LabV – The Data Management Platform
Privacy Policy
Thank you for visiting our website and for your interest in our services. The protection of your privacy is very important to us. We attach great importance to the protection of your personal data and your right to informational self-determination. We collect, process and use personal data exclusively in accordance with the General Data Protection Regulation (hereinafter referred to as “GDPR”) and the applicable country-specific data protection regulations.
In the following, we inform you as a data subject as well as the public about the type, scope and purpose of the personal data that we collect, use and process. In addition, your legal rights as a data subject will be explained to you on the basis of this privacy policy. If you do not agree with these terms, please do not access or use this website in any other way. If you have any questions or other concerns, please do not hesitate to contact us. Contact information can be found in section II.
I. Responsible Entities
The responsible entity under the General Data Protection Regulation and other applicable
data protection regulations is:
NEDGEX GmbH
Gebrüder-Netzsch-Strasse 19
95100 Selb, Germany
Phone: +49 9287 75-0
Fax: +49 9287 75208
E-Mail: hello@nedgex.com
Website: https://www.nedgex.com
II. Data Protection Officer
The data protection officer for the responsible entity is:
Dr. Georg Schröder, LL.M.
External data protection officer
legal data Schröder Rechtsanwaltsgesellschaft mbH
Prannerstr. 1
80333 Munich
Tel.: +49-89 – 954 597 520
Fax: +49-89 – 954 597 522
E-Mail: datenschutz@netzsch.com | georg.schroeder@legaldata.law
Data subjects may contact the data protection officer at all times with questions, for the assertion of rights and with other ideas regarding data protection.
III. Processing of Personal Data
1 General information about visiting our website
If you visit our website for information purposes only, it is generally not necessary to provide personal data. In this case, we only collect and use the data that your Internet browser automatically transmits to us, such as your browser type (including version) and browser settings, the operating system used by the access system, the date and time of your visit to our website, the name of your Internet service provider, your IP address and the website from which you visited us. We do not draw any conclusions about the data subject when collecting and processing this data. The data is stored separately from any other personal data of a data subject. The collection and processing is carried out solely to enable the use of the websites you visit for statistical purposes and to improve our website.
2. Cookies
In order to make our websites more attractive and to enable the use of certain functions, we use so-called cookies on various pages. These are text files that are stored on your device. Cookies help us to determine the frequency of use and the number of users of our websites and to make our offers as convenient and efficient as possible for you.
On the one hand, we use so-called “session cookies”, which are only temporarily stored during the use of one of our websites. On the other hand, we use “persistent cookies” (including “Flash cookies”) to collect information about computers that repeatedly access our websites. This allows us to provide you with an optimal user interface and also to “recognize” you when you return so that we can present maximum variety and new content.
In your browser under Tools/Internet Options, you can disable cookies, limit them to certain websites, or set your browser to notify you when a cookie is sent. You also have the option to remove existing cookies with your browser. For more detailed information about these features, see your browser’s documentation or help file.
3. Other Tools
Borlabs Cookie
Our website uses Borlabs Cookie consent technology to obtain your consent to the storage of certain cookies in your browser or to the use of certain technologies and to document them in accordance with data protection regulations. The provider of this technology is Borlabs GmbH, Hamburger Str. 11, 22083 Hamburg (hereinafter referred to as Borlabs).
When you enter our website, a Borlabs cookie is stored in your browser, in which the consent you have given or the revocation of this consent is stored. This data is not passed on to the provider of Borlabs Cookie.
The data collected will be stored until you ask us to delete it or delete the Borlabs cookie yourself or until the purpose for storing the data no longer applies. Mandatory statutory retention periods remain unaffected. Details on data processing by Borlabs Cookie can be found at https://de.borlabs.io/kb/welche-daten-speichert-borlabs-cookie/.
Borlabs cookie consent technology is used to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6 para. 1 lit. c GDPR.
Google Analytics
Our websites also use Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland (“Google”). Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyze how visitors use the website. The information generated by the cookie about your use of our website is usually transmitted to a Google server in the USA and stored there. However, since IP anonymization has been activated on our websites, in the member states of the European Union or in other states that are parties to the Agreement on the European Economic Area, your IP address will initially be shortened. Only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there. Google will use this information on our behalf for the purpose of evaluating your use of our websites, compiling reports on website activity and providing other services relating to website activity and internet usage. The IP address transmitted by your browser as part of Google Analytics will not be merged with other data from Google.
You can prevent the storage of cookies with the appropriate settings in your browser; however, please note that this may cause you to lose some of the functions of the websites. In addition, you can prevent the collection and processing of the data generated by the cookie and related to your use of our websites (including your IP address) by Google by using the following link: tools.google.com/dlpage/gaoptout
For more information, please visit tools.google.com/dlpage/gaoptout or www.google.com/intl/en/analytics/privacyoverview.html (general information about Google Analytics and privacy). Please note that our websites use Google Analytics with the extension “gat._anonymizeIp();” to ensure anonymized collection of IP addresses (so-called IP masking).
Google Tag Manager
We use the Google Tag Manager tool on our website. Google Tag Manager is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
With the help of Google Tag Manager, we can manage the JavaScript and HTML tags set on our site. Tags are small code elements with which we can measure traffic and visitor behavior on our site, evaluate the effectiveness of our advertising, set up remarketing and target group orientation and test and optimize our website. Google Tag Manager does not use its own cookies and does not collect any personal data itself. It triggers other tags, which in turn may collect personal data. However, Google Tag Manager does not access this data.
The legal basis for the processing of your personal data is your consent in accordance with Art. 6 para. 1 lit. a) GDPR.
Further information on data protection at Google can be found here:
https://policies.google.com/privacy?hl=de
Hubspot
We use Hubspot, a service of Hubspot Inc. on our websites for analysis purposes. HubSpot is a software company from the USA with a branch in Ireland. Contact: HubSpot, 2nd Floor 30 North Wall Quay, Dublin 1, Ireland, phone: +353 1 5187500. This uses so-called “web beacons” and also sets “cookies”, which are stored on your computer.
The web beacons and cookies used by Hubspot enable us to analyze your use of the website. Hubspot evaluates the information collected (e.g. IP address, geographical location, type of browser, duration of visit and pages accessed) on our behalf in order to generate reports about your visit to our website.
If you have subscribed to a newsletter, we can also use Hubspot to link a user’s visits to our websites with personal details (in particular name/email address) on the basis of consent given, thus recording them on a personal basis and informing users individually and in a targeted manner about preferred topics. If you generally do not want Hubspot to collect data, you can prevent the storage of cookies at any time by making the appropriate browser settings. For more information about how Hubspot works, please refer to the Hubspot Inc. privacy policy, available at: http://legal.hubspot.com/de/privacy-policy
As part of the optimization of our marketing measures, the following data may be collected and processed via Hubspot
• Geographic location
• Browser type
• Navigation information
• Referral URL
• Performance data
• Information about how often the application is used
• Mobile apps data
• Login information for the HubSpot subscription service
• Files that are displayed on site
• Domain names
• Pages viewed
• Aggregated usage
• Version of the operating system
• Internet service provider
• IP address
• Device identifier
• Duration of the visit
• Where the application was downloaded from
• Operating system
• Events that occur within the application
• Access times
• Clickstream data
• Device model and version
• In addition, we also use Hubspot to provide contact forms.
The legal basis for data processing is your consent in accordance with Art. 6 para. 1 lit. a) GDPR. Consent is given via the consent tool used on our website. If you do not want Hubspot to collect and process the aforementioned data, you can refuse your consent.
The personal data will be stored for as long as it is necessary to fulfill the purpose of processing. The data will be deleted as soon as it is no longer required to achieve the purpose.
As part of processing via HubSpot, data may be transferred to the USA. The security of the transfer is ensured by so-called standard contractual clauses, which guarantee that the processing of personal data is subject to a level of security that corresponds to that of the GDPR.
Nitropack
We use the services of NitroPack LLC, 801 Garden Street 3 А, Prof. Georgi Bradistilov Str.1700 Sofia, Bulgaria, to increase the availability and security of our website.
Nitropack provides a so-called Content Delivery Network (CDN). This means that website operators can make certain page content available not only on their own servers, but also on the servers of CDN providers. If the CDN servers are located closer to the user than the website operator’s servers, the use of a CDN regularly results in faster loading times for the user. When users access the website of such a website operator, they therefore establish a connection not only to the website operator, but also to the CDN operator.
Nitropack also provides website operators with security functions that can be used to defend against automated attacks on the website in particular. By using these functions, the availability of our website and the services it contains can be ensured.
Nitropack uses cookies for the purposes described above and can therefore process the following categories of data in particular:
• IP address,
• End device of the user,
• Data on traffic between the user and the website operator, e.g. pages accessed, date and time of access.
You can completely prevent the processing of your personal data by Nitropack by deactivating the execution of script code in your browser settings or by integrating a so-called script blocker in your browser.
The legal basis for data processing is our legitimate interest in the continuous and secure operation of our website and the defense against hacker attacks (Art. 6 para. 1 lit. f) GDPR).
Further information can be found in Nitropack’s privacy policy at: https://nitropack.io/page/privacy
Wiredminds
Our website uses counting pixel technology from wiredminds GmbH (www.wiredminds.de) to analyze visitor behavior. Where applicable, data is collected, processed and stored, from which user profiles are created under a pseudonym. As far as possible and reasonable, these user profiles are completely anonymized. Cookies may be used for this purpose. Cookies are small text files that are stored in the visitor’s Internet browser and serve to recognize the Internet browser. The data collected, which may include personal data, is transmitted to wiredminds or collected directly by wiredminds. wiredminds may use information left over from visits to the websites to create anonymized usage profiles. The data collected without the express consent of the data subject will not be used to personally identify the visitor to this website and will not be merged with personal data of the bearer of the pseudonym. Whenever IP addresses are recorded, they are immediately anonymized by deleting the last block of numbers. Exclude from tracking.
4. Use of other offered services
Additional data will only be collected and processed when you visit these websites if you provide this data yourself in connection with the use of the services offered on our websites. Please note that in this context there is generally no legal or contractual obligation to provide your personal data. However, if you choose not to provide personal data, the use of our services may be restricted or excluded. Contact via our website.
Due to legal requirements, our website contains information that enables a quick electronic contact with our company as well as a direct communication with us, which also includes a general, so-called e-mail address. When a data subject contacts the controller by e-mail or via a contact form, the personal data provided by the data subject are automatically stored. These personal data, which are voluntarily provided by a data subject to the data controller, are stored for the purposes of processing or contacting the data subject.
IV. Processing Purposes and Legal Basis and Legitimate Interest
When personalized services are used, we process the personal data you share with us for the purpose of providing the service you requested.
We use the personal data collected in connection with communication initiated via our contact form exclusively for the purposes of processing or contacting the data subject. The legal basis for this is legitimate interest (cf. Art. 6 para. 1 lit. f DSGVO).
V. storage period and routine deletion
The legislator has enacted a large number of retention requirements and retention periods. As a rule, these are also the basis for the retention period for personal data. After these periods have expired, the relevant data is routinely deleted or its processing is restricted. If data is not affected, it is deleted as soon as the respective uses no longer apply.
We store the personal data that you provide to us as part of the contact, subject to further processing purposes (e.g. request via the contact form) only until your request has been processed or in accordance with the internal deletion period.
VI. Rights of the data subjects
According to the General Data Protection Regulation, you as a data subject have various rights in connection with the collection and processing of your personal data, which we would like to explain below.
In principle, these rights can be asserted by the data subject at any time. To assert these rights and if you have any questions in this regard, we ask the data subject to contact our responsible person (see point II). He or she will be happy to answer your questions and, in individual cases, encourage you to take the necessary measures to implement the rights asserted by the data subject without delay.
Right of confirmation and access
Every data subject has the right to obtain confirmation from the controller as to whether personal data concerning him or her have been processed. If this is the case, the data subject also has the right to obtain, free of charge, information about his or her personal data stored and a copy of this information.
Right to rectification
Every data subject has the right to request that personal data collected about him or her that is incorrect be corrected without undue delay. In addition, he has the right to request, taking into account the purposes of the processing, the completion of incomplete personal data, including by means of a supplementary declaration.
Right to erasure
Every data subject has the right to request the controller to remove personal data about him or her without undue delay, provided that one of the following data applies and processing is not necessary:
– The personal data have been collected or otherwise processed for purposes for which they are no longer necessary.
– The data subject objects to the processing and there are no legitimate grounds for the processing.
– The personal data have been processed unlawfully.
– The controller is otherwise legally obliged to erase it.
– The personal data is personal data collected from children in the context of information society services.
To the extent that we, the controller, have published the personal data and need to erase it, we will take appropriate measures, taking into account the available technology and the cost of implementation, to inform others responsible for processing the published personal data that the data subject has requested erasure. In addition, we will inform those other controllers that the data subject has requested the erasure of all links to that personal data, as well as anyRcopies or replications, where no processing is necessary.
Right to restrict/block processing
Any data subject has the right to obtain from the controller the restriction of processing where one of the following conditions is met:
– The accuracy of the personal data is contested by the data subject for a period enabling the controller to verify the accuracy of the personal data.
– The processing is unlawful; The data subject objects to the erasure of the personal data and requests instead that the use of the personal data be restricted.
– The controller no longer needs the personal data for processing purposes, but the data subject requires them to assert, exercise or defend legal claims.
– The data subject has objected and it has not yet been determined whether the legitimate grounds of the controller override those of the data subject.
Right to data portability
In principle, every data subject has the right to receive the personal data he or she has provided to a controller in a structured, common and machine-readable format. He or she also has the right to transmit this data to another controller without hindrance from the controller to whom the personal data were originally provided, insofar as the processing is based on consent or a contract and the processing is carried out in an automated procedure.
In addition, the data subject has the right to have the personal data transferred directly from one controller to another, provided that this is technically feasible and does not adversely affect the rights and freedoms of others.
Right to object
Every data subject has the right, on grounds relating to his or her particular situation, to object to processing of personal data concerning him or her insofar as the processing is carried out for the purposes of protecting the legitimate interests of the controller or of third parties. In the event of the objection, we shall no longer process the personal data, unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or for the establishment, exercise or defence of legal claims. If personal data are processed for direct marketing purposes, the data subject shall have the right to object at any time to processing of personal data concerning him or her for such marketing. If the data subject objects to the processing for direct marketing purposes, the personal data will no longer be processed for these purposes.
Right of appeal
Irrespective of the above rights and regardless of other legal remedies, every data subject has the right to appeal to a supervisory authority if he or she believes that the processing of his or her personal data violates data protection regulations.
VII. Data security
Please note that data transmission via the Internet is essentially unsecured. There is a possibility that transmitted data can be read and perhaps even falsified by unauthorized persons. To ensure secure communication, we offer encrypted communication as standard via the SSL protocol, which we use to transmit your personal data. In addition, we use up-to-date technical and organizational measures to protect our website and other systems from loss, destruction, access, modification or distribution of your data by unauthorized persons. These always comply with the current state of the art.
VIII. Transmission to a third country or an international organization
When transferring data to external bodies in third countries, i.e. outside the EU or the EEA, we ensure that these bodies treat your personal data with the same care as within the EU or the EEA. We only transfer personal data to third countries where the EU Commission has confirmed an adequate level of protection or where we ensure the careful handling of personal data through contractual agreements or other suitable guarantees.
IX. Privacy Policy Social Media
With this notice, we would like to inform you about what data we collect from you on our social media presences and how we use it.
You can find us in various social media with our own presence. Through this, we would like to provide you with a broad, multimedia offer and exchange information with you on topics that are important to you. In addition to the respective provider of a social network, we also collect and process personal user data on fan pages.
Responsible entity and data protection officer
Responsible for the processing of personal data on our social media presences is:
NEDGEX GmbH
Gebrueder-Netzsch-Strasse 19
95100 Selb, Deutschland
Telefon: +49 9287 75-0
Telefax: +49 9287 75208
E-Mail: hello@nedgex.com
Website: https://www.nedgex.com
Data Protection Officer
You can also contact our data protection officer at any time with questions about data protection:
Dr Georg Schröder, LL.M
legal data Schröder Rechtsanwaltsgesellschaft mbH
Prannerstr. 1
80333 Munich, Germany
Tel.: +49 (0)89 954 597 520
E-mail: datenschutz@NETZSCH.com | datenschutz@legaldata.law
GENERAL
We link to our presences in social networks on this website. For this purpose, we have linked to a graphic of the respective network.
No data is transmitted to the operators of the social networks when you load our website, but only when you actively follow the link to our profile on the respective social network.
When you access our profile page on a social network, the operator of the social network may set cookies on your end device, regardless of whether you have an account with the network or whether you are logged in there. Cookies are data packets that mark the user’s end devices with a specific identifier. Cookies are primarily set in order to be able to display personalised advertising to visitors of the social networks, including our profile pages.
This is done, for example, by displaying to the user on the pages of the social network advertisements from advertising partners of the social network whose websites the user has previously visited. In addition, cookies enable us to compile statistics on the use of our profile page (e.g. number of page views, user categories).
If we receive such statistical analyses from the operator of the social network, the data is anonymised by the operator beforehand, i.e. it is not possible for us to assign usage data to an individual user. If you are logged in to the social network, however, the operator of the social network may be able to assign the visit to our profile on the social network to your account there.
We have no influence on which data is collected and transmitted by the operator of the social network, to which third-party recipients a transmission by the operator of the social network takes place and how long the data is stored by the operator of the social network. In this regard, we refer to the privacy policy of the respective social network.
FACEBOOK
If you access our Facebook fan page, Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 D02 X525, Ireland (in the following: “Meta Platforms Ireland”), collects, stores and processes your personal data in accordance with Facebook’s privacy policy. You can find the privacy policy here: https://www.facebook.com/privacy/policy/
The purpose pursued by us in processing your data on our profile page on Facebook is to provide information about our offers and services and to respond to any inquiries on our profile page. The legal basis for the processing is Art. 6 (1) f) GDPR. To this extent, public relations work is covered by our legitimate interests within the meaning of the provision.
Within the framework of the “Facebook Insights” function, Facebook may provide us with the following data categories, among others, in anonymised / statistical form for the purpose of performance measurement and optimisation of our Facebook presence:
• Predefined interactions on our fan page
• Timestamp
• Country/city of the user
• HTTP language code
• Age/gender group
• Previously visited website (so-called referral URL)
• End device of the user
• Facebook user ID (if logged in)
With regard to the processing of insights data, there is a joint responsibility between Facebook and us, under which Facebook has assumed primary responsibility. This concerns the processing of insights data and the implementation of data subject rights. Please therefore contact Facebook directly regarding all obligations under the GDPR with regard to the processing of insights data. We will forward any requests we receive in this regard to Facebook. Further details are set out in the Joint Controller Addendum, which can be found here: www.facebook.com/legal/terms/page_controller_addendum
You are not obliged to provide us with your data on our profile pages on social networks. If you do not want the operators of the social networks to collect data from you on our profile pages, you can prevent this by not accessing our profile pages.
We delete private messages that you send to us via Facebook within one year of the last communication with you. Public posts from you (e.g. in our timeline) we keep published permanently until you explicitly request their deletion.
The provision of our services generally requires the involvement of instruction-dependent processors, such as data center operators or other parties. External service providers who process data on our behalf are carefully selected by us and strictly bound by contract.
We would like to point out that Meta Platforms Ireland may transfer personal data to the USA. Meta Platforms Ireland obliges recipients outside the EU/EEA to comply with an appropriate data protection standard due to so-called EU standard contractual clauses. In addition, a transfer to a third country can also take place on the basis of the recognition of an adequate level of data protection by the European Commission (so-called adequacy decision).
In principle, Meta Platforms Ireland assumes the fulfillment of your legal rights for us. However, you may also contact us regarding your rights listed below:
• Right to revoke consent pursuant to Art. 7 (3) GDPR
• Right to information according to Art. 15 GDPR
• Right to rectification and completion according to Art. 16 GDPR
• Right to erasure and to “being forgotten” according to Art. 17 GDPR
• Right to restriction of processing according to Art. 18 GDPR
• Right to data portability according to Art. 20 GDPR
• Right of objection according to Art. 21 GDPR
• Right not to be subject to a decision based solely on automated processing – including profiling – pursuant to Art. 22 GDPR
• Complaint to a data protection supervisory authority pursuant to Art. 77 GDPR
INSTAGRAM
If you visit our Instagram channel, personal data will be stored and processed by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 D02 X525, Ireland, as provider of Instagram in accordance with Instagram’s privacy policy. You can find the privacy policy here: https://privacycenter.instagram.com/policy/
The purpose pursued by us in processing your data on our profile page on Instagram is to provide information about our offers and services and to respond to any inquiries on our profile page. The legal basis for the processing is Art. 6 (1) f) GDPR. To this extent, public relations work is covered by our legitimate interests within the meaning of the provision.
We use the statistics service Instagram Insights for the purpose of needs-based design and ongoing optimisation of our pages. This service records your activity on our site and makes it available to us in anonymised statistics. This provides us with information about, among other things, the interactions of our fan page visitors, the views of our page, the reach of posts, information about the activity of our subscribers, as well as information about which countries and locations our visitors come from, and statistics about the gender ratios of our visitors. It is not possible for us to draw conclusions about individual users or access individual user profiles.
You are not obliged to provide us with your data on our profile pages on social networks. If you do not want the operators of the social networks to collect data from you on our profile pages, you can prevent this by not accessing our profile pages.
We delete private messages that you send to us via Instagram within one year of the last communication with you. Public posts from you (e.g. in our timeline) we keep published permanently until you explicitly request their deletion.
The provision of our services generally requires the involvement of instruction-dependent processors, such as data center operators or other parties. External service providers who process data on our behalf are carefully selected by us and strictly bound by contract.
We would like to point out that Meta Platforms Ireland may transfer personal data to the USA. Meta Platforms Ireland obliges recipients outside the EU/EEA to comply with an appropriate data protection standard due to so-called EU standard contractual clauses. In addition, a transfer to a third country can also take place on the basis of the recognition of an adequate level of data protection by the European Commission (so-called adequacy decision).
In principle, Meta Platforms Ireland assumes the fulfillment of your legal rights for us. However, you may also contact us regarding your rights listed below:
• Right to revoke consent pursuant to Art. 7 (3) GDPR
• Right to information according to Art. 15 GDPR
• Right to rectification and completion according to Art. 16 GDPR
• Right to erasure and to “being forgotten” according to Art. 17 GDPR
• Right to restriction of processing according to Art. 18 GDPR
• Right to data portability according to Art. 20 GDPR
• Right of objection according to Art. 21 GDPR
• Right not to be subject to a decision based solely on automated processing – including profiling – pursuant to Art. 22 GDPR
• Complaint to a data protection supervisory authority pursuant to Art. 77 GDPR
TWITTER
When you visit our channel, Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland (in the following: “Twitter”), as operator, stores and processes personal data to the extent described in the privacy policy.Twitter’s privacy policy can be found here: https://twitter.com/en/privacy
The purpose pursued by us in processing your data on our profile page on Twitter is to provide information about our offers and services and to respond to any inquiries on our profile page. The legal basis for the processing is Art. 6 (1) f) GDPR. To this extent, public relations work is covered by our legitimate interests within the meaning of the provision.
For the purpose of demand-oriented design and continuous optimisation of our pages, we use the statistics service Twitter Analytics. This service records your activity on our site and makes it available to us in anonymised statistics. This provides us with information on, among other things, impressions (how often a certain ad was viewed by Twitter users and by which target groups), conversions (e.g. website visits, registration) and other interactions (e.g. retweets, hashtag clicks). It is not possible for us to draw conclusions about individual users or access to individual user profiles.
You are not obliged to provide us with your data on our profile pages on social networks. If you do not want the operators of the social networks to collect data from you on our profile pages, you can prevent this by not accessing our profile pages.
We delete private messages that you send to us via Twitter within one year of the last communication with you. Public posts from you (e.g. in our timeline) we keep published permanently until you explicitly request their deletion.
The provision of our services generally requires the involvement of instruction-dependent processors, such as data center operators or other parties. External service providers who process data on our behalf are carefully selected by us and strictly bound by contract.
We would like to point out that Twitter may transfer personal data to the USA. Twitter obliges recipients outside the EU/EEA to comply with an appropriate data protection standard due to so-called EU standard contractual clauses. In addition, a transfer to a third country can also take place on the basis of the recognition of an adequate level of data protection by the European Commission (so-called adequacy decision).
In principle, Twitter assumes the fulfillment of your legal rights for us. However, you may also contact us regarding your rights listed below:
• Right to revoke consent pursuant to Art. 7 (3) GDPR
• Right to information according to Art. 15 GDPR
• Right to rectification and completion according to Art. 16 GDPR
• Right to erasure and to “being forgotten” according to Art. 17 GDPR
• Right to restriction of processing according to Art. 18 GDPR
• Right to data portability according to Art. 20 GDPR
• Right of objection according to Art. 21 GDPR
• Right not to be subject to a decision based solely on automated processing – including profiling – pursuant to Art. 22 GDPR
• Complaint to a data protection supervisory authority pursuant to Art. 77 GDPR
YOUTUBE
On our YouTube channel you can find videos or helpful tips about our offer. The customer service team also professionally answers users’ questions and comments on YouTube.
Personal data is stored and processed by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4 D04 E5W5, Ireland (in the following: “Google”), as operator of YouTube, in accordance with Google’s privacy policy. You can find the privacy policy here: https://policies.google.com/privacy?hl=en
The purpose pursued by us in processing your data on our channel on YouTube is to provide information about our offers and services and to respond to any inquiries on our profile page. The legal basis for the processing is Art. 6 (1) f) GDPR. To this extent, public relations work is covered by our legitimate interests within the meaning of the provision.
With the help of YouTube’s analytics functions, it is possible for us to carry out certain statistical evaluations to optimise our channel. This includes, in particular, details on the most popular videos (e.g. user dwell time, ranking of videos), target groups (e.g. countries, language settings, age and gender, activity times) and the reach of our channel (e.g. where users were redirected to a video from) and impressions (e.g. how many users have seen a certain ad). It is not possible for us to draw conclusions about individual users or access individual user profiles.
You are not obliged to provide us with your data on our profile pages on social networks. If you do not want the operators of the social networks to collect data from you on our profile pages, you can prevent this by not accessing our profile pages.
We delete private messages that you send to us via YouTube within one year of the last communication with you. Public posts from you (e.g. in comments) we keep published permanently until you explicitly request their deletion.
The provision of our services generally requires the involvement of instruction-dependent processors, such as data center operators or other parties. External service providers who process data on our behalf are carefully selected by us and strictly bound by contract.
We would like to point out that Google may transfer personal data to the USA. Google obliges recipients outside the EU/EEA to comply with an appropriate data protection standard due to so-called EU standard contractual clauses. In addition, a transfer to a third country can also take place on the basis of the recognition of an adequate level of data protection by the European Commission (so-called adequacy decision).
In principle, Google assumes the fulfillment of your legal rights for us. However, you may also contact us regarding your rights listed below:
• Right to revoke consent pursuant to Art. 7 (3) GDPR
• Right to information according to Art. 15 GDPR
• Right to rectification and completion according to Art. 16 GDPR
• Right to erasure and to “being forgotten” according to Art. 17 GDPR
• Right to restriction of processing according to Art. 18 GDPR
• Right to data portability according to Art. 20 GDPR
• Right of objection according to Art. 21 GDPR
• Right not to be subject to a decision based solely on automated processing – including profiling – pursuant to Art. 22 GDPR
• Complaint to a data protection supervisory authority pursuant to Art. 77 GDPR
VIMEO
On our Vimeo channel you can find videos or helpful tips about our offer. The customer service team also professionally answers users’ questions and comments on YouTube.
Personal data is stored and processed by Vimeo.com, Inc., 330 West 34th Street, 5th Floor, New York, New York 10001, USA (in the following: „Vimeo“), as operator of Vimeo, in accordance with Vimeo’s privacy policy. You can find the privacy policy here: https://policies.google.com/privacy?hl=en
The purpose pursued by us in processing your data on our channel on Vimeo is to provide information about our offers and services and to respond to any inquiries on our profile page. The legal basis for the processing is Art. 6 (1) f) GDPR. To this extent, public relations work is covered by our legitimate interests within the meaning of the provision.
With the help of Vimeo’s analytics functions, it is possible for us to carry out certain statistical evaluations to optimise our channel. This includes, in particular, details on the most popular videos (e.g. user dwell time, ranking of videos), target groups (e.g. countries, language settings, age and gender, activity times) and the reach of our channel (e.g. where users were redirected to a video from) and impressions (e.g. how many users have seen a certain ad). It is not possible for us to draw conclusions about individual users or access individual user profiles.
You are not obliged to provide us with your data on our profile pages on social networks. If you do not want the operators of the social networks to collect data from you on our profile pages, you can prevent this by not accessing our profile pages.
We delete private messages that you send to us via Vimeo within one year of the last communication with you. Public posts from you (e.g. in comments) we keep published permanently until you explicitly request their deletion.
The provision of our services generally requires the involvement of instruction-dependent processors, such as data center operators or other parties. External service providers who process data on our behalf are carefully selected by us and strictly bound by contract.
We would like to point out that personal data is transferred to the USA. We oblige recipients outside the EU/EEA to comply with an appropriate data protection standard on the basis of so-called EU standard contractual clauses. In addition, a transfer to a third country can also take place due to the recognition of an adequate level of data protection by the European Commission (so-called adequacy decision).
In principle, Vimeo assumes the fulfillment of your legal rights for us. However, you may also contact us regarding your rights listed below:
• Right to revoke consent pursuant to Art. 7 (3) GDPR
• Right to information according to Art. 15 GDPR
• Right to rectification and completion according to Art. 16 GDPR
• Right to erasure and to “being forgotten” according to Art. 17 GDPR
• Right to restriction of processing according to Art. 18 GDPR
• Right to data portability according to Art. 20 GDPR
• Right of objection according to Art. 21 GDPR
• Right not to be subject to a decision based solely on automated processing – including profiling – pursuant to Art. 22 GDPR
• Complaint to a data protection supervisory authority pursuant to Art. 77 GDPR
LINKEDIN
On our LinkedIn page, we inform you about career prospects with us and you can contact us directly.
Personal user data is processed by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland (in the following: “LinkedIn”). You can find LinkedIn’s privacy policy at:
https://www.linkedin.com/legal/privacy-policy
The purpose pursued by us in processing your data on our profile page on LinkedIn is to provide information about our offers and services and to respond to any inquiries on our profile page. The legal basis for the processing is Art. 6 (1) f) GDPR. To this extent, public relations work is covered by our legitimate interests within the meaning of the provision.
We use the analytics functions provided by LinkedIn to optimise the performance of our LinkedIn page. In doing so, LinkedIn provides us with a statically prepared – i.e. anonymised – compilation of certain data. These include, among others, the following data categories: Conversions (achievement of certain targets such as registrations for events, leads), user actions (e.g. clicks, views of certain ads) and target groups (e.g. professional position, industry). It is not possible for us to draw conclusions about individual users or access individual user profiles.
In addition, we can also search for suitable candidates for vacancies based on certain characteristics (e.g. current position, skills, professional experience, salary expectations). In this way, we can be shown concrete LinkedIn profiles which we can contact directly.
You are not obliged to provide us with your data on our profile pages on social networks. If you do not want the operators of the social networks to collect data from you on our profile pages, you can prevent this by not accessing our profile pages.
We delete private messages that you send to us via LinkedIn within one year of the last communication with you. Public posts from you (e.g. in our timeline) we keep published permanently until you explicitly request their deletion.
The provision of our services generally requires the involvement of instruction-dependent processors, such as data center operators or other parties. External service providers who process data on our behalf are carefully selected by us and strictly bound by contract.
We would like to point out that LinkedIn may transfer personal data to the USA. LinkedIn obliges recipients outside the EU/EEA to comply with an appropriate data protection standard due to so-called EU standard contractual clauses. In addition, a transfer to a third country can also take place on the basis of the recognition of an adequate level of data protection by the European Commission (so-called adequacy decision).
In principle, LinkedIn assumes the fulfillment of your legal rights for us. However, you may also contact us regarding your rights listed below:
• Right to revoke consent pursuant to Art. 7 (3) GDPR
• Right to information according to Art. 15 GDPR
• Right to rectification and completion according to Art. 16 GDPR
• Right to erasure and to “being forgotten” according to Art. 17 GDPR
• Right to restriction of processing according to Art. 18 GDPR
• Right to data portability according to Art. 20 GDPR
• Right of objection according to Art. 21 GDPR
• Right not to be subject to a decision based solely on automated processing – including profiling – pursuant to Art. 22 GDPR
• Complaint to a data protection supervisory authority pursuant to Art. 77 GDPR
XING
On our XING page, we inform you about career prospects with us and you can contact us directly.
Personal user data is processed by New Work SE, Am Strandkai 1, 20457 Hamburg (in the following: “XING”). You can find XING’s privacy policy at: https://privacy.xing.com/en
The purpose pursued by us in processing your data on our profile page on Xing is to provide information about our offers and services and to respond to any inquiries on our profile page. The legal basis for the processing is Art. 6 (1) f) GDPR. To this extent, public relations work is covered by our legitimate interests within the meaning of the provision.
We use the “Recruiter Insights” function from XING. This enables us to find suitable candidates for vacancies based on certain targets (e.g. current position, skills, professional experience, salary expectations) and to contact them directly. The categories of data processed may include all the information provided by the user on his or her own profile page. In addition, statistical – i.e. anonymised – evaluation functions of “Recruiter Insights” enable us to measure the effectiveness of our candidate search, e.g. with the help of information on how candidates were included in our applicant pool (i.e. via job advertisements, projects, recommendations or other means) or on the response rate.
XING users can influence the extent to which their user behaviour may be recorded when visiting our XING site under the settings for advertising preferences. Further options are offered by the XING settings or the form for the right to object. The processing of information by means of the cookie used by XING can also be prevented by not allowing cookies from third-party providers or those from XING in your own browser settings.
You are not obliged to provide us with your data on our profile pages on social networks. If you do not want the operators of the social networks to collect data from you on our profile pages, you can prevent this by not accessing our profile pages.
We delete private messages that you send to us via XING within one year of the last communication with you. Public posts from you (e.g. in our timeline) we keep published permanently until you explicitly request their deletion.
The provision of our services generally requires the involvement of instruction-dependent processors, such as data center operators or other parties. External service providers who process data on our behalf are carefully selected by us and strictly bound by contract.
We would like to point out that XING may transfer personal data to the USA. XING obliges recipients outside the EU/EEA to comply with an appropriate data protection standard due to so-called EU standard contractual clauses. In addition, a transfer to a third country can also take place on the basis of the recognition of an adequate level of data protection by the European Commission (so-called adequacy decision).
In principle, XING assumes the fulfillment of your legal rights for us. However, you may also contact us regarding your rights listed below:
• Right to revoke consent pursuant to Art. 7 (3) GDPR
• Right to information according to Art. 15 GDPR
• Right to rectification and completion according to Art. 16 GDPR
• Right to erasure and to “being forgotten” according to Art. 17 GDPR
• Right to restriction of processing according to Art. 18 GDPR
• Right to data portability according to Art. 20 GDPR
• Right of objection according to Art. 21 GDPR
• Right not to be subject to a decision based solely on automated processing – including profiling – pursuant to Art. 22 GDPR
• Complaint to a data protection supervisory authority pursuant to Art. 77 GDPR