Data protection
I. Data protection at a glance
1. GENERAL NOTICES
The following notes provide a simple overview of what happens to your personal data when you visit our website. Personal data is all data with which you can be personally identified. Detailed information on the subject of data protection can be found in our data protection declaration listed under this text.
2. DATA COLLECTION ON OUR WEBSITE
a) Who is responsible for data collection on this website?
The data processing on this website is carried out by the website operator. You can find their contact details in the imprint of this website.
b) How do we collect your data?
On the one hand, your data is collected when you communicate it to us. This can, for example, be data that you enter in a contact form.
Other data is automatically recorded by our IT systems when you visit the website. This is primarily technical data (e.g. internet browser, operating system or time of the page call). This data is collected automatically as soon as you enter our website.
c) What do we use your data for?
Part of the data is collected to ensure that the website is provided without errors. Other data can be used to analyze your user behavior.
d) What rights do you have regarding your data?
You have the right to receive information about the origin, recipient and purpose of your stored personal data free of charge at any time. You also have the right to request the correction, blocking or deletion of this data. You can contact us at any time at the address given in the imprint if you have any further questions on the subject of data protection. You also have the right to lodge a complaint with the competent supervisory authority.
You also have the right, under certain circumstances, to request that the processing of your personal data be restricted. Details can be found in the data protection declaration under "Right to restriction of processing".
e) Analysis tools and third-party tools
When you visit our website, your surfing behavior can be statistically evaluated. This is mainly done with cookies and so-called analysis programs. The analysis of your surfing behavior is usually anonymous; surfing behavior cannot be traced back to you. You can object to this analysis or prevent it by not using certain tools. You will find detailed information on this in the following data protection declaration.
You can object to this analysis. We will inform you about the possibilities of objection in this data protection declaration.
II. General information and mandatory information
1. PRIVACY
The operators of these pages take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this data protection declaration.
If you use this website, various personal data will be collected. Personal data is data with which you can be personally identified. This data protection declaration explains what data we collect and what we use it for. It also explains how and for what purpose this happens.
We would like to point out that data transmission on the Internet (e.g. when communicating by e-mail) can have security gaps. A complete protection of the data against access by third parties is not possible.
2. NOTICE REGARDING RESPONSIBLE AUTHORITY
The responsible body for data processing on this website is:
Articulao GmbH
Berner Strasse 53
60437 Frankfurt am Main
Telephone: 069/3487 32 35
Email: info@articulao.de
The responsible body is the natural or legal person who alone or together with others decides on the purposes and means of processing personal data (e.g. names, e-mail addresses, etc.).
3. WITHDRAWAL OF YOUR CONSENT TO DATA PROCESSING
Many data processing operations are only possible with your express consent. You can revoke consent that you have already given at any time. An informal message by e-mail to us is sufficient. The legality of the data processing that took place up until the revocation remains unaffected by the revocation.
4. RIGHT TO OBJECT AGAINST THE COLLECTION OF DATA IN SPECIAL CASES AND AGAINST DIRECT ADVERTISING (ART. 21 GDPR)
If the data is processed on the basis of Article 6 Paragraph 1 Letter e or f GDPR, you have the right at any time to object to the processing of your personal data for reasons that arise from your particular situation; this also applies to profiling based on these provisions. The respective legal basis on which processing is based can be found in this data protection declaration. If you object, we will no longer process your affected personal data unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms or the processing serves to assert, exercise or defend legal claims ( Objection according to Art. 21 Para. 1 GDPR).
If your personal data is processed in order to operate direct advertising, you have the right to object at any time to the processing of your personal data for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct advertising. If you object, your personal data will then no longer be used for direct advertising purposes (objection according to Art. 21 Para. 2 GDPR).
5. RIGHT OF APPEAL TO THE RELEVANT REGULATORY AUTHORITY
In the event of violations of the GDPR, those affected have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, their place of work or the place of the alleged violation. The right to lodge a complaint is without prejudice to any other administrative or judicial remedy.
6. RIGHT TO DATA PORTABILITY
You have the right to have data that we process automatically on the basis of your consent or in fulfillment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another person responsible, this will only be done to the extent that it is technically feasible.
SSL or TLS encryption
For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator, this site uses an SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data that you transmit to us cannot be read by third parties.
7. DISCLOSURE, BLOCKING, DELETION AND CORRECTION
Within the framework of the applicable legal provisions, you have the right to free information about your stored personal data, its origin and recipient and the purpose of the data processing and, if necessary, a right to correction, blocking or deletion of this data at any time. You can contact us at any time at the address given in the imprint if you have any further questions on the subject of personal data.
8. RIGHT TO RESTRICTION OF PROCESSING
You have the right to request the restriction of the processing of your personal data. You can contact us at any time at the address given in the imprint. The right to restriction of processing exists in the following cases:
If you dispute the accuracy of your personal data stored by us, we usually need time to check this. For the duration of the examination, you have the right to request that the processing of your personal data be restricted.
If the processing of your personal data happened/is happening unlawfully, you can request the restriction of data processing instead of deletion.
If we no longer need your personal data, but you need it to exercise, defend or assert legal claims, you have the right to demand that the processing of your personal data be restricted instead of being deleted.
If you have lodged an objection in accordance with Art. 21 (1) GDPR, your interests and ours must be weighed up. As long as it has not yet been determined whose interests prevail, you have the right to demand that the processing of your personal data be restricted.
If you have restricted the processing of your personal data, this data - apart from its storage - may only be used with your consent or to assert, exercise or defend legal claims or to protect the rights of another natural or legal person or for reasons of important public interest of the European Union or a Member State are processed.
III. Data collection on our website
1. Definition of data categories
a) Personal master data: title, salutation/gender, first name, last name, date of birth
b) Address data: street, house number, address supplements, if applicable, postal code, city, country
c) Contact details: telephone number(s), fax number(s), e-mail address(es)
d) Login Data: Information about the Service through which you registered; Times and technical information for registration, confirmation and deregistration; data you provided when registering
e) Newsletter usage profile data: Opening of the newsletter (date and time), content, selected links, as well as the following information on the accessing computer system: Internet protocol address used (IP address), browser type and version, device type, operating system and similar technical information.
f) access data: date and time of visiting our service; the page from which the accessing system reached our site; pages accessed during use; Session identification data (Session ID); also the following information from the accessing computer system: Internet protocol address used (IP address), browser type and version, device type, operating system and similar technical information.
f) Appointment data: Date and time of a selected, specific meeting appointment
g) Review content: Review texts and additional, voluntary information about the author of a review or comment
2. Cookies
Some of the websites use so-called cookies. Cookies do not damage your computer and do not contain viruses. Cookies serve to make our offer more user-friendly, effective and secure. Cookies are small text files that are stored on your computer and saved by your browser.
Most of the cookies we use are so-called “session cookies”. They are automatically deleted after your visit. Other cookies remain stored on your end device until you delete them. These cookies enable us to recognize your browser on your next visit.
You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when the browser is closed. If cookies are deactivated, the functionality of this website may be restricted.
Cookies that are required to carry out the electronic communication process or to provide certain functions you want (e.g. shopping cart function) are stored on the basis of Article 6 Paragraph 1 Letter f GDPR. The website operator has a legitimate interest in the storage of cookies for the technically error-free and optimized provision of its services. Insofar as other cookies (e.g. cookies for analyzing your surfing behavior) are stored, these are treated separately in this data protection declaration.
3. Server Log Files
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:
Browser type and browser version
operating system used
Referrer URL
Host name of the accessing computer
Time of server request
IP address
This data is not merged with other data sources.
This data is collected on the basis of Article 6 (1) (f) GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimization of his website - the server log files must be recorded for this purpose.
4. Inquiry by e-mail, telephone or fax
If you contact us by e-mail, telephone or fax, your inquiry including all resulting personal data (name, enquiry) will be stored and processed by us for the purpose of processing your request. We do not pass on this data without your consent.
This data is processed on the basis of Article 6 (1) (b) GDPR if your request is related to the fulfillment of a contract or is necessary to carry out pre-contractual measures. In all other cases, the processing is based on your consent (Art. 6 Para. 1 lit. a GDPR) and / or on our legitimate interests (Art. 6 Para. 1 lit. f GDPR), since we have a legitimate interest in the effective processing of inquiries addressed to us.
The data you sent to us via contact requests will remain with us until you request deletion, revoke your consent to storage or the purpose for data storage no longer applies (e.g. after your request has been processed). Mandatory legal provisions - in particular statutory retention periods - remain unaffected.
5. Calling up our website and other applications
Your personal data is processed when you access our website and other applications. This includes in particular loading and viewing the website in whole or in part, regardless of the device or browser used. In addition, we use tools that are necessary from a technical or legal point of view, but do not collect any data of their own accord, instead they only serve as the basis for other tools or use them to manage the consent you have given. In this context, your access data will be transmitted to external service providers via the Internet. These external service providers decide for themselves how they implement the data protection regulations and how long the data is stored with them.
a) Purpose of data processing and legal basis and, if applicable, legitimate interests and storage period
We process the access data as a data category. The purpose of our processing is to establish the connection between our server and the user's end device, display the content of our website, prevent, detect and defend against attacks on our website, particularly taking into account conspicuous activities, and detect errors on our website. The lawfulness of the processing results from Art. 6 Para. 1 lit. f GDPR. Our legitimate interest in the lawfulness of the processing follows from the proper functioning and usability of the website, prevention of misuse and damage caused by illegal interference in our systems, security of the data and our business processes. The storage period is 30 days.
b) Recipients of the personal data
On the one hand, the recipients of the data are external service providers who provide us with content, in particular images, videos, fonts and data that are necessary to display our website and other applications. This affects the access data. Our processing is based on Article 6 Paragraph 1 Letter f GDPR, whereby the legitimate interest we pursue is that our website and our applications function properly and that the content can be displayed properly and without errors.
On the other hand, IT service providers also receive data, namely the access data. Here, too, processing is based on Article 6 (1) (f) GDPR, with the aim of ensuring that our website and our applications are not attacked by third parties.
6. Online Appointment Bookings
We process data as part of the option we offer to book appointments via our website.
a) Purpose of data processing and legal basis and, if applicable, legitimate interests and storage period
We process the personal master data, the contact data and the data in connection with the appointment, namely the appointment data and the purpose of the appointment. We carry out this processing in order to be able to transmit the appointment request on the one hand and to be able to send the user reminders of the appointment on the other. The basis for this data processing is Article 6 Paragraph 1 Letter a GDPR. We store the data for a maximum of ten years, unless we receive a leading revocation.
b) Recipients of the personal data
Recipients of the data processed by us are service providers who offer messaging services. This affects the personnel master data, contact data and appointment data. The legal basis for this is Art. 6 Para. 1 lit. a, 28 GDPR.
7. Ratings and Comments
You can submit reviews of natural and legal persons in the field of further education and seminars on our website. This includes in particular trainers, coaches and other service providers. In this regard, we process your personal data.
a) Purpose of data processing and legal basis and, if applicable, legitimate interests and storage period
We process the access data, contact details and content of the reviews. The purpose of our data processing is to publish the reviews and to check their content for truthfulness and any legal violations. The lawfulness of our processing is based on Article 6 (1) (a) GDPR. We store the data for ten years, unless we receive a revocation.
b) Recipients of the personal data
The recipients of the data processed by us are external database service providers. As part of our processing, the contact details and the content of the application are affected. In this case, our data processing is based on Art. 28 GDPR.
8. Review of Ratings and Comments
We reserve the right to review reviews in whole or in part. A review takes place in particular if the content even partially violates applicable law or our terms of use. Furthermore, a review takes place if a user informs us that he sees the suspicion of an infringement in the content of a review.
a) Purpose of data processing and legal basis and, if applicable, legitimate interests and storage period
We process the personal master data, the contact details, the technical data, the evaluation content and the communication content. The purpose of the data processing is to check the ratings given for their truthfulness and for any violations of applicable law or our terms of use. Furthermore, we intend to avoid multiple reviews or reviews with the same content as well as reviews that were only given based on the service or the promise of a pecuniary benefit. The lawfulness of our processing is based on Article 6 (1) (f) GDPR. In doing so, we pursue the legitimate interest of ensuring compliance with our terms of use, protecting the rights of third parties, in particular the persons evaluated, To prevent abuse and to ensure the truthfulness of the reviews. We store this data for as long as the particular review related to the review is published, but no longer than ten years.
b) Recipients of the personal data
The recipients of the data processed by us are service providers who support us in supporting our users. This affects the contact details and the communication content. In this regard, we refer to the legal basis in Art. 28 GDPR. Furthermore, the recipients of the data processed by us are the evaluated persons. In this regard, the communication content is affected. The legal basis for this is Article 6 (1) (c) GDPR.
9. Newsletter
You can subscribe to a newsletter on our site. In this regard, we store personal data.
a) Purpose of data processing and legal basis and, if applicable, legitimate interests and storage period
First, we save the subscriber's e-mail address so that their registration can be checked on the one hand and the newsletter can be sent to them on the other. Our data processing is based on Article 6 Paragraph 1 Letter d GDPR. We store the data of the subscribers for as long as the subscription to our newsletter runs.
Furthermore, we store the personnel master data. We use this to personalize our newsletter. Our data processing is based on Article 6 Paragraph 1 Letter d GDPR. We store the data of the subscribers for as long as the subscription to our newsletter runs.
We also process the registration data. This data processing pursues the purpose of making the registration, confirmation and cancellation of the newsletter executable for our. In this regard, our data processing is based on Article 6 Paragraph 1 lit. b and f GDPR. We are pursuing the legitimate interest of being able to prove the registration, confirmation and cancellation of the newsletter. We store the data of the subscribers for as long as the subscription to our newsletter runs.
In addition, we store the user profile data for the newsletter so that we can tailor it to your interests. The lawfulness of the processing is based on Article 6 (1) (f) GDPR. The legitimate interest we are pursuing lies in advertising with the newsletter and improving our service. We store the data of the subscribers for as long as the subscription to our newsletter runs.
b) Recipients of the personal data
The recipients of the data we process are the service providers we use to send the newsletter. The data affected by this is all that we have mentioned under section a). The legal basis for our processing is Art. 28 GDPR.
10. Contacting our customer support
If the user contacts us, we store his personal data.
a) Purpose of data processing and legal basis and, if applicable, legitimate interests and storage period
We store the personnel master data, the contact details and the content of the inquiries so that we can process them. The data processing is based on Article 6 Paragraph 1 lit. b and f GDPR, whereby we pursue the improvement of our service and the loyalty of our customers as a legitimate interest. We store the data for as long as it takes time to process the request.
b) Recipients of the personal data
The personal data is received by our service providers who we commission to operate customer support. This affects the personnel master data, the contact details and the content of the inquiries. The data processing is based on Article 6 Paragraph 1 lit. b and f GDPR, whereby we pursue the improvement of our service and the loyalty of our customers as a legitimate interest.
11. Data from seminar providers, coaches and other people involved in further education and seminars
We process and publish data from seminar providers, coaches and other people working in further education and seminars that we have identified from freely accessible sources. We would like to point out that the business-related collection, storage, listing and use of publicly available personal data is also permissible within the meaning of Article 6 (1) (f) GDPR. The admissibility is based primarily on the fact that the general public has an interest in being able to access the data of seminar providers, coaches and other people working in the field of further education and seminars.
Purpose of the data processing and legal basis as well as, if applicable, legitimate interests and storage period
We store the personnel master data, address data, contact data, data on professional qualifications and data on the activity carried out, whereby this data comes from publicly accessible sources. The data processing pursues the purpose of providing information about the services and their quality of the named persons for our users. This goes hand in hand with the purpose that our users can compare different service providers and their experiences of other users in order to create a transparent market for the services offered. Furthermore, through our service we create the opportunity for our users to exchange information about the quality of the performance of the named persons. Our data processing is based on Art. 6 Para. 1 lit. f GDPR. In doing so, we are pursuing the legitimate interest that there is a considerable public interest in being able to obtain data on seminar providers, coaches and other people involved in further education and seminars quickly, completely and in a concentrated manner in one place. We store this data until the corresponding legal basis no longer applies, which is usually the case when the activity for which we included the specific person in our database is terminated.
12. Plugins and Tools
a) Google Web Fonts
This site uses so-called web fonts provided by Google for the uniform display of fonts. When you call up a page, your browser loads the required web fonts into your browser cache in order to display text and fonts correctly.
For this purpose, the browser you are using must connect to the Google servers. This gives Google knowledge that our website was accessed via your IP address. Google Web Fonts are used in the interest of a uniform and appealing presentation of our online offering. This represents a legitimate interest within the meaning of Article 6 (1) (f) GDPR.
If your browser does not support web fonts, a standard font will be used by your computer.
Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google's data protection declaration: https://policies.google.com/privacy?hl=de.
13. Upload function
You have the option to provide us with various documents that you consider relevant or that we ask you to submit. In both cases you can use the upload function we offer on our website. You upload these documents to a server at the database provider Evenly Odd Inc. - DBA Knack, 759 Woodcrest Ave., Lititz, Pennsylvania 17543, United States of America. We have set up the upload function in such a way that the data uploaded with it is only cached on servers within the European Union. Irrespective of this, Evenly Odd Inc. is a member of the EU/US Privacy Shield Agreement (https://www.privacyshield.gov/participant?id=a2zt00000008PivAAE&status=Active). We can then download these documents from there and save them locally. If you use the upload function, you can see your consent in this regard. We will immediately download the files you uploaded to the server of the database provider Evenly Odd Inc. – DBA Knack, 759 Woodcrest Ave., Lititz, Pennsylvania 17543, United States of America and then delete them from the server there.
14. Database Service Provider Knack
We use the database provider Evenly Odd Inc. - DBA Knack, 759 Woodcrest Ave., Lititz, Pennsylvania 17543, United States of America, which operates the "Knack" database service. We have set up the database service so that all databases we use are operated exclusively on servers within the European Union. Irrespective of this, Evenly Odd Inc. is a member of the EU/US Privacy Shield Agreement (https://www.privacyshield.gov/participant?id=a2zt00000008PivAAE&status=Active). In addition to the previously described upload function, we use the databases at Evenly Odd Inc. on the one hand for arranging appointments via our website and on the other hand for storing data from our customers. Here we have configured the database tool in such a way that for our application the name, the e-mail address, the IP address and the date and time of interactions on the website and the date and time of the appointment are stored. This data will be deleted after the business relationship has been concluded, unless statutory provisions require longer storage.
15. Google reCAPTCHA
In order to ensure adequate data security when submitting forms, we use the reCAPTCHA service from Google Inc., 1600 Amphitheater Parkway, Mountain View, California 94043, United States of America in certain cases. This is primarily used to distinguish whether the input is made by a natural person or abusively by machine and automated processing. The service includes sending the IP address and any other data required by Google for the reCAPTCHA service to Google. The deviating data protection regulations of Google Inc. apply here. You can find further information on the data protection guidelines of Google Inc. at www.google.de/intl/de/privacy or www.google.com/intl/de/policies/privacy/
16. Data protection information for meetings and events ("webinars") using "Zoom"
A webinar is comparable to a face-to-face seminar and takes place over the Internet with computer/software support. You can participate in a webinar if you have previously registered with us. For this purpose, the following data is requested: Salutation, title (optional), first name, surname, company name, street, house number, postal code, city, e-mail address, telephone (optional).
In order to be able to conduct meetings and events via the Internet, we use the "Zoom" platform from Zoom Video Communications, Inc., 55 Almaden Blvd, Suite 600, San Jose, California 95113, United States of America. For the provision of this service and the associated data processing, Zoom Video Communications, Inc. is the data controller. Zoom Video Communications, Inc.'s privacy policy can be found here. For the order-related implementation of a meeting or an event, we transmit your registration or customer data to Zoom Video Communications, Inc.
Statistical data is transmitted to us during and after the webinar. If you take part in a meeting or an event, in particular in the form of a webinar, and ask or answer a question during the course, we will receive information about the duration of your participation, your interest in the meeting or event, the question asked and the answer for further customer support in addition to your registration data or enhancing the user experience. Optionally, it is possible to edit documents and forms together with your contact person.
An encrypted connection is established between you and the organizer of the meeting or event. We do not record the audio or video information transmitted during this session. By clicking on "Participate" you confirm that you will not create any recordings or screenshots of this session.
You can end the session at any time by simply closing the browser window or exiting the program or app. If your contact person ends the session, your participation in the session will also be ended automatically.
17. Weglot
We use the web translation service Weglot, provided by Weglot SAS, 138 rue Pierre Joigneaux, 92270 Bois-Colombes, France. With Weglot's translation service, we offer our users from different language backgrounds the opportunity to read the content of our website. This increases the number of users to whom we can provide our information. Weglot works by automatically translating the content of our website. This process is carried out anonymously. In the case of forms on our website where personal data is collected, this personal data is not transmitted to Weglot. More information about Weglot's web translation service can be found at https://weglot.com/privacy/.
18. Google Analytics
With Google Analytics, we have the ability to analyze the behavior of visitors to our website. Through Google Analytics, we receive data regarding the use of our website. In particular, we learn information about page views, duration of visits, origin of users, the device used, and its operating system. In addition to the aforementioned capabilities, Google Analytics also allows the recording of the user's mouse and scroll behavior.
Google processes the data in such a way that it may be compiled into a kind of profile and linked to an individual user or device. Additionally, algorithms are used in Google Analytics to enrich the collected data. Furthermore, Google uses various technologies for Google Analytics that enable corresponding data analysis.
Google's technologies are designed so that Google can recognize users to examine their usage behavior. This is done primarily by setting cookies.
Google transfers the collected data to servers located in the United States of America. There, Google also stores this data. The transfer of data to the United States is based on the EU Commission's standard contractual clauses. You can find information about this here: https://privacy.google.com/businesses/controllerterms/mccs/.
The use of the analysis tool from Google on our website is based on Art. 6 para. 1 lit. f GDPR. As website operators, we have a legitimate interest in analyzing user behavior to adapt and optimize both our web offering and our advertising. If consent has been requested (e.g., consent to store cookies), the processing is based solely on Art. 6 para. 1 lit. a GDPR; the consent can be revoked at any time.
Storage Duration
Google anonymizes or deletes the stored data at the user and event level that is associated with cookies, user IDs (e.g., User ID), or advertising IDs (e.g., DoubleClick cookies, Android advertising ID) after two months. More information can be found here: https://support.google.com/analytics/answer/7667196?hl=en
IP Anonymization Function
We have activated the IP anonymization function on our website. This means that your IP address is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area before being transmitted to the United States. However, in exceptional cases, your full IP address may be transmitted to Google in the United States and shortened there. Google will use this data on our behalf to evaluate your use of the website, to compile reports on website activity, and to provide us with other services related to website and internet use. Google will not combine your IP address with other data held by Google.
Browser Plugin
Google provides a free plugin for your browser that allows you to prevent the collection and processing of your data by Google. To do this, you need to download and install the browser plugin on your computer. You can download the browser plugin here: https://tools.google.com/dlpage/gaoptout?hl=en
You can find out how Google handles your data in Google's privacy policy, which you can find here: https://support.google.com/analytics/answer/6004245?hl=en
Google Analytics and Demographic Features
Google provides the "demographic features" function, which we use on our website. The purpose of this is to display personalized advertisements to you as a visitor to our website, which relates to Google's advertising network. This is associated with the ability to create reports that include statements about the age, gender, and interests of site visitors. The basis of this data is, on the one hand, Google's interest-based advertising and, on the other hand, data from visits to third-party providers. However, this data cannot be assigned to a specific person. Google provides you with the option to disable this feature via the ad settings in your Google account at any time. You also have the option to generally prohibit the collection of your data by Google Analytics.
Data Processing Agreement
We have entered into a data processing agreement with Google. This ensures that we fully implement the requirements of data protection law.
19. Google Tag Manager
We use Google Tag Manager, provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
Google Tag Manager is a tool that allows us to integrate tracking or statistics tools and other technologies on our website. Google Tag Manager itself does not create user profiles, store cookies, or conduct independent analyses. It is used solely for managing and deploying the tools integrated through it. However, Google Tag Manager does capture your IP address, which may also be transmitted to Google's parent company in the United States.
The use of Google Tag Manager is based on Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in a quick and uncomplicated integration and management of various tools on its website. If consent has been requested, processing is based solely on Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information on the user's device (e.g., device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time.
20. Appointment Service Provider Calendly
On our website, you have the opportunity to make appointments with us. For scheduling appointments, we use the tool "Calendly". The provider is Calendly LLC, 271 17th St NW, 10th Floor, Atlanta, Georgia 30363, USA (hereinafter "Calendly").
For the purpose of scheduling appointments, you enter the requested data and the desired date into the appropriate mask. The data entered is used for planning, implementation, and, if necessary, follow-up of the appointment. The appointment data is stored for us on Calendly's servers, whose privacy policy you can view here: https://calendly.com/de/pages/privacy.
The data you enter will remain with us until you ask us to delete it, revoke your consent to storage, or the purpose for data storage no longer applies. Mandatory legal provisions - especially retention periods - remain unaffected.
The legal basis for data processing is Art. 6 para. 1 lit. f DSGVO. The website operator has a legitimate interest in scheduling appointments as easily as possible with interested parties and customers. If consent has been obtained, processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information on the end device of the user (e.g. device fingerprinting) in the sense of the TTDSG. The consent can be revoked at any time.
The data transfer to the USA is based on the standard contractual clauses of the European Commission. Details can be found here: https://calendly.com/pages/dpa.
Order processing
We have concluded an order processing contract (AVV) for the use of the above-mentioned service. This is a data protection contract required by law, which ensures that it processes the personal data of our website visitors only according to our instructions and in compliance with the GDPR.
21. Database Service Provider Notion
We use the service provider Notion Labs, Inc., 548 Market St #74567, San Francisco, CA 94104-5401, United States of America.
In light of the recent Schrems II ruling, Notion relies on standard contractual clauses (SCCs) to ensure appropriate safeguards for personal data transfers from the EU to countries outside of the EU. For more information about their technical security measures, please see their Security and Privacy Page.
22. Use of CleverReach for Newsletters
We use the services of CleverReach GmbH & Co. KG, Schafjückenweg 2, 26180 Rastede, Germany (CleverReach) for sending our newsletters.
Data Processing:
Email addresses and possibly other personal data (e.g., name, salutation) are stored and processed on CleverReach's servers in Germany. The data is used exclusively for sending and evaluating our newsletters. By submitting the data you entered, you consent to data processing and confirm our privacy policy. Legal Basis:
The processing is based on your consent according to Art. 6 para. 1 lit. a GDPR. Storage Duration:
Data is deleted as soon as it is no longer necessary for achieving the purpose of its collection or if you revoke your consent, provided that no statutory retention obligations oppose the deletion. Your Rights:
You can revoke your consent at any time with effect for the future, e.g., by clicking the unsubscribe link in the newsletter. You have the right to access, rectify, delete, and restrict the processing of your data. Data Security:
CleverReach implements technical and organizational security measures to protect your data from manipulation and unauthorized access. Further information on data protection at CleverReach can be found HERE.