Data Privacy

Privacy Policy according to the GDPR

I. Name and address of the data controller

Essentry GmbH
Düsseldorfer Straße 15
65760 Eschborn
Germany

Phone: +49 (0)619 69734090
E-Mail: support@essentry.com
Website: essentry.com

is the data controller as defined by the EU General Data Protection Regulation (GDPR) and the national data privacy laws.

II. Name and address of the data protection officer

The data protection officer of the data controller is:

AGOR AG
Niddastraße 74
60329 Frankfurt am Main
Germany

Phone: +49 (0) 69 – 9494 32 410
E-Mail: info@agor-ag.com
Website: www.agor-ag.com

III. General information about data processing

1. Extent of personal data processing

We collect and use personal data from users of our homepage only to the extent that is necessary for keeping our website, our content and our services functioning properly.

In general, we collect and use our users’ personal data only after they give their consent. An exception to this principle applies in cases where processing data is permitted by statutory provisions or when obtaining prior con-sent is not possible.

2. Legal basis for processing personal data

The legal basis for processing personal data is generally based on:
Art. 6 para. 1 s. 1 lit. a GDPR upon obtaining the consent of the data subject.
Art. 6 para. 1 s. 1 lit. b GDPR for processing operations that serve to fulfil a contract to which the data subject is a party. Included here are processing operations that are necessary to carry out pre-contractual measures.
Art. 6 para. 1 s. 1 lit. c GDPR for processing required to fulfil a legal obligation.
Art. 6 para. 1 s. 1 lit. d GDPR, if vital interests of the data subject or another natural person require processing of personal data.
Art. 6 para. 1 s. 1 lit. f GDPR, if processing is necessary for purposes of the legitimate interests of our company or a third party, and the interests, fundamental rights and fundamental freedoms of the data subject do not outweigh the former interest.

To be able to base the processing of personal data on a legitimate interest, an assessment is carried out in each case in consultation with the data protection officer for each relevant process, whereby the following three conditions must be met:
1) The controller or a third party has a legitimate interest in the processing of personal data.
2) The processing is necessary to safeguard the legitimate interest.
3) Interests or fundamental rights and freedoms of the data subject which require the protection of personal data do not prevail.

3. Data erasure and data storage duration

Personal data of users will be deleted or restricted as soon as the purpose for storing the data is no longer applicable. Personal data may be stored for longer than for the original purpose, if there is applicable European or national legislation through EU regulations, laws, or other regulations, to which the data controller is subject to. Personal data is also deleted or restricted, when a mandatory storage period expires, unless the personal data is needed for concluding or fulfilling a contract.

IV. Use of our website, general information

1. Description and scope of data processing

Every time our website is accessed, our system automatically collects data and information from the user’s computer system. The following information can be collected:

Information about the browser type and version used, the user’s operating system, the user’s Internet service provider, the user’s IP address, Date and time of access, Websites the user’s system accesses to get to our website, Websites that the user’s system invokes by accessing our website.

The described data is stored in log files for our system and is not stored together with any other personal user data.

2. Purpose and legal basis for data processing

To provide our website to users, our system must store user IP addresses temporarily. Therefore, IP addresses must be stored for the duration of a users’ session.

Storage in log files is done to ensure the functionality of our website. In addition, the data is used to optimize our website and to ensure the security of our systems. Personal data that is processed in this context, is not processed for marketing purposes.

The legal basis for the temporary storage of data and log files is our legitimate interest according to Art. 6 para. 1 s. 1 lit. f GDPR.

Collecting this personal data and storing it in log files is essential to secure, provide and operate our website. Therefore, an option to object to processing in this context does not exist.

3. Duration of storage

Your data will be deleted as soon as it is no longer necessary for achieving the purpose it was processed for. Personal data that is processed to provide our website will be deleted after your session ends.

If your data is stored in log files, it will be deleted after seven days at the latest. It may be stored for longer, whereby the IP addresses of users are deleted or alienated. This means, that it will no longer be possible, to assign them to individual clients.

V. General information about the use of cookies

We use cookies on our website. Cookies are text files that are stored in your Internet browser and therefore on your computer system. If you display any website, a cookie can be stored on your operating system. Cookies can contain characteristic strings that allow unique identification of browsers.

We use cookies to make our homepage more user friendly. Some elements of our website require that your browser can be identified even after leaving our website.

TTDPA; Ger.: TTDSG:

The legal basis for the storage of cookies, device identifiers and similar tracking technologies or for the storage of information in the end user’s terminal equipment and access to this information is the European ePrivacy Directive in conjunction with the Telecommunications and Telemedia Data Protection Act (TTDPA; Ger.: TTDSG).

Please note that the legal basis for the processing of personal data collected in this context then results from the GDPR. The relevant legal basis for the processing of personal data in each specific case can be found below the respective cookie or the respective processing itself.

The primary legal basis for the storage of information in the end user’s terminal equipment – consequently in particular for the storage of cookies – is their consent, §25 Abs.1 S.1 TTDPA (Ger.: TTDSG). Consent is given when visiting our website – although this does not have to be given, of course – and can be revoked at any time in the cookie settings.

According to §25 Abs.2 Nr.2 TTDPA (Ger.: TTDSG), consent is not required if the storage of information in the end user’s terminal equipment or access to in-formation already stored in the end user’s terminal equipment is absolutely necessary for the provider of a Telemedia service to be able to provide a Telemedia service expressly requested by the user. You can see from the cookie settings which cookies are to be classified as absolutely necessary (often also referred to as “technically necessary cookies”) and therefore fall under the exception of §25 Para.2 TTDPA (Ger.: TTDSG) and therefore do not require consent.

GDPR:

When cookies are used, the following data is stored and transmitted:
(1) Language settings
(2) Log-in information

The legal basis for processing personal data using cookies is defined in Art. 6 para. 1 s. 1 lit. f GDPR. The purpose for using technically required cookies is to simplify the use of our website.

We would like to point out that some functions on our website can only be offered if cookies are enabled.

This applies to the following applications:
(1) Remember language settings
(2) Remember search terms

We do not use personal data collected with technically necessary cookies to create user profiles.

Cookies are stored on the user’s computer, which transmits them to our page. As a user, you therefore have control over the use of cookies. You can restrict or disable transmission of cookies by making changes to your Internet browser settings. There you can also delete cookies that have been stored. Please note that you may not be able to use all the features on our website if you deactivate cookies.

The legal basis for the processing of personal data using cookies for analysis and advertising purposes is Art. 6 para. 1 s. 1 lit. a GDPR if the user has given his consent.

Cookie consent with Borlabs

This website uses the provider Borlabs (Borlabs – Benjamin A. Bornschein, Rübenkamp 32, 22305 Hamburg, Germany), which sets a technically necessary cookie (Borlabs-cookie) to provide you with individual cookie settings and to document them in accordance with data protection laws. If our website is accessed, the following data is transmitted to Borlabs: Your consent or revocation of your consent to set cookies, a cookie set by Borlabs-cookie in your browser, the cookie runtime and version, domain and path of the website and the UID. Whereas the UID is a randomly generated ID and not personal information. Borlabs does not process any personal data.

The use of Borlabs cookie consent technology takes place in order to obtain the legally required consent for the use of cookies. The legal basis for this is Art. 6 para. 1 s. 1 lit. c GDPR.

The Borlabs-cookie cookie stores your consents that you gave when entering the website. If you wish to revoke these consents, simply delete the cookie in your browser. When you re-enter/reload the website, you will be asked again for your cookie consent.

Here you can view and adjust your cookie settings.

VI. Your rights/rights of the data subject

According to the EU General Data Protection Regulation, as data subject you have the following rights:

1. Right of access by the data subject

You have the right to receive from us as data controller the information whether and which personal data concerning you are processed by us as well as further information in accordance with the legal requirements pursuant to Art. 13, 14 GDPR.

You can claim your right to information under:
support@essentry.com

2. The right to rectification

If we process your personal data incorrectly or in an incomplete manner, then you have a right for it to be corrected/completed. The correction will be made immediately.

3. Right to restriction

You have the right to restrict the processing of personal data concerning you in accordance with the legal provisions (Art. 18 GDPR).

4. The right to delete

If the conditions set out in Article 17 of the GDPR apply, you may request that the personal data relating to you be deleted without delay.

We would like to point out that the right to erasure does not exist insofar as the processing is necessary for one of the exceptional circumstances mentioned in Art. 17 para. 3.

5. Right to information

If you have asserted the right to rectify, delete or restrict the processing, we are obligated to notify all recipients to whom your personal data have been disclosed of this correction or deletion of the data or restriction of processing, unless this proves to be impossible or is associated with a disproportionate amount of effort. You also have the right to be informed about these recipients.

6. Right to data portability

According to the GDPR, you also have the right to receive the personal data concerning you that has been provided to us in a structured, common and machine-readable format or to request its transfer to another controller.

7. Right to revoke the declaration of consent to data protection

You have the right to revoke your data protection declaration at any time. Please note that revoking consent does not affect the lawfulness of the processing carried out based on the consent until the revocation goes into effect.

8. Right to objection

Furthermore, you have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data relating to you which is carried out on the basis of Art. 6 para. 1 s. 1 lit. e or f GDPR.

9. Automated decision on an individual basis, including profiling

Under the EU General Data Protection Regulation, you remain entitled not to be subjected to a decision based solely on automated processing – including profiling – which would have legal effect or would affect you in a similar manner.

10. Right to complain to a supervisory authority

Finally, if you believe that the processing of personal data concerning you is contrary to the GDPR, you have the right to complain to a supervisory authority, in the Member State of its place of residence, employment or the location of the alleged infringement.

VII. Data transfers to third countries (outside of the EU):

The GDPR ensures an equally high level of data protection within the European Union. When selecting our service providers, we therefore rely on European partners wherever possible when your personal data is being processed. Within some exceptions we may process personal data outside the EU through third-party services. This may only be the case where the special requirements in accordance with Art. 44 et. seq. GDPR are fully met. This means that the processing of your data may then only take place when the third country has been declared to ensure an adequate level of protection by the European Commission or if the European Standard Contractual Clauses have been signed.

Data processing under the Swiss DPA

In principle, the use of our website is subject to the legal regulations of the GDPR. Insofar as you also visit our website from Switzerland and insofar as the related data processing also affects you as a Swiss citizen, these data protection provisions also apply to you under the Swiss Federal Data Protection Act (“Swiss DPA” as amended on 01 September 2023), analogously to the GDPR.

In principle, the Swiss DPA does not provide for the naming of a legal basis. In this respect, we only process your data from Switzerland if the processing is lawful, is carried out in good faith and is proportionate in accordance with Art. 6 para. 1 and 2 of the Swiss DPA. Furthermore, your data will only be collected by us for a specific purpose that is recognizable to the data subject and will only be processed in such a way that it is compatible with these purposes in accordance with Art. 6 para. 3 of the Swiss Data Protection Act.

In this context, please also note that although certain terms are formulated differently under the GDPR, they have the same legal meaning as under the Swiss DPA. For example, the GDPR terms “processing” of “personal data” as well as “legitimate interest” and “special categories of data” used in this Privacy Notice correspond to the terms “processing” of “personal data”, “overriding interest” and “personal data requiring special protection” used in the Swiss DPA.

The data subject rights set out here pursuant to Art. 12 et seq. GDPR can be asserted by data subjects from Switzerland in analogy to the regulations pursuant to Art. 25 et seq. of the Swiss DPA.

VIII. Minors under 16 years of age

Minors under 16 years of age are expressly not addressees of our website and our offers on this website. We point out that legal guardians must accompany the online activities of their children. Minors under the age of 16 should not transmit any personal data to us without the consent of their parents or legal guardians. We explicitly do not request personal data from minors under the age of 16, do not knowingly collect such data and do not pass it on to third parties.

IX. Newsletter

1. General

You can subscribe to a free newsletter on our homepage that we use to inform you about our current interesting offers. The advertised goods and services are named in the declaration of consent. The data you enter in the online registration form will be transmitted to us.

We collect the following data based on the consent obtained during the registration process:
E-mail address, first name, last name, company

Furthermore, the following data is stored at the moment of transmission:
IP address, Date and time of registration.

Your data will not be forwarded as part of data processing involved in sending newsletters. The data will be used exclusively for sending the newsletter.

2. Double opt-in and logging

Registration for our newsletter takes place in a so-called double-opt-in procedure. After registration, you will receive an email asking you to confirm your registration. This confirmation is necessary so that nobody can register using external email addresses.

The registration for the newsletter will be logged to prove the registration process according to the legal requirements. This includes the storage of the login and the confirmation time, as well as the IP address.

3. Legal basis

Legal basis for processing the data is once the consent of the user Art. 6 para. 1 s. 1 lit. a GDPR has been submitted. Collecting the user’s email address aids in delivering the newsletter.

4. Cancellation, revocation and opposition

Your data will be deleted as soon as they are no longer necessary for achieving the purpose of the inquiry. Your email address will therefore be saved as long as the subscription to the newsletter is active. You may terminate subscription to the newsletter at any time by revoking your consent. There is a corresponding link in each newsletter to do this.

We would like to further point out that at any time, you are free to cancel any future processing of your personal data in accordance with the statutory requirements. pursuant to Art. 21 GDPR. You are free to object to your data being processed for direct marketing purposes.

5. Shipping provider HubSpot

The newsletter is sent using “HubSpot”, a newsletter sending platform of the US provider HubSpot, Inc, 25 First Street, 2nd Floor, Cambridge, MA 02141 USA.

The e-mail addresses of our newsletter recipients, as well as their other data described in the context of this notice, are stored on HubSpot’s servers in Germany. HubSpot uses this information to send and evaluate the newsletter on our behalf. Furthermore, according to its own information, HubSpot may use this data to optimize or improve its own services, e.g., for the technical optimization of the dispatch and the presentation of the newsletters or for economic purposes in order to determine from which countries the recipients come. However, HubSpot does not use the data of our newsletter recipients to address them itself or to pass them on to third parties.

You can find more information on data processing at:
https://legal.hubspot.com/de/privacy-policy .

6. Statistical survey

We would like to point out that we evaluate your user behavior when sending the newsletter. For this evaluation, the emails sent include so-called web beacons or tracking pixels that represent one-pixel image files stored on our website.

For the evaluations, we link the data mentioned under Point 1 and the web beacons with your email address and an individual ID.

Links contained in the newsletter also contain this ID.

The data are collected exclusively under a pseudonym, so the IDs are not linked to your other personal data, which prevents a direct personal reference to subscribers.

With the data obtained in this way, we create a user profile to tailor the newsletter to your individual interests. In doing so, we record when you read our newsletters, which links you click and from this find out what your personal interests are. We link this data with actions you have taken on our website.

You can object to this tracking at any time by clicking on the separate link provided in each email or informing us via another means of contact. Your information will be stored as long as you are subscribed to the newsletter. After logging out, we store the data purely statistically and anonymously.

X. Electronic contact

On our website you can find a form that you can use to contact us. The data you enter is transmitted to us, and we process it for communication purposes. This data includes:
Email, phone number, last name, company, job title

The following data is also stored once your message has been sent:
IP address, Date and time of registration

It is also possible to contact us via the provided email address. In this case, your personal data is transmitted via e-mail will then be processed by us.

A transfer of your data to third parties will not take place in this context; your data will be processed exclusively for communication purposes.

The legal basis for the processing of the contact request and its handling is regularly Art. 6 para. 1 s.1 lit. b GDPR.

If further personal data is processed within the communication process, this only serves the prevention of misuse of our contact form and to ensure the security of our systems.

Your data will be deleted as soon as it is no longer necessary for achieving the purpose it was processed for. Regarding the contact form and e-mail communication, this is the case when the respective conversation with the user has ended. The conversation has ended when the circumstances re-veal, that all relevant facts have been clarified.

Additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

XI. Google Tag Manager

This website uses Google Tag Manager. Google Tag Manager is a solution that allows marketers to manage website tags through one interface. The tool itself (which implements the tags) does not use cookies and only collects your IP address out of technical necessity. The tool takes care of triggering other tags, which in turn may set cookies and collect data. Google Tag Manager does not access this data. If a deactivation has been made at the domain or cookie level, this remains in place for all tracking tags implemented with Google Tag Manager.

If we have obtained consent from you, the legal basis for the use of Google Tag Manager is Art. 6 para. 1 s. 1 lit a GDPR. Otherwise, the legal basis for the use of the technically necessary cookie results from our legitimate interest according to Art. 6 para. 1 s. 1 lit. f GDPR.

For more information, please refer to the provider’s terms of use at: https://www.google.com/intl/de/tagmanager/use-policy.html.

XII. Google Analytics 4

This website uses Google Analytics 4, a web analytics service provided by Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”).

The use of Google Analytics 4 allows us to use it in a variety of ways. We operate Google Analytics 4 using the following technologies:
– Cookies
– Scripts

This stores and retrieves information on your computer that enables us to analyze your use of the website. The information thus generated about your use of this website is generally transmitted to a Google server in the USA and stored there. Your IP address is anonymized by default before being transmitted to us and Google. The full IP address is transferred to a Google server in the USA but is immediately shortened there. According to Google, the IP address transmitted by your browser as part of Google Analytics is not merged with other Google data. The legal basis for the use of Google Analytics is your consent in accordance with Art. 6 para. 1 s. 1 lit. a GDPR.

During your website visit, your user behavior is recorded in the form of “events”. Events can be:
– Page views
– First visit to the website
– Start of session
– Your “click path”, interaction with the website
– Scrolls (whenever a user scrolls to the bottom of the page (90%))
– clicks on external links 
– internal search queries
– interaction with videos
– file downloads
– seen / clicked ads
– language settings

In addition, the following may be collected:
– Your approximate location (region)
– your IP address (in shortened form)
– technical information about your browser and the end devices you use (e.g. language setting, screen resolution)
– your internet service provider
– the referrer URL (via which website/advertising medium you came to this website)

On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator.

We use the User ID function. Using User ID, we can assign a unique, persistent ID to one or more sessions (and activities within those sessions) and analyze user behavior across devices

Recipients of the data may be:
– Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (as processor pursuant to Art. 28 GDPR).
– Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA
– Alphabet Inc, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA

We store your data for a period of 14 months.

Third-party provider information: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.
User Terms: https://marketingplatform.google.com/about/analytics/terms/de/,
Privacy policy overview: https://policies.google.com/?hl=de,
as well as the privacy policy: http://www.google.de/intl/de/policies/privacy.

XIII. Hotjar

We use the web analytics service “Hotjar” of Hotjar Ltd on our website. Hotjar Ltd is a European company based in Malta (Hotjar Ltd, Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta, Europe).

By using “Hotjar”, movements on our website can be tracked (so-called heat maps). For example, it is possible to see how far users scroll and which buttons users click on and how often. Furthermore, with the help of the tool it is also possible to obtain feedback directly from the users of the website. In this way, we obtain valuable information to make our website even faster and more customer friendly.

This website pays particular attention to the protection of your personal data when using “Hotjar”. For example, we can only track which buttons are clicked, mouse history, how far scrolled, device screen size, device type and browser information, geographic location (country only) and preferred language to display our website. Areas of the websites where personally identifiable information about you or third parties is displayed are automatically hidden by “Hotjar” and are therefore not traceable at any time.

“Hotjar” offers every user the possibility to prevent the use of the tool by means of a “Do Not Track header”. In this case, no data about the visit to the respective website will be recorded. This is a setting that is supported by all common browsers in current versions. For this purpose, your browser sends a request to “Hotjar” with the indication to deactivate the tracking of the respective user. If you use this website with different browsers/computers, you must set up the “Do Not Track header” separately for each of these browsers/computers.

The legal basis for the use of Hotjar is your consent according to Art. 6 para. 1 s. 1 lit. a GDPR.

Detailed instructions with information about your browser can be found at:
https://www.hotjar.com/opt-out

For more information about Hotjar Ltd. and about the “Hotjar” tool, please visit:
https://www.hotjar.com

The privacy policy of Hotjar Ltd. can be found at:
https://www.hotjar.com/privacy

XIV. HubSpot / HubSpot Forms

We use HubSpot for our online marketing activities, to provide parts of our website without disruptions and to continuously improve it, as well as to contact you, to determine which services are of interest to you and to offer you individualized and targeted marketing. HubSpot is software created by HubSpot Inc, 25 First Street, 2nd Floor, Cambridge, MA 02141 USA.

HubSpot uses cookies, which – if you have given your consent – are stored on the terminal device you are using and which enable an analysis of your use of our website. The collected behavioral and communication data, as well as the information you provide in the newsletter or contact form, are transmitted to a HubSpot server in the USA and stored there, so that both HubSpot and government authorities have access to this data. Your personal data will only be transferred to HubSpot and thus to servers in the USA with your express prior consent. The legal basis for the processing of your data is Art. 6 para. 1 s. 1 lit. a GDPR.

For more information on HubSpot’s handling of user data, please see HubSpot’s Privacy Policy:
https://legal.hubspot.com/de/privacy-policy

XV. Social media presence

We maintain fan pages within social networks to communicate with customers, prospects and users who are active there and to inform them about our services.

We would like to point out that your personal data may be processed out-side the European Union, which may pose risks to you (e.g., in enforcing your rights under European/German law).

These users’ data is usually processed for market research and advertising purposes. Thus, for example, user profiles that are created based on the user’s behavior and interests. These profiles can be used to place advertisements that allegedly is within the users’ interests. For these purposes, technologies such as cookies are used to observe the user’s behavior and to evaluate each user’s interests. Furthermore, data may also be stored in the usage profiles regardless of the devices used by the users (especially if the users are members of the respective platforms and are logged in to them).

Processing personal user data is based on our legitimate interests in an effective communication with users in accordance with. Art. 6 para. s.1 lit. f. GDPR. If user’s giver their consent over processing of their personal information by a social network (which is the case, if they declare their agreement, for example, by ticking a check box or clicking on a button to consent)., the legal basis for processing user info is Art. 6 para. s.1 lit. a GDPR.

You can obtain further information on the processing of your personal data as well as your objection options under the listed links of the respective provider. The assertion of information and other rights of the data subjects can also be made against the providers, then only those who have direct access to the data of the users and have the corresponding information. Of course, we are available to answer questions and provide support if you need assistance.

A supplementary agreement is concluded with some social media platforms when operating a fan page. According to this, data subject rights can usually be asserted both with the social media platform and with us. However, the primary responsibility under the GDPR for the processing of insights data lies with the social media platform and it fulfills all obligations under the GDPR regarding the processing of insights data. In this context, the social media platform provides the essence of the page insights supplement to the data subjects.

We, as the operator of the fan page, do not make any decisions regarding the processing of Insights data and all other information resulting from Art. 13 of the GDPR, such as the legal basis, the identity of the responsible party and the storage period of cookies on the user end devices.

We currently use the following social media platforms:

a) YouTube (Google)

Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA)
Privacy policy:  https://policies.google.com/privacy
Opt-Out: https://adssettings.google.com/authenticated

b) LinkedIn

LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland
Privacy policy https://www.linkedin.com/legal/privacy-policy
Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out,

c) Xing

XING AG, Dammtorstraße 29-32, 20354 Hamburg, Deutschland
Privacy policy / Opt-Out: https://privacy.xing.com/de/datenschutzerklaerung.

d) YouTube videos

We have included YouTube videos in our online offering; they are stored on http://www.YouTube.com and are directly playable from our website. These are all included in the “extended privacy mode,” meaning that no data about you as a user will be transferred to YouTube if you are not playing the videos. The data mentioned in Section 2 will be transmitted only if you play the videos. We have no influence on this data transfer.

By visiting the website, YouTube receives the information that you have accessed the corresponding subpage of our website. This occurs regardless of whether YouTube provides a user account through which you are logged in or whether no user account exists. If you are logged in to Google, your data will be directly assigned to your account. If you do not want the assignment with your profile at YouTube, you must log out before activating the button. YouTube stores your data as usage profiles and uses them for the purposes of advertising, market research and/or demand-oriented design of its website. Such an evaluation is carried out (even for users who are not logged in) to provide needs-based advertising and to inform other users of the social network about your activities on our website. You have a right to object to the creation of these user profiles, whereby you must contact YouTube to exercise this.

Insofar as we obtain your consent, the legal basis for the use of the plug-in is your consent pursuant to Art. 6 para. 1 s. 1 lit. a GDPR. How the respective social media providers process your personal data can be found in the respective privacy policy. We are not the responsible party in the sense of the GDPR for the data processing of the social media providers.

Further information on the purpose and scope of data collection and its processing by YouTube can be found in the privacy policy. There you will also find further information about your rights and setting options to protect your privacy: https://www.google.de/intl/de/policies/privacy.
Opt-out: https://support.google.com/ads/answer/10261289?hl=de&ref_topic=7048998.

XVII. Vimeo player

We have integrated Vimeo videos into our online offer, which are stored on https://vimeo.com/de/ and can be played directly from our website. The provider is Vimeo, Inc, New York City, United States.

These are all integrated in “extended data protection mode”, i.e., no data about you as a user is transmitted to Vimeo if you do not play the videos. Only when you play the videos, the data mentioned in paragraph 2 are transmitted. We have no influence on this data transmission.

By visiting the website, Vimeo receives the information that you have accessed the corresponding subpage of our website. This occurs regardless of whether Vimeo provides a user account through which you are logged in or whether no user account exists. Vimeo stores your data as usage profiles and uses them for the purposes of advertising, market research and/or demand-oriented design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) for the provision of needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact Vimeo to exercise this right.

Further information on the purpose and scope of data collection and its processing by Vimeo can be found in the privacy policy. There you will also find further information about your rights and setting options to protect your privacy: https://vimeo.com/privacy. Vimeo also processes your personal data in the USA.

XVIII. LinkedIn Analytics

We use “LinkedIn Analytics” on our website, a service of LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland (hereinafter referred to as: “LinkedIn”).

LinkedIn Analytics stores and processes information about your user behavior on our website. For this purpose, LinkedIn Analytics uses, among other things, cookies, i.e., small text files that are stored locally in the cache of your web browser on your end device and that enable an analysis of your use of our website.

We use LinkedIn Analytics for marketing and optimization purposes, to analyze the use of our website and to continuously improve individual functions and offers as well as the user experience. Through the statistical evaluation of user behavior, we can improve our offer and make it more interesting for you as a user.

The legal basis for the processing of your data is Art. 6 para. 1 s. 1 lit. a GDPR.

Further information of the third-party provider on data protection can be found on the following website: https://www.linkedin.com/legal/privacy-policy

XIX. LinkedIn Ads

We use “LinkedIn Ads” on our website, a service of LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland (hereinafter referred to as “LinkedIn Ads”).

LinkedIn Ads stores and processes information about your user behavior on our website. For this purpose, LinkedIn Ads uses, among other things, cookies, i.e., small text files that are stored locally in the cache of your web browser on your end device and that enable an analysis of your use of our website.

We use LinkedIn Ads for marketing and optimization purposes, in particular to analyze the use of our website and to continuously improve individual functions and offers as well as the user experience. Through the statistical evaluation of user behavior, we can improve our offer and make it more interesting for you as a user.

The legal basis for the processing of your data is Art. 6 para. 1 s. 1 lit. a GDPR.

Further information of the third-party provider on data protection can be found on the following website: https://www.linkedin.com/legal/privacy-policy

XX. Google AdSense

We use the online advertising service Google AdSense on our homepage. Google AdSense can be used to show you advertising tailored to your interests. We are interested in showing you advertisements that may be of interest to you to make our website more interesting to you. It collects statistical information about you, which is processed by our advertising partners. These ads can be seen via the “Google ads” reference in the ad.

By visiting our website, Google receives information that you have accessed our website. Google uses a web beacon to place a cookie on your computer. The data referred to under Section IV of this declaration will be transmitted. We have no influence on the collected data, nor are we aware of the full extent of the data collection or the duration of storage. Your data will be transmitted to the US and evaluated there. Your data can be assigned directly to your Google account if you are logged in to it. You’ll need to log out if you do not want to be associated with your Google profile. It is possible that Google’s contractors may share these data with third parties and government agencies.

The legal basis for processing your data is your consent, as defined in Art. 6 para. 1 s. 1 lit. a GDPR.

You can prevent Google AdSense cookies from being installed in various ways:

a) by setting your browser software accordingly; suppressing third-party cookies will prevent you from receiving any third-party advertisements
b) by disabling interest-based ads on Google through the http://www.google.com/ads/preferences link, which will be deleted if you delete your cookies;
c) by disabling interest-based ads from the providers that are part of the About Ads self-regulatory campaign by clicking on the http://www.aboutads.info/choices , which will be deleted when you delete your cookies
d) through permanent deactivation in your Firefox, Internet Explorer or Google Chrome browsers under the link http://www.google.com/settings/ads/plugin. We would like to point out that in this case you may not be able to fully utilize all the features of this offer.

For more information on the purpose and scope of data collection and its processing, as well as further information on your rights and options for privacy, please contact: Google Inc., 1600 Amphitheater Parkway, Mountainview, California 94043, USA; data protection conditions for advertising: http://www.google.de/intl/de/policies/technologies/ads.

XXI. Google Ads Conversion (Formerly Google AdWords Conversion)

We use the offer of Google Ads, with the help of advertising materials (Google Ads) on external websites to attract attention to our attractive offers. We can determine how successful the individual advertising measures are in relation to the data from advertising campaigns. We are interested in showing you advertisements that are of interest to you to make our website more interesting to you and to achieve a fair calculation of advertising costs.

These advertising materials are supplied by Google via so-called “ad servers.” To do this, we use ad server cookies, which measure certain performance metrics such as ads or user clicks. If you reach our website via a Google ad, Google Ads will save a cookie on your PC. These cookies usually lose their validity after 30 days and are not intended to identify you personally. This cookie will typically store the unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant to post-view conversions), and opt-out information (a flag that the user does not want to be addressed any more).

These cookies allow Google to recognize your Internet browser. If a user visits certain pages on an Ads customer’s website and the cookie stored on their computer has not expired, Google and the customer will be able to detect that the user clicked on the ad and was redirected to that page. Each Ads customer is assigned a different cookie. Cookies cannot be tracked via the Ads customer websites. We ourselves do not collect and process any personal data using the advertising measures. We receive only statistical evaluations provided by Google. Based on these evaluations, we can identify which of the advertising measures used are particularly effective. We do not receive any further data from using advertising material, and we cannot identify users based on this information.

Your browser automatically establishes a direct connection to the Google server based on the marketing tools used. We have no control over the extent and the later use of the data that Google collects using this tool and we will therefore inform you according to our level of knowledge. By integrating Ads Conversion, Google receives the information that you have accessed the relevant part of our website or have clicked on an ad from us. If you are registered with a service provided by Google, then Google may associate the visit with your account. Even if you are not registered with Google or have not logged in, there is a chance that the provider will find and store your IP address.

You can prevent participation in this tracking process several different ways:

The legal basis for processing your data is your consent, as defined in Art. 6 para. 1 s. 1 lit. a GDPR.

You can find additional information on Google’s data privacy policies at: http://www.google.com/intl/de/policies/privacy and https://services.google.com/sitestats/de.html.

Another option is to visit the Network Advertising Initiative (NAI) at: http://www.networkadvertising.org.

XXII. Google Analytics Remarketing

Our websites use the functions of Google Analytics Remarketing in conjunction with the cross-device functions of Google AdWords and Google DoubleClick. The provider is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

This function makes it possible to link the advertising target groups created with Google Analytics Remarketing with the cross-device functions of Google AdWords and Google DoubleClick. In this way, interest-based, personalized advertising messages that have been adapted to you depending on your previous usage and surfing behavior on one end device (e.g., cell phone) can also be displayed on another of your end devices (e.g., tablet or PC).

If you have given your consent, Google will link your web and app browsing history with your Google account for this purpose. In this way, the same personalized advertising messages can be displayed on every device on which you log in with your Google account.

To support this feature, Google Analytics collects Google-authenticated IDs of users, which are temporarily linked to our Google Analytics data to define and create target groups for cross-device ad advertising.

You can prevent participation in this tracking process several different ways:

The legal basis for processing your data is your consent, as defined in Art. 6 para. 1 s. 1 lit. a GDPR.

You can find additional information on Google’s data privacy policies at: http://www.google.com/intl/de/policies/privacy and https://services.google.com/sitestats/de.html.

Another option is to visit the Network Advertising Initiative (NAI) at: http://www.networkadvertising.org.

XXIII. Unbounce

This website uses the “Unbounce” service for individual sub-pages. The provider is Unbounce Marketing Solutions Inc, 400-401 West Georgia Street, Vancouver, BC, Canada, V6B 5A1. The EU Commission has classified Canada as a safe third country, with an adequate level of data protection. Individual subpages are hosted by Un-bounce. The browser communicates directly with Unbounce so that the IP address is transmitted, and cookies can be set. All information entered on these pages is also stored by Unbounce. We are then provided with an anonymous evaluation of the activities.

The processing of data in this context is based on our legitimate interest pursuant to Art. 6 para. 1 s. 1 lit. f GDPR, which is to make our website as user-friendly as possible.

Further data protection information on Unbounce can be found at: https://unbounce.com/privacy/.