Privacy Policy
Do not hesitate to contact us with any queries.
Registered Company at
Handelsgericht Hamburg
Email : [email protected]
Web: www.you-give.com
1.Introduction
It is very important to us to handle the data of our website visitors and customers with confidence and to protect them in the best possible way. For this reason, we make every effort to comply with the requirements of the GDPR.
Below we explain how we process your data on our website and company. To do this, we use language that is as clear and transparent as possible so that you really understand what happens to your data.
2.General information
2.1 Processing of personal data and other terms
Data protection applies to the processing of personal data. Personal means all data with which you can be personally identified. This is, for example, the IP address of the device (PC, laptop, smartphone, etc.) in front of which you are currently sitting. Such data is processed when 'something happens to it'. Here, for example, the IP is transmitted from the browser to our provider and stored there automatically. This is then a processing (according to Art. 4 No. 2 GDPR) of personal data (according to Art. 4 No. 1 GDPR).
These and other legal definitions can be found in Art. 4 GDPR.
For all Zoho applications we use, including Zoho CRM, Zoho Campaigns, Zoho Meeting, and Zoho WorkDrive, we have activated data storage and processing on EU servers. This means that your personal data is processed and stored within the European Union, ensuring compliance with EU data protection standards.
It's important to note that Zoho maintains an exceptionally high level of protection for its data centers. They employ state-of-the-art security measures, including advanced encryption protocols, multi-factor authentication, and regular security audits. Zoho's data centers are certified with various international security standards, such as ISO 27001, SOC 2, and PCI DSS, demonstrating their commitment to data protection and security.
These measures significantly enhance the security and privacy of your personal data, aligning with the stringent requirements of the GDPR and other applicable data protection regulations.
2.2 Applicable regulations/laws - GDPR, BDSG and TDDDG
The scope of data protection is regulated by laws. In this case, these are the GDPR (General Data Protection Regulation) as a European regulation and the BDSG (Federal Data Protection Act) as a national law. In addition, the TDDDG supplements the provisions of the GDPR as far as the use of cookies is concerned.
2.3 The responsible
The controller within the meaning of the GDPR is responsible for data processing on this website. This is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.
You can reach the person in charge at given contact information above.
2.4 This is how data is basically processed on this website and within our company
As we have already established, there is data (e.g. IP address) that is collected automatically. This data is mainly required for the technical provision of the website. If we also use personal data or collect other data, we will inform you of this or ask for your consent.
Other personal data you share with us knowingly.
Detailed information on this can be found below.
2.5 Your Rights
The GDPR provides you with comprehensive rights. These are, for example, the free information about the origin, recipient and purpose of your stored personal data. In addition, you can request the correction, blocking or deletion of this data or complain to the competent data protection supervisory authority. You can revoke any consent you have given at any time. You can find out in detail what these rights are and how to exercise them in the last section of this Privacy Policy.
2.6 Data protection - Our view
Data protection is more than just a chore for us! Personal data has a great value and mindful handling of this data should be a matter of course in our digitalized world. In addition, you as a website visitor should be able to decide for yourself what "happens" to your data, when and by whom. Therefore, we undertake to comply with all legal provisions, collect only the data necessary for us and, of course, treat them confidentially.
2.7 Disclosure and deletion
The transfer and deletion of data are also important and sensitive topics. Therefore, we would like to briefly inform you in advance about our general approach to this.
A transfer of data only takes place on the basis of a legal basis and only if this is unavoidable. This may be the case in particular if it is a so-called Data Processor and a Data Processing Agreement has been concluded in accordance with Art. 28 GDPR.
We delete your data when the purpose and the legal basis for processing cease to apply and the deletion does not conflict with any other legal obligations. A 'good' overview of this is also provided by Art. 17 GDPR.
For all further information, please refer to this Privacy Policy and contact the responsible person if you have any specific questions.
2.8 Hosting
This website is hosted externally. The personal data collected on this website is stored on the host's servers. This includes the automatically collected and stored log files (see below for more details), as well as all other data provided by website visitors.
External hosting is used for the purpose of secure, fast and reliable provision of our website and in this context serves to fulfill the contract with our potential and existing customers.
The legal basis for the processing is Art. 6 para. 1 lit. a, b and f GDPR, as well as § 25 para. 1 TDDDG, insofar as consent includes the storage of cookies or access to information in the terminal device of the website visitor or user within the meaning of the TDDDG.
Our hoster only processes data that is necessary for the fulfillment of its service obligation and acts as our Data Processor, which means that it is subject to our instructions. We have concluded a corresponding Data Processing Agreement with our hoster.
We use the following hoster:
Zoho Sites
Zoho Corporation Pvt. Ltd, Estancia IT Park, Plot No. 140 151, GST Road, Vallancherry Village, Chengalpattu Taluk, Kanchipuram District 603 202, India.
https://www.zoho.com/de/privacy.html.
https://www.zoho.com/gdpr.html.
2.9 Legal basis
The processing of personal data always requires a legal basis. The GDPR provides for the following possibilities in Art. 6 (1) Sentence 1:
a)The data subject has given his/her consent to the processing of personal data concerning him/her for one or more specific purposes;
b)the processing is necessary for the performance of a contract to which the data subject is party or for the implementation of pre-contractual measures taken at the data subject's request;
c)processing is necessary for compliance with a legal obligation to which the responsible person is subject to;
d)the processing is necessary in order to protect the vital interests of the data subject or another natural person;
e)processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested inthe responsible was transferred;
f)processing is necessary for the purposes of safeguarding the legitimate interests ofof the responsible orof a third party necessary, unless the interests or fundamental rights and freedoms of the data subject which require the protection of personal data override this, in particular where the data subject is a child.
In the following sections, we will provide you with the specific legal basis for the respective processing.
3. What happens on our website
By visiting our website, we process personal data from you.
To protect this data as best as possible against unauthorized access by third parties, we use SSL or TLS encryption. You can recognize this encrypted connection by the fact that a https:// or a lock symbol is displayed in the address bar of your browser.
In the following, you will learn what data is collected when you visit our website, for what purpose this is done and on what legal basis.
3.1 Data collection when calling up the website
By calling up the website, information is automatically stored in so-called server log files. This is the following information:
-Browser type and version
-Operating system used
-Referrer URL
-Host name of the accessing computer
-Time of the server request
-IP address
This data is temporarily required in order to be able to display our website to you permanently and without problems. In particular, this data thus serves the following purposes:
-System security of the website
-System stability of the website
-Website troubleshooting
-Connecting to the website
-Website presentation
The data processing is carried out in accordance with Art. 6 para. 1 lit. f GDPR and is based on our legitimate interest in the processing of this data, in particular the interest in the functionality of the website as well as its security.
If possible, this data is stored pseudonymously and deleted after the respective purpose has been achieved.
Insofar as the server log files allow the identification of the person concerned, the data is stored for a maximum period of 14 days. An exception exists if a security-relevant event occurs. In this case, the server log files are stored until the elimination and final clarification of the security-relevant event.
For the rest, a consolidation with other data does not take place.
3.2 Cookies
3.2.1 General
This website uses so-called cookies. This is a data record, information that is stored in the browser of your terminal device and is related to our website.
By setting cookies, the navigation of the website in particular can be made easier for the visitor.
In our Cookie Consent Tool, you will find all information about the cookies that we have in use on our website (if applicable, after your consent).
3.2.2 Reject cookies
You can manage all cookies that are not technically necessary directly via our cookie consent tool.
The setting of cookies can be prevented by adjusting the settings of your browser.
Here you can find the corresponding links to frequently used browsers:
Mozilla Firefox:https://support.mozilla.org/de/kb/cookies-und-website-daten-in-firefox-loschen?redirectslug=Cookies+l%C3%B6schen&redirectlocale=en
Google Chrome:https://support.google.com/chrome/answer/95647?co=GENIE.Platform%3DDesktop&hl=de
Microsoft Edge:https://support.microsoft.com/de-de/windows/l%C3%B6schen-und-verwalten-von-cookies-168dab11-0753-043d-7c16-ede5947fc64d
Safari:https://support.apple.com/de-de/guide/mdm/mdmf7d5714d4/web andhttps://support.apple.com/de-de/guide/safari/sfri11471/mac.
As far as You use another browser it is recommended to use the name Your browser and 'delete and manage cookies' in a search engine and follow the official link to your browser to follow.
Alternative you can use your Cookie settings also under www.aboutads.info/choices/ or www.youronlinechoices.com to manage your consent.
However, we must inform you that comprehensive blocking/deletion of cookies may lead to impairments in the use of the website.
3.2.3 Technically necessary cookies
We use technically necessary cookies on this website to ensure that our website functions without errors and in accordance with applicable laws. They help to make the website user-friendly. Some functions of our website cannot be displayed without the use of cookies.
The legal basis for this is, depending on the individual case, Art. 6 para. 1 lit. b, c and/or f GDPR.
3.2.4 Technically unnecessary cookies
We also use cookies on our website that are not technically necessary. These cookies are used, among other things, to analyze the surfing behavior of the website visitor or to offer functions of the website that are not technically necessary.
The legal basis for this is your consent pursuant to Art. 6 para. 1 lit. a GDPR.
Technically unnecessary cookies are only set with your consent, which you can revoke at any time in the cookie consent tool.
3.3 Data processing through user input
3.3.1 Own data collection
We offer the following services on our website: Contact, Appointments.
For this purpose, we collect the following data:
Name
E-mail address
Phone number
The legal basis for this data processing is Art. 6 para. 1 lit. b GDPR.
The data will be deleted as soon as the respective purpose ceases to apply and it is possible in accordance with the legal requirements.
3.3.2Contact
a)E-mail
When you contact us by email, we process your email address and any other data contained in the email. This data is stored on the mail server and in some cases on the respective end devices. Depending on the request, the legal basis for this is regularly Art. 6 para. 1 lit. f GDPR or Art. 6 para. 1 lit. b GDPR. The data will be deleted as soon as the respective purpose no longer applies and it is possible in accordance with the legal requirements.
b) Phone
If you contact us by telephone, the call data may be stored pseudonymously on the respective terminal device and with the telecommunications provider used. Personal data collected during the telephone call will only be processed in order to handle your request. Depending on the request, the legal basis for this is regularly Art. 6 para. 1 lit. f GDPR or Art. 6 para. 1 lit. b GDPR. The data will be deleted as soon as the respective purpose ceases to apply and it is possible according to the legal requirements.
c) Contact form
We offer a contact form. This is used to contact our company.
In this form we usually process your first and last name, your telephone number, your e-mail address, a postal address and the content of the message. The data is stored on our web server and forwarded internally to the respective responsible e-mail addresses.
The legal basis for data processing is Art. 6 para. 1 lit. f GDPR, as we have a legitimate interest in responding to your request and in an uncomplicated way of contacting you. If the contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR.
We delete this data no later than 3 months after receipt, unless it is required for a contractual relationship that has arisen.
We bind the contact form of
Zoho One
Zoho Corporation BV, Hoogoorddreef 15, 1101 BA Amsterdam, The Netherlands https://www.zoho.com/de/privacy.html
on our website.
d)Chat
Zoho One
We have integrated the live chat function of the Zoho One support team tool on our website. This service is provided by Zoho Corporation Pvt. Ltd, Estancia IT Park, Plot No. 140 151, GST Road, Vallancherry Village, Chengalpattu Taluk, Kanchipuram District 603 202, India.
With the help of this service, we can enable communication via chat between website visitors and us directly on the website and in this way clarify (pre-)contractual questions and provide advice.
Zoho One uses cookies to recognize the website visitor's Internet browser in order to distinguish individual users of the chat function on our website. The information generated by the cookies (including the IP address) is transmitted to a Zoho server and stored there. The legal basis for this is consent in accordance with Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG. Consent can be revoked at any time.
Otherwise, the legal basis for the processing is Art. 6 para. 1 lit. b. GDPR. Communication via chat serves the fulfillment of our contractual relationship or the initiation of such a relationship by providing advice and answering questions. The data will be deleted as soon as they are no longer necessary for the purpose of collection.
More information:
https://www.zoho.com/de/privacy.html.
https://www.zoho.com/gdpr.html.
e)Chatbot
Zoho One
We use the chatbot service Zoho One on our website, operated by Zoho Corporation BV, Hoogoorddreef 15, 1101 BA Amsterdam, Netherlands. Zoho One enables the implementation and use of chatbots for customer communication and support. When using Zoho One, various personal data are processed, including communication data (such as chat content), contact data (such as name, e-mail address) and technical data (such as IP address, browser type). The purpose of data processing is to improve customer communication, provide support for inquiries and automate customer service processes. The legal basis for data processing is Art. 6 para. 1 lit. b GDPR, as the processing is necessary for the fulfillment of (pre-)contractual measures, as well as Art. 6 para. 1 lit. f GDPR, as we have a legitimate interest in efficient communication with our customers and the automation of service processes. Zoho One sets cookies for the functionality and analysis of the chatbot system. These cookies are set on the basis of Art. 6 para. 1 lit. a GDPR, as they are only used with the consent of the users. Data is transferred to a third country, as the data is also processed in India and the USA. The transfer takes place on the basis of the EU Commission's Standard Contractual Clauses (SCC) to ensure an adequate level of data protection. The data is stored until the purpose of storage no longer applies orthe user requests the deletion. Mandatory statutory retention periods remain unaffected. Further information on data processing can be found here: https://www.zoho.com/de/privacy.html.
f)Appointment tool
We use Zoho Bookings for offering easy appointment bookings with our staff. Further information on data processing can be found here:
https://www.zoho.com/bookings/
3.4 Cookie Consent Tool
3.4.1 Zoho Sites
We are using an integrated Cookie consent management from Zoho Sites. See below for more information.
3.5 Website Builder System
3.5.1 Zoho Sites
We use the Zoho Sites website builder on this website to create our website. This service is provided by Zoho Corporation Pvt. Ltd, Estancia IT Park, Plot No. 140 151, GST Road, Vallancherry Village, Chengalpattu Taluk, Kanchipuram District 603 202, India.
With this service, we can design our website according to our wishes and meet our goal of user-friendliness. The Zoho Sites website builder enables us to create a professional website without any programming knowledge. We can choose from a variety of customizable design templates and web apps that are ideal for our industry.
Zoho Sites uses cookies to track activity on our website and store certain information. These cookies help us to operate the service, store preferences and keep our website secure. The legal basis for technically unnecessary cookies is consent in accordance with Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG. Consent can be revoked at any time.
The service is also technically necessary to display our website. The legal basis for the processing is Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in the presentation and functionality of our website.
Further information on data processing by Zoho Sites:
https://www.zoho.com/de/privacy.html.
https://www.zoho.com/gdpr.html.
3.6 Mailing service
3.6.1 Zoho Campaigns
We use Zoho Campaigns as a mailing service. This service is provided by Zoho Corporation Pvt. Ltd, Estancia IT Park, Plot No. 140 151, GST Road, Vallancherry Village, Chengalpattu Taluk, Kanchipuram District 603 202, India.
This is an e-mail marketing service.
Zoho Campaigns can be used to analyze interactions.
The processing is either based on consent according to Art. 6 para. 1 lit. a GDPR, as far as we use the mailing service to contact our leads. The consent can be revoked at any time.
When sending e-mails for the specific purpose of initiating a contract or in an existing contractual relationship, the legal basis for the processing is Art. 6 (1) lit. b GDPR, as the services used serve customer management and the fulfillment of our contractual performance.
The data will be deleted at the end of the contract between us and Zoho Campaigns.
For data transfers to the USA the Standard Contractual Clauses (SCC) of the EU Commission apply
More details:
https://www.zoho.com/privacy.html
https://www.zoho.com/gdpr.html
https://www.zoho.com/campaigns/features.html.
3.6.2 Zoho CRM
We use Zoho CRM for managing our customer relationships and email communications. This service is provided by Zoho Corporation Pvt. Ltd, Estancia IT Park, Plot No. 140 151, GST Road, Vallancherry Village, Chengalpattu Taluk, Kanchipuram District 603 202, India.
Zoho CRM allows us to store and process customer data, including email addresses and communication history. When you provide us with your email address and consent to receive communications from us, we store this information in Zoho CRM.
For email communications, we rely on your consent as per Art. 6 para. 1 lit. a GDPR. You can withdraw this consent at any time by contacting us or using the unsubscribe link provided in our emails. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
We use Zoho CRM to send you:
Newsletters and marketing communications (if you have explicitly opted in)
Transactional emails related to our services
Important updates about our company or products
Your email address and related data will be stored in Zoho CRM for as long as we have a business relationship with you or until you withdraw your consent. We regularly review our database and remove inactive contacts.
Zoho CRM implements appropriate technical and organizational measures to ensure the security of your data. For data transfers to India and the USA, Zoho uses Standard Contractual Clauses (SCCs) approved by the European Commission.
For more information on data processing by Zoho CRM, please refer to:
https://www.zoho.com/crm/privacy.html
https://www.zoho.com/gdpr.html
3.7 Analysis and tracking tools
3.7.1 Zoho PageSense
We use the functions of Zoho PageSense on this website. This service is provided by Zoho Corporation Pvt. Ltd, Estancia IT Park, Plot No. 140 151, GST Road, Vallancherry Village, Chengalpattu Taluk, Kanchipuram District 603 202, India.
Zoho PageSense offers the possibility of analyzing the general use of the website by means of a heat map and then placing important content in the relevant places on the web pages. No usage or personal data is recorded or stored. Zoho PageSense only records the visit and clicks on this website. It is not possible to draw any conclusions about individual visitors from this.
Cookies are set to create pseudonymized user profiles that enable the user to be recognized across pages for analysis purposes.
The legal basis for the processing is Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG, insofar as this consent includes access to information in the user's terminal device or the storage of cookies within the meaning of the TDDDG.
Otherwise, the use of the service is based on Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in collecting this analysis in order to optimize our website and our advertising.
More information:
https://www.zoho.com/de/privacy.html.
https://www.zoho.com/gdpr.html.
3.8 Social media profiles
In addition to our website, our company is also present on social networks. Here we want to present our company and create the opportunity to get in touch with us.
We also use the opportunity to place advertisements and job advertisements on social media.
In the following, we provide information about what data we and the respective social network process when you visit and interaction with our profile.
3.8.1 LinkedIn
We operate a LinkedIn profile on https://www.linkedin.com/. This social network is operated by LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA.
a)Interaction with our company profile
When you visit our LinkedIn profile and interact with us via it, we process personal data. personal data. On the one hand, the data made publicly available on the profile. On the other hand, we also process the personal data contained in posts, comments or direct messages to us. Through interactions such as liking or sharing, we can see the user profile with the public information.
The legal basis for this processing is Art. 6 para. 1 lit. f GDPR. It is in our legitimate interest interest to provide relevant and interesting content and to enable the use and functionality of our LinkedIn profile
Insofar as an inquiry is related to the fulfillment of a contract or is necessary to carry out pre-contractual measures, our processing is based on Art. 6 para. 1 lit. b GDPR.
b)Page Insights
LinkedIn provides us with aggregated statistics and insights (called Page Insights) that tell us how people interact with our Company Page. Among other things, we receive information about the number of profiles that view, comment on or otherwise interact with our posts, as well as aggregated demographic and other information that helps us learn about the interaction with our page or LinkedIn profile. Pages Insights provided to us by LinkedIn consist of aggregated data, and LinkedIn does not provide us with any personally identifiable information about members in relation to Page Insights. We also have no way of linking Page Insights to individual members.
When placing ads, LinkedIn provides us with information about the types of people who see our ads and about the success of our ads. Personal data is only passed on to us if this person has consented to such processing. We also receive information from LinkedIn that allows us to understand which of our ads led to a purchase being made or an action being taken.
The purpose of processing this data is to analyze our reach and to adapt our content and advertisements to user interests. By evaluating this data, we can recognize how our content, our profile and our advertising are consumed. This enables us to create target group-specific content and place advertisements in order to better market our company and our services.
The processing is based on our legitimate interest in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR.
When processing personal data in the course of the so-called Page Insights, the processing is carried out in joint responsibility with LinkedIn in accordance with Art. 26 para. 1 GDPR.
To this end, we have entered into a corresponding agreement with LinkedIn, which is available here (https://legal.linkedin.com/pages-joint-controller-addendum) can be viewed.
The contact details of LinkedIn are:
LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland.
For LinkedIn, you can contact the data protection officer at the following link:
https://www.linkedin.com/help/linkedin/ask/TSO-DPO.
3.8.2 Processing by LinkedIn
In connection with your visit to our company profile, LinkedIn may also process additional personal data. In this case, the processing is carried out under the sole responsibility of LinkedIn and without our knowledge. You can find more information from LinkedIn on this at: https://de.linkedin.com/legal/privacy-policy.
3.9 Facebook
We operate a Facebook fan page at https://www.facebook.com/. This social network is operated by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
3.9.1 Interaction with our company profile
When you visit our Facebook profile and interact with us via it, we process personal data. On the one hand, the data made publicly available on the profile. On the other hand, we also process the personal data contained in posts, comments or direct messages to us. Through interactions such as liking or sharing, we can see the user profile with the public information.
The legal basis for this processing is Art. 6 para. 1 lit. f GDPR. It is in our legitimate interest to provide relevant and interesting content and to enable the use and functionality of our Facebook profile.
Insofar as an inquiry is related to the performance of a contract or is necessary for the implementation of pre-contractual measures, our processing is based on Art. 6 para. 1 lit. b GDPR.
3.9.2 Page Insights
As explained in the Meta Privacy Policy under "How do we use your information?" (Meta also collects and uses information to provide analytics services, known as Page Insights, for site operators. This also applies to our Facebook page.
Page insights are summarized statistics that are created based on certain interactions of visitors with pages and the content associated with them (e.g. viewing a page or a video, subscribing to a page, marking a page with "Like" or "No longer like", etc.) and are logged by the meta servers.
In connection with the Page Insights, Meta provides us with summarized statistics and insights that give us information about how people interact with our company website. We do not have access to any personal data, only to the summarized Page Insights. With the help of Page Insights, we can view anonymous statistics, e.g. the reach of our account, page views, likes, etc.. These also contain evaluations according to the age, gender and location of the users (as specified by them in their respective Facebook profiles). To evaluate the reach, we can make settings or set appropriate filters with regard to the selection of a time period, the viewing of a specific post and demographic groupings. This data is anonymized. It is not possible for us to draw conclusions about specific individuals.
The purpose of processing this data is to analyze our reach and adapt our content and advertisements to user interests so that visitors can derive the greatest possible benefit from them. By evaluating this data, we can recognize how our content, our profile and our advertising are consumed. This enables us to create target group-specific content and place advertisements in order to better market our company and our services.
The processing is based on our legitimate interest in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR.
When processing personal data in the course of the so-called Page Insights, we are jointly responsible with Facebook in accordance with Art. 26 para. 1 GDPR.
We have concluded a corresponding agreement with Facebook for this purpose, which can be viewed here (https://www.facebook.com/legal/terms/page_controller_addendum).
The contact details for Facebook are:
Online contact: https://www.facebook.com/help/contact/1650115808681298
Postal: Meta Platforms Ireland Limited, ATTN: Privacy Operations, Merrion Road, Dublin 4, D04 X2K5, Ireland.
For Facebook, you can contact the data protection officer at the following link:
https://www.facebook.com/help/contact/540977946302970.
Further information about the Page Insights:
https://de-de.facebook.com/legal/terms/page_cntroller_addendum
3.9.3 Processing of personal data and cookies by Meta
When you access a Facebook page, the IP address assigned to your end device is transmitted to Facebook. According to Facebook, this IP address is anonymized (for "German" IP addresses). Facebook also stores information about the end devices of its users (e.g. as part of the "login notification" function); Facebook may thus be able to assign IP addresses to individual users. If you are currently logged in to Facebook as a user, a cookie with your Facebook ID is stored on your device. This enables Facebook to track that you have visited this page and how you have used it. Facebook buttons integrated into websites enable Facebook to record your visits to these websites and assign them to your Facebook profile. This data can be used to tailor content or advertising to you.
Information on how personal data can be managed or deleted can be found in Facebook's Privacy Center:
https://www.facebook.com/privacy/center/.
Further information on the handling of data by Facebook can be found here:
http://de-de.facebook.com/about/privacy.
3.10 Instagram
We operate an Instagram profile. This social media platform is offered by Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.
3.10.1 Interaction with our company profile
When you visit our Instagram profile and interact with us, we process personal data. On the one hand, the data made publicly available on the profile. On the other hand, we also process the personal data contained in posts, comments or direct messages to us. Through interactions such as liking or sharing, we can see the user profile with the public information.
The legal basis for this processing is Art. 6 para. 1 lit. f GDPR. It is in our legitimate interest to provide relevant and interesting content and to enable the use and functionality of our Instagram profile.
Insofar as an inquiry is related to the performance of a contract or is necessary for the implementation of pre-contractual measures, our processing is based on Art. 6 para. 1 lit. b GDPR.
3.10.2 Insights
As explained in the Meta Privacy Policy under "How do we use your information?" (https://privacycenter.instagram.com/policy/?entry_point=ig_help_center_data_policy_redirect), Meta also collects and uses information to provide analytics services, known as insights, for site operators. This also applies to our Instagram profile.
Insights are summarized statistics that are created based on certain interactions of visitors with pages and the content associated with them and are logged by the meta servers. This includes the following information, among others
-How many people see and interact with our products, services or content, such as posts, videos, Instagram pages, listings, stores and advertisements (if the advertisement is shown on meta-products);
-How people interact with our content, websites, apps and services;
-Which group of people interact with our content and which group of people use our services.
Meta provides us with summarized reports and insights that tell us how well our content, features, products and services are performing.
We do not receive access to personal data, but only to the summarized reports.
To evaluate the reach, we can make settings or set appropriate filters with regard to the selection of a time period, the viewing of a specific post and demographic groupings. This data is anonymized. It is not possible for us to draw conclusions about specific individuals.
The purpose of processing this data is to analyze our reach and adapt our content and advertisements to user interests so that visitors can derive the greatest possible benefit from them. By evaluating this data, we can recognize how our content, our profile and our advertising are consumed. This enables us to create target group-specific content and place advertisements in order to better market our company and our services.
The processing is based on our legitimate interest in accordance with Art. 6 para. 1 sentence 1 lit. f GDPR.
When processing personal data in the course of the so-called Insights, the processing is carried out under joint responsibility with Meta in accordance with Art. 26 para. 1 GDPR.
We have concluded a corresponding agreement with Meta, which can be viewed here (https://www.facebook.com/legal/terms/page_controller_addendum.).
Meta's contact details are as follows:
Online contact: https://www.facebook.com/help/contact/1650115808681298
Postal: Meta Platforms Ireland Limited, ATTN: Privacy Operations, Merrion Road, Dublin 4, D04 X2K5, Ireland.
For Instagram, you can contact the data protection officer at the following link:
https://www.facebook.com/help/contact/540977946302970.
Further information about the Insights:
https://de-de.facebook.com/help/pages/insights.
You can find Instagram's full privacy policy here:
https://privacycenter.instagram.com/policy/?entry_point=ig_help_center_data_policy_redirect
Processing of personal data and cookies by Meta
When you access an Instagram page, the IP address assigned to your device is transmitted to Meta. According to Meta, this IP address is anonymized (for "German" IP addresses). Meta also stores information about the end devices of its users (e.g. as part of the "login notification" function); Meta may thus be able to assign IP addresses to individual users. If you are currently logged in to Instagram as a user, a cookie with your Instagram ID is stored on your device. This enables Meta to track that you have visited this page and how you have used it. Meta buttons integrated into websites enable Meta to record your visits to these websites and assign them to your Instagram profile. This data can be used to tailor content or advertising to you.
Further information:
https://privacycenter.instagram.com/policy/?entry_point=ig_help_center_data_policy_redirect.
3.11 Third-party content
3.11.1 Google reCAPTCHA
This website may use Google reCAPTCHA to prevent spam and misuse of our online offers. Google reCAPTCHA is a plugin offered by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
The service makes it possible to determine whether a data entry is made by a human or by an automated program. This analysis begins automatically in the background as soon as the website is entered. For this purpose, various information is collected, which is transmitted to Google. There is no indication of this analysis.
The legal basis for the processing is Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TDDDG. Consent can be revoked at any time.
More details:
https://policies.google.com/privacy?hl=de
https://policies.google.com/terms?hl=de.
3.11.2 Cloudflare DNS
We use the Cloudflare DNS service. This service is offered by Cloudflare Germany GmbH, Rosental 7, c/o Mindspace, 80331 Munich.
Cloudflare DNS provides protection against DDoS attacks and bot attacks and helps improve the security and performance of websites through global caching and a range of optimization features. For this purpose, Cloudflare receives data on the website accessed, the browser type used, the operating system, the referrer URL, the IP address and the requesting provider.
We obtain consent to collect this data. The legal basis is then Art. 6 para. 1 lit. a GDPR. This consent can be revoked at any time.
Otherwise, the legal basis for the processing of personal data is Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in optimizing and securing the content on our website in order to effectively protect ourselves against DDoS attacks and bot attacks.
More information:
https://www.cloudflare.com/de-de/trust-hub/gdpr/.
https://www.cloudflare.com/de-de/privacypolicy/.
3.12 Audio and video conferencing
3.12.1 Zoho Meeting
We use Zoho Meeting for audio and video conferencing. This service is provided by Zoho Corporation Pvt. Ltd, Estancia IT Park, Plot No. 140 151, GST Road, Vallancherry Village, Chengalpattu Taluk, Kanchipuram District 603 202, India.
Zoho Meeting enables us to conduct online meetings, webinars, and video conferences. When you participate in a Zoho Meeting session, various types of data may be processed, including your name, email address, IP address, audio and video data, chat messages, and any shared screen content.
The purpose of this data processing is to facilitate the online meeting or webinar and to improve our communication with clients, partners, and team members. The legal basis for processing this data is Art. 6 para. 1 lit. b GDPR when the use is necessary for the performance of a contract, and Art. 6 para. 1 lit. f GDPR based on our legitimate interest in effective business communication.
Please note that data may be transferred to India and the USA. Zoho implements appropriate safeguards, including Standard Contractual Clauses, to ensure an adequate level of data protection for international transfers.
For more information on data processing by Zoho Meeting, please refer to:
https://www.zoho.com/meeting/privacy.html
https://www.zoho.com/gdpr.html
3.13 CRM systems
3.14 Zoho CRM
We use the CRM system Zoho CRM. This service is provided by Zoho Corporation Pvt. Ltd, Estancia IT Park, Plot No. 140 151, GST Road, Vallancherry Village, Chengalpattu Taluk, Kanchipuram District 603 202, India.
CRM (Customer Relationship Management) is a system for managing all of a company's interactions and relationships with its current and potential customers. It supports the automation and optimization of sales processes, marketing campaigns, customer service and customer communication.
As soon as we collect your personal data on our website, we process it in the CRM system Zoho CRM.
The legal basis for this is Art. 6 para. 1 lit. b GDPR. Data processing is carried out to fulfill (pre-)contractual obligations.
Further information:
https://www.zoho.com/de/privacy.html.
https://www.zoho.com/gdpr.html.
3.15 Cloud backups
We use cloud backup functions on our website and company systems to safeguard data and content against loss, corruption, or security incidents. This measure ensures rapid and comprehensive restoration of relevant services in case of server failures, cyberattacks, or other unforeseen events.
When personal data is stored, it is transferred to the servers of our backup service provider during the backup process. The legal basis for this data processing is Art. 6 para. 1 lit. f GDPR, as we have a legitimate interest in securing our data and maintaining business continuity.
For our cloud backup services, we employ:
Zoho WorkDrive
Zoho Corporation Pvt. Ltd.
Estancia IT Park, Plot No. 140 & 151, GST Road
Vallancherry Village, Chengalpattu Taluk
Kanchipuram District 603 202, India
Zoho WorkDrive provides secure cloud storage and backup solutions. Data transferred to Zoho's servers may be processed in India, the European Union, and the United States. Zoho implements appropriate safeguards, including Standard Contractual Clauses, to ensure an adequate level of data protection for international transfers.
The retention period for backups is determined by our data retention policies and legal requirements. We regularly review and update our backup procedures to ensure optimal data protection and compliance with data protection regulations.
For more information on data processing by Zoho WorkDrive, please refer to:
https://www.zoho.com/workdrive/privacy.html
https://www.zoho.com/gdpr.html
4. This is also important
Finally, we would like to inform you in detail about your rights and how you will be informed about changes in data protection requirements.
4.1 Your Rights in detail
4.1.1 Right to information according to Art. 15 GDPR
You can request information about whether personal data about you is being processed. If this is the case, you can request further information on the type and manner of processing. A detailed list can be found in Art. 15 (1) lit. a to h GDPR.
4.1.2 Right to rectification according to Art. 16 GDPR
This right includes the correction of inaccurate data and the completion of incomplete personal data.
4.1.3 Right to deletion according to Art. 17 GDPR
This so-called 'right to be forgotten' gives you the right, under certain conditions, to request the deletion of personal data by the controller. This is generally the case if the purpose of the data processing has ceased to exist, if consent has been revoked or if the initial processing took place without a legal basis. A detailed list of reasons can be found in Art. 17 (1) a to f GDPR. Furthermore, this "right to be forgotten" corresponds with the obligation of the controller under Art. 17 (2) GDPR to take appropriate measures to bring about a general erasure of the data.
4.1.4 Right to restriction of processing according to Art. 18 GDPR
This right is subject to the conditions set out in Art. 18(1)(a) to (d).
4.1.5 Right to data portability according to Art. 20 GDPR
Here, the basic right to receive one's own data in a common form and to transfer it to another data controller is regulated. However, this only applies to data processed on the basis of consent or a contract pursuant to Art. 20 (1) (a) and (b) and to the extent that this is technically feasible.
4.1.6 Right of objection according to Art. 21 GDPR
In principle, you can object to the processing of your personal data. This applies in particular if your interest in objecting outweighs the legitimate interest of the controller in the processing and if the processing relates to direct marketing and or profiling.
4.1.7 Right to "decision in individual cases" according to Art. 22 GDPR
In principle, you have the right not to be subject to a decision based solely on automated processing (including profiling) which produces legal effects concerning you or similarly significantly affects you. However, this right is also subject to limitations and supplements in Art. 22 (2) and (4) GDPR.
4.1.8 Other rights
The GDPR contains comprehensive rights to inform third parties about whether or how you have asserted rights under Art. 16, 17, 18 GDPR. However, this only applies insofar as this is possible or feasible with reasonable effort.
We would like to take this opportunity to once again inform you of your right to withdraw your consent in accordance with Article 7 (3) of the GDPR. However, this does not affect the lawfulness of the processing carried out up to that point.
In addition, we would also like to inform you about your rights according to §§ 32 ff. BDSG, which, however, are largely congruent with the rights just described.
4.1.9 Right of appeal according to Art. 77 GDPR
You also have the right to lodge a complaint with a data protection supervisory authority if you consider that the processing of personal data relating to you infringes this Regulation.
