When you use this website and other external online services, such as our social media accounts on LinkedIn or Xing, your personal data is processed by us as the data controller. This privacy policy informs you, as the data subject whose personal data we process (data subject), about the nature, scope, purpose and duration of the processing of your personal data. You will receive information about which data is processed, the purposes we pursue, the legal obligations we must fulfil and your rights.
Personal data is defined in Art. 4 No. 1 of the EU General Data Protection Regulation (GDPR) as any information relating to an identified or identifiable natural person.
The controller within the meaning of the General Data Protection Regulation (GDPR) and other international and national data protection regulations is:
cloudworx GmbH
Rupert-Mayer-Straße 44, Building 64.07a
81379 Munich
Phone: +49 800 25 68 396
info@cloudworx.agency
cloudworx.agency
Commercial register: HRB 238863 Register court: Munich
Represented by the managing director: Timo Müller
We are not obliged to appoint a data protection officer. If you have any questions about data protection, please contact:
Timo Müller
Phone: +49 800 25 68 396
Email: privacy@cloudworx.agency
If your personal data is processed by us, you have the following rights as a data subject under the GDPR.
You can request confirmation from the controller as to whether personal data concerning you is being processed by us. If such processing is taking place, you can request the following information from the controller:
In addition, you have the right to request information on whether the personal data concerning you is transferred to a third country or to an international organisation. In this context, you may request to be informed of the appropriate safeguards pursuant to Art. 46 GDPR in connection with the transfer.
You have the right to obtain from the controller rectification of inaccurate personal data concerning you or to have such data completed. The controller shall undertake the rectification without undue delay.
You may request the restriction of the processing of personal data concerning you under the following conditions:
If the processing of personal data concerning you has been restricted, such data may – with the exception of storage – only be processed with your consent or for the assertion, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.
If the restriction of processing has been imposed in accordance with the above requirements, you will be informed by the controller before the restriction is lifted.
a) Obligation to erase
You may request that the controller erase your personal data without undue delay, and the controller is obliged to erase this data without undue delay if one of the following reasons applies:
b) Information to third parties
If the controller has made the personal data concerning you public and is obliged to delete it pursuant to Art. 17(1) GDPR, it shall take reasonable steps, including technical measures, to inform data controllers who process the personal data of the data subject's request for the erasure of all links to this personal data or of copies or replications of this personal data.
c) Exceptions
The right to erasure does not apply if the processing is necessary
If you have exercised your right to rectification, erasure or restriction of processing vis-à-vis the controller, the controller is obliged to notify all recipients to whom your personal data has been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves disproportionate effort. You have the right to obtain information about these recipients from the controller.
You have the right to receive the personal data concerning you that you have provided to the controller in a structured, commonly used and machine-readable format. You have the right to transmit these data to another controller without hindrance from the controller to whom the personal data have been provided, provided that the processing is based on consent pursuant to Article 6(1)(a) of the GDPR or Article 9(2)(a) or on a contract pursuant to Article 6(1)(b) and the processing is carried out by automated means.
When exercising this right to data portability, you also have the right to have the personal data transmitted directly from one controller to another, where technically feasible.
The rights and freedoms of other persons must not be affected by the right to data portability.
The right to portability does not apply to processing necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
You have the right to object, on grounds relating to your particular situation, to the processing of personal data concerning you which is based on Article 6(1)(e) or (f) of the GDPR. This also applies to profiling based on these provisions.
The controller will then no longer process the personal data concerning you unless the controller can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing is necessary for the establishment, exercise or defence of legal claims.
If the personal data concerning you is processed for direct marketing purposes, you have the right to object at any time to the processing of personal data concerning you for such marketing purposes. In this case, we will immediately cease processing. You do not need to specify a particular situation. If you wish to exercise your right to object, simply send an email to: privacy@cloudworx.agency.
You have the right to withdraw your consent to the processing of personal data at any time. This means that we will no longer be allowed to continue processing the data based on this consent in the future. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you.
You do not have this right if the decision
a) is necessary for the conclusion or performance of a contract between you and the controller,
b) is authorised by Union or Member State law to which the controller is subject and which also lays down suitable measures to safeguard your rights and freedoms and legitimate interests, or
c) is based on your explicit consent.
However, these decisions may not be based on special categories of personal data pursuant to Art. 9 (1) GDPR, unless Art. 9 (2) lit. a or g GDPR applies and appropriate measures to protect your rights and freedoms and legitimate interests have been taken.
With regard to the cases referred to in a) and c), the controller shall take appropriate measures to safeguard your rights and freedoms, including at least the right to obtain the intervention of the controller, to express your own point of view and to contest the decision.
You have the right to lodge a complaint with a supervisory authority, without prejudice to any other administrative or judicial remedy, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement, if you consider that the processing of personal data relating to you infringes the GDPR. The supervisory authority responsible for the controller is:
Bavarian State Office for Data Protection Supervision
Promenade 27
91522 Ansbach
Tel.: 0981 / 53 1300
Email: poststelle@lda.bayern.de
The controller processes personal data of data subjects to the extent necessary for the provision of this website and other external online services, as well as for the use of our content and services. The processing of personal data is carried out only with the consent of the data subject. An exception applies in cases where prior consent cannot be obtained for practical reasons and the processing of the data is permitted or required by law.
The legal basis for the processing of personal data is Art. 6 para. 1 sentence 1 lit. a GDPR if the processing is based on the consent of the data subject.
The legal basis for the processing of personal data is Art. 6 para. 1 sentence 1 lit. b GDPR if the processing is necessary for the performance of a contract to which the data subject is party. The legal basis also applies to processing operations necessary for the implementation of pre-contractual measures.
The legal basis for the processing of personal data is Art. 6 para. 1 sentence 1 lit. c GDPR if the processing is necessary for the fulfilment of a legal obligation.
The legal basis for the processing of personal data is Art. 6 para. 1 sentence 1 lit. d GDPR if vital interests of the data subject or another natural person require the processing.
The legal basis for the processing of personal data is Art. 6 para. 1 sentence 1 lit. f GDPR if the processing is necessary to safeguard the legitimate interests of the controller or a third party and the interests, fundamental rights and freedoms of the data subject do not override the interests of the controller.
The personal data of the data subject will be deleted or blocked as soon as the purpose for which it was collected or otherwise processed ceases to apply. Processing may continue if it is necessary for the fulfilment of a legal obligation to which the controller is subject under Union or Member State law or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller. Furthermore, processing may continue if it is necessary for the establishment, exercise or defence of legal claims.
Each time this website is used, the server of the controller automatically collects data and information from the browser of the accessing device.
The following data is collected:
The data is stored in so-called log files on our system. This data is not stored together with other personal data of the user.
The legal basis for the processing of personal data is Art. 6 para. 1 sentence 1 lit. f GDPR.
The temporary storage of the IP address of the requesting terminal device by the system is technically necessary to enable the connection between the user's terminal device and the server of the controller and to ensure the delivery of the website to the terminal device. Furthermore, the controller processes the IP address for technical and administrative purposes during the establishment of the connection in order to ensure the stability of the connection, to ensure the security and functionality of the online offers and to be able to investigate any illegal attacks.
The data is stored in log files to ensure the functionality of the website. The controller does not draw any direct conclusions about your identity from the processing of the IP address and the information in the log files. The data is not evaluated for marketing purposes in this context.
The legal basis for the processing of the IP address and the information in the log files is Art. 6 para. 1 sentence 1 lit. f GDPR. The legitimate interest of the controller is the secure and uninterrupted provision of our website.
The personal data of the data subject will be deleted or blocked as soon as the purpose for which it was collected or otherwise processed no longer applies. When processing data for the purpose of providing the website, this is the case when the respective session has ended. When processing data in log files, this is the case after 30 days at the latest.
The processing of the IP address for the provision of the website and the processing of data in log files is essential for the operation of the website. Therefore, there is no possibility for the user to object.
We use cookies and tracking pixels on our website to collect statistical data about the use of our website and to evaluate this data for optimisation purposes.
a) Cookies
Cookies are small text files that your internet browser creates and stores on your device (e.g. laptop, tablet, etc.) when you visit our website. A cookie contains a characteristic string of characters that enables the device to be uniquely identified when you visit our website again. Cookies do not cause any damage to your device; they do not contain viruses, Trojans or other malware. The use of cookies does not mean that we immediately obtain knowledge of your identity.
b) Tracking pixels
A tracking pixel, or tracking beacon, is a small 1x1 pixel graphic (GIF file) that can be called up when you visit our website or open our newsletter. Tracking pixels do not cause any damage to your device; they do not contain viruses, Trojans or other malware.
The loaded or unloaded pixel can be used to check whether a user has visited the page or not. The pixels send your IP address, the referrer URL of the website visited or the newsletter opened, the time at which the pixel was viewed, the browser used and previously set cookie information to a web server. The data enables the controller to carry out statistical evaluations, the results of which are used to optimise the website and the offers. Most browsers automatically accept pixels. You can prevent the use of pixels on the controller's pages by using appropriate tools or browser add-ons.
The legal basis for the processing of personal data is Art. 6 para. 1 sentence 1 lit. f GDPR.
The purpose of using technically necessary cookies is to enable the use of our website and to make it more user-friendly for you. The controller uses so-called session cookies to recognise that you have already visited individual pages of the website. Some functions of the website cannot be used without the use of cookies. For these functions, it is necessary that the internet browser of the end device is recognised even after a page change.
Cookies that are used to statistically record the use of our website and to evaluate it for the purpose of optimising our offer enable us to automatically recognise that you have already visited this website when you visit it again.
Session cookies are automatically deleted when you leave the website. Cookies and tracking pixels that analyse the use of the website are automatically deleted after the specified storage period.
a) Cookies
Cookies are stored on the user's computer and transmitted to the web server of the controller. Most Internet browsers automatically accept cookies. However, you can configure your Internet browser so that the transfer of cookies is deactivated or restricted or a message appears before a new cookie is created. Cookies that have already been stored can be deleted at any time. Deletion can also be automated. As a user, you therefore have full control over the use of cookies. If cookies are deactivated for this website, it may no longer be possible to use all the functions of the website to their full extent.
b) Tracking pixels
Most browsers automatically accept pixels. However, you can configure your Internet browser or use appropriate tools or browser add-ons to prevent the use of tracking pixels.
If you use a contact form on this website or send an email to the controller, the data you provide will be automatically processed by the controller in order to process your request. When you use the contact form, the date, time and time of sending the message are stored in addition to the contents of the form. Before sending the message, your consent will be obtained and confirmation that you have understood and accepted the privacy policy. When contacting us by email, your personal data will also be stored. The data will be processed exclusively for the purpose of processing your request. It will not be passed on to third parties.
The legal basis for the processing of personal data with your consent is Art. 6 para. 1 sentence 1 lit. b GDPR.
The legal basis for the processing of personal data when communicating by email is Art. 6 para. 1 sentence 1 lit. f GDPR.
If the processing of personal data serves the purpose of concluding a contract by email or via a form, the legal basis is Art. 6 para. 1 sentence 1 lit. b GDPR.
The purpose of processing personal data collected via the contact form or by email is to process the sender's request. The additional personal data collected serves to prevent misuse of the forms and to ensure the information security of the systems of the controller. The legal basis for the processing of the information is Art. 6 para. 1 sentence 1 lit. f GDPR.
The personal data of the data subject will be deleted as soon as the purpose for which it was collected or otherwise processed no longer applies. For personal data from the contact form and/or sent by email, this is the case when the respective communication with the user has ended. The communication is terminated when it can be inferred from the circumstances that the matter in question has been conclusively clarified.
The user may revoke their consent to the processing of personal data at any time. If the user contacts us by email, they may object to the storage of their personal data at any time. In such a case, communication cannot be continued.
All personal data stored in the course of establishing contact will be deleted in this case.
The controller uses the customer relationship management system (CRM system) of the provider Salesforce (Salesforce). Salesforce.com is a service provided by Salesforce.com Germany GmbH, Erika-Mann-Str. 63, 80636 Munich, Germany. The controller uses Salesforce to process enquiries from website users, customers and interested parties more quickly and efficiently. Salesforce uses this data only for the technical processing of enquiries and does not pass it on to third parties. To use Salesforce, you must provide at least a valid email address. Pseudonymous use is possible. In the course of processing service requests, it may be necessary to collect additional data (name, address).
Information on data protection at Salesforce can be found in the Salesforce privacy policy: https://www.salesforce.com/de/company/privacy/.
Salesforce is certified under the EU-U.S. Privacy Shield for the transfer of personal data to the United States. Further information about the Privacy Shield can be found here: https://www.privacyshield.gov/. You can view Salesforce's certification here: https://www.privacyshield.gov/list.
The legal basis for the processing of personal data in connection with the use of the Salesforce CRM system is Art. 6 (1) (f) GDPR.
The purpose of using Salesforce is to maintain relationships with customers and interested parties quickly and efficiently, and to respond to relevant enquiries.
We delete CRM data when it is no longer required. We review the necessity of storage every two years. In addition, the statutory archiving obligations apply.
If you do not agree to the processing of your data in the Salesforce systems, we offer you alternative contact options. You can reach us by email, telephone, fax or post.
The controller uses the email marketing system of the provider Campaign Monitor (Campaign Monitor) for email marketing. Campaign Monitor is a service provided by Campaign Monitor Pty Ltd, Level 38, 201 Elizabeth Street, Sydney NSW 2000, Australia. The controller uses Campaign Monitor to process enquiries from website users, customers and interested parties more quickly and efficiently, and to send newsletters. The email addresses and other data entered during registration are stored by Campaign Monitor on servers in the USA, Australia and Germany. Campaign Monitor offers extensive analysis options, such as how emails are opened and read. These analyses are group-based and are not used by the processor for individual evaluation of newsletter recipients. According to its own information, Campaign Monitor may use this data in pseudonymous form, i.e. without assignment to a user, for the optimisation or improvement of its own services, e.g. for technical optimisation of the dispatch or for statistical purposes to determine the countries from which the email recipients come. However, Campaign Monitor does not use the data of our email recipients to write to them itself or to pass it on to third parties.
Campaign Monitor has committed itself to complying with the provisions of the GDPR. Information on data protection at Campaign Monitor can be found in the Campaign Monitor privacy policy: http://www.campaignmonitor.com/privacy/.
The legal basis for the processing of personal data in connection with the use of the email marketing software Campaign Monitor is the consent of the recipient in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR for the sending of emails.
The legal basis for carrying out statistical evaluations and analyses, as well as for logging consent and registration, is the legitimate interest of the controller pursuant to Art. 6 para. 1 lit. f GDPR.
The purpose of using Campaign Monitor is to respond to enquiries from customers and interested parties in a user-friendly, economical and secure manner, as well as to maintain relationships with customers and interested parties quickly and efficiently by sending newsletters.
We delete the data of email recipients when it is no longer required. We review the necessity of storage every two years. In addition, the statutory archiving obligations apply.
If you do not agree to the processing of your data in Campaign Monitor's systems, you can withdraw your consent at any time. We offer you alternative contact options. You can reach us by email, telephone, fax or post.
During the application process, the controller processes the personal data of applicants (e.g. contact and communication data, application documents, notes made during job interviews, etc.) to the extent necessary to decide whether to establish an employment relationship. Processing may be carried out physically or electronically. Electronic processing takes place in particular when an applicant submits their application documents to the controller by electronic means, for example by email or via an online application form.
If the controller concludes an employment contract with an applicant, the data transmitted will be stored for the purpose of implementing the employment relationship in compliance with the statutory provisions. If the controller does not conclude an employment contract, the applicant rejects a job offer, withdraws their application, revokes their consent or requests the controller to delete their data, the application documents will be automatically deleted two months after notification of the decision to terminate the application, provided that no other legitimate interests of the controller prevent deletion. Other legitimate interests in this sense include, for example, a burden of proof in proceedings under the General Equal Treatment Act (AGG).
The purpose of processing is to decide whether to establish an employment relationship. The legal basis for the processing of personal data is Section 26 (1) BDSG under German law, Art. 6 (1) lit. b GDPR. If the controller processes the data on the basis of consent given, the legal basis for this is Section 26 (2) BDSG under German law, Art. 6 (1) lit. a GDPR. Consent can be revoked at any time. In certain cases, the controller processes personal data on the basis of legitimate interest. The legal basis for the processing of personal data is then Art. 6 para. 1 lit. b GDPR.
If the controller is unable to make a job offer, the applicant rejects a job offer, withdraws their application, revokes their consent or requests the controller to delete their data, the application documents, including any existing physical application documents, will be deleted no later than six months after the conclusion of the application process, provided that no other legitimate interests of the controller responsible for processing prevent deletion. Other legitimate interests in this sense include, for example, a burden of proof in proceedings under the General Equal Treatment Act (AGG).
The applicant may revoke their consent to the processing of their personal data at any time. If the user contacts the controller by email, they may object to the storage of their personal data at any time. In such a case, the application process cannot be continued.
The controller uses the LinkedIn platform, Wilton Place, Dublin 2, Ireland, for its corporate presence. On our corporate website, we provide information and offer LinkedIn users the opportunity to communicate and interact with us. If you perform an action on our corporate website on LinkedIn, your personal data may be made public. Information on the processing of your personal data by LinkedIn and on data protection at LinkedIn can be found in LinkedIn's privacy policy, which you can access here: https://privacy.linkedin.com/de-de
The legal basis for the processing of personal data in connection with the use of our company profile on LinkedIn is Art. 6 (1) (f) GDPR.
The purpose of the company profile on LinkedIn is to inform LinkedIn users about the products and services offered by the controller. In doing so, every user is free to publish personal data through their activities.
The controller stores the activities and personal data published on LinkedIn until revoked. In addition, the controller complies with the statutory retention periods.
You can object to the processing of your personal data collected by the controller in connection with the use of the company profile on LinkedIn at any time and assert your rights as a data subject.
LinkedIn offers the option of managing the settings for the processing of personal data by LinkedIn at https://www.linkedin.com/psettings/.
The controller uses the platform of XING SE, Dammtorstraße 30, 20354 Hamburg, for its company profile. On our company profile, we provide information and offer Xing users the opportunity to communicate and interact with us. If you perform an action on our company profile on Xing, your personal data may be made public. Information on the processing of your personal data by Xing and on data protection at Xing can be found in Xing's privacy policy, which you can access here: https://privacy.xing.com/de
The legal basis for the processing of personal data in connection with the use of our company profile on Xing is Art. 6 (1) (f) GDPR.
The purpose of our company profile on Xing is to inform Xing users about the products and services offered by the controller. Users are free to publish personal data through their activities.
The controller stores the activities and personal data published via Xing until revoked. In addition, the controller complies with the statutory retention periods.
You may object to the processing of your personal data collected by the controller in connection with the use of the company's Xing profile at any time and assert your rights as a data subject.
Xing SE provides information on the processing of personal data by Xing SE at https://privacy.xing.com/de/datenschutzerklaerung.
The content of the YouTube videos embedded on this website and this YouTube channel is the responsibility of cloudworx GmbH, Hohenlindener Str. 1, 81677 Munich.
The controller uses the YouTube platform, a service provided by Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001, to play videos.
To embed YouTube videos on our website, we use the option provided by YouTube known as ‘extended data protection mode’. When you start the embedded video, a connection to YouTube servers is established, which may trigger further data processing operations. According to Google, YouTube videos can be embedded in enhanced privacy mode without cookies being set to track user behaviour. User behaviour is therefore not monitored in order to personalise video playback. Instead, video recommendations are based on the video currently being played. Videos played in extended privacy mode in an embedded player do not affect which videos are recommended to a user on YouTube.
When you access videos on our website or use our YouTube channel, YouTube, as the responsible party, processes personal data, e.g. through the use of cookies. Processing may also take place for users of our website or YouTube channel if these users are not logged in or registered with YouTube. Information about data collection and further processing by YouTube can be found in YouTube's privacy policy: https://policies.google.com/privacy?hl=de&gl=de
Google is certified under the EU-U.S. Privacy Shield for the transfer of personal data to the USA. Further information about the Privacy Shield can be found here: https://www.privacyshield.gov/. You can view Google's certification here: https://www.privacyshield.gov/list.
The legal basis for the processing of personal data in connection with the use of the web analytics service Google Analytics is Art. 6 para. 1 sentence 1 lit. f GDPR.
The purpose of using videos on our website and on our YouTube channel is to inform users of our website and users of YouTube about the products and services of the controller.
The cookies on our website have a maximum lifetime of 90 days. We have no information about the deletion and storage period of cookies on YouTube.
You can permanently object to the use and storage of ‘conversion cookies’ or comparable technology used instead of cookies and cross-device remarketing/targeting by disabling the option for personalised advertising in your Google account: https://adssettings.google.com/authenticated?hl=de.
||Information on data protection at Google can be found in Google's privacy policy: https://policies.google.com/privacy?hl=de&gl=de.
The controller uses the web analytics service Google Analytics (with anonymisation function) on its website, a service provided by Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. Google Analytics uses ‘cookies’, which are text files placed on your computer, to help the website analyse how users use the site. These cookies may include information about your use of this website, such as the date and time of your visit and the pages you have visited. This information is usually transferred to a Google server in the USA and stored there. However, if IP anonymisation is activated on this website, your IP address will be truncated by Google within member states of the European Union or in other states party to the Agreement on the European Economic Area prior to transmission. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. On behalf of the controller, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide other services relating to website activity and internet usage to the website operator.
The IP address transmitted by your browser as part of Google Analytics is not merged with other data from Google.
Google is certified under the EU-U.S. Privacy Shield for the transfer of personal data to the USA. Further information about the Privacy Shield can be found here: https://www.privacyshield.gov/. You can view Google's certification here: https://www.privacyshield.gov/list.
The legal basis for the processing of personal data in connection with the use of the web analytics service Google Analytics is Art. 6 para. 1 sentence 1 lit. f GDPR.
The purpose of using Google Analytics is to analyse and regularly improve the use of the controller's website. The statistics obtained enable the controller to better address its target groups and make the website more interesting for users.
The user data collected by the controller via cookies is automatically deleted after 26 months.
You can object to the collection and processing of your data by Google Analytics by downloading and installing the browser plugin available at the following link: https://tools.google.com/dlpage/gaoptout.
Information on data protection at Google can be found in the Google Privacy Policy: https://policies.google.com/privacy?hl=de&gl=de
The controller uses the marketing and remarketing services (Google Marketing Services) of the provider Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001 on its website.
Google Marketing Services allow the controller to display advertisements for its website in a more targeted manner in order to present users only with advertisements that potentially correspond to their interests. If, for example, a user is shown advertisements for products in which they have shown interest on other websites, this is referred to as ‘remarketing’. For these purposes, when the controller's website and other websites on which Google Marketing Services are active are accessed, a code from Google is executed directly by Google and so-called (re)marketing tags (invisible graphics or code, also known as ‘web beacons’) are integrated into the website. With their help, an individual cookie, i.e. a small file, is stored on the user's device (comparable technologies may also be used instead of cookies). The cookies may be set by various domains, including google.com, doubleclick.net, invitemedia.com, admeld.com, googlesyndication.com or googleadservices.com. This file records which websites the user has visited, which content they are interested in and which offers they have clicked on, as well as technical information about the browser and operating system, referring websites, visit time and other information about the use of the online offer. The IP address of the user is also recorded, whereby we inform you within the framework of Google Analytics that the IP address is shortened within member states of the European Union or in other signatory states to the Agreement on the European Economic Area and only in exceptional cases is it transferred in full to a Google server in the USA and shortened there. The IP address is not merged with personal data about the user within other Google services. The above information may also be linked by Google to information from other sources. If the user subsequently visits other websites, advertisements tailored to their interests may be displayed.
User data is processed pseudonymously within the framework of Google Marketing Services. Google does not store or process the name or email address of users, for example, but processes the relevant data in pseudonymous user profiles based on cookies. This means that, from Google's perspective, the ads are not managed and displayed for a specifically identified person, but for the cookie holder, regardless of who this cookie holder is. This does not apply if a user has expressly permitted Google to process the data without this pseudonymisation. The information collected by Google Marketing Services about users is transmitted to Google and stored on Google's servers in the USA.
The Google marketing services used by the controller also include the online advertising programme ‘Google AdWords’. In the case of Google AdWords, each AdWords customer receives an individual ‘conversion cookie’. Cookies cannot therefore be tracked across the websites of AdWords customers. The information collected using the cookie is used to compile conversion statistics for AdWords customers who have opted for conversion tracking. AdWords customers learn the total number of users who clicked on their ad and were redirected to a page tagged with a conversion tracking tag. However, they do not receive any information that can be used to personally identify users.
For more information about Google's use of data for advertising purposes, please visit this overview page: https://policies.google.com/technologies/ads.
Google is certified under the EU-U.S. Privacy Shield for the transfer of personal data to the United States and thus guarantees compliance with European data protection law. Further information about the Privacy Shield can be found here: https://www.privacyshield.gov/. You can view Google's certification here: https://www.privacyshield.gov/list.
The summary of the data collected in a user's Google account is based exclusively on the consent given by the user to Google, which can be revoked at any time (Art. 6 para. 1 lit. a GDPR). For processing that is not merged into the user's Google account (e.g. because the user does not have a Google account or has objected to the merger), the collection of data is based on Art. 6 para. 1 lit. f GDPR. The legitimate interest arises from the fact that the controller has an interest in the anonymous analysis of website visitors for advertising purposes.
The purpose of using Google Analytics Remarketing is the legitimate interest of the controller in analysing user behaviour in order to optimise its website and advertising. The statistics obtained enable the controller to better target its target groups and make the website more interesting for users.
Cookies have a maximum lifetime of 90 days.
You can permanently object to the use and storage of ‘conversion cookies’ or comparable technology used instead of cookies and cross-device remarketing/targeting by disabling personalised advertising in your Google account: https://adssettings.google.com/authenticated?hl=de.
Information on data protection at Google can be found in the Google Privacy Policy: https://policies.google.com/privacy?hl=de&gl=de.
The controller uses the so-called ‘Facebook pixel’ and other marketing services of the social network Facebook, which is operated by Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, on its website.
With the help of the Facebook pixel, Facebook can determine the visitors to the controller's online offer as a target group for the display of advertisements (so-called ‘Facebook ads’). The controller uses the Facebook pixel to display the Facebook ads it places only to Facebook users who have also shown an interest in its online offering or who have certain characteristics (e.g. interest in certain topics or products determined on the basis of the websites visited) that the controller has transmitted to Facebook (so-called ‘custom audiences’). With the help of the Facebook pixel, the controller can ensure that its Facebook ads correspond to the potential interests of the users and do not appear annoying. With the help of the Facebook pixel, the controller can also track the effectiveness of Facebook ads for statistical and market research purposes by tracking whether users were redirected to its website after clicking on a Facebook ad (so-called ‘conversion’).
The Facebook pixel is integrated directly by Facebook when you visit our website and may store a so-called cookie on your device. If you then log in to Facebook or visit Facebook while logged in, your visit to our online offering will be noted in your profile. The data collected about you is anonymous to the controller and therefore does not allow us to draw any conclusions about the identity of users. However, the data is stored and processed by Facebook so that a connection to the respective user profile is possible and can be used by Facebook for its own market research and advertising purposes. If the controller transfers data to Facebook for comparison purposes, this data is encrypted locally in your browser and only then transmitted to Facebook via a secure https connection. This is done solely for the purpose of matching the data with the data encrypted by Facebook.
Furthermore, when using the Facebook pixel, the controller uses the additional function ‘extended matching’, whereby data for the creation of target groups (‘custom audiences’ or ‘lookalike audiences’) is transmitted to Facebook in encrypted form. Further information and details on how extended matching works can be found in the Facebook Business help section: https://www.facebook.com/business/help/611774685654668.
Furthermore, the controller uses the ‘Custom Audiences from File’ procedure offered by Facebook. In this case, the email addresses of the newsletter recipients are uploaded to Facebook. The upload process is encrypted. The upload serves to determine the recipients of the controller's Facebook ads. The controller wants to ensure that the ads are only shown to users who are interested in the information and services of the controller.
Facebook is certified under the EU-U.S. Privacy Shield for the transfer of personal data to the USA and thus offers a guarantee of compliance with European data protection law. Further information about the Privacy Shield can be found here: https://www.privacyshield.gov/. You can view Facebook's certification here: https://www.privacyshield.gov/list.
The use of the Facebook Pixel and the storage of ‘conversion cookies’ is based on Art. 6 para. 1 lit. f GDPR. The controller has a legitimate interest in analysing website visitors and optimising its advertising.
The purpose of using Facebook marketing services is the legitimate interest of the controller in analysing, optimising and economically operating its online offering and the interest in optimising its advertising.
The cookies have a maximum lifetime of 90 days.
You can object to the collection by the Facebook pixel and the use of your data for the display of Facebook ads. To set up which types of advertisements are displayed to you within Facebook, as well as on websites and apps outside of Facebook, you can adjust your advertising settings here: https://www.facebook.com/help/109378269482053?helpref=hc_global_nav.
Information on data protection at Facebook can be found in the Facebook Data Policy https://www.facebook.com/policy.php
Further information and details on how the Facebook pixel works can be found in the Facebook Business help section: https://www.facebook.com/business/help/651294705016616.
The controller uses reCAPTCHA spam protection on its website, a service provided by Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, fax: +353 (1) 436 1001. reCAPTCHA is used to check whether the data entered on our websites (e.g. in a contact form) is entered by a human or by an automated program. To do this, reCAPTCHA analyses the behaviour of the website visitor based on various characteristics. This analysis begins automatically as soon as the website visitor enters the website. For the analysis, reCAPTCHA evaluates various information (e.g. IP address, length of time spent on the website or mouse movements made by the user). The data collected during the analysis is forwarded to Google.
The reCAPTCHA analyses run completely in the background. Website visitors are not informed that an analysis is taking place.
Further information on the use of Google reCAPTCHA can be found here: www.google.com/recaptcha/about. Information on data protection at Google can be found in the Google Privacy Policy: https://policies.google.com/privacy?hl=de&gl=de
Google is certified under the EU-U.S. Privacy Shield for the transfer of personal data to the United States. Further information about the Privacy Shield can be found here: https://www.privacyshield.gov/. You can view Google's certification here: https://www.privacyshield.gov/list.
The legal basis for the processing of personal data in connection with the use of Google's spam protection reCAPTCHA is Art. 6 para. 1 sentence 1 lit. f GDPR.
The purpose of using Google reCAPTCHA is to protect its web offerings from abusive automated spying and SPAM.
The controller has no information about the storage period of the data transferred to Google.
You can configure your browser so that no scripts from Google servers are loaded. If you prevent access to the Google servers, you may not be able to submit our forms.
The controller uses Google Tag Manager from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. Google Tag Manager allows website tags from Google and other providers to be managed and integrated into our online presence. With the help of Google Tag Manager, small code elements, known as tags, are placed on websites. Tags are used by Google Analytics, among other things, to measure visitor behaviour, optimise online advertising and test and optimise the alignment of the website. Google Tag Manager itself does not set any cookies, but only tags, and does not collect any personal data. When Google Tag Manager is executed, the user's IP address is transmitted to Google. Further information about Google Tag Manager can be found at https://www.google.com/intl/de/tagmanager/faq.html and in Google's privacy policy: https://policies.google.com/privacy?hl=de
The legal basis for the processing of users' personal data is the user's consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR and the legitimate interest in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR.
The purpose of using Google Tag Manager is to analyse and regularly improve the use of the controller's website with the help of Google Analytics. The statistics obtained enable the controller to better address its target groups and make the website more interesting for users.
Google Tag Manager triggers other tags, which in turn may collect data. Google Tag Manager does not access this data. If deactivation has been carried out at domain or cookie level, this remains in place for all tracking tags implemented with Google Tag Manager. Further information is available here: https://marketingplatform.google.com/about/analytics/tag-manager/use-policy/.
The controller uses Google Workspace provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, and Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043. Google Workspace is software accessible via the Internet and executed on Google's servers (cloud service, software as a service). When using Google Workspace, personal data may be processed and stored on Google's servers if it is part of communication with us or from us. This data may include, in particular, master data and contact details of users, data on transactions, other processes and the content of communication. Google also processes usage data and metadata for security and service optimisation purposes. Further information on data protection and security of processing at Google Workspace can be found here: https://cloud.google.com/product-terms.
The legal basis for the processing of users' personal data is the user's consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR, pre-contractual enquiries and the fulfilment of the contract in accordance with Art. 6 para. 1 sentence 1 lit. b GDPR, as well as the legitimate interest in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR.
The controller uses Google Workspace to organise its business activities. This includes, among other things, the following processing purposes: storage and management of documents in the cloud, management of appointments, contacts and calendars, sending and receiving emails, spreadsheets, presentations, exchange of documents, content and information with specific recipients, publication of forms or other content and information, conducting chats and participating in audio and video conferences.
Personal data will be deleted or blocked as soon as the purpose for which it was stored no longer applies. Storage may also take place if this is provided for by European or national legislators in EU regulations, laws or other provisions to which we are subject. The data will also be blocked or deleted if a storage period prescribed by the aforementioned standards expires, unless there is a need for further storage of the data for the conclusion or fulfilment of a contract.
You have the right to withdraw your consent to the processing of your personal data at any time and to object to the storage of your personal data at any time. In such a case, communication and the customer relationship may not be continued.
The controller uses the software ‘Matomo’ (www.matomo.org), a service provided by InnoCraft Ltd., 150 Willis St, 6011 Wellington, New Zealand. Matomo enables the anonymised analysis of user behaviour on the website. The following data is stored: the user's IP address, truncated by the last two bytes (anonymised); the page accessed and the time of access; the page from which the user accessed our website (referrer); which browser with which plug-ins, which operating system and which screen resolution are used; the length of time spent on the website; the pages accessed from the subpage accessed. The data collected with Matomo is stored on our own servers. It is not passed on to third parties.
The legal basis for the processing of users' personal data is the legitimate interest pursuant to Art. 6 para. 1 sentence 1 lit. f. GDPR.
The controller requires the data to analyse the surfing behaviour of users and to obtain information about the use of the individual components of the website. This enables the controller to continuously optimise the website and its user-friendliness. These purposes constitute the legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. By anonymising the data, the controller takes into account the interests of users in the protection of personal data. The data is never used to personally identify the user of the website and is not merged with other data.
Personal data is deleted after 12 months and summarised in monthly reports without personal references.
You have the right to withdraw your consent to the processing of your personal data at any time and to object to the storage of your personal data at any time. You can:
a) activate the ‘Do Not Track’ setting in your browser. The Matomo system is configured to respect this setting.
b) create a so-called opt-out cookie with a click of the mouse below, which is valid for two years. This means that Matomo will not register your further visits. Please note, however, that the opt-out cookie will be deleted if you delete all cookies.
You have the option of preventing your actions here from being analysed and linked. This will protect your privacy, but will also prevent the owner from learning from your actions and improving the usability for you and other users.
Our website uses the ‘Friendly Captcha’ service provided by Friendly Captcha GmbH, Am Anger 3-5, 82237 Wörthsee, Germany. Friendly Captcha is a privacy-friendly protection solution designed to protect our website from automated programmes and scripts (so-called ‘bots’).
When you use our forms, your browser receives a calculation task from Friendly Captcha. Your device solves this task and sends the result to our web server. We then check via an interface at Friendly Captcha whether the task has been solved correctly.
The use of Friendly Captcha is based on our legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR in order to protect our website from misuse and spam.
Friendly Captcha attaches great importance to data protection and the data is used exclusively for checking against spam:
a) No HTTP cookies are used
b) No permanent storage of data in the browser
c) IP addresses are anonymised using one-way hashing
d) Data is not used to identify individuals or for marketing purposes
No personal data is stored. The data collected is deleted immediately after the form is submitted.
You can prevent your actions from being analysed by disabling JavaScript. This will protect your privacy, but will also disable many features of the website.
Our website uses the ‘Leadinfo’ service provided by Leadinfo B.V., Rivium Quadrant 141, 2909 LC Capelle aan den IJsel, Netherlands. This service recognises visits by companies to our website based on IP addresses and shows us publicly available information such as company names or addresses. Further information can be found at leadinfo.com.
The use of Leadinfo is based on our legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR in order to qualify our leads.
Leadinfo attaches great importance to data protection and the data is used exclusively for the purpose of checking publicly available information:
a) No HTTP cookies are used
b) No permanent storage of data in the browser
c) Data is not used to identify individuals or for marketing purposes
No personal data is stored. The data collected is deleted immediately after the IP has been checked.
You can opt out on this page: leadinfo.com/de/opt-out. If you opt out, your data will no longer be collected by Leadinfo.