Data protection declaration

Data protection declaration

With this data protection declaration, we would like to inform you about the type, scope and purpose of the processing of personal data (hereinafter also referred to as “data”). Personal data are all data that have a personal reference to you, e.g. name, address, e-mail address or your user behaviour. The data protection declaration applies to all data processing procedures carried out by us both within the scope of our core activities and for the online media provided by us.

The person responsible for data processing is:

Ines Lechleitner
10178 Berlin
Germany
004915115580885
hello@ines-l.com

Processing of your data within the scope of our company’s core activities

If you are our customer or business partner or are interested in our services, the type, scope and purpose of the processing of your data depends on the contractual or pre-contractual relationship existing between us. In this sense, the data processed by us includes all those data which are or were provided by you for the purpose of using the contractual or pre-contractual services and which are required to process your enquiry or the contract concluded between us. Unless otherwise stated in the further notes to this data protection declaration, the processing of your data and its transfer to third parties is limited to those data that are necessary and expedient to answer your enquiries and/or to fulfil the contract concluded between you and us, to protect our rights and to fulfil legal obligations. We will inform you of the data required for this before or during the data collection process. Insofar as we use third-party providers to provide our services, the data protection notices of the respective third-party providers apply.

Data concerned:

– Inventory data (e.g. names, addresses)

– Payment data (e.g. bank details, invoices)

– Contact data (e.g. e-mail address, telephone number, postal address)

– Contract data (e.g. subject matter of the contract, duration of the contract)

Persons concerned: Interested parties, business and contractual partners

Purpose of processing: processing of contractual services, communication as well as answering contact enquiries, office and organisational procedures

Legal basis: fulfilment of contract and pre-contractual enquiries, Art. 6 para. 1 lit. b DSGVO, legal obligation, Art. 6 para. 1 lit. c DSGVO, legitimate interest, Art. 6 para. 1 lit. f DSGVO

Your rights under the DSGVO

According to the DSGVO, you are entitled to the rights listed below, which you can exercise at any time by contacting the data controller named in section 1 of this data protection declaration:

– Right to information: you have the right to request information from us as to whether and which of your data we process.

– Right to rectification: You have the right to request the rectification of inaccurate data or the completion of incomplete data.

– Right to erasure: You have the right to request the erasure of your data.

– Right to restriction: In certain cases, you have the right to request that we only process your data in a restricted manner.

– Right to data portability: You have the right to request that we transfer your data to you or another responsible person in a structured, common and machine-readable format.

– Right to complain: You have the right to complain to a supervisory authority. The supervisory authority of your usual place of residence, your place of work or our registered office is responsible.

Right of withdrawal

You have the right to revoke your consent to data processing at any time.

Right of objection

You have the right to object at any time to the processing of your data, which we base on our legitimate interest according to Art. 6 (1) lit. f DSGVO. If you exercise your right to object, we ask you to explain the reasons. We will then no longer process your personal data unless we can prove to you that compelling reasons worthy of protection for the data processing outweigh your interests and rights.

Irrespective of the above, you have the right at any time to object to the processing of your personal data for the purposes of advertising and data analysis.

Please send your objection to the contact address of the data controller given above.

When do we delete your data?

We delete your data when we no longer need it or when you instruct us to do so. This means that – unless otherwise stated in the individual data protection notices of this data protection declaration – we will delete your data,

– if the purpose of the data processing has ceased to exist and thus the respective legal basis stated in the individual data protection notices no longer exists, for example.

– after termination of the contractual or membership relationship existing between us (Art. 6 para. 1 lit. a DSGVO) or

– after our legitimate interest in the further processing or storage of your data has ceased to exist (Art. 6 para. 1 lit. f DSGVO),

– if you exercise your right of revocation and no other legal basis for processing within the meaning of Art. 6 (1) b-f DSGVO applies,

– if you exercise your right to object and there are no compelling legitimate grounds for deletion.

However, if we still need to retain (certain parts of) your data for other purposes, for example because tax retention periods (usually 6 years for business correspondence or 10 years for accounting records) or the assertion, exercise or defence of legal claims arising from contractual relationships (up to four years) make this necessary or the data is needed to protect the rights of another natural or legal person, we will only delete (that part of) your data after these periods have expired. However, until the expiry of these periods, we limit the processing of this data to these purposes (compliance with retention obligations).

Cloud services

We use cloud services in particular

– to store and process documents,

– to send documents by e-mail or to exchange files of any kind,

– for our calendar management of appointments,

– to prepare and execute presentations and spreadsheets,

– for publishing files of any kind,

– for internal and external communication via chats, audio and video conferences.

The software applications we use for these purposes are made available to us by the provider(s) named below on their servers. We access these servers via the Internet. Insofar as you transmit your data to us in the course of communication with us or in other processes explained by us by means of this data protection declaration, we process this data in the cloud service used by us. This means that your data will be stored on the servers of the third party cloud service provider. The third-party providers process usage and metadata to secure their servers and to optimise their services. We process and store your contact, customer and contract data in particular.

If we make files of any kind publicly available via our internet presence by means of the cloud service we use, the respective third-party provider of the cloud service may store cookies on your computer system if you access these files. The service provider may process the data collected in this way to analyse your usage behaviour or browser settings.

We would like to point out that, depending on the country of domicile of the service provider named below, the data named in more detail below may be transferred to and processed on servers outside the area of the European Union. In this case, there is a risk that the level of data protection prescribed by the GDPR will not be complied with and that it will be difficult or impossible to enforce your rights. If the service provider we use offers to process the data exclusively within the EU, we intend – if currently not already implemented anyway – to process your data exclusively there.

Data concerned:

– Inventory data (e.g. names, addresses),

– Contact data (e.g. e-mail addresses, telephone and mobile phone numbers)

– Content data (e.g. photos, videos, texts),

– Usage data (e.g. times of access, websites visited, interest in content),

– Metadata (e.g. IP address, computer system information).

Data subjects: Interested parties, communication partners, customers, employees (e.g. applicants, current and former employees).

Purpose of processing: organisation of office and administrative tasks

Legal basis: consent, Art. 6 para. 1 lit. a DSGVO, contract performance and pre-contractual requests, Art. 6 para. 1 lit. b DSGVO, legitimate interest, Art. 6 para. 1 lit. f DSGVO

Cloud service providers used:

Google Cloud Services

Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA

Website: https://cloud.google.com/

Privacy policy: https://www.google.com/policies/privacy

Cookies

Our website uses cookies. Cookies are small text files consisting of a series of numbers and letters that are placed and stored on the terminal device you are using.
Cookies are primarily used to exchange information between the terminal device you are using and our website. This includes, among other things, the language settings on a website, the login status or where a video was watched. Two types of cookies are used when you visit our websites: – Temporary cookies (session cookies): these store a so-called session ID, with which various requests from your browser can be assigned to the joint session. Session cookies are deleted when you log out or close your browser. – Permanent cookies: Permanent cookies remain stored even after you close your browser. This enables our website to recognise your computer again when you return to our website. For example, information on language settings or log-in information is stored in these cookies. In addition, these cookies can be used to document and store your surfing behaviour. This data can be used for statistical, marketing and personalisation purposes. In addition to the above classification, cookies can also be differentiated with regard to their purpose: – Necessary cookies: These are cookies that are absolutely necessary for the operation of our website, to save logins or shopping baskets for the duration of your session, or cookies that are set for security reasons. – Statistical, marketing and personalisation cookies: These are cookies that are used for analysis purposes or to measure reach. In particular, information on search terms entered or the frequency of page views can be stored via such “tracking” cookies. In addition, the surfing behaviour of an individual user (e.g. viewing of certain content, use of functions, etc.) can also be stored in a user profile. Such profiles are used to show users content that corresponds to their potential interests. Insofar as we use services through which cookies are stored on your terminal device for statistical, marketing and personalisation purposes, we will inform you about this separately in the following sections of our data protection declaration or in the context of obtaining your consent. Data concerned: – Usage data (e.g. access times, web pages clicked on) – Communication data (e.g. information about the device used, IP address). Data subjects: Users of our online offers Processing purpose: Playing out our internet pages, ensuring the operation of our internet pages, improving our internet offer, communication and marketing. Legal basis: Legitimate interest, Art. 6 para. 1 lit. f DSGVO. Unless we obtain your consent to set cookies, we base the processing of your data on our legitimate interest in improving the quality and user-friendliness of our website, in particular the content and functions. You can use the security settings of your browser to object to the use of cookies set by us within the scope of our legitimate interest. There you have the option of specifying whether you do not accept cookies from the outset or only accept them on request, or whether you specify that cookies are deleted each time you close your browser. If cookies are deactivated for our website, it may no longer be possible to use all the functions of the website to their full extent. Consent, Art. 6 para. 1 lit. a DSGVO If we ask you before your visit to our website to set certain cookies on your terminal device and you consent to this, the legal basis is to be seen in the consent you have given. Within the scope of the consent, we will inform you about which cookies we set in detail. If you do not give this consent, we will only set the so-called technically necessary cookies that are required for the proper operation of our Internet pages and their display in your browser. If you have consented to the setting of cookies, you have the option of revoking your consent at any time. Web hosting In order to maintain our Internet pages, we use a provider on whose server our Internet pages are stored and made available for retrieval on the Internet (hosting). In doing so, the provider may process all the data transmitted via the browser you use that is generated when you use our Internet pages. This includes in particular your IP address, which the provider needs in order to be able to deliver our online offer to the browser you use, as well as all entries you make via our website. In addition, the provider used by us may also record – the date and time of access to our website 

– Time zone difference from Greenwich Mean Time (GMT)

– access status (HTTP status)

– the amount of data transferred

– the Internet service provider of the accessing system

– the type of browser you are using and its version

– the operating system you are using

– the website from which you may have accessed our website

– the pages or sub-pages which you visit on our website.

collect. The aforementioned data is stored as log files on the servers of our provider. This is necessary to ensure the stability and security of the operation of our website.

Data concerned:

– Content data (e.g. posts, photos, videos)

– Usage data (e.g. access times, web pages clicked on)

– Communication data (e.g. information about the device used, IP address).

Data subjects: Users of our website

Purpose of processing: Playing out our internet pages, guaranteeing the operation of our internet pages

Legal basis: Legitimate interest, Art. 6 para. 1 lit. f DSGVO

Web host(s) commissioned by us:

All-inkl.com

Service provider: All-Inkl.com – Neue Medien Münnich, Owner: René Münnich, Hauptstr. 68, 02742 Fredersdorf, Germany.

Website: https://all-inkl.com/

Privacy policy: https://all-inkl.com/datenschutzinformationen/

Contact

Insofar as you contact us via e-mail, social media, telephone, fax, post, our contact form or otherwise and in doing so provide us with personal data such as your name, telephone number or e-mail address, or provide us with further information about yourself or your request, we process this data in order to respond to your enquiry within the framework of the pre-contractual or contractual relationship existing between us.

Data concerned:

– Inventory data (e.g. names, addresses)

– Contact data (e.g. e-mail address, telephone number, postal address)

– Content data (texts, photos, videos)

– Contract data (e.g. subject matter of the contract, duration of the contract)

Data subjects: Interested parties, customers, business and contractual partners

Purpose of processing: communication as well as answering contact requests, office and organisation procedures

Legal basis: fulfilment of contract and pre-contractual enquiries, Art. 6 para. 1 lit. b DSGVO, legitimate interest, Art. 6 para. 1 lit. f DSGVO

Your comments or ratings

You have the option of commenting on our contributions, expressing your opinion or posting content in the designated areas of our website. Since we ourselves may be held liable for content of your comments that violates the law (insults, defamatory criticism, incitement of the people, prohibited depiction of violence, etc.), we store your IP address for a period of 7 days in order to be able to determine your identity if necessary.

Legal basis: Art. 6 para. 1 lit. f DSGVO

Data concerned:

– Inventory data (e.g. names, addresses)

– Content data (e.g. posts, photos, videos)

– Usage data (e.g. access times, web pages clicked on)

– Communication data (e.g. information about the device used, IP address)

Purpose of processing: performance of contractual obligations, communication and processing of enquiries, obtaining feedback, security measures.

Akismet

We use “Akismet” on our website. Akismet is used to filter the comments submitted by users and to identify comments that are to be classified as “spam” and to treat them accordingly. For this purpose, the comments submitted by you as well as the communication data are transmitted to the external servers of Automattic Inc. and analysed.

Legal basis: contract performance and pre-contractual enquiries Art. 6 para. 1 lit. b DSGVO, Art. 6 para. 1 lit. f DSGVO.

Data concerned:

– Inventory data (e.g. names, addresses)

– Content data (e.g. posts, photos, videos)

– Usage data (e.g. access times, web pages clicked on)

– Communication data (e.g. information about the device used, IP address)

Purpose of processing: performance of contractual obligations, communication and processing of enquiries, obtaining feedback, security measures

Deletion: Comments and the associated data are automatically deleted by Automattic Inc. from its server after four days. If a comment has been classified as spam, it will be stored beyond this period.

Service provider: Automattic Inc., 60 29th Street #343, San Francisco, CA 94110, USA

Website: https://automattic.com/

Privacy policy: https://automattic.com/privacy/

Payment service provider

In accordance with our legal obligations or because of our legitimate interests in efficient, secure and customer-oriented payment processing, persons who have concluded a contract or other legal relationship with us may use banks and credit institutions as well as other payment service providers for payment. The payment service providers offered by us process inventory data in this context, including name, address or bank data such as account/credit card number, passwords, TANs, verification numbers as well as details of the concluded contract and details of the recipient of the payment.

The data collected in this context is necessary to enable the payment service provider to process the payment. Only the payment service provider commissioned by us collects and processes this personal information. At no time do we receive information about your account or credit card details. We are informed by our payment service provider whether or not our customers’ payment has been received. It is possible that our payment service providers forward the data of our customers to credit information files in order to be able to check the identity and creditworthiness of the payer. In this respect, we refer to the data protection declaration and general terms and conditions (GTC) of our payment service providers.

The general terms and conditions and data protection regulations of the respective payment service provider apply. You will find this information on the website of the service provider concerned or in the transaction application. For further information and for the assertion of your rights regarding revocation and information, we refer in this respect to the provisions of the respective service provider.

Data concerned:

– Inventory data (e.g. name, address),

– Usage data (e.g. Internet pages visited, interest in certain topics, times of access),

– Payment data (e.g. bank details, invoices, payment history),

– Transaction data (e.g. duration, customer category, subject of contract),

– Communication and metadata (e.g. IP address, device or computer system information).

Purpose of processing: Effective, secure and customer-oriented payment offers (service) as well as processing of payments in accordance with the contractual agreement.

Legal basis: contract performance and fulfilment of pre-contractual requests, Art. 6 para. 1 lit. b DSGVO, legitimate interests, Art. 6 para. 1 lit. f DSGVO

Revocation options: You can revoke your consent to the use of personal data at any time vis-à-vis the respective payment service provider. Despite revocation, the payment service provider may still be entitled to process, use and transmit the personal data that is absolutely necessary for processing the payment in accordance with the contract. With regard to the storage and timely deletion of personal data, we refer to the respective data protection provisions of the payment service provider.

We use the following payment service providers:

PayPal

Service provider: PayPal (Europe) S.à.r.l. et Cie, S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg.

Website: https://www.paypal.com/de/webapps/mpp/home

Privacy policy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full#

Newsletter

We send out a newsletter at regular intervals to inform our customers, business partners and interested parties about our offers and related news. You have the option of registering for our newsletter on our website and agreeing to receive the newsletter as part of the registration process. If you register for our newsletter, it is obligatory to provide your e-mail address. We store the e-mail address in order to be able to send you the newsletter. The provision of further data such as title or name is voluntary and is used to address you personally. As soon as you register for our newsletter, you will receive a confirmation e-mail at the e-mail address you provided during registration in the so-called double opt-in procedure. This e-mail contains a link. When you click on this link, you confirm that you would like to receive the newsletter. In this way, we ensure that your e-mail address has not been misused by a third party during registration. For the same reason, we store the date and time of registration as well as the IP address assigned to you during registration. We do not pass on the aforementioned data to third parties.

Evaluation of user behaviour

If you have consented to this, we evaluate your user behaviour when sending the newsletter. Our newsletter contains tracking pixels and tracking links for this purpose. This allows us to see whether and when you have opened the newsletter and whether and which links you have clicked on.

Purpose: We evaluate the newsletter as described above in order to be able to measure a statistical evaluation of the success or failure of our newsletter.

Legal basis: The legal basis for the processing of your data is Art. 6 para. 1 lit. a DSGVO.

Prevention: You can revoke your consent to receive the newsletter at any time using the options provided above.

Deletion: We will delete your data after revocation.

Data concerned:

– Content data (e.g. posts, photos, videos).

– Usage data (e.g. access times, web pages clicked on)

– Communication data (e.g. information about the device used, IP address).

Data subjects: Users of our website

Purpose of processing: Playing out our internet pages, guaranteeing the operation of our internet pages

Legal basis: Consent, Art. 6 para. 1 lit. a DSGVO, legitimate interest, Art. 6 para. 1 lit. f DSGVO

Deletion: The deletion of the e-mail address takes place either if you have not clicked on the confirmation link 1 month after sending the confirmation e-mail in the double opt-in procedure or immediately after you have unsubscribed from our newsletter.

Revocation: You can revoke your consent to receive the newsletter at any time and unsubscribe from the newsletter. We offer the following options through which you can declare the revocation:

– Click on the link provided for this purpose in the newsletter

– by e-mail to: hello@ines-l.com

– by using the contact details provided in the imprint of our website

Mailchimp

Service provider: “Mailchimp” – Rocket Science Group LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA

Website: https://mailchimp.com

Privacy policy: https://mailchimp.com/legal/privacy/

Web analysis and statistics

We use web analysis services to record and statistically evaluate the flow of visitors to our website. Such services record, among other things, data on the website from which you have accessed our website (so-called referrers), which pages of our website you have accessed, how long you have visited our pages and which interactions you have carried out there. In addition, data on the browser, computer system and type of device you use are collected. In addition, demographic information such as age or gender can be collected as pseudonymous values via such a service. If you have consented to the collection of your location data, this may also be processed, depending on the provider.

In order to collect and store this data, the web analysis service we use usually sets a cookie on the end device you use, which also collects the IP address assigned to you. However, this is shortened using a so-called IP masking procedure so that the IP address can no longer be assigned to your visit to our website. In addition, no clear data such as names or e-mail addresses are stored. Neither we nor the service we use know the identity of visitors to our website.

We would like to point out that, depending on the country of domicile of the service provider mentioned below, the data collected via the service may be transmitted and processed outside the area of the European Union. In this case, there is a risk that the level of data protection prescribed by the GDPR may not be complied with and that the enforcement of your rights may not be possible or may be difficult.

Data concerned:

– Usage data (e.g. access times, web pages clicked on)

– Communication data (e.g. information about the device used, IP address).

Data subjects: Users of our online offers

Purpose of processing: Measuring reach, monitoring the success of campaigns, remarketing and interest- and behaviour-based marketing.

Legal basis: If we have asked you for your consent before using the respective service, this is the legal basis, Art. 6 (1) lit. a DSGVO. Furthermore, we use the respective service on the basis of our legitimate interest in analysing the flow of visitors to our website in order to be able to continuously improve the functions, offers and user experience, Art. 6 para. 1 lit. f DSGVO.

We use the following web analysis services:

Google Analytics

Service provider: Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

Headquarters within the EU: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland

Website: https://marketingplatform.google.com/intl/de/about/analytics/

Privacy policy: https://policies.google.com/privacy?hl=de

Opt-out option: If you do not want your data to be used by Google Analytics, you can set a so-called opt-out plugin, which will prevent your data from being collected on our website in the future. You can obtain this plugin here: https://tools.google.com/dlpage/gaoptout?hl=de

Third-party plugins used by us

We have embedded plugins in the form of “social media buttons” of the providers we use on our website. You can tell which plugin belongs to which provider by the respective logo with which the plugin is marked. When you call up a page of our online presence on which such a plug-in is implemented, a connection is automatically established with the respective provider of the plug-in between your browser and the provider’s servers and a cookie is set by the provider on the end device you are using. Data transmission can also take place if you do not have an account with the respective operator of the social network or have an account there but are not logged in at the time of visiting our website. In addition, data is transmitted to the provider as a result of further interactions with the respective social plugin (e.g. clicking the “Like me” button on Facebook, re-tweet button on Twitter).

We would like to point out that, depending on the country of domicile of the service provider named below, the data named in more detail below may be transferred to and processed on servers outside the area of the European Union. In this case, there is a risk that the level of data protection prescribed by the GDPR may not be complied with and that the enforcement of your rights may not be possible or may be difficult.

Data concerned:

– Usage data (e.g. access times, web pages clicked on)

– Communication data (e.g. information about the device used, IP address).

Data subjects: Users of our website

Purpose of processing: displaying our internet pages, offering content, ensuring the operation of our internet pages

Legal basis: consent via cookie consent banner, Art. 6 para. 1 lit. a DSGVO, legitimate interests, Art. 6 para. 1 lit. f DSGVO.

We use the following plugins:

Our online presences on social networks

We operate online presences within the social networks listed below. If you visit one of these presences, the data listed in more detail below will be collected and processed by the respective provider. As a rule, this data is collected for advertising and market research purposes and user profiles are created. Data may be stored in the usage profiles regardless of the device you use. This is particularly the case if you are a member of the respective platform and logged in to it. The usage profiles can be used by the providers to play interest-based advertising to you. You have a right of revocation against the creation of user profiles. To exercise this right, you must contact the respective provider.

If you have an account with one of the providers listed below and are logged in there when you visit our website, the respective provider may collect data about your usage behaviour on our website. To prevent your data from being linked in this way, you can log out of the provider’s service before visiting our site.

You can find out for what purpose and to what extent data is collected by the provider in the respective data protection declarations of the providers, which are communicated below.

We would like to point out that, depending on the country of domicile of the provider named below, the data collected via its platform may be transmitted and processed outside the area of the European Union. In this case, there is a risk that the level of data protection prescribed by the GDPR may not be complied with and that the enforcement of your rights may not be possible or may be difficult.

Data concerned:

– Inventory and contact data (e.g. name, address, telephone number, e-mail address)

– Content data (e.g. posts, photos, videos)

– Usage data (e.g. access times, web pages clicked on)

– Communication data (e.g. information about the device used, IP address).

Purpose of processing: communication and marketing, tracking and analysis of user behaviour.

Legal basis: consent, Art. 6 para. 1 lit. a DSGVO, legitimate interests Art. 6 para. 1 lit. f DSGVO.

Options for objection: For the respective opt-out options, please refer to the information provided by the providers linked below.

We maintain online presences on the following social networks:

Facebook

Service provider: Facebook Inc, 1 Hacker Way, Menlo Park, CA 94025, USA

Registered office in the EU: Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland

Website: https://www.facebook.com/

Privacy policy: https://www.facebook.com/about/privacy/

Privacy policy for Facebook pages: https://www.facebook.com/legal/terms/information_about_page_insights_data

Instagram

Service provider: Instagram Inc, 1601 Willow Road, Menlo Park CA 94025, USA

Parent company: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA

Registered office in the EU: Facebook Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland

Website: https://www.instagram.com/

Privacy policy: http://instagram.com/about/legal/privacy

LinkedIn

Service provider: LinkedIn Corporation, 1000 W Maude, Sunnyvale, CA 94085, USA

Headquarters in Germany: LinkedIn, Hofstatt 4th Floor, Sendlinger Str. 12, 80331 Munich, Germany

Website: https://www.linkedin.com/?trk=nav_logo

Privacy policy: https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacy-policy

WhatsApp

Service provider: WhatsApp Inc. 1601 Willow Road Menlo Park, California 94025, USA.

Registered office in the EU: Whatsapp Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland

Parent company: Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA

Website: https://www.whatsapp.com/

Privacy policy: https://www.whatsapp.com/legal/?eea=1#privacy-policy

Online meetings, video conferencing and screen sharing  

We use third party services to facilitate online meetings, video and/or audio conferencing and online seminars among employees and with prospects or customers. When you communicate with us through such a service, the data collected in that communication process will be processed by both us and the third party provider. The data that may be generated in such a communication process includes, in particular, your login and contact details, posts in the chat window, your video and audio posts and shared screen content. The data processed by the third-party provider we use primarily includes user data and metadata (e.g. IP address, computer system information). As a rule, the third-party providers process this data in order to check and guarantee the security of the service. In addition, findings from the data processing are to be used to optimise the third-party provider’s offer and to carry out corresponding marketing measures. Please refer to the data protection information of the third-party provider in this regard.

We would like to point out that, depending on the country of domicile of the service provider mentioned below, the data collected via the service may be transmitted and processed outside the area of the European Union. In this case, there is a risk that the level of data protection prescribed by the GDPR may not be complied with and that the enforcement of your rights may not be possible or may be difficult.

Data concerned:

– Inventory data (e.g. names, addresses)

– Contact details (e.g. e-mail address, telephone number)

– Shared content (e.g. photos, videos, texts, audio recordings)

– User data (e.g. times of access, web pages visited, interest in content)

– Meta and communication data (e.g. IP address, computer system information).

Data subjects: Interested parties, customers, communication partners

Purpose of processing: processing of contact requests, internal and external communication with employees as well as interested parties and customers, fulfilment of our contractual services, service offer

Legal basis: consent, Art. 6 para. 1 lit. a DSGVO, contract performance and pre-contractual enquiries, Art. 6 para. 1 lit. b DSGVO, legitimate interest, Art. 6 para. 1 lit. f DSGVO.

Services used by us:

Skype

Services offered: Instant messaging, video conferencing, voice conferencing.

Service provider: Skype Communications SARL, 23-29 Rives de Clausen, L-2165 Luxembourg, Luxembourg.

Parent company: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA

Website: https://www.skype.com/de/

Privacy policy: https://privacy.microsoft.com/de-de/privacystatement

Zoom

Services offered: Video conferencing, voice conferencing, chats

Service provider: Zoom Video Communications, Inc, 55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USA

Website: https://zoom.us/de-de/meetings.html

Privacy policy: https://zoom.us/de-de/privacy.html

Content Services

We use certain services in order to be able to display certain content or graphics (videos, images, music, fonts, maps) via our website. In doing so, the services we use process the IP address assigned to you at the time of your visit to our Internet pages, as this is the only way that the respective content can be displayed in the browser you are using.

The providers regularly use this data for analysis, statistical and marketing purposes.
In addition, the providers of these services may place further cookies on your terminal device, which are used to collect information about your usage behaviour, your interests, the device and browser you use, as well as the time and duration of your session. The providers regularly use this data for analysis, statistical and marketing purposes. In addition, this information may also be combined with information from other sources. This applies in particular if you yourself maintain an account with the service provider and are logged in there at the time of the session.

We would like to point out that, depending on the country of domicile of the service provider named below, the data named in more detail below may be transferred to and processed on servers outside the area of the European Union. In this case, there is a risk that the level of data protection prescribed by the GDPR may not be complied with and that the enforcement of your rights may not be possible or may be difficult.

Data concerned:

– Usage data (e.g. access times, web pages clicked on)

– Communication data (e.g. information about the device used, IP address).

Data subjects: Users of our website

Purpose of processing: displaying our internet pages, offering content, ensuring the operation of our internet pages

Legal basis: consent via cookie consent banner, Art. 6 para. 1 lit. a DSGVO, legitimate interests, Art. 6 para. 1 lit. f DSGVO.

We use the following content services:

Vimeo

We use Vimeo components on this website to embed videos on our website so that they can be played via your internet browser when you visit our website. This process requires that Vimeo processes the IP address assigned to you, as without this the content could not be sent to the browser. Vimeo recognises when you visit one of our pages on which we have embedded a Vimeo video, provided you are logged in to Vimeo. This information is transmitted to Vimeo even if you do not click on the Vimeo video. Vimeo collects this information and associates it with your Vimeo account.

Service provider: Vimeo LLC, 555 West 18th Street, New York 10011, USA.

Website: https://vimeo.com/de/

Privacy policy: https://vimeo.com/privacy

YouTube

We use YouTube components on this website to embed videos on our website so that they can be played via your internet browser when you visit our website. During your visit to our website, both YouTube and Google are informed about which page or subpage you have accessed by transmitting your IP address to Google’s external servers in the USA. This information is transmitted regardless of whether the videos displayed are actually viewed or clicked on or whether you are logged into your YouTube or Google account. This information is collected and assigned to your Google account, provided you are logged in there when you call up our Internet pages.

Service provider: YouTube, LLC, 901 Cherry Ave, San Bruno, CA 94066, USA.

Website: https://www.youtube.com/

Privacy policy: https://policies.google.com/privacy

Opt-out option: https://tools.google.com/dlpage/gaoptout?hl=de

Security measures

We also take state-of-the-art technical and organisational security measures to comply with the provisions of data protection laws and to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorised access by third parties.

Up-to-dateness and amendment of this data protection declaration

This data protection declaration is currently valid and was updated in May 2021. Due to changes in legal or regulatory requirements, it may become necessary to adapt this data protection declaration.

This data protection declaration was created with the help of the data protection generator of SOS Recht. SOS Recht is a service of Mueller.legal Rechtsanwälte Partnerschaft, based in Berlin.