background image

隐私政策

基本信息

以下内容将帮助您清晰了解:当您访问本网站时,我们会如何处理您的个人数据。“个人数据” 是指任何可用于识别您个人身份的信息。

本网站的数据收集与处理

谁负责本网站的数据收集与处理(即“数据控制方”)?

本网站的数据处理控制方为:

 

Variosystems AG

Ampèrestrasse 5

9323 Steinach

Switzerland

 

电话: +41 71 447 87 00

邮箱: dsgvo_9323_2020@variosystems.ch

 

“数据控制方”是指单独或与他人共同决定个人数据(例如姓名、电子邮箱地址等)处理目的及方式的自然人或法人机构。

我们如何收集您的数据?

当您主动向我们提供信息时,我们会收集相关数据。例如,您在联系表单中填写并提交的信息。

 

此外,在您访问本网站期间,部分数据会由我们的 IT 系统自动收集,或在获得您的同意后进行记录。这些数据主要包括技术信息,例如所使用的浏览器类型、操作系统以及网站访问时间等。当您访问本网站时,此类信息会被自动记录。

我们将您的数据用于哪些目的?

部分信息将用于确保网站稳定、无错误地运行。其他数据可能用于分析您的使用行为与访问模式。如果您通过本网站发起或签订合同,所提交的数据还将用于处理报价、订单或其他业务咨询相关事宜。

您对个人信息享有哪些权利?

您有权随时免费获取有关已存储个人数据的来源、接收方以及处理目的等信息。您也有权要求更正或删除您的个人数据。如果您已同意我们进行数据处理,您可随时撤回该同意。撤回后,将适用于未来的数据处理活动。此外,在特定情况下,您还有权要求限制对您个人数据的处理。同时,您也有权向相关监管机构提出投诉。

 

如果您对上述内容或其他与数据保护相关的问题有任何疑问,欢迎随时与我们联系。

我们如何收集并分析您访问网站的信息?

当您访问本网站时,我们可能会对您的浏览行为进行统计分析。此类分析主要通过我们所使用的分析工具或分析程序完成。

 

有关这些分析程序的详细信息,请参阅下方的《数据保护声明》。

1. 基本信息与强制性说明

数据保护

万诺电子(Variosystems) 高度重视您的个人数据保护。因此,我们将严格按照适用的数据保护法律法规以及本《数据保护声明》的规定,对您的个人数据进行保密处理。

当您使用本网站时,我们可能会收集多种个人信息。所谓“个人数据”,是指能够用于识别您个人身份的信息。本《数据保护声明》将说明我们收集哪些数据、收集这些数据的目的,以及数据的收集与处理方式。

同时,我们在此提醒您,通过互联网传输数据(例如电子邮件通信)可能存在安全漏洞,无法做到完全防止第三方访问。

数据保存期限

除非本隐私政策中另有明确规定,您的个人数据将仅在实现其收集目的所必需的期限内由我们保存。如果您提出合理的删除请求,或撤回您对数据处理的同意,我们将删除相关数据;但若法律允许我们基于其他原因继续保存您的个人数据(例如税务或商业法规规定的保存义务),则在相关法定保存期限届满后,我们才会删除该等数据。

本网站数据处理的法律依据说明

如果您已同意数据处理,我们将依据《通用数据保护条例》(GDPR)第6条第1款第a项或第9条第2款第a项处理您的个人数据;如涉及《GDPR》第9条第1款所定义的特殊类别数据,则依据相应条款进行处理。若您明确同意将个人数据传输至第三国,数据处理还将依据《GDPR》第49条第1款第a项进行。如果您同意我们在终端设备中存储 Cookie 或访问设备信息(例如设备指纹识别),相关数据处理还将依据德国《电信与数字服务数据保护法》(TDDDG)第25条第1款进行。您可随时撤回该同意。如您的数据用于履行合同或执行合同前措施,我们将依据《GDPR》第6条第1款第b项处理您的数据。此外,若数据处理是履行法律义务所必需,则依据《GDPR》第6条第1款第c项进行处理。在某些情况下,数据处理也可能基于我们的合法利益(依据《GDPR》第6条第1款第f项)。各具体数据处理所适用的法律依据将在本隐私政策的后续章节中详细说明。

个人数据接收方

在我们的业务活动范围内,我们会与不同的外部机构合作。在某些情况下,这可能需要将个人数据传输给这些外部机构。我们仅在以下情况下向外部第三方披露个人数据:为履行合同所必需;法律法规要求(例如向税务机关披露数据);依据《GDPR》第6条第1款第f项基于我们的合法利益;或在其他法律依据允许的情况下进行披露。在使用数据处理受托方(处理方)时,我们仅基于有效的数据处理协议向其提供客户个人数据。在共同数据处理的情况下,我们会与相关方签署共同数据处理协议。

撤回您对数据处理的同意

许多数据处理活动仅在您明确同意的前提下才会进行。您也可以随时撤回已授予我们的同意。撤回同意不影响在撤回之前已进行的数据处理的合法性。

在特殊情况下反对数据收集的权利;反对直接营销的权利(GDPR 第21条)

如果个人数据基于《GDPR》第6条第1款第e项或第f项进行处理,您有权基于与您特定情况相关的理由,随时反对对您个人数据的处理。这同样适用于基于上述条款进行的画像分析(Profiling)。关于数据处理所依据的法律基础,请参阅本《数据保护声明》。如果您提出反对,我们将不再处理相关的个人数据,除非我们能够证明存在具有强制性且值得保护的理由,使其优先于您的利益、权利与自由;或者该数据处理用于主张、行使或维护法律权利(依据《GDPR》第21条第1款的反对权)。

 

如果您的个人数据用于直接营销,您有权随时反对将您的相关个人数据用于此类营销目的。这同样适用于与直接营销相关的画像分析。一旦您提出反对,您的个人数据将不再用于直接营销目的(依据《GDPR》第21条第2款的反对权)。

向主管监管机构投诉的权利

如果发生违反《GDPR》的情况,数据主体有权向监管机构提出投诉,特别是在其通常居住地、工作地点或涉嫌侵权发生地所在的欧盟成员国。该投诉权不影响您可通过其他行政或司法程序寻求法律救济的权利。

数据可携带权

您有权要求以通用、机器可读的格式获取我们基于您的同意或为履行合同而自动处理的数据,或将其传输给第三方。如果您要求将数据直接传输至另一数据控制方,则仅在技术条件允许的情况下方可实现。

关于数据查询、更正与删除的权利

在适用的法律法规范围内,您有权随时要求获取我们所存储的您的个人数据相关信息,包括数据来源、接收方以及数据处理目的等。您也可能有权要求更正或删除您的个人数据。如您对此有任何疑问,或对个人数据相关事项有其他问题,欢迎随时与我们联系。

限制数据处理的权利

您有权要求对您个人数据的处理加以限制,您可随时与我们联系以行使该权利。在以下情况下,您有权要求限制数据处理:

 

  • 如果您对我们存储的您的数据的准确性提出异议,在我们核实期间,您有权要求限制对该数据的处理。
  • 如果您的个人数据被非法处理,您可以选择要求限制数据处理,而非要求删除数据。
  • 如果我们不再需要您的个人数据,但您需要这些数据用于主张、行使或维护法律权利,您有权要求限制数据处理,而非删除数据。
  • 如果您根据《GDPR》第21条第1款提出反对,在尚未确定何方利益优先之前,您有权要求限制数据处理。

 

如果您的个人数据被限制处理,则除存储之外,这些数据仅在以下情况下方可被处理:经您同意;或用于主张、行使或维护法律权利;或用于保护其他自然人或法人的权利;或基于欧盟或成员国的重要公共利益。

2. 网站托管

我们的网站内容由以下服务提供商进行托管:DoMedia LTD

外部托管

本网站由外部服务商进行托管。通过本网站收集的个人数据将存储在托管服务商的服务器上。这些数据可能包括但不限于:IP 地址、联系请求、元数据与通信记录、合同信息、联系方式、姓名、网页访问记录以及通过网站产生的其他数据。

 

外部托管的目的在于履行与潜在及现有客户的合同(依据《GDPR》第6条第1款第b项),并基于专业服务提供商提供安全、快速及高效在线服务的合法利益(依据《GDPR》第6条第1款第f项)。如已取得相应同意,则数据处理仅基于《GDPR》第6条第1款第a项及德国《电信与数字服务数据保护法》(TDDDG)第25条第1款进行,前提是该同意涵盖对用户终端设备中 Cookie 的存储或对设备信息的访问(例如设备指纹识别)。该同意可随时撤回。

 

我们的托管服务提供商仅在履行服务义务所必需的范围内处理您的数据,并严格遵循我们的指示进行操作。

 

我们使用的托管服务商如下:

 

DoMedia LTD

Unit 3, Office A, 1st Floor, 6-7 St. Mary At Hill

London EC3R 8EE

England

SSL / TLS 加密

出于安全考虑,并为保护您在向网站运营方提交订单或咨询等机密内容时的数据传输,本网站采用 SSL 或 TLS 加密技术。您可以通过浏览器地址栏中的以下特征识别加密连接:网址从“http://”变为“https://”,并且浏览器地址栏会显示锁形图标。

 

启用 SSL 或 TLS 加密后,您传输给我们的数据将无法被第三方读取。

3. 本网站的数据收集

Cookies

本网站及其页面使用所谓的“Cookie”。Cookie 是不会对您的设备造成任何损害的小型数据文件。它们可以在会话期间临时存储(会话 Cookie),也可以长期存储在您的设备上(持久性 Cookie)。会话 Cookie 会在您结束访问后自动删除;持久性 Cookie 会保留在您的设备上,直到您手动删除,或由浏览器自动清除。

 

Cookie 可能由我们(第一方 Cookie)或第三方公司(第三方 Cookie)设置。第三方 Cookie 用于在网站中集成第三方服务(例如支付服务相关的 Cookie)。

 

Cookie 具有多种功能。部分 Cookie 在技术上是必需的,否则网站的某些功能将无法正常运行(例如购物车功能或视频播放功能)。其他 Cookie 可能用于分析用户行为或用于营销目的。

 

用于执行电子通信流程、提供您所需功能(例如购物车功能)或用于优化网站(例如用于统计网站访问量)的必要 Cookie,将依据《GDPR》第6条第1款第f项进行存储,除非另有法律依据。网站运营方对存储必要 Cookie 具有合法权益,以确保网站能够稳定、无错误且优化运行。如果我们请求您同意 Cookie 或类似识别技术的使用,则相关数据处理仅基于您的同意(《GDPR》第6条第1款第a项及 TDDDG 第25条第1款)。您可随时撤回该同意。

 

您可以在浏览器中进行设置,例如在设置 Cookie 时收到通知,仅在特定情况下允许 Cookie,或全面禁止 Cookie,甚至在关闭浏览器时自动删除 Cookie。如果禁用 Cookie,网站的部分功能可能无法正常使用。

 

有关本网站使用的具体 Cookie 和服务,请参阅本隐私政策的后续说明。

Server log files

The provider of this website and its pages automatically collects and stores information in so-called server log files, which your browser communicates to us automatically. The information comprises:

 

  • The type and version of browser used
  • The used operating system
  • Referrer URL
  • The hostname of the accessing computer
  • The time of the server inquiry
  • The IP address

 

This data is not merged with other data sources.

 

This data is recorded on the basis of Art. 6(1)(f) GDPR. The operator of the website has a legitimate interest in the technically error free depiction and the optimization of the operator’s website. In order to achieve this, server log files must be recorded.

 

Contact form

If you submit inquiries to us via our contact form, the information provided in the contact form as well as any contact information provided therein will be stored by us in order to handle your inquiry and in the event that we have further questions. We will not share this information without your consent.

 

The processing of these data is based on Art. 6(1)(b) GDPR, if your request is related to the execution of a contract or if it is necessary to carry out pre-contractual measures. In all other cases the processing is based on our legitimate interest in the effective processing of the requests addressed to us (Art. 6(1)(f) GDPR) or on your agreement (Art. 6(1)(a) GDPR) if this has been requested; the consent can be revoked at any time.

 

The information you have entered into the contact form shall remain with us until you ask us to eradicate the data, revoke your consent to the archiving of data or if the purpose for which the information is being archived no longer exists (e.g., after we have concluded our response to your inquiry). This shall be without prejudice to any mandatory legal provisions, in particular retention periods.

Request by e-mail, telephone, or fax

If you contact us by e-mail, telephone or fax, your request, including all resulting personal data (name, request) will be stored and processed by us for the purpose of processing your request. We do not pass these data on without your consent.

 

These data are processed on the basis of Art. 6(1)(b) GDPR if your inquiry is related to the fulfillment of a contract or is required for the performance of pre-contractual measures. In all other cases, the data are processed on the basis of our legitimate interest in the effective handling of inquiries submitted to us (Art. 6(1)(f) GDPR) or on the basis of your consent (Art. 6(1)(a) GDPR) if it has been obtained; the consent can be revoked at any time.

 

The data sent by you to us via contact requests remain with us until you request us to delete, revoke your consent to the storage or the purpose for the data storage lapses (e.g. after completion of your request). Mandatory statutory provisions – in particular statutory retention periods – remain unaffected.

4.  Social media

LinkedIn

This website uses elements of the LinkedIn network. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland.

 

Any time you access a page of this website that contains elements of LinkedIn, a connection to LinkedIn’s servers is established. LinkedIn is notified that you have visited this website with your IP address. If you click on LinkedIn’s “Recommend” button and are logged into your LinkedIn account at the time, LinkedIn will be in a position to allocate your visit to this website to your user account. We have to point out that we as the provider of the websites do not have any knowledge of the content of the transferred data and its use by LinkedIn.

 

The use of this service is based on your consent in accordance with Art. 6 (1)(a) GDPR and § 25 (1) TDDDG. Consent can be revoked at any time.

 

Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://www.linkedin.com/help/linkedin/answer/a1343190/datenubertragung-aus-der-eu-dem-ewr-und- der-schweiz?lang=de.

 

For further information on this subject, please consult LinkedIn’s Data Privacy Declaration at: https://www.linkedin.com/legal/privacy-policy.

 

The company is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the US, which is intended to ensure compliance with European

 

data protection standards for data processing in the US. Every company certified under the DPF is obliged to comply with these data protection standards. For more information, please contact the provider under the following link:

https://www.dataprivacyframework.gov/participant/5448.

Instagram

We have integrated functions of the public media platform Instagram into this website. These functions are being offered by Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland.

 

If the social media element has been activated, a direct connection between your device and Instagram’s server will be established. As a result, Instagram will receive information on your visit to this website.

 

If you are logged into your Instagram account, you may click the Instagram button to link contents from this website to your Instagram profile. This enables Instagram to allocate your visit to this website to your user account. We have to point out that we as the provider of the website and its pages do not have any knowledge of the content of the data transferred and its use by Instagram.

 

The use of this service is based on your consent in accordance with Art. 6 (1)(a) GDPR and § 25 (1) TDDDG. Consent can be revoked at any time.

 

Insofar as personal data is collected on our website with the help of the tool described here and forwarded to Facebook or Instagram, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland are jointly responsible for this data processing (Art. 26 DSGVO). The joint responsibility is limited exclusively to the collection of the data and its forwarding to Facebook or Instagram. The processing by Facebook or Instagram that takes place after the onward transfer is not part of the joint responsibility. The obligations incumbent on us jointly have been set out in a joint processing agreement. The wording of the agreement can be found under:

https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for providing the privacy information when using the Facebook or Instagram tool and for the privacy-secure implementation of the tool on our website. Facebook is responsible for the data security of Facebook or Instagram products. You can assert data subject rights (e.g., requests for information) regarding data processed by Facebook or Instagram directly with Facebook. If you assert the data subject rights with us, we are obliged to forward them to Facebook.

Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum, https://privacycenter.instagram.com/policy/ and

https://de-de.facebook.com/help/566994660333381.

 

For more information on this subject, please consult Instagram’s Data Privacy Declaration at: https://privacycenter.instagram.com/policy/.

 

The company is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the US, which is intended to ensure compliance with European data protection standards for data processing in the US. Every company certified under the DPF is obliged to comply with these data protection standards. For more information, please contact the provider under the following link:

https://www.dataprivacyframework.gov/participant/4452.

 

Facebook

We have integrated elements of the social network Facebook on this website. The provider of this service is Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Ireland. According to Facebook’s statement the collected data will be transferred to the USA and other third-party countries too.

 

An overview of the Facebook social media elements is available under the following link:

 

https://developers.facebook.com/docs/plugins/.

 

If the social media element has been activated, a direct connection between your device and the Facebook server will be established. As a result, Facebook will receive information confirming your visit to this website with your IP address. If you click on the Facebook Like button while you are logged into your Facebook account, you can link content of this website to your Facebook profile. Consequently, Facebook will be able to allocate your visit to this website to your user account. We have to emphasize that we as the provider of the website do not receive any information on the content of the transferred data and its use by Facebook. For more information, please consult the Data Privacy Policy of Facebook at:

https://de-de.facebook.com/privacy/explanation.

 

The use of this service is based on your consent in accordance with Art. 6 (1)(a) GDPR and § 25 (1) TDDDG. Consent can be revoked at any time.

 

Insofar as personal data is collected on our website with the help of the tool described here and forwarded to Facebook, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland are jointly responsible for this data processing (Art. 26 DSGVO). The joint responsibility is limited exclusively to the collection of the data and its forwarding to Facebook. The processing by Facebook that takes place after the onward transfer is not part of the joint responsibility. The obligations incumbent on us jointly have been set out in a joint processing agreement. The wording of the agreement can be found under: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for providing the privacy information when using the Facebook tool and for the privacy-secure implementation of the tool on our website. Facebook is responsible for the data security of Facebook products. You can assert data subject rights (e.g., requests for information) regarding data processed by Facebook directly with Facebook. If you assert the data subject rights with us, we are obliged to forward them to Facebook.

Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum,

https://de-de.facebook.com/help/566994660333381 and https://www.facebook.com/policy.php.

 

The company is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the US, which is intended to ensure compliance with European data protection standards for data processing in the US. Every company certified under the DPF is obliged to comply with these data protection standards. For more information, please contact the provider under the following link:

https://www.dataprivacyframework.gov/participant/4452.

5.  Online Marketing

Google Tag Manager

We use the Google Tag Manager. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland

 

The Google Tag Manager is a tool that allows us to integrate tracking or statistical tools and other technologies on our website. The Google Tag Manager itself does not create any user profiles, does not store cookies, and does not carry out any independent analyses. It only manages and runs the tools integrated via it. However, the Google Tag Manager does collect your IP address, which may also be transferred to Google’s parent company in the United States.

 

The Google Tag Manager is used on the basis of Art. 6(1)(f) GDPR. The website operator has a legitimate interest in the quick and uncomplicated integration and administration of various tools on his website. If appropriate consent has been obtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TDDDG, insofar the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) within the meaning of the TDDDG. This consent can be revoked at any time.

 

The company is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the US, which is intended to ensure compliance with European data protection standards for data processing in the US. Every company certified under the DPF is obliged to comply with these data protection standards. For more information, please contact the provider under the following link:

https://www.dataprivacyframework.gov/participant/5780.

Google Analytics

This website uses functions of the web analysis service Google Analytics. The provider of this service is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

 

Google Analytics enables the website operator to analyze the behavior patterns of website visitors. To that end, the website operator receives a variety of user data, such as pages accessed, time spent on the page, the utilized operating system and the user’s origin. This data is assigned to the respective end device of the user. An assignment to a user-ID does not take place.

 

Furthermore, Google Analytics allows us to record your mouse and scroll movements and clicks, among other things. Google Analytics uses various modeling approaches to augment the collected data sets and uses machine learning technologies in data analysis.

 

Google Analytics uses technologies that make the recognition of the user for the purpose of analyzing the user behavior patterns (e.g., cookies or device fingerprinting). The website use information recorded by Google is, as a rule transferred to a Google server in the United States, where it is stored.

 

The use of these services occurs on the basis of your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TDDDG. You may revoke your consent at any time.

 

Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European

 

Commission. Details can be found here: https://business.safety.google/adscontrollerterms/sccs/.

 

The company is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the US, which is intended to ensure compliance with European data protection standards for data processing in the US. Every company certified under the DPF is obliged to comply with these data protection standards. For more information, please contact the provider under the following link: https://www.dataprivacyframework.gov/participant/5780.

 

IP anonymization

 

Google Analytics IP anonymization is active. As a result, your IP address will be abbreviated by Google within the member states of the European Union or in other states that have ratified the Convention on the European Economic Area prior to its transmission to the United States. The full IP address will be transmitted to one of Google’s servers in the United States and abbreviated there only in exceptional cases. On behalf of the operator of this website, Google shall use this information to analyze your use of this website to generate reports on website activities and to render other services to the operator of this website that are related to the use of the website and the Internet. The IP address transmitted in conjunction with Google Analytics from your browser shall not be merged with other data in Google’s possession.

 

Browser plug-in

 

You can prevent the recording and processing of your data by Google by downloading and installing the browser plugin available under the following link: https://tools.google.com/dlpage/gaoptout?hl=en.

 

For more information about the handling of user data by Google Analytics, please consult Google’s Data Privacy Declaration at: https://support.google.com/analytics/answer/6004245?hl=en.

Google Ads

The website operator uses Google Ads. Google Ads is an online promotional program of Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

 

Google Ads enables us to display ads in the Google search engine or on third-party websites, if the user enters certain search terms into Google (keyword targeting). It is also possible to place targeted ads based on the user data Google has in its possession (e.g., location data and interests; target group targeting). As the website operator, we can analyze these data quantitatively, for instance by analyzing which search terms resulted in the display of our ads and how many ads led to respective clicks.

 

The use of these services occurs on the basis of your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TDDDG. You may revoke your consent at any time.

 

Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://policies.google.com/privacy/frameworks and https://business.safety.google/controllerterms/.

 

The company is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the US, which is intended to ensure compliance with European data protection standards for data processing in the US. Every company certified under the DPF is obliged to comply with these data protection standards. For more information, please contact the provider under the following link: https://www.dataprivacyframework.gov/participant/5780.

Google Ads Remarketing

This website uses the functions of Google Ads Remarketing. The provider of these solutions is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

 

With Google Ads Remarketing, we can assign people who interact with our online offering to specific target groups in order to subsequently display interest-based advertising to them in the Google advertising network (remarketing or retargeting).

 

Moreover, it is possible to link the advertising target groups generated with Google Ads Remarketing to device encompassing functions of Google. This makes it possible to display interest-based customized advertising messages, depending on your prior usage and browsing patterns on a device (e.g., cell phone) in a manner tailored to you as well as on any of your devices (e.g., tablet or PC).

 

If you have a Google account, you have the option to object to personalized advertising under the following link: https://adssettings.google.com/anonymous?hl=de.

 

The use of these services occurs on the basis of your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TDDDG. You may revoke your consent at any time.

 

For further information and the pertinent data protection regulations, please consult the Data Privacy Policies of Google at: https://policies.google.com/technologies/ads?hl=en.

 

The company is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the US, which is intended to ensure compliance with European data protection standards for data processing in the US. Every company certified under the DPF is obliged to comply with these data protection standards. For more information, please contact the provider under the following link:  https://www.dataprivacyframework.gov/participant/5780.

Google Conversion-Tracking

This website uses Google Conversion Tracking. The provider of this service is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

 

With the assistance of Google Conversion Tracking, we are in a position to recognize whether the user has completed certain actions. For instance, we can analyze the how frequently which buttons on our website have been clicked and which products are reviewed or purchased with particular frequency. The purpose of this information is to compile conversion statistics. We learn how many users have clicked on our ads and which actions they have completed. We do not receive any information that would allow us to personally identify the users. Google as such uses cookies or comparable recognition technologies for identification purposes.

 

The use of these services occurs on the basis of your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TDDDG. You may revoke your consent at any time.

 

For more information about Google Conversion Tracking, please review Google’s data protection policy at: https://policies.google.com/privacy?hl=en

 

The company is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the US, which is intended to ensure compliance with European data protection standards for data processing in the US. Every company certified under the DPF is obliged to comply with these data protection standards. For more information, please contact the provider under the following link: https://www.dataprivacyframework.gov/participant/5780.

Microsoft Clarity

This website uses Microsoft Clarity. The provider is the Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland, https://learn.microsoft.com/en-us/clarity/faq (hereinafter referred to as “Microsoft Clarity”).

 

Microsoft Clarity is a tool to analyze user patterns on this website. Microsoft Clarity records in particular cursor movements and compiles graphics that show on which parts of the website users are scrolling with great frequency (heatmaps). Microsoft Clarity can also record sessions so that we can watch the use of the site in the form of videos. Moreover, we receive information on the general user conduct within our website.

 

Microsoft Clarity uses technologies that make it possible to recognize users for the purpose of analyzing user patterns (e.g., cookies or use of device fingerprinting). Your personal data will be archived on Microsoft servers (Microsoft Azure Cloud Service) in the United States.

 

If your approval (consent) has been obtained the use of the abovementioned service shall occur on the basis of Art. 6(1)(a) GDPR and § 25 TDDDG (German Telecommunications Act). Such consent may be revoked at any time. If your consent was not obtained, the use of the service will occur on the basis of Art. 6(1)(f) GDPR; the website operator has a legitimate interest in the effective analysis of user patterns.

 

For more details on Microsoft Clarity’s data privacy policy, please see: https://docs.microsoft.com/en-us/clarity/faq.

 

The company is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the US, which is intended to ensure compliance with European data protection standards for data processing in the US. Every company certified under the DPF is obliged to comply with these data protection standards. For more information, please contact the provider under the following link: https://www.dataprivacyframework.gov/participant/6474.

Meta Pixel

To measure conversion rates, this website uses the visitor activity pixel of Meta. The provider of this service is Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland. According to Meta’s statement the collected data will be transferred to the USA and other third-party countries too.

 

This tool allows the tracking of page visitors after they have been linked to the website of the provider after clicking on a Meta ad. This makes it possible to analyze the effectiveness of Meta ads for statistical and market research purposes and to optimize future advertising campaigns.

 

For us as the operators of this website, the collected data is anonymous. We are not in a position to arrive at any conclusions as to the identity of users. However, Meta archives the information and processes it, so that it is possible to make a connection to the respective user profile on Facebook or Instagram and Meta is in a position to use the data for its own promotional purposes in compliance with the Meta Data Usage Policy ( https://www.facebook.com/about/privacy/). This enables Meta to display ads on Facebook or Instagram and other advertising channels. We as the operator of this website have no control over the use of such data.

 

The use of these services occurs on the basis of your consent pursuant to Art. 6(1)(a) GDPR and § 25(1) TDDDG. You may revoke your consent at any time.

 

Insofar as personal data is collected on our website with the help of the tool described here and forwarded to Meta, we and Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland are jointly responsible for this data processing (Art. 26 DSGVO). The joint responsibility is limited exclusively to the collection of the data and its forwarding to Meta. The processing by Meta that takes place after the onward transfer is not part of the joint responsibility. The obligations incumbent on us have been jointly set out in a joint processing agreement. The wording of the agreement can be found under: https://www.facebook.com/legal/controller_addendum. According to this agreement, we are responsible for providing the privacy information when using the Meta tool and for the privacy-secure implementation of the tool on our website. Meta is responsible for the data security of Meta products. You can assert data subject rights (e.g., requests for information) regarding data processed by Facebook or Instagram directly with Meta. If you assert the data subject rights with us, we are obliged to forward them to Meta.

Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://www.facebook.com/legal/EU_data_transfer_addendum and https://de-de.facebook.com/help/566994660333381.

 

In Meta’s Data Privacy Policies, you will find additional information about the protection of your privacy at: https://www.facebook.com/about/privacy/.

 

You also have the option to deactivate the remarketing function “Custom Audiences” in the ad settings section under https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen. To do this, you first have to log into Facebook.

 

If you do not have a Facebook or Instagram account, you can deactivate any user-based advertising by Meta on the website of the European Interactive Digital Advertising Alliance: http://www.youronlinechoices.com/de/praferenzmanagement/.

 

The company is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the US, which is intended to ensure compliance with European data protection standards for data processing in the US. Every company certified under the DPF is obliged to comply with these data protection standards. For more information, please contact the provider under the following link:

https://www.dataprivacyframework.gov/participant/4452.

6.  Newsletter

Newsletter data

If you would like to receive the newsletter offered on the website, we require an e-mail address from you as well as information that allows us to verify that you are the owner of the e-mail address provided and that you agree to receive the newsletter. Further data is not collected or only on a voluntary basis. For the handling of the newsletter, we use newsletter service providers, which are described below.

Mailchimp

This website uses the services of Mailchimp to send out its newsletters. The provider is the Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA.

 

Among other things, Mailchimp is a service that can be deployed to organize and analyze the sending of newsletters. Whenever you enter data for the purpose of subscribing to a newsletter (e.g. your e-mail address), the information is stored on Mailchimp servers in the United States.

 

With the assistance of the Mailchimp tool, we can analyze the performance of our newsletter campaigns. If you open an e-mail that has been sent through the Mailchimp tool, a file that has been integrated into the e- mail (a so-called web-beacon) connects to Mailchimp’s servers in the United States. As a result, it can be determined whether a newsletter message has been opened and which links the recipient possibly clicked on. Technical information is also recorded at that time (e.g. the time of access, the IP address, type of browser and operating system). This information cannot be allocated to the respective newsletter recipient. Their sole purpose is the performance of statistical analyses of newsletter campaigns. The results of such analyses can be used to tailor future newsletters to the interests of their recipients more effectively.

 

If you do not want to permit an analysis by Mailchimp, you must unsubscribe from the newsletter. We provide a link for you to do this in every newsletter message.

 

The data is processed based on your consent (Art. 6(1)(a) GDPR). You may revoke any consent you have given at any time by unsubscribing from the newsletter. This shall be without prejudice to the lawfulness of any data processing transactions that have taken place prior to your revocation.

 

The data deposited with us for the purpose of subscribing to the newsletter will be stored by us until you unsubscribe from the newsletter or the newsletter service provider and deleted from the newsletter distribution list after you unsubscribe from the newsletter. Data stored for other purposes with us remain unaffected.

 

Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here:

https://mailchimp.com/eu-us-data-transfer-statement/ and https://mailchimp.com/legal/data-processing-addendum/#Annex_C_-_Standard_Contractual_Clauses.

 

After you unsubscribe from the newsletter distribution list, your e-mail address may be stored by us or the newsletter service provider in a blacklist, if such action is necessary to prevent future mailings. The data from the blacklist is used only for this purpose and not merged with other data. This serves both your interest and our interest in complying with the legal requirements when sending newsletters (legitimate interest within the meaning of Art. 6(1)(f) GDPR). The storage in the blacklist is indefinite. You may object to the storage if your interests outweigh our legitimate interest.

 

For more details, please consult the Data Privacy Policies of Mailchimp at: https://mailchimp.com/legal/terms/.

 

The company is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the US, which is intended to ensure compliance with European data protection standards for data processing in the US. Every company certified under the DPF is obliged to comply with these data protection standards. For more information, please contact the provider under the following link:

https://www.dataprivacyframework.gov/participant/7693.

7.  Plug-ins and Tools

YouTube

This website embeds videos of the website YouTube. The website operator is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland.

 

If you visit a page on this website into which a YouTube has been embedded, a connection with YouTube’s servers will be established. As a result, the YouTube server will be notified, which of our pages you have visited.

 

Furthermore, YouTube will be able to place various cookies on your device or comparable technologies for recognition (e.g. device fingerprinting). In this way YouTube will be able to obtain information about this website’s visitors. Among other things, this information will be used to generate video statistics with the aim of improving the user friendliness of the site and to prevent attempts to commit fraud. Furthermore, the data collected will be processed in the Google advertising network.

 

If you are logged into your YouTube account while you visit our site, you enable YouTube to directly allocate your browsing patterns to your personal profile. You have the option to prevent this by logging out of your YouTube account.

 

The use of YouTube is based on our interest in presenting our online content in an appealing manner. Pursuant to Art. 6(1)(f) GDPR, this is a legitimate interest. If appropriate consent has been obtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TDDDG, insofar the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) within the meaning of the TDDDG. This consent can be revoked at any time.

 

For more information on how YouTube handles user data, please consult the YouTube Data Privacy Policy under: https://policies.google.com/privacy?hl=en.

 

The company is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the US, which is intended to ensure compliance with European data protection standards for data processing in the US. Every company certified under the DPF is obliged to comply with these data protection standards. For more information, please contact the provider under the following link: https://www.dataprivacyframework.gov/participant/5780.

8. Online-based Audio and Video Conferences

Data processing

We use online conference tools, among other things, for communication with our customers. The tools we use are listed in detail below. If you communicate with us by video or audio conference using the Internet, your personal data will be collected and processed by the provider of the respective conference tool and by us. The conferencing tools collect all information that you provide/access to use the tools (email address and/or your phone number). Furthermore, the conference tools process the duration of the conference, start and end (time) of participation in the conference, number of participants and other “context information” related to the communication process (metadata).

 

Furthermore, the provider of the tool processes all the technical data required for the processing of the online communication. This includes, in particular, IP addresses, MAC addresses, device IDs, device type, operating system type and version, client version, camera type, microphone or loudspeaker and the type of connection.

 

Should content be exchanged, uploaded, or otherwise made available within the tool, it is also stored on the servers of the tool provider. Such content includes, but is not limited to, cloud recordings, chat/ instant messages, voicemail uploaded photos and videos, files, whiteboards, and other information shared while using the service.

 

Please note that we do not have complete influence on the data processing procedures of the tools used. Our possibilities are largely determined by the corporate policy of the respective provider. Further information on data processing by the conference tools can be found in the data protection declarations of the tools used, and which we have listed below this text.

Purpose and legal bases

The conference tools are used to communicate with prospective or existing contractual partners or to offer certain services to our customers (Art. 6(1)(b) GDPR). Furthermore, the use of the tools serves to generally simplify and accelerate communication with us or our company (legitimate interest in the meaning of Art. 6(1)(f) GDPR). Insofar as consent has been requested, the tools in question will be used on the basis of this consent; the consent may be revoked at any time with effect from that date.

Duration of storage

Data collected directly by us via the video and conference tools will be deleted from our systems immediately after you request us to delete it, revoke your consent to storage, or the reason for storing the data no longer applies. Stored cookies remain on your end device until you delete them. Mandatory legal retention periods remain unaffected.

 

We have no influence on the duration of storage of your data that is stored by the operators of the conference tools for their own purposes. For details, please directly contact the operators of the conference tools.

Conference tools used

We employ the following conference tools:

 

Microsoft Teams

 

We use Microsoft Teams. The provider is the Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland. For details on data processing, please refer to the Microsoft Teams privacy policy:

https://privacy.microsoft.com/en-us/privacystatement.

 

The company is certified in accordance with the “EU-US Data Privacy Framework” (DPF). The DPF is an agreement between the European Union and the US, which is intended to ensure compliance with European data protection standards for data processing in the US. Every company certified under the DPF is obliged to comply with these data protection standards. For more information, please contact the provider under the following link:

https://www.dataprivacyframework.gov/participant/6474.

9. Handling applicant data

We offer website visitors the opportunity to submit job applications to us (e.g., via e-mail, by submitting the online job application form). Below, we will brief you on the scope, purpose and use of the personal data collected from you in conjunction with the application process. We assure you that the collection, processing, and use of your data will occur in compliance with the applicable data privacy rights and all other statutory provisions and that your data will always be treated as strictly confidential.

Scope and purpose of the collection of data

If you submit a job application to us, we will process any affiliated personal data (e.g., contact and communications data, application documents, notes taken during job interviews, etc.), if they are required to make a decision concerning the establishment or an employment relationship. The legal grounds for the aforementioned are § 26 BDSG according to German Law (Negotiation of an Employment Relationship), Art. 6(1)(b) GDPR (General Contract Negotiations) and – provided you have given us your consent – Art. 6(1)(a) GDPR. You may revoke any consent given at any time. Within our company, your personal data will only be shared with individuals who are involved in the processing of your job application.

 

If your job application should result in your recruitment, the data you have submitted will be archived on the grounds of § 26 BDSG and Art. 6(1)(b) GDPR for the purpose of implementing the employment relationship in our data processing system.

Data Archiving Period

 If we are unable to make you a job offer or you reject a job offer or withdraw your application, we reserve the right to retain the data you have submitted on the basis of our legitimate interests (Art. 6(1)(f) GDPR) for up to 6 months from the end of the application procedure (rejection or withdrawal of the application).

Afterwards the data will be deleted, and the physical application documents will be destroyed. The storage serves in particular as evidence in the event of a legal dispute. If it is evident that the data will be required after the expiry of the 6-month period (e.g., due to an impending or pending legal dispute), deletion will only take place when the purpose for further storage no longer applies.

 

Longer storage may also take place if you have given your agreement (Article 6(1)(a) GDPR) or if statutory data retention requirements preclude the deletion.

Admission to the applicant pool

If we do not make you a job offer, you may be able to join our applicant pool. In case of admission, all documents and information from the application will be transferred to the applicant pool in order to contact you in case of suitable vacancies.

 

Admission to the applicant pool is based exclusively on your express agreement (Art. 6(1)(a) GDPR). The submission agreement is voluntary and has no relation to the ongoing application procedure. The affected person can revoke his agreement at any time. In this case, the data from the applicant pool will be irrevocably deleted, provided there are no legal reasons for storage.

 

The data from the applicant pool will be irrevocably deleted no later than two years after consent has been granted.

Services

Industries

Company

Career

Scroll To Top

We use cookies to enhance your experience on our website. If you continue browsing or click “Continue without consent”, only technically necessary cookies will be used. By clicking “Accept all cookies”, you also consent to marketing cookies. You can adjust your preferences under “Cookie settings”. Learn more in our Privacy Policy.

Continue without consent
Accept all cookies
Cookie settings