Data Privacy Notice of HAURATON GmbH & Co. KG
HAURATON GmbH & Co. KG take the protection of personal data very seriously. We would like you to know when we store what data, and how we use this data. We are subject to the provisions of the European General Data Protection Regulation (GDPR) and the supplementary provisions of the Bundesdatenschutzgesetz (BDSG) [German Federal Data Protection Act (GFDPA)]. To ensure that the provisions concerning data protection are observed by us as well as by our external service providers, we have taken suitable technical and organisational measures.
This Data Privacy Notice applies to our online presences. These include websites, features and content as well as our external online presences, for example in social media. This general Data Privacy Notice likewise serves to inform you of any further processing of your personal data and our compliance with the duties to inform you.
The terminology used in this Data Privacy Notice, for example controller or personal data, are used as defined in the GDPR. For reasons of readability, and therefore also for the purposes of comprehensible communication of information, we generally refrain from naming individual articles, paragraphs or the like.
The controller within the meaning of the GDPR and other national data protection laws of the Member States as well as other provisions of data protection law is
HAURATON GmbH & Co. KG
Telephone: +49 7222 958 0
Fax: +49 7222 958 100
Data protection officer
The controller has appointed a data protection officer. His contact details are:
For questions, suggestions or comments relating to data protection, and for enforcing your rights set out below, please contact our data protection officer.
General Information on Data Processing
Legal bases of the processing of personal data
As a rule, processing of personal data is not permitted under the provisions of data protection law, unless there is a legally permissible reason for allowing this. We are obliged to inform you of the legal bases of the data processing.
Where we obtain your consent to processing operations concerning personal data, this consent shall serve as the legal basis.
Where the processing of personal data is necessary for the performance of a contract to which you are party, the performance of the contract shall serve as the legal basis. This shall also apply to processing operations necessary for taking steps prior to entering into a contract.
Where processing of personal data is necessary for compliance with a legal obligation to which our company is subject, this shall serve as the legal basis.
Where vital interests of the data subject or of another natural person make it necessary to process personal data, this shall serve as the legal basis.
Where the processing is necessary for the protection of a legitimate interest pursued by our company or by a third party, and these interests and your fundamental rights and freedoms do not override the first-mentioned interest, this shall serve as the legal basis for the processing.
Generally, our service is aimed at adults. Persons under the age of 16 are not permitted to transfer personal data to us without the consent of their parents or legal guardians.
Erasure of data, storage period
We shall erase or block your personal data as soon as the purpose for their storage ceases to exist. However, storage may extend beyond this period if this is necessary under legal provisions to which we are subject. This concerns, for example, data that is required to be stored for reasons relating to commercial or fiscal law, for example delivery notes or invoice data.
Your data shall be blocked or erased if a storage period prescribed by these provisions expires, unless it is necessary to continue storing the data for the purpose of entering into or performing a contract.
Recipients of the data / categories of recipients
Within our company, we shall ensure that your data is received only by the persons who need this data for compliance with the contractual and statutory duties.
For processing your data, we shall sometimes use carefully selected external service providers. Where data is passed on to service providers as part of such commissioned processing, this shall take place on the basis of the provisions of the GDPR. Our processors are carefully selected, are bound by our instructions and are monitored at regular intervals. We only appoint processors who offer adequate safeguards that suitable technical and organisational measures will be implemented in such a way that the processing meets the requirements of the GDPR and the GFDPA and ensures the protection of your rights.
Passing on of personal data to third parties
As a rule, we shall not pass on any personal data to third parties without your express consent. Where, in the course of the processing, we nevertheless disclose or transfer your data to third parties or otherwise grant third parties access to your data, this shall also take place exclusively on the basis of one of the aforementioned legal bases.
For example, we shall transfer data to payment service providers or suppliers if this is necessary for the performance of the contract. Where we are obliged by law or a court order to transfer your data, we shall transfer your data to the respective entities entitled to the information.
Data transfer to third countries
The GDPR ensures the same high level of data protection within the European Union. When selecting our service providers and cooperation partners, we shall therefore, if your personal data is to be processed, focus on European partners where possible. Only in exceptional cases shall we have your data processed outside of the European Union in the course of using third party services.
We shall allow your data to be processed in a third country only if the particular prerequisites under the GDPR are met. This means that the processing of your data shall then only take place on the basis of special safeguards. These safeguards include ascertainment of a level of data protection equivalent to that of the EU as officially recognised by the EU Commission, observance of officially recognised special contractual obligations (the so-called “standard contractual clauses”), or other agreements between the EU and third countries.
Existence of automated decision making
We refrain from using automated decision making or profiling.
Rights of data subjects
Where your personal data is processed, you are the data subject within the meaning of the GDPR. In relation to us, you are entitled to the rights set out below.
To exercise these rights, please contact our data protection officer.
Right to withdraw consent
Where the processing of your personal data is based on consent given by you, you have the right to revoke this consent at any time. The lawfulness of the processing carried out until then shall not be affected by revocation.
Right of access to personal data
You have the right to obtain from us confirmation of whether we process personal data concerning you. Where this is the case, you may obtain the following information:
- the purposes of the processing;
- the categories of personal data processed;
- the recipients, or categories of recipients, to whom the personal data have been disclosed or are yet to be disclosed;
- the planned period of storage of the personal data, or, if it is not possible to provide specific information on this, criteria for determining this storage period;
- the existence of a right to rectification or erasure of the personal data concerning you, a right to restriction of the processing by us, or a right to object to this processing;
- the existence of a right to complain to a supervisory authority;
- where the personal data are not collected from you, all available information concerning the origin of the data;
- the existence of automated decision making, including profiling, and – at least in those cases – meaningful information about the logic involved, as well as the significance and envisaged consequences of such processing for you.
You have the right to to be informed of whether your personal data will be transferred to a third country or to an international organisation. In this context, you have the right to be informed of the suitable safeguards in connection with the transfer.
Within one month of receiving your request for information, we shall provide you with a copy of the personal data that is the subject matter of the processing. If you make such request electronically, we shall make the information available to you in a commonly used electronic format, unless you state otherwise.
Right to rectification
You have the right to obtain from us, without delay, rectification of any of your personal data that is incorrect. Taking into account the purposes of the processing, you have the right to have incomplete personal data completed.
Right to erasure (“right to be forgotten”)
You have the right to obtain from us, without delay, erasure of personal data concerning you, and we shall be obliged to erase personal data without delay where one of the following grounds applies:
- The personal data is no longer needed for the purposes for which it was processed.
- You revoke your consent on which the processing was based, and there is no other legal basis for the processing.
- You object to the processing, and there are no overriding legitimate grounds for the processing.
- The personal data has been unlawfully processed.
- Erasure of the personal data is necessary in order to comply with a legal obligation under Union or Member State law.
- The personal data was collected in relation to an offer of information society services.
- Where we have made the personal data concerning you public, and we are obliged to erase this personal data, we shall, taking account of the available technology and the cost of implementation, take appropriate measures, also of a technical nature, to inform controllers processing the personal data that you have requested the erasure by such controllers of any links to, or copies or replications of, that personal data.
The right to be forgotten shall not apply where the processing is necessary:
- for exercising the right to freedom of expression or to information;
- for compliance with a legal obligation to which we are subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in us;
- for reasons of public interest in the area of public health
- for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes, insofar as the right to erasure is likely to render impossible or seriously impair the attainment of the objectives of that processing; or
- for the assertion, exercise or defence of legal claims.
Right to restriction of the processing
You have the right to obtain from us restriction of the processing of your personal data where one of the following applies:
- You contest the accuracy of the personal data, for a period enabling us to verify the accuracy of the personal data;
- the processing is unlawful, and, instead of erasure, you obtain restriction of the use of the personal data;
- we no longer need the personal data for the purposes of the processing, but the personal data is required by you for the assertion, exercise or defence of legal claims; or
- you have objected to the processing pending the verification of whether our legitimate grounds override those of yours.
- Where processing has been restricted under the aforementioned prerequisites, such personal data shall, with the exception of storage, only be processed with your consent or for the assertion, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.
Where processing has been restricted under the aforementioned prerequisites, we shall inform you before the restriction is lifted.
Right to data portability
You have the right to receive in a structured, commonly used and machine-readable format your personal data that you have provided to us, and you have the right to transfer this data to another controller without hindrance from us, where the processing is based on consent or on a contract and is carried out by automated means.
In exercising your right to data portability, you shall have the right to have the personal data transferred directly by us to another controller, insofar as this is technically feasible. Exercise of the right to data portability shall not affect the right to erasure (“right to be forgotten”). That right shall not apply to processing necessary for the performance of a task entrusted to us and carried out in the public interest or in exercise of official authority.
Right to object
You have the right to object, on grounds relating to your particular situation, at any time to processing of your personal data that is based on a balancing of interests. This shall also apply to any profiling based on these provisions. We shall no longer process the personal data, unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the assertion, exercise or defence of legal claims.
Where personal data is processed for direct marketing purposes, you shall have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing; this shall also apply to profiling to the extent that profiling is related to such direct marketing. Where you object to processing for direct marketing purposes, your personal data shall no longer be processed for such purposes.
In the context of the use of information society services, you may exercise your right to object by automated means using technical specifications.
Automated individual decision making, including profiling
You have the right not to be subject to a decision that is based solely on automated processing, including profiling, and produces legal effects concerning you or similarly significantly affects you. This shall not apply where the decision:
- is necessary for entering into, or the performance of, a contract between you and us;
- is permissible under Union or Member State law to which we are subject and which lays down appropriate measures for safeguarding your rights and freedoms and legitimate interests; or
- is based on your express consent.
We shall take appropriate measures to safeguard your rights and freedoms and legitimate interests, at least the right to obtain human intervention on the part of the controller, to express your own point of view and to contest the decision.
Right to lodge a complaint with a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, your place of work or the place of the alleged infringement, if you consider that the processing of your personal data infringes the GDPR.
Use of our Online Presence
Generally, you can use our online presence without disclosing your identity. In this section, we shall explain to you when, and in what context, we process data during use of our online presences, what services offered by service providers and cooperation partners we have implemented, how these function, and what happens to your data.
Collection of data during a visit to our websites
Where you use our websites only for information purposes, i.e. you do not register for a service, enter into a contract with us or otherwise disclose information to us, we shall only collect the personal data transmitted to our servers by your browser.
When our websites are accessed, we collect the following data that we technically need in order to be able to display our websites and to ensure stability and security:
- the visitor’s IP address
- the date and time of the request
- the content of the request (specific page)
- access status/HTTP status code
- the respective volume of data transmitted
- the website from which the request came
- the visitor’s operating system
- the language and version of the browser software.
This data is temporarily stored in our system’s log files for a period of 14 days. Storage beyond this period is possible; in these cases, however, the IP addresses are truncated or masked to prevent any association with the accessing client. The log files shall not be stored together with other personal data concerning you in this context. The legal basis for these processing operations is our legitimate interest.
Since the collection of the data for displaying the websites and storing the data in log files is absolutely essential for the operation of our websites and the maintenance of IT security, you have no possibility of objecting in this respect.
In order to optimally protect your data transmitted, we use so-called transport encryption. In order to ensure the security of your data during the transfer process, we use an SSL/TLS encryption method in accordance with the latest state of the art technology.
When you use our websites and visit our Internet presences, cookies will be stored on your device in addition to the aforementioned data. Cookies are small text packages that may be sent by a website to the browser and be stored and sent back by the browser. Cookies can be used to store various details, which are read by the entity that has placed the cookie. They generally contain a characteristic string of characters (ID) that allows unique identification of the browser in the event of renewed access to the website or a change of page. They are primarily used to make our online presence more user-friendly and more effective overall. The user data collected in cookies is pseudonymised by means of technical precautions, which generally makes it no longer possible to associate the data with the accessing user. Where identifiability is possible, for instance in the case of a login cookie whose session ID is necessarily linked to the user’s account, we point this out at the appropriate point.
We use different types of cookies:
- So-called “session cookies” are cookies that are deleted after you leave our online presence and close the browser. In the case of such cookies, language settings or the content of a shopping basket are stored, for example.
- “Permanent cookies” remain stored even after the browser has been closed. For example, the login status or entered search terms can be saved. We use such cookies for, among other things, range measurement or marketing purposes. Persistent cookies are automatically deleted after a pre-specified period, which may vary depending upon the cookie. However, you can delete these cookies at any time using your browser, among other methods.
In addition to so-called “first-party cookies” placed by us as the controller responsible for the data processing, “third-party cookies” offered by other providers are also used.
- “First-party cookies” are placed by us as the controller.
The legal basis for the processing of your personal data in this respect is our legitimate interest.
- External service providers that, for example, perform web tracking or range measurements for us may likewise place cookies.
The legal basis for the processing of your personal data is your consent.
Information on Services Used
Google Tag Manager
Cookie name: _gid_dc_gtm
Cookie name: _gs_gat
Group: statistics / usage analysis
Cookie name: _UserMatchHistory_bcookie_bscookie_lang_lidc
Group: Statistics / usage analysis
Cookie name: DSID IDE SEARCH_SAMESITE 1P_JAR UULE NID APISID, HSID, SAPISID, SID and SSID cookies SIDCC
Cookie name: gr_fbp
Cookie name: __Secure-SSID __Secure-3PSID SIDCC LOGIN_INFO YSC APISID HSID VISITOR_INFO1_LIVE __Secure-3PAPISID SSID __Secure-APISID __Secure-HSID SAPISID PREF SID
Google Tag Manager
Our website uses Google Tags, a service from Google LLC, Gordon House, Barrow Street, Dublin 4, Ireland, (hereinafter called “Google”). The Google Tag Manager is a solution that enables us to manage website tags via an interface. Tags are small code elements on our website which, among other things, serve to measure traffic and visitor behaviour.
The Tag Manager tracks a series of tags and triggering rules that determine when these tags should be used on our website. When you visit our website, the current tag configuration will be sent to your browser. It will contain instructions as to which tags are to be triggered. The Tag Manager ensures the triggering of tags that, in turn, may possibly collect data. The Tag Manager itself does not access this data, as it is operated via a cookie-less domain and does not collect personal data. If deactivation has been carried out at the domain or cookie level, this will remain in place for all tracking tags implemented with Google Tag Manager.
Google itself collects information on how the service is used, and what tags are implemented in what way. According to Google, this data is used to improve, maintain, protect and further develop the service.
Information on Data Processing by Third Parties
If you have given your consent, this website uses Google Analytics, a web analytics service provided by Google LLC, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter referred to as “Google”). This allows data, sessions, and interactions to be attributed to a pseudonymous user ID and analysed across multiple devices to analyse user activities across devices.
Scope of processing
For Google Analytics 4, IP anonymisation is enabled by default. Due to IP anonymisation, your IP address will be truncated by Google within member states of the European Union or other contracting parties to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the United States and truncated there. According to Google, the IP address transmitted by your browser as part of Google Analytics will not be merged with other data from Google.
However, we explicitly point out that Google processes data for its own purposes, including for the provision of its web analytics and tracking service. In the context of Google Analytics, additional usage data is collected, which can be considered personal data, such as identifying characteristics of individual users, which also allow for linking with an existing Google account.
During your website visit, your user behavior is captured in the form of events. Events can include:
- Page views
- First visit to the website
- Session start
- Your click path, interaction with website
- Scrolls (whenever a user scrolls to the end of the page (90%))
- Clicks on external links
- Internal search queries
- Interaction with videos
- File downloads
- Viewed/clicked advertisements
- Language settings
It also captures:
- Your approximate location (region)
- Your IP address (in truncated form)
- Technical information about your browser and devices used (e.g., language settings, screen resolution)
- Your internet service provider
Purposes of processing
On our behalf, Google will use this information to evaluate your use of the website and compile reports on website activity. The reports provided by Google Analytics are used to analyse the performance of our website and the success of our marketing campaigns.
We utilise the “demographic characteristics” feature of Google Analytics to display relevant advertisements within the Google advertising network to website visitors. This allows us to create reports that include information about the age, gender, and interests of the site visitors. This data is obtained from Google’s interest-based advertising and visitor data from third-party providers. This data cannot be attributed to any specific individual.
We use the “e-commerce tracking” feature of Google Analytics. With e-commerce tracking, we can analyse the purchasing behaviour of website visitors to improve our online marketing campaigns. This includes capturing information such as completed orders, average order values, shipping costs, and the time from viewing to purchasing a product. This data can be aggregated by Google under a transaction ID that is associated with the respective user or their device.
We utilise Google Signals. With this, additional information about users who have enabled personalised ads (interests and demographic data) is captured in Google Analytics, and ads can be delivered to these users in cross-device remarketing campaigns.
Google Ads and conversion tacking
Insofar as you have declared your consent, Google Ads along with conversion tracking will be used on this website. This is a service from Google LLC, Gordon House, Barrow Street, Dublin 4, Ireland, (hereinafter called “Google”). Google Ads is a web analysis service. We use the conversion tracking for the targeted advertising of our service:
If you click on an advertisement placed by Google, the conversion tracking that we use will save a cookie on your device. If you visit a specific page of our Internet presence, both we and Google will be able to evaluate that you have clicked on one of our advertisements placed on Google, and that you have then been redirected to our Internet presence.
The information collected in this way is used by Google to provide us with statistics concerning visits to our Internet presence. In addition, we thus receive information about the number of users who have clicked on our advertisement(s) as well as about the pages on our Internet presence that are subsequently visited. The information serves to generate conversion statistics for ads customers who have opted for conversion tracking. The customers, i.e. we as the website operator, receive information on the total number of users who have clicked on their advertisement and been redirected to a page containing a conversion tracking tag. However, they do not receive information that enables users to be personally identified.
The legal basis for the use of Google Analytics is your consent given voluntarily.
Recipients / categories of recipients
Google is the recipient of the data collected.
Duration of data storage
The cookies stored on your device will have a lifespan of up to 24 months.
Insofar as you have declared your consent, Facebook Pixel will be used on this website. This is a service from Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (hereinafter called “Facebook“). Facebook Pixel enables Facebook to display our Facebook ads only to Facebook users who have visited our website, especially those who have shown interest in our online presence or certain topics or products. Facebook Pixel makes it possible to check whether a user was redirected to our website after clicking on our Facebook ads. We use Facebook Pixel for marketing and optimisation purposes, particularly in order to place on Facebook advertisements that are relevant and interesting for you and to thus improve our service, make it more interesting for you as a user and avoid nuisance advertising.
If you are logged into Facebook with your user account, your visit to our website will be noted in your user account. The data collected about you is anonymous to us and therefore does not allow us to draw any conclusions about your identity. We have no influence over the scope or further use of the data processed by Facebook as a result of the use of Facebook Pixel. If you have a user account with Facebook and are registered, Facebook may associate your visit with your user account. You can deactivate the remarketing feature “Custom Audiences” in the Ads Settings section in your Facebook account. Even if you are not registered with Facebook or have not logged in, it is possible that Facebook may find out and store your IP address and possibly other identifying features.
The legal basis for the use of Facebook Pixel is your consent given voluntarily.
Recipients / categories of recipients
Facebook is the recipient of the data collected.
Duration of data storage
The cookies stored on your device will have a lifespan of up to 24 months.
Twitter Tags and conversion tracking
Insofar as you have declared your consent, Twitter conversion tracking will be used on this website. This is a service from Twitter International Company, Gordon House, One Cumberland Place, Fenian Street, Ireland, (hereinafter called “Twitter”). Twitter conversion tracking is a remarketing feature. We use the conversion tracking for the targeted advertising of our service:
With the aid of this feature, we can target you on the Twitter platform with advertising based on your interests. Twitter uses so-called “tags” for this. Via such tag, visits to our website as well as usage data are recorded in pseudonymous form. If you subsequently visit Twitter, ad impressions will be displayed to you on the basis of your interests. Twitter will thus be informed by your browser that our website has been accessed from your device.
As a result of the integration of tags, Twitter will be informed that you have accessed the corresponding website. We have no influence over the scope of the data transmitted or their further processing by Twitter: Where you are registered with a Twitter service, Twitter may associate your visit with your account. Even if you are not registered with Twitter or have not logged in, it is possible that the provider may find out and store your IP address and other identifying features. The information generated by these tags concerning your use of our services will be transferred to a Twitter server in the USA and be stored there.
If you nevertheless do not wish to have Twitter’s remarketing feature, you can deactivate this feature in the Ads Settings section of your Twitter account.
The legal basis for the use of Twitter conversion tracking is your consent given voluntarily.
Recipients / categories of recipients
Twitter is the recipient of the data collected.
Duration of data storage
The cookies stored on your device will have a lifespan of up to 60 months.
LinkedIn Insight Tag
We use LinkedIn conversion tracking from LinkedIn Ireland, Wilton Plaza, Wilton Place, Dublin 2, Ireland. LinkedIn conversion tracking is a retargeting and analysis tool supported by the LinkedIn Insight Tag. The LinkedIn Insight Tag enables us to collect data about visits to our website, including the URL, referrer URL, IP address, device and browser characteristics as well as a timestamp. These data are encrypted, the IP addresses are truncated, and the members’ unique IDs are removed within seven days in order to pseudonymise the data.
LinkedIn does not share personal data with us, but only provides summarised reports about the website’s target audience and ad performance. LinkedIn additionally offers retargeting for website visitors so that we can use this data to display targeted advertising outside of our website without the member being identified.
The legal basis for the use of LinkedIn Insight Tag is your consent given voluntarily
Further information on data protection at LinkedIn can be found here.
Recipients / categories of recipients
LinkedIn is the recipient of the data collected.
Duration of data storage
The remaining pseudonymised data is erased within 24 months.
You can specifically opt out of the LinkedIn conversion tracking by placing an opt-out cookie, which will remain on your device until you delete cookies. To this end, you can deactivate the LinkedIn cookie at this link. LinkedIn members can control the use of their personal data for marketing purposes in their account settings.
Use of SalesViewer technology
On this website, data is collected and stored for marketing, market research and optimisation purposes using the SalesViewer technology of SalesViewer GmbH on the basis of the legitimate interests of the website operator (Art. 6 para.1 lit.f DSGVO).
You can object to the collection and storage of data at any time with effect for the future by clicking on this link www.salesviewer.com/opt-out in order to prevent the collection by SalesViewer within this website in the future. This will place an opt-out cookie for this website on your device. If you delete your cookies in this browser, you must click this link again.
We use Google Maps to display our location. This is a service from Google LLC, Gordon House, Barrow Street, Dublin 4, Ireland, (hereinafter called “Google”). To display the map, it is absolutely essential that the IP address be processed by Google.
The cooperation with Google in terms of data protection law is based on a concluded agreement on joint responsibility, which can be accessed here.
In all other respects, you enter into a user relationship with Google directly as a result of using Google Maps.
Recipients / categories of recipients
Google is the recipient of the data collected.
Duration of data storage
The data sent by us is automatically erased after 24 months. The erasure of data whose retention period has expired takes place automatically once a month.
Online presences in social media
We offer online presences on various platforms in order to be able to provide information there and communicate with you.
We have no influence over the processing of personal data by the respective platform operator. When you access our presences there, cookies will usually be stored in your browser by the platform operator. Your usage behaviour or interests will be saved in these cookies for market research and advertising purposes.
The user profiles obtained in this way – usually across multiple devices – will be used by the platform operators to display personalised advertising to you. Persons not registered as users on the respective platform may also be data subjects of the data processing. Under certain circumstances, your data may be processed outside of the area of the European Union, which may make it difficult to enforce your rights. When selecting such platforms, however, we make sure that the operators are committed to compliance with the EU data protection standards.
The processing of your personal data collected when you access one of our social media presences will take place on the basis of our legitimate interests in the diverse public image of our company and the use of an effective source of information as well as in communication with you.
Detailed information on data processing in connection with the use of our presences on these platforms, opt-out options and the assertion of rights of access to personal data can be found in the data privacy statements of the corresponding platform operator.
Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland
The processing is based on an agreement on the joint processing of personal data in accordance with the provisions of the GDPR.
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA
Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA
LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland
XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany)
We offer you the option of subscribing to our email newsletter free of charge. We shall only send this newsletter with your consent. If you register for a newsletter, the data from the input mask (name and email address) will be sent to us and be stored for as long as the newsletter subscription is active.
Your consent to the processing of this data for the purpose of sending the newsletter will be obtained, and reference will be made to this Data Privacy Notice. For the registration process, we use the so-called “double opt-in procedure”. Following registration, you will receive an email in which you will have to click on a link in order to confirm your registration. This prevents unauthorised third parties from being able to register using your email address.
We shall record the registration process in order to be able to prove the process in accordance with the legal requirements. In this respect, the IP address of the accessing device as well as the date and time of registration will be stored. The data provided by you will be stored for as long as the newsletter subscription is active.
You can cancel the subscription at any time. For this purpose, every newsletter contains a corresponding unsubscribe link. This will likewise enable you to withdraw your consent. The legal basis for the processing of your data is your voluntarily given consent to receiving the newsletter.
If you acquire goods or services from us and provide your email address when doing so, we reserve the right to use this email address for sending newsletters along with direct marketing for similar goods or services of ours. This serves to protect our – on balance – overriding legitimate interests in the promotional targeting of our customers. You may opt out of this use of your data at any time by sending a message using the contact options stated below or by way of the unsubscribe link in the promotional email without incurring for this any charges other than the basic transmission charges. Where the newsletter is sent as a result of the sale of goods or services, we shall invoke the provisions of the Gesetz gegen den unlauteren Wettbewerb (UWG) [Act Against Unfair Competition].
Enquiries to Us
If you make an enquiry to us, for example by using the contact form, we shall, in order to answer your contact request, process your personal data for:
- processing your matter communicated in the contact form
- processing your service request
- processing your return
- telephone and written (email) queries
- providing information on products and services.
Your data shall not be used by us for automated decision making or for profiling.
Akismet anti-spam check
Our online offer uses the service “Akismet”, which is offered by Automattic Inc., 60 29th Street #343, San Francisco, CA 94110, USA. The use is based on our legitimate interests within the meaning of Art. 6 (1) f) DSGVO. With the help of this service, comments from real people are distinguished from spam comments. For this purpose, all comment details are sent to a server in the USA, where they are analysed and stored for four days for comparison purposes. If a comment has been classified as spam, the data is stored beyond this time. This information includes the name entered, the email address, the IP address, the comment content, the referrer, information on the browser used as well as the computer system and the time of the entry.
No data will be forwarded to Automattic without your consent in the contact form. However, it will then not be possible to contact you via the form.
In the context of an application to us, the data that you provide – such as your contact details and qualifications – will be used exclusively for processing the application procedure.
Your data will be passed on internally to the divisional managers responsible. We shall process your personal data for the purpose of your application for a job to the extent that this is necessary for the decision on the establishment of an employment relationship with us.
Furthermore, we may process personal data about you to the extent that this is necessary to defend against legal claims asserted against us in connection with the application process.
As a rule, your data will be deleted 3 months after completion of the application process, unless otherwise agreed upon with the applicant (see also Inclusion in the applicant pool). If your application is followed by the conclusion of an employment contract, the data will then be included in the personnel files.
For how long will your data be stored?
We shall store your personal data for as long as necessary for making a decision on your application. If an employment relationship between you and us does not materialise, we may also continue to store data to the extent that this is necessary for defending against possible legal claims. In this respect, the application documents will be deleted two months after notification of the decision to reject your application, unless retention for a longer period is required in connection with legal disputes.
Inclusion in the applicant pool
We shall be happy to include your application in an applicant pool. This requires your consent. You can give this consent by activating the corresponding option before you send your application.
If your application documents in the applicant pool are not used by us within one year, your application documents shall be automatically deleted.
No automated decision-making
No automated individual decision making takes place; i.e. the decision on your application shall not be based solely on automated processing.
This Data Privacy Notice will be adapted from time to time. These adaptations are made if, for example, changes arise due to technical progress, legal requirements or other factors.
Last updated: June 2020