processing
We utilize Google Ads Remarketing provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, and its representative in the Union, Google Ireland Ltd., Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as “Google”). Google Remarketing is used to re-engage visitors of the online presence for advertising purposes through Google Ads displays. With the help of Google Ads Remarketing, audiences (“Similar Audiences”) can be created, for instance, those who have visited specific pages. This allows for the identification of users on other online presences and the display of targeted advertising. Google places a cookie on the user’s computer. This may result in the storage and analysis of personal data, particularly user activity (specifically which pages have been visited and which elements have been clicked), device and browser information (especially the IP address and operating system), data about displayed advertisements (especially which ads were shown and whether the user clicked on them), and also data from advertising partners (especially pseudonymized user IDs). For further information on data processing by Google, please refer to: https://policies.google.com/privacy?gl=EN&hl=en
2. Purpose of data processing
The purpose of processing personal data lies in targeting a specific audience. The cookies stored on users’ devices recognize them when visiting an online presence and can therefore display relevant advertising to them.
3. Legal basis for the processing of personal data
The legal basis for processing the personal data of users is primarily the user’s consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.
4. Duration of storage
Your personal information will be stored for as long as is necessary to fulfil the purposes described in this privacy policy or as required by law, e.g. for tax and accounting purposes.
5. Withdrawal and deletion options
You have the right to revoke your data protection consent at any time. Revoking your consent does not affect the lawfulness of the processing carried out based on the consent prior to revocation. You can prevent the collection and processing of your personal data by Google by preventing the storage of third-party cookies on your computer, using the “Do Not Track” feature in a supporting browser, disabling the execution of script code in your browser, or by installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser. Additionally, you can prevent Google from collecting and processing data related to your use of the online presence (including your IP address) by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout?hl=en. You can disable the use of your personal data by Google through the following link: https://adssettings.google.com. For further information on options to object and eliminate against Google, please refer to: https://policies.google.com/privacy?gl=EN&hl=en.
Use of Google WebFonts
1. Scope of personal data processing
We utilize Google Webfonts provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, and its representative in the Union, Google Ireland Ltd., Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as “Google”). When the page is accessed, the webfonts are transferred to the browser’s cache in order to be used for visually enhancing the display of various information. If the browser does not support or blocks access to Google Webfonts, the text will be displayed in a standard font. No cookies are stored on the visitor’s computer during the page visit. Data transmitted in connection with the page visit is sent to resource-specific domains such as https://fonts.googleapis.com or https://fonts.gstatic.com. This may result in the storage and analysis of personal data, particularly user activity, specifically which pages have been visited and which elements have been clicked, as well as device and browser information, especially the IP address and operating system. The data is not associated with data that may be collected or used in connection with the parallel use of authenticated Google services such as Gmail. For further information on data processing by Google, please refer to: https://policies.google.com/privacy?gl=EN&hl=en
2. Purpose of data processing
The use of Google Webfonts serves the purpose of presenting our text in an appealing manner. If your browser does not support this function, a standard font from your computer will be used for display.
3. Legal basis for the processing of personal data
The legal basis for processing the personal data of users is primarily the user’s consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.
4. Duration of storage
Your personal information will be stored for as long as is necessary to fulfil the purposes described in this privacy policy or as required by law, e.g. for tax and accounting purposes.
5. Objection and removal options
You can prevent the collection and processing of your personal data by Google by preventing the storage of third-party cookies on your computer, using the “Do Not Track” feature in a supporting browser, disabling the execution of script code in your browser, or by installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser. Additionally, you can disable the use of your personal data by Google through the following link: https://adssettings.google.com. For further information on options to object and eliminate against Google, please refer to: https://policies.google.com/privacy?gl=EN&hl=en.
Use of YouTube
1. Scope of personal data processing
We utilize the YouTube plugin operated by Google LLC, 901 Cherry Ave., San Bruno, CA 94066, USA, and its representative in the Union, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as “Google”). We use the YouTube plugin to embed videos from YouTube on our online presence. When you visit our online presence, your browser establishes a connection with YouTube’s servers. This may result in the storage and analysis of personal data, particularly user activity (specifically which pages have been visited and which elements have been clicked) as well as device and browser information (especially the IP address and operating system). We have no influence over the content of the plugin. If you are logged into your YouTube account during your visit, YouTube may associate your visit to our online presence with this account. By interacting with this plugin, this relevant information is transmitted directly to YouTube and stored there. For further information on data processing by Google, please refer to: https://policies.google.com/privacy?gl=EN&hl=en
2. Purpose of data processing
The use of the YouTube plugin aims to enhance user-friendliness and present our online presence in an appealing manner.
3. Legal basis for the processing of personal data
The legal basis for processing the personal data of users is primarily the user’s consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.
4. Duration of storage
Your personal information will be stored for as long as is necessary to fulfil the purposes described in this privacy policy or as required by law, e.g. for tax and accounting purposes.
5. Objection and removal options
You can prevent the collection and processing of your personal data by Google by preventing the storage of third-party cookies on your computer, using the “Do Not Track” feature in a supporting browser, disabling the execution of script code in your browser, or by installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser. Additionally, you can disable the use of your personal data by Google through the following link: https://adssettings.google.com. For further information on options to object and eliminate against Google, please refer to: https://policies.google.com/privacy?gl=EN&hl=en.
Use of Google Tag Manager
1. Scope of personal data processing
We utilize Google Tag Manager (https://www.google.com/intl/en/tagmanager/) provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, and its representative in the Union, Google Ireland Ltd., Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as “Google”). Google Tag Manager allows for the management and consolidation of tags from Google services and third-party providers, which are embedded on an online presence. Tags are small pieces of code on an online presence that serve various purposes, including measuring visitor numbers and behavior, capturing the impact of online advertising and social channels, utilizing remarketing and audience targeting, and testing and optimizing online presences. When a user visits the online presence, the current tag configuration is sent to the user’s browser. It contains instructions on which tags should be triggered. Google Tag Manager facilitates the triggering of other tags, which in turn may collect data. Information regarding this can be found in the sections on the use of the respective services in this privacy policy. Google Tag Manager does not access this data. For further information on Google Tag Manager, please refer to: https://www.google.com/intl/en/tagmanager/faq.html and in Google’s privacy policy: https://policies.google.com/privacy?hl=en.
2. Purpose of data processing
The purpose of processing personal data is to efficiently manage and integrate third-party services in a collected and clear manner.
3. Legal basis for the processing of personal data
The legal basis for processing the personal data of users is primarily the user’s consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.
4. Duration of storage
Your personal information will be stored for as long as is necessary to fulfil the purposes described in this privacy policy or as required by law. Advertising data in server logs is anonymised, as Google claims to delete parts of the IP address and cookie information after 9 or 18 months.
5. Objection and removal options
You have the right to revoke your data protection consent at any time. Revoking your consent does not affect the lawfulness of processing based on consent before its withdrawal. You can prevent the collection and processing of your personal data by Google by preventing the storage of third-party cookies on your computer, using the “Do Not Track” feature in a supporting browser, disabling the execution of script code in your browser, or by installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser. Additionally, you can disable the use of your personal data by Google through the following link: https://adssettings.google.com. For further information on options to object and eliminate against Google, please refer to: https://policies.google.com/privacy?gl=EN&hl=en.
Use of LinkedIn Analytics
1. Scope of personal data processing
We utilize the analytical service LinkedIn Analytics provided by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (hereinafter referred to as “LinkedIn”). LinkedIn Analytics creates pseudonymized user profiles for analysis of user behavior, which is used to optimize our offerings. The following data is processed:
- Information about the operating system
- Device identifier
- Internet service provider
- IP address
- Referrer URL
- Browser information
For further information on data processing by LinkedIn, please refer to: https://www.linkedin.com/legal/privacy-policy.
2. Purpose of data processing
The processing of user’s personal data by LinkedIn Analytics allows us to analyze the browsing behavior of our users. Through the evaluation of the obtained data, we can compile information about the usage of individual components of our offering. This aids us in continuously improving our online presence and, in this context, enhancing user-friendliness.
3. Legal basis for the processing of personal data
The legal basis for processing the personal data of users is primarily the user’s consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.
4. Duration of storage
Your personal information will be stored for as long as is necessary to fulfil the purposes described in this privacy policy or as required by law.
5. Objection and removal options
You have the right to revoke your data protection consent at any time. Revoking your consent does not affect the lawfulness of processing based on consent before its withdrawal. You can prevent the collection and processing of your personal data by LinkedIn by preventing the storage of third-party cookies on your computer, using the “Do Not Track” feature in a supporting browser, disabling the execution of script code in your browser, or by installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser. Additionally, you can disable the use of your personal data by LinkedIn through the following link: https://www.linkedin.com/help/linkedin/answer/62931/manage-advertising-preferences. For further information on options to object and eliminate against LinkedIn, please refer to: https://www.linkedin.com/legal/privacy-policy.
Use of Facebook Retargeting
1. Scope of personal data processing
We employ the advertising plugin functionality known as Facebook Retargeting provided by Facebook Ireland Limited, 4 Grand Canal Square, Dublin Dublin 2, Ireland (hereinafter referred to as “Facebook Retargeting”). Facebook Retargeting is used for conducting advertising campaigns and interacting with them. Users are reminded of products they have searched for or viewed but not purchased through Facebook Retargeting. This involves the storage of cookies by Facebook on your device. The following personal data is processed by Facebook in particular:
- Information about user activities
- Visited webpage
- Displayed products
- Clicked ads
- Device information, particularly device type, IP address
- Facebook account of the users if they are logged into Facebook
This data is processed on servers owned by Facebook Inc., Facebook, Inc., 1601 Willow Road, Menlo Park, California 94025 in the USA. Additional recipients of the data are providers and service providers of Facebook Inc., for example, for analytical purposes. For further information on data processing by Facebook, please refer to: https://de-de.facebook.com/privacy/explanation.
2. Purpose of data processing
The use of Facebook Retargeting serves us in delivering advertisements on various platforms and analyzing user interactions with these ads. This aims to display personalized advertising to users that is more relevant to them.
3. Legal basis for the processing of personal data
The legal basis for processing the personal data of users is primarily the user’s consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.
4. Duration of storage
Your personal information will be stored for as long as is necessary to fulfil the purposes described in this privacy policy or as required by law, such as for tax and accounting purposes.
5. Objection and removal options
You have the right to revoke your data protection consent at any time. Revoking your consent does not affect the lawfulness of processing based on consent before its withdrawal. You can prevent the collection and processing of your personal data by Facebook by preventing the storage of third-party cookies on your computer, using the “Do Not Track” feature in a supporting browser, disabling the execution of script code in your browser, or by installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser. The deactivation of personalized advertising for Facebook users who are logged in can be done here: https://www.facebook.com/settings/?tab=ads. For further information on options to object and eliminate against Facebook, please refer to: https://de-de.facebook.com/privacy/explanation.
Use of LinkedIn Insight Tag
1. Scope of personal data processing
We utilize the marketing plugin functionality known as LinkedIn Insight Tag provided by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (hereinafter referred to as “LinkedIn”). This plugin allows us to gather information about website visitors and generate detailed campaign reports. LinkedIn processes the following personal data in particular:
- URL
- Referrer URL
- IP address (shortened or hashed)
- Device and browser properties (User Agent) as well as timestamps.
In this process, cookies from LinkedIn are stored on your device. For more information on the cookies used, please refer to: https://www.linkedin.com/legal/cookie-policy. LinkedIn does not share personal data with us but provides only aggregated reports about the audience and advertisements. LinkedIn also offers a remarketing feature, allowing us to display targeted personalized advertising outside of our website without acquiring your identity. For further information on data processing by LinkedIn, please refer to: https://www.linkedin.com/legal/privacy-policy?_l=de_DE.
2. Purpose of data processing
The use of LinkedIn Insight Tag serves us in collecting information about visitors to our website.
3. Legal basis for the processing of personal data
The legal basis for processing the personal data of users is primarily the user’s consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.
4. Duration of storage
The direct identifiers of members are removed within seven days to pseudonymize the data. These remaining pseudonymized data are then deleted within 180 days.
5. Objection and removal options
You have the right to revoke your data protection consent at any time. Revoking your consent does not affect the lawfulness of processing based on consent before its withdrawal. You can prevent the collection and processing of your personal data by LinkedIn by preventing the storage of third-party cookies on your computer, using the “Do Not Track” feature in a supporting browser, disabling the execution of script code in your browser, or by installing a script blocker such as NoScript (https://noscript.net/) or Ghostery (https://www.ghostery.com) in your browser. For further information on options to object and eliminate against LinkedIn, please refer to: https://www.linkedin.com/legal/privacy-policy?_l=de_DE.
This privacy policy was created with the support of DataGuard.