This data protection declaration is directed to all persons who visit our website. All personal designations refer to both male and female and diverse persons and language forms and are always to be understood with the addition of „(m/f/d)“.
According to Article 12 of the General Data Protection Regulation (henceforth DSGVO), website operators are obliged to inform visitors in a precise, transparent and comprehensible manner about how personal data is processed. We want to make a sincere contribution to this and summarize our data protection statement as follows. The details can be found under the summary:
In the following cases, we process personal data to establish, execute and/or terminate contracts: Paypal, Digistore24, sofortüberweisungen, copecart, Mollie, calendly, Klick-Tipp, Zapier, Woodpecker, Hubspot.
In the following cases, we process personal data based on your consent: Google Analytics, Google Optimize, Google Tagmanager, Hotjar, social networks with advertising tools (Facebook, LinkedIn), Google Ads, Google Remarketing, YouTube, Klick Tipp, Hubspot.
In the following cases, we process personal data on the basis of our legitimate interest: Informational use Internet site, transient cookies, rights management with external legal advice, Trustpilot, Postaffiliate Pro.
In the following cases, we process personal data with the help of automated decision-making (including profiling, if applicable): No processing takes place here.
The person responsible within the meaning of Article 4(7) DSGVO for processing the personal data of visitors to this website is:
PATHADVICE International GmbH
Represented by Dr. Michael Suitner (CEO)
Serlesweg 3, 6161 Natters, Austria
E-Mail: info@pathadvice.at
Tel: +43 676 415 9000
(1) Data subjects have several rights with regard to the personal data processed in accordance with the GDPR, in particular the right to
1. information about the stored personal data,
2. rectification of inaccurately stored personal data,
3. deletion of personal data for the further storage of which there is no basis for authorization,
4. restriction of the processing of stored personal data,
5. data portability
6. a complaint to the competent supervisory authority for data protection.
(2) Insofar as the factual prerequisites of the respective claims are given and we can identify you, we will fulfill your claims promptly.
If no processing operations are described under „General section /Data protection at a glance“ after the line „In the following cases, we process personal data with the aid of automated decision-making (including profiling, if applicable): …“, these do not take place. Otherwise, please refer to our separate data protection declaration.
(1) It is possible that we transfer personal data to bodies that are located outside the European Union or at least cannot exclude this (henceforth:third country body). In these cases, we must guarantee in accordance with Article 44 of the GDPR that the level of protection provided by the GDPR will not be undercut. As a precaution, we would like to point out that the third country agency can be both a controller and a processor.
(2) Insofar as we refer to a so-called adequacy decision in the following declaration, this means that the third country agency is located in a country, territory or specific sector for which the Commission has decided that it offers an adequate level of protection. This guarantee then follows from Article 45 GDPR.
(3) Insofar as we refer to the so-called standard contractual clauses in the following declaration, this means that the third country body accepts the so-called EU standard contractual clauses and has thus contractually committed itself to respecting the level of protection of the General Data Protection Regulation. This guarantee then follows from Article 46 (1) and (5) of the GDPR.
(4) Insofar as we refer in the following statement to the fact that you have consented to the transfer to the third country body, this means that you have been informed about all existing possible risks of such transfers for which there is no adequacy decision or other guarantees and have nevertheless consented to the data transfer. This guarantee then follows from Article 49 (1) (a) of the GDPR. For reasons of transparency, we describe the corresponding risks in a separate section.
(5) We are only providing this information as a precautionary measure. It only applies if we refer to it in the following declaration. There is also the possibility that we do not make use of this.
(1) In addition to the explanations under „Data transfer to bodies outside the European Union“ – paragraph 3, we would like to draw your attention to a special constellation. In the case of transfers to third-country bodies based in the USA, the possibility of invoking the EU standard contractual clauses is restricted. Therefore, if we intend to (or already do) invoke the EU standard contractual clauses in this context, please note the following:
(2) We will not rely on the EU Standard Contractual Clauses to transfer personal data to US third country entities unless we have first conducted a thorough review of the facts involved. In doing so, we first determine a risk level (type and, in particular, sensitivity of the data concerned, scope of data processing, purpose of data processing, susceptibility to abuse). We then check whether the contractual commitments of the US third-country office and the technical and organisational measures taken there (e.g. processing of data exclusively in EU-based data centres, encryption technology) sufficiently minimize the risks identified in advance. Only if we come to the conclusion that the EU standard contractual clauses are also a sufficient guarantee for aUS third-country office by way of exception, will we invoke this.
(3) We are only providing this information as a precautionary measure.It only applies if we refer to it in the following declaration. There is also the possibility that we do not make use of this.
(1) In addition to the explanations under „Data transfer to bodies outside the European Union“ – paragraph 4, we would like to draw your attention to another special constellation. In the case of transfers to third-country bodies based in the USA, the possibility of invoking the EU standard contractual clauses is limited. Therefore, in some cases, the only option is to ask for your consent to this transfer. However, before you give this consent, we ask you to take note of the following risks and consider them when deciding whether to consent:
(2) We urge you to note that data transfers to the US without the protection of an adequacy decision may involve significant risks. In particular, please note the following risks:
1. There is no uniform data protection law in the USA; certainly not one that would be comparable to the data protection law applicable in the EU. This means that both US companies and government agencies have more possibilities to process your personal data, especially for advertising targeting, profiling and conducting (criminal) investigations. Our ability to take action against this is significantly limited.
2. The US legislator has granted itself numerous access rights to your personal data (cf. for example Section 702 of FISA or E.O. 12333 in conjunction with PPD-28), which are not compatible with our understanding of the law. In particular, there is no proportionality test before access comparable to those in the European Union.
3. Citizens of the European Union cannot expect effective legal protection in the USA.
(3) We make this declaration merely as a precaution. It only applies if we refer to it in the subsequent declaration. There is also the possibility that we do not make use of this.
Only insofar as we refer to Article 6 (1) sentence 1 lit. c DSGVO in the following data protection declaration is there a legal obligation to process.
(1) The purpose of the processing operations described below is the establishment, performance, termination of contracts as well as the defence against claims on your part which are directly or indirectly related to the respective contract.
(2) Insofar as the purpose of the processing is the establishment, performance, termination of contracts, the legal basis for the processing of your personal data is Article 6 (1) sentence 1 lit. b DSGVO. According to this provision, the processing of your personal data is also permissible without your consent if it is necessary for the performance of a contract to which you are a party or for the performance of pre-contractual measures which are carried out at your request.
(3) Insofar as the purpose of the processing is the defence against claims on your part which are directly or indirectly related to the respective contract, in addition to Article 6 (1) sentence 1 lit. b DSGVO, Section 212 UGB paragraph 1, 2nd half sentence in connection with Article 6 (1) sentence 1 lit.b DSGVO is also applicable. Article 6 paragraph 1 sentence 1 lit. c DSGVO is the legal basis. According to this, we are obliged to store your data for as long as they are relevant for pending judicial or official proceedings in which we have party status.
(4) The legal basis we have mentioned under paragraph 2 also applies if we process your data in your capacity as an applicant or current or former employee on this website.
(5) Insofar as we refer to Article 6 (1) sentence 1 lit. f DSGVO, you have the right to object to the processing, which in cases of justified objection leads to an end to the processing based on this. And insofar as we do not expressly refer to Article 6 (1) sentence 1 lit. c DSGVO, there is no obligation to process.
(1) We store the data for as long as is necessary to establish, perform and, if applicable, terminate the contract and/or to defend ourselves against claims by you that are directly or indirectly related to the respective contract.
(2) If a contractual relationship is concluded between us, we shall store the data additionally until the expiry of our statutory retention periods. The legal basis for this is Article 6 paragraph 1 sentence 1 lit. c DSGVO in conjunction with. § SECTION 212 UGB. According to these regulations, some of the above-mentioned data must also be retained beyond the time when the purpose has been achieved. For example, we may be obliged to keep personal data relating to you, consisting of books, inventories, opening balances, annual financial statements including management reports, consolidated financial statements including group management reports, business letters received, copies of business letters sent and receipts for entries in the books to be kept in accordance with § 190 UGB (accounting records) for seven years.
(3) If we process your data in your function as an applicant, we will generally store the data until a final decision has been made on your application and
1. In the event of rejection for a further six months after rejection, whereby the legal basis for the six-month storage is Article 6 (1) sentence 1lit. f DSGVO and our legitimate interest follows from the right to defend ourselves against complaints under the GlBG (cf. Section 15 GlBG),
2. In the event that we ask you whether you wish to be included in our applicant pool and you say yes, until the time of revocation of your consent, whereby the legal basis for this storage is your consent pursuant to Article 6 (1) sentence 1 lit. b DSGVO. In the cases of paragraph 3 clauses 1 and 2, we only reserve the right to store data, but this data protection declaration does not create an obligation to store data.
(4) Insofar as we refer to Article 6 (1) sentence 1 lit. f DSGVO, you have the right to object to the processing, which in cases of justified objection leads to an end to the processing based on this. And insofar as we do not expressly refer to Article 6 (1) sentence 1 lit. c DSGVO, there is no obligation to process.
Briefly: You may make payments to us in connection with ordering our products and/or services orin other contexts, in which case we use the „PayPal“ service and process the payment data accruing in this context.
Processing and third-party providers in detail: We use the following provider here: PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 (Luxembourg), e-mail: impressum@paypal.com, which provides us with the „PayPal“ payment service. We would like to briefly describe this processing procedure: Before you use this payment service, you must create your own account with this provider. To do this, you provide the provider with the necessary data. If you subsequently encounter service providers (i.e. us) who accept a payment via this payment service, you authorize this provider either to credit the money you have deposited into your account with this payment service or the money collected by this payment service from your bank account by direct debit to the respective service provider, i.e. us. This happens in such a way that you are redirected from our website to the website of the provider, where you have to identify yourself and authorize the payment via various security procedures. In doing so, the provider of course obtains information about your purchasing behaviour. The provider therefore does not act as our instruction-dependent processor, but as your payment service provider. You can find the privacy policy of this provider here: https://www.paypal.com/uk/webapps/mpp/ua/privacy-full?locale. You can find more information on how the processing is carried out at: https://www.paypal.com/uk/webapps/mpp/home.
Data that is processed: In doing so, we generally process the following data from you: We document via this provider,
1. that you use it and,
2. that, in what amount and at what time you pay.
3. personal data and account information required to complete the transaction; and
4. personal information that we need to resolve disputes and to investigate and prevent fraud. We receive the information for 2., 3. and 4. from the provider.
Briefly: You can make payments to us in connection with ordering our products and/or services or in other contexts, in which case we use the „DIRECTe banking“ service and process the payment data accruing in this context.
Processing and third-party providers in detail: We use the following provider here: SOFORT GmbH, a company of the Klarna Group, with its registered office at Theresienhöhe 12,80339 Munich (Germany), which provides us with the „DIRECTe banking“payment service. We would like to briefly describe this processing procedure: If a payment transaction is pending on your part in our legal relationship, you will be redirected to the website of this provider, where you enter your access data required for online banking. This provider then checks whether your account covers the amount to be transferred (account coverage check) and whether any instant transfers have been successfully made from your account in the last 30 days. After a positive check, the provider transmits the transfer order approved by you in electronic form to your bank and informs the payee selected by you (i.e. us) about the successful setting of the transfer. The provider therefore does not act here as our instruction-dependent order processor, but as your payment service provider. You can find the data protection declaration of this provider here: https://www.sofort.com/payment/wizard/getCmsContent/data_protection/EN/0/en. You can find more information on the type and manner of processing at: https://www.klarna.com/sofort.
Data that is processed: Here, we generally process the following data from you: We document via this provider,
1. that you use it as well as,
2. that, in what amount and at what time you pay. This documentation only includes the data from the transfer form (name, account number, bank code, subject, transfer amount) as well as the date (with time) and the transaction identifier we have chosen (e.g. order number). In the case of SEPA transfers and if, depending on your bank, BIC and IBAN are required to set the transfer in your online banking account, the confirmation to us will also contain BIC and IBAN. In principle, we can also take this data from our account statement. We receive the information on 2. from the provider.
Briefly: You may make payments to us in connection with ordering our products and/or services or in other contexts, in which case we use the „mollie“ service and process the payment data generated in this context.
Processing and third-party providers in detail: We use the following service provider: Mollie B.V., Keizersgracht 126, 1015 CW Amsterdam, The Netherlands, email: info@mollie.com, which provides us with the payment service „mollie“. We would like to briefly describe this processing procedure: The services of this provider enable you to make payments to us. The provider here merely acts as a technical service provider for the financial institution that provides the actual payment service under this contract. This is done in such a way that you are redirected from our website to the website of our payment provider, where you have to identify yourself and authorize the payment via various security procedures. In doing so, the provider will of course obtain information about your purchasing behavior. The provider therefore does not act as our instruction-dependent processor, but as your payment service provider. You can find the privacy policy of this provider here: https://help.mollie.com/hc/en-us/articles/360002761193-Do-I-have-to-sign-a-data-processing-agreement-with-Mollie- You can find more information on the type and manner of processing at: https://www.mollie.com/en/payments and on the security of processing at https://www.mollie.com/en/features/security.
Data that is processed: In doing so, we generally process the following data from you: We document via this provider,
1. that you use it as well as,
2. that, in what amount and at what time you pay.
3. personal data and account information required to complete the transaction; and
4. personal information that we need to resolve disputes and to investigate and prevent fraud. We obtain the information in 2., 3. and 4. from the provider.
Briefly: In some cases, you can order our products and/or services from a reseller who purchases these products and/or services from us and then passes them on to you. In this case, your contractual partner is the reseller and not us. We use the reseller „Digistore24“ for this purpose.
Processing and third-party providers in detail: We use the following provider here: Digistore24 GmbH, St.-Godehard-Straße 32, 31139 Hildesheim (Germany). We would like to briefly describe this processing procedure: When you order access to our products, you enter into a contract with Digistore24 GmbH (hereinafter referred to as the main contract). This is because this company, in its function as a reseller, makes the respective product available to you, possibly against payment. We then process the data that the provider makes available to us for the purpose of establishing, implementing and terminating this contract precisely for these purposes. The data protection declaration of this provider can be found here: https://www.digistore24.com/page/privacy.
Data that is processed: In doing so, we generally process the following data from you: We document via this provider that and how long you use our product and when you end the contractual relationship. We receive this information from the provider. You can find more information on the type and manner of processing at: https://www.digistore24.com/en/home/vendors.
Briefly: In some cases, you can order our products and/or services from a reseller who purchases these products and/or services from us and then passes them on to you. In this case, your contractual partner is the reseller and not us. We use the reseller „copecart“ for this purpose.
Processing and third-party providers in detail: We use the following provider here: the CopeCart GmbH, Berlin (Germany). We would like to briefly describe this processing procedure: When you order access to our products, you enter into a contract with CopeCart GmbH (hereinafter referred to as the main contract). This is because this company, in its function as a reseller, makes the respective product available to you, possibly against payment. We then process the data that the provider makes available to us for the purpose of establishing, implementing and terminating this contract precisely for these purposes. The data protection declaration of this provider can be found here https://www.copecart.com/en/privacy-policy.
Data that is processed: In doing so, we generally process the following data from you: We document via this provider that and how long you use our product and when you terminate the contractual relationship. We receive this information from the provider. You can find more information on the type and manner of processing at: https://www.copecart.com/features/details-list/.
Briefly: You can make appointments with us here, and we will process all the data required to make the appointment. We use the tool „calendly“ for this purpose.
Processing and third-party providers in detail: We use the following provider here: Calendly LLC, 1315 Peachtree St NE, Atlanta, GA 30309, USA, https://calendly.com We would like to briefly describe this processing procedure: If you want to make a meeting appointment with us, you can use the appointment booking portal described in more detail in the heading to view the appointments available with us and simply choose one. We will then receive a message from the appointment booking portal or the appointment will be blocked in our calendar. We then process the data that the provider makes available to us for the purpose of establishing, implementing and terminating this contract precisely for these purposes. We have commissioned this provider in accordance with Article 28 DSGVO. https://calendly.com/dpa The privacy policy of this provider can be found here: https://calendly.com/de/privacy
Data that is processed: In doing so, we generally process the following data from you: We document via this provider all data that you provide when booking an appointment, i.e.usually your name, your contact details and the appointment data. You can find more information on the type and manner of processing under: Third country status: The fact that the provider is located outside the European Union does not prevent processing. Any transfer to this third country is justified by Article 49 (1)(a)of the GDPR, i.e. by your separate consent. Please be sure to read our risk information in the general section.
Briefly: You can register with us for a webinar or otherwise communicate with us via a video conference tool, in which case we process all the data required for registering (making an appointment, if applicable), conducting and following up on the associated videoconference. We use the tool „Zoom“ for this purpose. The US data transfer, which cannot be ruled out, is justified as the processing only takes place if you consent to it. It is also important to note that during video conferences – if you voluntarily activate your camera – image data is processed that may allow conclusions to be drawn about particularly sensitive data, such as health in the case of people who wear glasses or religious beliefs if you wear religious symbols.
Processing and third-party providers in detail: We use the following provider here: Zoom Video Communications, Inc, 55 Almaden Blvd, Suite 600, San Jose, CA 95113 (USA) further contact option here: https://support.zoom.us/hc/en-us. We would like to briefly describe this processing procedure: You can register on our website for one of our webinars or otherwise communicate with us by video conference. We carry out all the necessary steps associated with this, from the initiation and implementation to the follow-up of the webinar via this service provider, who receives your data for these purposes as soon as you register for the webinar via our website, but at the latest when you participate in the webinar. Here, we process the data that the provider provides to us for the purpose of establishing, implementing and terminating this contract precisely for these purposes. We have commissioned this provider in accordance with Article 28 DSGVO. The privacy policy of this provider can be found here: https://explore.zoom.us/en/privacy/ .
Data that is processed: Here, we generally process the following data from you: We document via this provider all data that you disclose when registering for and participating in the respective webinar or other video conference. You can find more information on how this is processed at: https://zoom.us/webinar. If you voluntarily activate your camera, image data will be processed that may allow conclusions to be drawn about particularly sensitive data, such as health in the case of people who wear glasses or religious beliefs if you wear religious symbols.
Third-country status: The fact that this provider is based outside the European Union does not prevent you from using this service. This is because you can only participate in our webinar or other video conference with us if you consent to the associated transfer of data to the USA (cf. Article 49 (1) (a) DSGVO). Please be sure to read our risk information beforehand (cf. General Section/Special Constellation: Consent to Transfer to Third-Party Entities Located in the USA, including the risk information.
Briefly: In the context of the establishment, execution and/or termination of contracts, we process your data with the help of automation solutions in order to facilitate and standardized communication with our customers. In doing so, we process all communication data with you that trigger automatic reactions on our part, such as the delivery of a product or service. In this respect, we use the tool „Klick Tipp“. The associated third country transfer is justified by the fact that the EU Commission has determined an adequate level of data protection for the United Kingdom. Processing and third-party providers in detail: We use the following provider here: KLICK-TIPP LIMITED, 15 Cambridge Court, 210 Shepherd’s Bush Road, London W6 7NJ (United Kingdom).
We would like to describe this processing operation briefly: On our website you have the opportunity to buy products from us and/or book services from us. We control
1. the collection of your personal data at the initiation of the relevant contract,
2. the communication (in particular by e-mail) with you necessary for the establishment, implementation and/or termination of the contract, and
3. the delivery of our products and/or services. We have commissioned this provider with the processing of your personal data required in this respect in accordance with Article 28 (3) DSGVO. You can find the data protection declaration of this provider here: https://www.klick-tipp.com/datenschutzerklärung.
Data that is processed: Here, we generally process the following data from you:
(1) all contact and order data entered by you,
(2) payment data, if applicable,
(3) data on delivery and
(4) data on the assertion of rights on your part and the response on our part. You can find more information on the type and manner of processing at: https://www.klick-tipp.com/handbuch.
Third country status: The processing is not prevented by the fact that the provider is located outside the European Union. This is because the recipient/provider is located in a country for which the EU Commission has decided that the United Kingdom offers an adequate level of protection (cf. Article 45 GDPR).
Briefly: We connect different applications and other software solutions with each other so that they can interact with each other automatically. We use an interface technology for this purpose. Specifically, we use the provider „Zapier“. The US data transfer, which cannot be ruled out, is justified because the processing only takes place if you consent to it.
Processing and third-party providers in detail: We use the following provider here: the Inc, 548 Market St #62411, San Francisco, California 94104 (USA), which provides the“Zapir“ tool we use. We would like to briefly describe this processing procedure: We can use Zapir to connect web apps so that customer and prospect data can be automatically exchanged between the various applications. The data is exchanged via , so that the data may also be processed there. We have commissioned this provider with the necessary processing of your personal data in accordance with Article 28 (3) of the GDPR. You can find the data protection declaration of this provider here: https://.com/privacy/.
Data that is processed: In this context, we generally process the following data from you: all data that we collect via tools that we use in connection with the establishment, implementation and/or termination of contracts between us and have linked automatically via this provider. As a rule, this can be all data from the initiation of the contract (often your contact data), from the execution of the contract (often order and payment data) and from the termination of the contract (status end of contract, status discontinuation of services). You can find more information on the possible uses at: https://.com/learn/getting-started-guide/what-is-/.
Third country status: The fact that the provider is located outside the European Union does not prevent processing. This is because we can only offer you contractual services via this provider if you consent to the associated transfer of data to the USA (cf.Article 49(1)(a) DSGVO). Please be sure to read our risk information before doing so (see General Section/Special Constellation: Consent to Transfer to Third-Party Providers Located in the USA, including the risk information).
Briefly: We use the tool Woodpecker from the provider Woodpecker.co S.A., 29D Krakowska STR, Zip Code: 50-424, Wroclaw, Poland. We use this to manage the collection and further processing of generally accessible e-mail addresses.
Data processing and third-party providers in detail: We use the tool „Woodpecker“from the above-mentioned provider. You can find out more about this provider at https://woodpecker.co/about/. You can find more about the processing procedureat https://woodpecker.co/terms-of-service/. You can find information about the data protection of this tool at https://woodpecker.co/gdpr-compliance/. This is how we manage the collection and further processing of generally accessible email addresses. This provider has undertaken to comply with the legal requirements by means of a unilaterally binding declaration. You can find this here: https://woodpecker.co/gdpr-statement/.
Data processed: Your email address and name from freely available sources.
(1) The purpose of the processing operations described below is described separately for each tool.
(2) The legal basis for the respective data processing is your consent pursuant to Article 6 (1) sentence 1 lit. a DSGVO. According to this provision, the processing of your personal data is permissible if you have given your consent to the processing of the personal data concerning you for one or more specific purposes.
(1) We generally store the data until you have revoked your consent. You can declare your revocation at any time, for example by sending an informal message to one of the above-mentioned contact channels.
(2) This does not apply to all data for which a reason for storage other than your consent applies. In particular, we store the information that you have consented and how you have consented for three years, whereby the period begins to run on 31 December of the calendar year in which you revoke your consent. The legal basis for this is Article 6 (1) sentence 1 lit. c DSGVO in conjunction with. Article 7 (1) DSGVO, as we are obliged to document the granting of consent. Moreover, this longer storage is also justified by Article6(1) sentence 1 lit. f DSGVO, as it is in our legitimate interest to defend ourselves against claims for damages based on the fact that no consent was given. This interest in storage exists at least until the expiry of the statutory limitation period (§ 1489 ABGB).
(1) Insofar as we obtain consent from you for processing, you have the right to revoke this consent at any time with effect for the future. As a rule, this is possible by sending an informal message to us (cf. „Person responsible.“ above). Furthermore, we would like to point out that we process further of your personal data in the course of obtaining your consent. These are, on the one hand, identity features (such as your name, your e-mail address, your IP address) and, on the other hand, protocol data on consent (time of consent, status of consent, scope of consent). We base this data processing on Article 6 (1) sentence 1 lit. c DSGVO in conjunction with. Article 7 paragraph 1 DSGVO. The purpose is the need to prove that you have given your consent.
Briefly: To obtain your consent for the use of certain cookies, we use the external tool „cookie-script“. We use this to collect and store all consent processes that you trigger in this context. Processing and third-party providers in detail: In connection with the use of so-called cookies, we use the tool „cookie-script“. The provider is Object is Ltd, Žalgirio st. 88, LT-09303 Vilnius, Lithuania, https://cookie-script.com (privacy policy: https://cookie-script.com/privacy-policy.html ). With this tool, we document your consent to the cookie-based data processing on our website. In this context, we would like to point out that we process personal data about you when we obtain consent.Data that is processed: In this context, we would like to point out that we process personal data from you when obtaining consent. On the one hand, these are identity features and, on the other hand, protocol data on consent.
Briefly: We use cookies to evaluate your usage behavior on and interaction with our website. We then evaluate this information in order to be able to design our website in an even more targeted manner. We use the „Google Analytics“ tool for this purpose. The US data transfer, which cannot be ruled out, is justified as the processing only takes place if you consent to it.
Processing and third-party providers in detail: To analyze your user behavior on our website, we use the following service provider with its tool described in more detail in the heading: Google LLC, 1600 Amphitheatre Parkway, Mountain View, California 94043. If you are based within the European Economic Area, your data will additionally be processed by Google Ireland Ltd, Gordon House, Barrow Street,Dublin 4, Ireland. We would like to briefly describe this processing procedure: The tool uses so-called „cookies“. These are text files that are stored on your computer and enable an analysis of your use of the website. The provider will use this information on our behalf for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. The privacy policy of this provider can be found here: https://policies.google.com/privacy?fg=1. The purpose can be described as follows: We use this tool to be able to analyze and regularly improve the use of our website. The statistics obtained enable us to improve our offer and make it more interesting for you as a user. You can find more details on the type and manner of processing via this provider here: https://marketingplatform.google.com/intl/de/about/analytics/.
Data that is processed: This tool uses so-called „cookies“. These are text files that are stored on your computer and enable an analysis of your use of the website. The information generated by this about your use of this website is usually transferred to a server of the provider in the USA and stored there. However, your IP address will be truncated beforehand by the provider within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a server of the provider in the USA and shortened there. The IP address transmitted by your browser when using this tool is not merged with other data by the provider. We also use this tool for a cross-device analysis of visitor flows, which is carried out via a user ID. You can deactivate the cross-device analysis of your usage in your customer account under „My data“, „Personal data“. For your information, we would like to point out that we use this tool with the extension „_anonymizeIp()“. This means that IP addresses are processed in abbreviated form, which means that they cannot be linked to a specific person. If the data collected about you is related to a person, this is immediately excluded and the personal data is immediately deleted.
Third country status: The processing is not prevented by the fact that the data is transferred to the USA, possibly in cooperation with Google LLC. This is because we only use this tool if you consent to the associated transfer of data to the USA (cf. Article 49 (1) (a) DSGVO). Please be sure to read our risk information beforehand (cf. General Section/Special Constellation: Consent to Transfer to Third-Party Data Controllers Located in the USA, including the risk information).
Briefly: We use a central control tool, namely the „Google Tag Manager“, to coordinate various measures that serve to analyze your usage behavior. The US data transfer, which cannot be excluded, is justified as the processing only takes place if you consent to it.
Processing and third-party providers in detail: In order to coordinate and carry out our analysis of your user behavior on our website as well as our advertising targeting, we use the following service provider with its tool described in more detail in the heading: Google LLC, 1600 Amphitheatre Parkway, Mountain View, California 94043. If you are based within the European Economic Area, your data will additionally be processed by Google Ireland Ltd, Gordon House, Barrow Street,Dublin 4, Ireland. We would like to briefly describe this processing procedure: This tool enables us to integrate various codes and services on our website in an orderly and simplified manner. This tool implements the tags or triggers the tags integrated with them. When a tag is triggered, the provider may also process personal data. It cannot be ruled out that the provider also transmits the data to a server in a third country. The privacy policy of this provider can be found here: https://policies.google.com/privacy?fg=1. The purpose can be described as follows: We use the tool to integrate various codes and services in an orderly and simplified manner on our website; this is for the purposes of analyzing user behavior and, if necessary, for advertising purposes. You can find more details about how we process data via this provider here: https://marketingplatform.google.com/intl/de/about/tag-manager/.
Data that is processed: Here, we generally process those data from you that we process in connection with Google analytics tools and Google advertising. We refer to the other explanations in connection with processing operations in which the provider assists us.
Third country status: The processing is not prevented by the fact that the data is transferred to the USA, possibly in cooperation with Google LLC. This is because we only use this tool if you consent to the associated transfer of data to the USA (cf. Article 49 (1) (a) DSGVO). Please be sure to read our risk information beforehand (cf. General Section/Special Constellation: Consent to Transfer to Third-Party DataControllers Located in the USA, including the risk information).
Briefly: We use cookies to evaluate your usage behavior on and interaction with our website. We then evaluate this information in order to be able to design our website in an even more targeted manner. We use the tool „Hotjar“ for this purpose.
Processing and third-party providers in detail: To analyze your user behavior on our website, we use the following service provider with its tool described in more detail in the heading: Hotjar Ltd. („Hotjar“) 3 Lyons Range, 20 Bisazza Street, Sliema SLM 1640, Malta, EU. We would like to briefly describe this processing procedure: the tool uses so-called „cookies“. These are text files which are stored on your computer and which enable an analysis of your use of the website. You can find the privacy policy of this provider here https://www.hotjar.com/legal/compliance/gdpr-commitment and here https://help.hotjar.com/hc/en-us/sections/115003180467-Privacy-Security-and-Operations. In addition to revoking your consent at any time, you can prevent the collection of data by Hotjar by clicking on the following link and following the instructions there: https://www.hotjar.com/opt-out. The purpose can be described as follows: We use the tool to be able to analyze and regularly improve the use of our website. The statistics obtained enable us to improve our offer and make it more interesting for you as a user. You can find more details about the type and manner of processing via this provider here: https://www.hotjar.com/tour/.
Data that is processed: The tool uses so-called „cookies“. These are text files that are stored on your computer and enable an analysis of your use of the website. In doing so, we usually obtain the following information: Your IP address (anonymised), the sub-page accessed and the time of access, the page from which you accessed our website (referrer), information on which browser with which plugins, which operating system and which screen resolution is used, the time spent on our website and the pages accessed from the sub-page accessed. We have anonymised your data here. In doing so, we usually obtain the following information: Your IP address (anonymised), the sub-page accessed and the time of access, the page from which you accessed our website (referrer), information on which browser with which plugins, which operating system and which screen resolution is used, the time spent on our website and the pages accessed from the sub-page accessed.
Briefly: We use the social network „Facebook“. We process data about your interaction with this social network and with us via this social network. This provides us with detailed information, which we use in a targeted manner; for example, for the purposes of improved communication, promotional approaches and the identification of potential customers. The US data transfer, which cannot be excluded, is justified as the processing only takes place if you consent to it.
Joint responsibility: If and insofar as we analyze visitor interactions with our company website, we are jointly responsible for data protection with the provider of the social network; this in accordance with Article 26 DSGVO. Our agreement with the provider can be found here: https://www.facebook.com/legal/terms/page_controller_addendum. You can find out when the provider and when we process your personal data on our ownr esponsibility under „Processing and third-party providers“.
Processing and third-party providers: We use the above social media. Its provider is: Meta Platforms Inc, 1601 S. California Avenue, Palo Alto, CA 94304, USA. If you are located outside the USA and/or Canada, Meta Platforms Ireland Ltd, 4 Grand Canal Square, GrandCanal Harbour, Dublin 2 Ireland is responsible. We have no influence on the data collected and data processing procedures, nor are we aware of the full extent of the data collection, the purposes of the processing, the storage periods. We also have no information on the deletion of the collected data by this provider. If you access our company pages, it is possible that the provider will store the data collected about you as a user profile and use it for the purposes of advertising, market research and/or designing its website to meet your needs. You have the right to object to the creation of these user profiles, whereby you must contact the provider to exercise this right. You can find a data protection declaration of the provider here: https://www.facebook.com/policy.php. Insofar as we can influence the data processing, its purpose is to present our company, to analyze your usage behavior in relation to the interaction with our company page maintained there as well as to communicate with you via this social network (possibly advertising). If and insofar as we commission Facebook to process data for us in addition to this, we are a client within the meaning of Article 28 of the GDPR.
Data that is processed: We maintain a company page on this social network and may analyze whether and how you have visited our company page there; whether and how you react to our posts on social networks; whether and how you communicate with us via the channels there. In this respect, the consent that you have given to this provider is decisive.
Supplementary information on the legal basis: In addition to our general remarks on the legal basis, we also inform you here: If you yourself maintain a profile on this social medium, the legal basis is your consent within the meaning of Article 6 (1) sentence 1 lit. a DSGVO, which you have given to the provider of the social network. In all other cases, the legal basis is Article 6 (1) sentence 1 lit. f DSGVO, according to which your data may be processed if it is necessary to protect our legitimate interests or the interests of a third party, unless your interests or fundamental rights and freedoms requiring the protection of personal data override these, in particular if the data subject is a child. We have the economic interest to link our company pages, whereby you click on the links independently and voluntarily. In all other respects, the provider is responsible.
Third country status: The US data transfer, which cannot be ruled out, does not prevent the commissioning of or joint responsibility with the provider of this social. This is because the processing of your personal data via this tool only takes place if you consent to the associated data transfer to the USA (cf. Article 49 (1) (a) DSGVO). This is done vis-à-vis us, insofar as we control the data processing. Please be sure to read our risk information before doing so (cf. General Section/Special Constellation: Consent to Transfer to Third-Party Data Controllers Located in the USA, including the risk information). If the provider controls the processing (for example, if you visit the social network independently of an action on our website), there is already no transmission by us to the USA, so that we also do not have to provide any further guarantee within the meaning of Article 44 et seq. of the GDPR. In this case, there is at most a relationship between us and the provider of the social network within the meaning of Article 26 of the GDPR.
Addition „Facebook Pixel“: We use the Facebook Pixel. This is an analysis tool that can be used to measure the effectiveness of advertising. It is usually used to understand and track people’s actions on a website. You implement the Facebook pixel on a website by placing the pixel code in the header of the website. When someone then visits the website and performs an action (such as making a purchase), the Facebook pixel is triggered and the action is reported. In this way, you learn when a customer takes an action and can evaluate this. There is also the option of advanced matching, which we also use and which is also covered by your consent. The Facebook pixel makes it possible to transmit customer data such as first name, last name, email address, etc. to Facebook and enrich it with existing tracking data. In this way, it is also possible to collect data from non-Facebook users or to record users who are not logged into Facebook while visiting a website. This means that website visitors are tracked via Facebook, which deliberately prevents the storage of third-party cookies. We have instructed the provider in this respect in accordance with Article 28 DSGVO. You can find more information on how this works and the associated data processing here: https://de-de.facebook.com/business/help/742478679120153?id=1205376682832142.
Supplement „Facebook Ads“: We use Facebook Ads. With the help of the advertising material of this tool (so-called Facebook Ads), we can draw attention to our attractive offers on Facebook. We can determine how successful the individual advertising measures are in relation to the data of the advertising campaigns. In this way, we pursue the interest of showing you advertising that is of interest to you, making our website more interesting for you and achieving a fair calculation of advertising costs. These advertisements are delivered by the provider. If you access our website via an advertisement presented to you by this provider, a cookie will be stored in your PC by the tool. These cookies are not intended to identify you personally. The unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (marking that the user no longer wishes to be addressed) are usually stored as analysis values for this cookie. Due to the tool used, your browser automatically establishes a direct connection with the server of this provider. We have no influence on the scope and further use of the data collected through the use of this tool and therefore inform you according to our state of knowledge: Through the integration of the advertising material of this tool, the provider receives the information that you have called up the corresponding part of our website or clicked on an advertisement from us. If you are registered with a service of this provider, he can assign the visit to your account. Even if you are not registered with this provider or have not logged in, it is possible that the provider will obtain and store your IP address. You can prevent participation in this tracking procedure in various ways:
1. by adjusting your browser software accordingly; in particular, the suppression of third-party cookies will result in you not receiving advertisements from third-party providers.
2. by deactivating the cookies. We have instructed the provider in this respect in accordance with Article 28 DSGVO. You can find more information on how this works here: https://de-de.facebook.com/business/ads.
Briefly: We use the social network „LinkedIn“. We process data about your interaction with this social network and with us via this social network. This provides us with detailed information that we use in a targeted manner; for example, for the purposes of improved communication, promotional approaches and the identification of potential customers. The US data transfer, which cannot be excluded, is exceptionally justified because the recipient has committed to it in accordance with the EU standard contractual clauses.
Joint responsibility: If and insofar as we analyze visitor interactions with our company website, we are in this respect jointly responsible with the provider of the social network under data protection law; this in accordance with Article 26 DSGVO. You can find out when the provider and when we process your personal data on our own responsibility under „Processing and third-party providers“.
Processing and third-party providers in detail and joint responsibility: We use the above-mentioned social medium. Its provider is LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. We have no influence on the data collected and data processing operations, nor are we aware of the full extent of the data collection, the purposes of the processing, the storage periods. We also have no information on the deletion of the collected data by this provider. If you access our company pages, it is possible that the provider will store the data collected about you as a user profile and use it for the purposes of advertising, market research and/or designing its website to meet your needs. You have the right to object to the creation of these user profiles, whereby you must contact the provider to exercise this right. A data protection declaration of the provider can be found here: https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv. Insofar as we can influence the data processing, its purpose is to present our company, to analyze your usage behavior with regard to the interaction with our company page maintained there as well as to communicate with you via this social network (possibly advertising). If and insofar as we commission this provider to process data for us beyond this, we are the client within the meaning of Article 28 DSGVO.
Data that is processed: We maintain a company page on this social network and may analyze whether and how you have visited our company page there; whether and how you react to our posts on social networks; whether and how you communicate with us via the channels there. In this respect, the consent that you have given to this provider is decisive.
Supplementary information on the legal basis: In addition to our general remarks on the legal basis, we also inform you here: If you yourself maintain a profile on this social medium, the legal basis is your consent within the meaning of Article 6(1) sentence 1 lit. a DSGVO, which you have given to the provider of the social network. In all other cases, the legal basis is Article 6(1) sentence 1 lit. fDSGVO, according to which your data may be processed if it is necessary to protect our legitimate interests or the interests of a third party, unless your interests or fundamental rights and freedoms requiring the protection of personal data override these, in particular if the data subject is a child. We have the economic interest to link our company pages, whereby you click on the links independently and voluntarily. In all other respects, the provider is responsible.
Third country status: The data processing operations are not prevented by the fact that the data may be processed outside the European Union by the provider, possibly in cooperation with LinkedIn Corporation, 2029 Stierlin Court, Mountain View, California94043, USA. This is because the provider has committed itself in accordance with the EU standard contractual clauses (Article 46 DSGVO).
Supplement „LinkedIn Ads“: We use LinkedIn Ads. With the help of the advertising media of this tool (so-called FacebookAds), we can draw attention to our attractive offers on Facebook. We can determine how successful the individual advertising measures are in relation to the data of the advertising campaigns. In this way, we pursue the interest of showing you advertising that is of interest to you, making our website more interesting for you and achieving a fair calculation of advertising costs. These advertisements are delivered by the provider. If you access our website via an advertisement presented to you by this provider, a cookie will be stored in your PC by the tool. These cookies are not intended to identify you personally. The unique cookie ID, number of ad impressions per placement(frequency), last impression (relevant for post-view conversions) and opt-out information (marking that the user no longer wishes to be addressed) are usually stored as analysis values for this cookie. Due to the tool used, your browser automatically establishes a direct connection with the server of this provider. We have no influence on the scope and further use of the data collected through the use of this tool and therefore inform you according to our state of knowledge: Through the integration of the advertising material of this tool, the provider receives the information that you have called up the corresponding part of our website or clicked on an advertisement from us. If you are registered with a service of this provider, he can assign the visit to your account. Even if you are not registered with this provider or have not logged in, it is possible that the provider will obtain and store your IP address. You can prevent participation in this tracking procedure in various ways:
1. by adjusting your browser software accordingly; in particular, the suppression of third-party cookies will result in you not receiving advertisements from third-party providers.
2. by deactivating the cookies. We have instructed the provider in this respect in accordance with Article 28 DSGVO. You can find more information on how this works here: https://business.linkedin.com/de-de/marketing-solutions/ads.
Briefly: We place advertisements (so-called ads) on social media, including search engines. When you interact with us (e.g. visit our website), there is a possibility that -after your consent – we mark you as a suitable recipient of the ads with so-called cookies. If you then visit a social medium, you will be recognized and our ads will be displayed to you. In this respect, we use the „GoogleAds“ service. The US data transfer, which cannot be excluded, is justified as the processing only takes place if you consent to it.
Processing and third-party providers in detail: We use the above-mentioned social medium. Its provider is Google LLC, 1600 Amphitheatre Parkway, Mountain View, California 94043. If you are based within the European Economic Area, your data is additionally processed by Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland. A privacy policy of the provider can be found here: https://policies.google.com/privacy?fg=1. As far as we can influence the data processing, its purpose is to present our company, to analyze your usage behavior with regard to the interaction with our company page maintained there as well as to communicate with you via this social network (possibly advertising). ) These advertising materials are delivered by Google via so-called „ad servers“. For this purpose, we use ad server cookies, which can be used to measure certain parameters for measuring success, such as display of the ads or clicks by users. If you access our website via a Google ad, Google Ads will store a cookie on your PC. These cookies usually expire after 30 days and are not intended to identify you personally. The unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (marking that the user no longer wishes to be addressed) are usually stored as analysis values for this cookie. These cookies enable Google to recognize your internet browser. If a user visits certain pages of an Ads customer’s website and the cookie stored on their computer has not yet expired, Google and the customer will be able to recognize that the user clicked on the ad and was redirected to that page. A different cookie is assigned to each Ads customer. Cookies can therefore not be tracked via the websites of Ads customers. We ourselves do not collect or process any personal data in the aforementioned advertising measures. We only receive statistical evaluations from Google. These evaluations enable us to recognize which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising tools; in particular, we cannot identify users on the basis of this information. Due to the marketing tools used, your browser automatically establishes a direct connection with Google’s server. We have no influence on the scope and further use of the data collected by Google through the use of this tool and therefore inform you according to our state of knowledge: Through the integration of ads, Google receives the information that you have called up the corresponding part of our website or clicked on an ad from us. If you are registered with a Google service, Google can assign the visit to your account.Even if you are not registered with Google or have not logged in, it is possible that the provider may obtain and store your IP address.
Data that is processed: Here, we generally process the data from you that we process in connection with Google analysis tools and Google advertising. We refer to the other explanations in connection with processing operations in which the provider assists us.
Supplementary information on avoidance options: You can avoid participating in this tracking processing various ways:
a) by setting your browser software accordingly, in particular, suppressing third-party cookies will result in you not receiving third-party ads;
b) by disabling cookies for conversion tracking by setting your browser to block cookies from the domain „www.googleadservices.com„, https://www.google. de/settings/ads, deleting this setting when you delete your cookies;
c) by deactivating the interest-based ads of the providers that are part of the self-regulatory campaign „About Ads“ via the link http://www.aboutads.info/choices, deleting this setting when you delete your cookies;
d) by permanently deactivating them in your browsers Firefox, Internet explorer or Google Chrome at the link http://www.google.com/settings/ads/plugin. We would like to point out that in this case you may not be able to use all functions of this offer to their full extent.
Third country status: The processing is not prevented by the fact that the data is transmitted to the USA, possibly in cooperation with Google LLC. This is because we only use this tool if you consent to the associated transfer of data to the USA (see Article49 (1) (a) DSGVO). Please be sure to read our risk information beforehand (cf. General Section/Special Constellation: Consent to Transfer to Third-Party Data Controllers Located in the USA, including the risk information).
Briefly: We place advertisements (so-called ads) on social media, including search engines. When you interact with us (e.g. visit our website), there is the possibility that -after your consent – we mark you as a suitable recipient of the ads with so-called cookies. If you then visit a social medium, you will be recognized and our ads will be displayed to you (so-called remarketing). In this respect, we use the „Google Remarketing“ service. The US data transfer, which cannot be ruled out, is justified as the processing only takes place if you consent to it.
Processing and third-party providers in detail: We use the above-mentioned social medium. Its provider is Google LLC, 1600 Amphitheatre Parkway, Mountain View, California 94043. If you are based within the European Economic Area, your data is additionally processed by Google Ireland Ltd, Gordon House, Barrow Street,Dublin 4, Ireland. A privacy policy of the provider can be found here: https://policies.google.com/privacy?fg=1. As far as we can influence the data processing, its purpose is to present our company, to analyze your usage behavior in relation to the interaction with our company page maintained there as well as to communicate with you via this social network (possibly advertising). This is a procedure with which we would like to address you in an advertising manner. Through this application, our advertisements can be displayed to you during your further internet use after visiting our website. This is done by means of cookies stored in your browser, via which your usage behavior when visiting various websites is recorded and evaluated by the provider. In this way, your previous visit to our website can be determined by this provider. According to the provider’s own statements, the data collected in the course of remarketing is not merged with your personal data that may be stored by the provider. In particular, according to this provider, pseudonymisation is used in remarketing. This is done across all devices on which you are logged in with an account with this provider or were logged in only for a short moment. These advertisements are delivered by Google via so-called „ad servers“. For this purpose, we use ad server cookies, which can be used to measure certain parameters for measuring success, such as the display of ads or clicks by users. If you access our website via a Google ad, Google Ads will store a cookie on your PC. These cookies usually expire after 30 days and are not intended to identify you personally. The unique cookie ID, number of ad impressions per placement (frequency), last impression(relevant for post-view conversions) and opt-out information (marking that the user no longer wishes to be addressed) are usually stored as analysis values for this cookie. These cookies enable Google to recognize your internet browser. If a user visits certain pages of an Ads customer’s website and the cookie stored on their computer has not yet expired, Google and the customer will be able to recognize that the user clicked on the ad and was redirected to that page. A different cookie is assigned to each Ads customer. Cookies cant herefore not be tracked via the websites of Ads customers. We ourselves do not collect or process any personal data in the aforementioned advertising measures. We only receive statistical evaluations from Google. These evaluations enable us to recognize which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising tools; in particular, we cannot identify users on the basis of this information. Due to the marketing tools used, your browser automatically establishes a direct connection with the provider’s server.
Data that is processed: Here, we generally process those data from you that we process in connection with Google analysis tools and Google advertising. We refer to the other explanations in connection with processing operations in which the provider assists us.
Supplementary information on avoidance options: You can prevent participation in this tracking procedure in various ways:
a) by setting your browser software accordingly, in particular the suppression of third-party cookies will result in you not receiving any third-party ads;
b) by deactivating cookies for conversion tracking by setting your browser to block cookies from the domain“www.googleadservices.com„, https://www.google.de/settings/ads, whereby this setting will be deleted when you delete your cookies.
Third country status: The processing is not prevented by the fact that the data is transmitted to the USA, possibly in cooperation with Google LLC. This is because we only use this tool if you consent to the associated transfer of data to the USA (see Article 49 (1) (a) DSGVO). Please be sure to read our risk information beforehand (cf. General Section/Special Constellation: Consent to Transfer to Third-Party Entities Located in the USA, including the risk information).
Briefly: This website continues to carry out analyses of user behavior via so-called A/B testing. This allows us to show you our websites with slightly different content, depending on a profile assignment that has been made. This allows us to analyze our offer, improve it regularly and make it more interesting for you as a user.The third country transfer is justified by Article 46 DSGVO.
Processing and third-party providers in detail: To carry out analyses of user behavior via so-called A/B testing, we use the following service provider with its tool described in more detail in the heading: Google LLC, 1600 Amphitheatre Parkway, Mountain View, California 94043. If you are based within the European Economic Area, your data is additionally processed by Google Ireland Ltd, Gordon House,Barrow Street, Dublin 4, Ireland. We would like to briefly describe this processing procedure: This website also carries out analyses of user behavior via so-called A/B testing. This allows us to show you our websites with slightly different content, depending on a profile assignment that has been made. This allows us to analyze our offer, improve it regularly and make it more interesting for you as a user. For this analysis, cookies (see paragraph 3 for more details) are stored on your computer. You can prevent the analysis by deleting existing cookies and preventing the storage of cookies. If you prevent the storage of cookies, please note that you may not be able to use our website to its full extent. Preventing the storage of cookies is possible through the setting in your browser.
Data that is processed: Here, we generally process those data from you that we process in connection with Google analysis tools and Google advertising. We refer to the other explanations inc onnection with processing operations in which the provider assists us.
Third country status: The processing is not prevented by the fact that the data is transmitted to the USA, possibly in cooperation with Google LLC. This is because we only use this tool if you consent to the associated transfer of data to the USA (see Article 49 (1) (a) DSGVO). Please be sure to read our risk information beforehand (cf. General Section/Special Constellation: Consent to Transfer to Third-Party Entities Located in the USA, including the risk information).
Briefly: We use a video playback solution to present you with our and/or other videos within the framework of our Internet presence, but also on our channel. When you start these videos, both the provider of the video platform and we document this in order to subsequently be able to show you interest-based information and ads.In this respect, we use the „YouTube“ portal. The US data transfer, which cannot be ruled out, is justified as the processing only takes place if you consent to it.
Processing and third-party providers in detail: We use the above-mentioned video platform or video portal on our website. Their provider is Google LLC, 1600 Amphitheatre Parkway, Mountain View, California 94043. If you are based within the European EconomicArea, your data will also be processed by Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland. You can find a data protection declaration of the provider here: https://policies.google.com/privacy?fg=1. We describe this processing procedure specifically: Plugins of the video portal YouTube are integrated on our website. Each time you call up a page that offers one or more YouTube video clips, a direct connection is established between your browser and a YouTube server. These videos are all integrated in „extended data protection mode“. No data about you as a user will be transmitted to YouTube if you do not play the videos. Only when you play the videos will the data mentioned in paragraph 3 be transmitted. We have no influence on this data transmission. If you use a Google account and do not want it to be associated with your profile on YouTube, you must log out before activating the button.
Data that is processed: By visiting the website, YouTube receives the information that you have accessed the corresponding sub-page of our website. This takes place regardless of whether YouTube provides a user account via which you are logged in or whether no user account exists. If you are logged in to Google, your data will be directly assigned to your account. YouTube stores your data as usage profiles and uses them for the purposes of advertising, market research and/or designing its website in line with requirements. Such an evaluation is carried out in particular (even for users who are not logged in) to provide needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation oft these user profiles, and you must contact YouTube to exercise this right. For more information on the purpose and scope of data collection and its processing byYouTube, please see the privacy policy. There you will also find further information on your rights and setting options to protect your privacy: https://www.google.de/intl/de/policies/privacy.
Third country status: The processing is not prevented by the fact that the data is transferred to theUSA, possibly in cooperation with Google LLC. This is because we only use this tool if you consent to the associated transfer of data to the USA (see Article 49 (1) (a) DSGVO). Please be sure to read our risk information beforehand (cf. General Section/Special Constellation: Consent to Transfer to Third-Party Entities Located in the USA, including the risk information).
Addition „Company page“: We have linked our company page with this provider on our website. If you click on this link (meaning the link to our company page), you will betaken to our profile. With regard to this processing, we refer to our previous statements on visiting our company page with this provider.
Briefly: In order tobe able to communicate with you automatically, for example when sending useful information, we use an automation service provider with which we send automated messages (e.g. e-mails, SMS) to you, evaluate your interactions and in turn respond to them automatically. We use the provider „Klick Tipp“ for this purpose. The third country data transfer, which cannot be ruled out, is justified as the EU Commission has determined an adequate level of data protection for the United Kingdom.
Processing and third-party providers in detail: We use the above marketing automation service providers. Its provider is KLICK-TIPP LIMITED, 15 Cambridge Court, 210 Shepherd’s Bush Road, London W6 7NJ (United Kingdom). We are happy to describe this processing operation in concrete terms: we use Klick-Tipp to apply marketing measures to you, which we have identified and described as such in this data protection declaration. We have commissioned this provider with the processing of your personal data required in this respect in accordance with Article 28(3)of the GDPR. You can find the data protection declaration of this provider here: https://www.klick-tipp.com/datenschutzerklärung.
Data that is processed: We process all data that we use for advertising purposes as already described in this data protection declaration. Furthermore, we use the so-called“tags“ of Klick-Tipp in our communication with you (e.g. for the processing of the contract or for follow-up emails) and for the delivery of newsletters and webinars. A tag is a marking of information with additional information, specifications or categories. With tagging, information is linked with suitable keywords, categories or other parameters defined by us in advance. You can find more information about tagging at Klick-Tipp at https://www.klick-tipp.com/handbuch/erste-schritte/tag-erstellen. It is important that we use and define these tags in such a way that Klick-Tipp follows our instructions here. Klick-Tipp uses so-called SmartTags and manual tags. SmartTags are used when you register for something (appointment, newsletter, webinar, etc.) via a registration form. In this case, you automatically receive a tag with the name of the registration form in question. Klick-Tipp also automatically sets the tags „Email received“, „Email opened“, „Email clicked“ and „Email viewed in browser“ for us. We set manual tags completely independently. For example, we can tag you with the tag „customer“ or- even more specifically – with the tag „product B purchased“ or“webinar viewed up to this point“. Klick-Tipp collects some of the information that forms the basis of the tagging via additional tracking pixels. The tags are basically used to enable us to fulfill our pre-contractual and contractual obligations. Furthermore, they enable us to communicate with you automatically, which increases our accessibility and thus our service level. If we use the tags to send advertising, this is part of the legal basis claimed for this. We also use the tags to improve promotional targeting. If you do not want any analysis byKlick-Tipp, you must therefore unsubscribe or object to the reason for our communication. For this purpose, we provide a corresponding link in every message aimed at this. Furthermore, you can also unsubscribe from the newsletter or webinar directly on the website.
Third country status: The fact that the provider is based in the United Kingdom does not prevent processing.This is because the EU Commission has determined an adequate level of data protection for the United Kingdom.
Briefly: In order to be able to communicate with you in an automated way, for example when sending you useful information, we use marketing automation to send automated messages (e.g. emails, SMS) to you, evaluate your interactions and in turn respond to them in an automated way. The US data transfer, which cannot be excluded, is justified as the processing only takes place if you consent to it.
Processing and third party providers in detail: We use the above marketing automation solution. Their provider is: HubSpot, Inc, 25 First Street, Cambridge, MA 02141 (USA), hubspotgermany@hubspot.com. We have commissioned this provider with the processing of your data in accordance with Article 28 DSGVO. You can find the agreement here: https://legal.hubspot.com/de/dpa. You can find the privacy policy of this provider here: https://legal.hubspot.com/de/privacy-policy.
Data processed: We process all data that we use for advertising purposes, as already described in this data protection declaration. Furthermore, we use so-called“tags“ in our communication with you (for example, to process the contract or follow-up emails) and when delivering newsletters and webinars. A tag is a marking of information with additional information, specifications or categories. When tagging, information is linked with suitable keywords, categories or other parameters defined by us in advance. It is important that we use and define these tags in such a way that the provider follows our instructions here.
Third country status: The fact that the provider is located outside the European Union does not prevent processing. This is because we only use this tool if you consent to the associated data transfer to the USA (cf. Article 49(1)(a) DSGVO). Please be sure to read our risk information beforehand (cf. General Section/SpecialConstellation: Consent to Transfer to Third-Party Providers Located in the USA, including the risk information).
(1) The purpose of the processing operations described below is described separately for each tool. It is the decisive justification for our legitimate interest in the processing.
(2) The legal basis for the respective data processing is Article 6 (1) sentence 1 lit. f DSGVO. According to this provision, the processing of your personal data is also permissible without your consent if it is necessary to protect our legitimate interests or those of a third party, unless your interests or fundamental rights and freedoms requiring the protection of personal data are overridden.
(1) We store the data until our purpose has ceased to apply, which is always the case if you have raised a justified objection (cf. „Note on the right to object.“).
(2) This does not include all data for which a reason for storage other than a legitimate interest applies. In particular, we store the information from which our legitimate interest arises for three years, beginning on 31December of the calendar year in which you declared your objection or the interest ceased to exist. On the one hand, this longer storage is regulated by Article 6 (1) sentence 1 lit. c DSGVO in conjunction with Article 5 (2) DSGVO. Article 5 (2) DSGVO, as we are accountable for the lawfulness of the data processing. This is also additionally justified by Article 6 (1) sentence 1 lit. f DSGVO, as it is in our legitimate interest to defend ourselves against claims for damages based on the fact that no legitimate interest would have existed. This interest in storage exists at least until the expiry of the statutory limitation period (§ 1489ABGB).
(1) Insofar as we base data processing in the following data protection statement on Article 6 (1) sentence 1 lit. f DSGVO, i.e. on a legitimate interest in the processing, you always have the right to object to the processing. As a rule, this is possible by sending an informal message to us (see „Person responsible.“ above). If the objection is justified, we will stop the processing.
(2) If the legitimate interest is based on the interest in direct marketing or advertising, your objection is always justified if you are identified.
Briefly: Insofar as you conclude a contract with us, be it a paid or free contract, there is the possibility that we will provide you with useful information by e-mail. You can object to this at any time by sending us an informal message.
Processing and third party providers in detail: We process your email address and name in order tosend you useful information by email at regular or irregular intervals.Furthermore, we store the information that a contractual relationship exists or existed between us in order to be able to prove our legitimate interest.
Data that is processed: We store and use your e-mail address, your name and the status data relating to the contractual relationship.
Special note on the right to object: You can object to the use of your data for this purpose at any time; for example, by sending us an informal message (contact channels can be found at the beginning of the data protection declaration and in our imprint). In particular, you can object without incurring any costs other than the transmission costs according to the basic rates.
Briefly: When you visit our website, so-called transient cookies briefly process data from you in order to display the website to you.
Processing in detail: We use so-called transient cookies on our website. These include, in particular, session cookies. These store a so-called session ID, with which various requests of the visitor’s browser can be assigned to the common session. This allows the visitor’s computer to be recognized when the visitor returns to your website.
Data processed: IP address, date and time of the request, time zone difference to Greenwich Mean Time(GMT), content of the request (specific page), access status/HTTP status code, amount of data transferred in each case , website from which the request came, browser, operating system and its interface, language and version of the browser software. We receive this data via cookies and directly from your browser
Briefly: When you assert rights against us (e.g. request for information), we process the related communication data in order to be able to prove later how we have dealt with your claims.
Processing in detail: You have a number of rights vis-à-vis us (see General section, Rights of visitors to the website). If you assert rights against us, we process the related contact, communication and transaction data. We process your data as follows:
1. we receive your request.
2. we examine your request
3. we comply with your request if it is justified.
4. we store the related data.
Addition to the legal basis: While the processing in the sense of the intention paragraphs 1 to 3 is justified by Article 6 (1) sentence 1 lit. c DSGVO (we are generally obliged to process your concerns on the basis of the DSGVO), the purpose of the storage (paragraph 2 clause 4) is that we store the data in order to be able to defend ourselves against claims on your part at a later date. This is also our legitimate interest. We store your data until the end of the third calendar year following your request/input (cf. Article 6 (1) sentence 1 lit. f DSGVO in conjunction with Section 1489 ABGB).
Data processed: Name, contact details and communication content.
Briefly: When you assert rights against us (e.g. request for information), in some cases we seek external advice (e.g. legal advice, data protection officer, IT service provider…).
Processing in detail: You have a number of rights vis-à-vis us (see General section, Rights of visitors to the website). If you assert rights against us, we forward this request to external service providers for examination, who are in turn sworn to secrecy. The purpose of the processing is that we obtain expert advice in order to process your concerns in accordance with the law. This is in both our and your legitimate interests.
Data processed: Name, contact details and communication content.
Briefly: You have the opportunity to rate us and our services online. For this purpose, we and a rating provider process the necessary data from you.
Processing in detail: We have integrated a rating tool on this website to enable you to rate us and our services. The provider is Trustpilot A/S, Pilestraede 58, 5th floor, DK-1112Copenhagen K (Denmark). Insofar as we use this tool, a distinction must be made between three processing operations:
a. First, we graphically display a plugin on our website together with ratings. As soon as you click on the plugin, the information that you have visited our website and that you have clicked on the plugin from there is transmitted to the provider of the rating tool, i.e. the web server automatically saves a so-called server log file, which contains your IP address, date and time of the retrieval, transferred data volume and the requesting provider (access data) and documents the retrieval. This access data is not evaluated and is automatically overwritten at the latest seven days after the end of your visit to the site.
b. As soon as you submit a rating about us and our services in the event of a purchase on the site, the provider of the rating tool processes your data for the purpose of displaying the rating and, if applicable, for further purposes about which this provider must inform you.
c. In the case of your rating, if shared by you, your name and email address as well as the customer ID of the order process will be transmitted to the rating tool provider, who will check the transmitted rating and publish it on our website. The purpose of all three processing operations is that we provide you with the voluntary opportunity, which is irrelevant to the contract, to evaluate us and our performance independently of our sphere of influence. In the case of processing operations lit. b and c, there is the additional purpose that your evaluation is to be verified by a concrete contractual relationship with us.
Addition to the legal basis: The relevant legal basis for the processing operation (see previous paragraph) is lit.
a. Article 6 (1) sentence 1 lit. f DSGVO, whereby our legitimate interest follows from the fact that we grant you the voluntary possibility, irrelevant for the contract design, to evaluate us and our performance independently of our sphere of influence, details of this legal basis see above.
b.the legal basis that the provider of the evaluation tool names to you, because he is the responsible party in this respect and no longer us,
c. whichever legal basis the rating tool provider designates to you, as it is the controller to that extent and no longer us.
Data that will be processed: Name, rating content.
Briefly: We use the so-called affiliate system of the provider Post Affiliate Pro. This service is provided by Quality Unit, s.r.o., Vajnorská 100/A, 83104 Bratislava, Slovakia. Referrers receive commissions for signing certain contracts with third parties based on their recommendations. In some cases we are affiliates and in others we use affiliates to recommend our products and services. Your data will be processed to the extent necessary to calculate the commission. Details of the provider’s privacy policy can be found at: https://www.postaffiliatepro.de/gdpr/ withfurther references.
Processing in detail: We use affiliate marketing systems on our website, in our e-mails and in our other communications with you. Affiliate systems are Internet-based sales methods in which a commercial provider (hereinafter: provider) remunerates its sales partners (hereinafter: affiliates) through commissions. In this context, the provider makes advertising material available which the affiliate presents to third parties on its Internet pages and via other communication channels (hereinafter: affiliate link). If the third parties click on the affiliate links, they are taken to the internet offers of the provider, whereby the information that they have been taken there via the affiliate link is also transmitted. If a contract and/or transaction is concluded between the third party and the provider, the affiliate receives a commission. A description of the functions can be found at: https://www.postaffiliatepro.de/funktionen/
Data that is processed: If the third parties click on the affiliate links, they are taken to the internet offers of the providers, whereby the information that they have arrived there via the affiliate link is also transmitted. If a contract is concluded and/or a transaction takes place between the third party and the provider, the affiliate receives a commission.