Privacy policy
Status 12.07.2024
Who we are
The controller within the meaning of the General Data Protection Regulation (GDPR) and other
data protection regulations is:
iSYS Software GmbH
Grillparzerstraße 10
81675 Munich, Germany
+49 (89) 46 23 28 0
info@isys.de
www.isys.de
Contacting the data protection officer
The data protection officer of the controller is
DataCo GmbH
Nymphenburger Str. 86
80636 München
Germany
+49 89 7400 45840
www.dataguard.de
On this page we inform you about the processing of your personal data on the website.
How we collect and use your personal data depends on how you interact with us or which services you use. We will only collect, use or share your personal data where we have a legitimate purpose and legal basis for doing so.
What do we mean by legal basis?
Consent (Art. 6 para. 1 sentence 1 lit. a GDPR)- You have given us your consent to process your personal data for the specific purpose we have explained to you. You have the right to withdraw your consent at any time. For more information on how you can withdraw your consent, please refer to the subsections ‘Exercising your rights’ in the following sections of this Privacy Policy.
Contract (Art. 6 para. 1 sentence 1 lit. b GDPR) – We need to use your data to fulfil a contract you have with us. Alternatively, it is necessary to use your data because we have asked you to do so or you have taken certain steps yourself before entering into this contract.
Legal obligation (Art. 6 para. 1 sentence 1 lit. c GDPR) – We must use your data to comply with the law.
Vital interests (Art. 6 para. 1 sentence 1 lit. d GDPR) – The processing of your data is necessary to protect your vital interests or those of another person. For example, to protect you from serious physical harm.
Public task (Art. 6 para. 1 sentence 1 lit. e GDPR) – The processing of your data is necessary for the performance of a task carried out in the public interest or because it is covered by a task defined by law, e.g. for a statutory function.
Legitimate interests (Art. 6 para. 1 sentence 1 lit. f GDPR) – The processing of your data is necessary to support a legitimate interest that we or another party have, only if your own interests do not prevail.
Please note that we may not be able to provide you with our website services if your data is processed to fulfil a contract or a legal obligation and you do not provide the requested data.
Data sharing and international transfer
As explained in this Privacy Policy, we use various service providers to help us provide our services and ensure the security of your data. When we use these service providers, it is necessary for us to share your personal data with them.
We have concluded agreements with all service providers to whom we pass on your data, obliging them to protect your data.
If your personal data is transferred outside the EU, we will ensure that your personal data receives an equivalent level of protection, either because the country to which your data is transferred has an ‘adequate’ standard of data protection as defined by the European Commission, or by applying another safeguard, such as an enhanced contractual arrangement, i.e. the Standard Contractual Clauses (SCCs) adopted by the European Commission.
For example, when we use US service providers, we rely on either the SCC or the EU-US Data Privacy Framework, depending on the provider. You can request a copy of the SCCs we have entered into with our service providers
service providers by sending an email to the email address provided in this Privacy Policy.
Your rights
If your personal data is processed, you are a data subject within the meaning of the GDPR and you have the following rights vis-à-vis the controller:
1. The right to information (Art. 15 GDPR)
You have the right to obtain from us confirmation as to whether or not personal data concerning you are being processed, and, where that is the case, access to the personal data and the following information:
- Purposes of processing
- Categories of personal data
- Recipients or categories of recipients
- Planned storage duration or the criteria for determining this duration
- The existence of the rights to rectification, erasure, restriction or objection
- Right to lodge a complaint with the competent supervisory authority
- If applicable, origin of the data (if collected from a third party)
- If applicable, the existence of automated decision-making, including profiling, with meaningful
- information about the logic involved, the scope and the expected effects
- If applicable, transfer of personal data to a third country or international organisation
2. Right to rectification (Art. 16 GDPR)
If your personal data is incorrect or incomplete, you have the right to request immediate correction or completion of the personal data.
3. Right to restriction of processing (Art. 18 GDPR)
If one of the following conditions is met, you have the right to request that the processing of your personal data be restricted:
- You contest the accuracy of your personal data for a period enabling us to verify the accuracy of the personal data.
- In the case of unlawful processing, you oppose the erasure of the personal data and request the restriction of their use instead.
- We no longer need your personal data for the purposes of the processing, but you require your personal data for the establishment, exercise or defence of legal claims, or
- after you have lodged an objection to the processing, for the duration of the examination as to whether our legitimate reasons outweigh your reasons.
4. Right to erasure (‘right to be forgotten’) (Art. 17 GDPR)
If one of the following reasons applies, you have the right to demand that your personal data be deleted immediately:
- Your data are no longer necessary for the processing purposes for which they were originally collected.
- You withdraw your consent and there is no other legal basis for the processing.
- You object to the processing and there are no overriding legitimate grounds for the processing or you object pursuant to Art. 21 (2) GDPR.
- Your personal data is processed unlawfully.
- The deletion is necessary to fulfil a legal obligation under Union law or the law of the member state to which we are subject.
- The personal data was collected in relation to information society services offered in accordance with Article 8 (1) GDPR.
Please note that the above reasons do not apply if the processing is necessary:
- To exercise the right to freedom of expression and information;
- For compliance with a legal obligation or for the performance of a task carried out in the public interest to which we are subject.
- For reasons of public interest in the area of public health.
- For archiving purposes in the public interest, scientific or historical research purposes or statistical purposes.
- For the establishment, exercise or defence of legal claims.
5. Right to data portability (Art. 20 GDPR)
You have the right to receive your personal data in a structured, commonly used and machine-readable format or to request that it be transmitted to another controller.
6. Right to object to certain data processing (Art. 21 GDPR)
You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (e) or (f) of Article 6(1) GDPR. This also applies to profiling based on these provisions.
If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such marketing, which includes profiling to the extent that it is related to such direct marketing.
7. Right to lodge a complaint with a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority if you consider that the processing of personal data relating to you infringes the GDPR.
The supervisory authority with which the complaint has been lodged shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.
A list of the locally competent supervisory authorities in Germany can be found on the website of the Federal Commissioner for Data Protection under the following link
https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html
Provision of the website and creation of log files
1. Description and scope of data processing
Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer.
The following data is collected:
- Information about the browser type and version used
- The user’s operating system
- The user’s internet service provider
- Date and time of access
- Websites from which the user’s system accesses our website
- Websites that are accessed by the user’s system via our website
This data is stored in the log files of our system.
This data is not stored together with other personal data of the user.
2. Purposes of data processing
Temporary storage of the IP address by the system is necessary to enable delivery of the website to the user’s computer. For this purpose, the user’s IP address must remain stored for the duration of the session.
The data is stored in log files to ensure the functionality of the website. We also use the data to optimise the website and to ensure the security of our information technology systems. The data is not analysed for marketing purposes in this context.
3. Legal basis for data processing
Rechtsgrundlage für die vorübergehende Speicherung der Daten und der Logfiles ist Art. 6 Abs. 1 S. 1 lit. f DSGVO.
4. Duration of storage
The data is deleted as soon as it is no longer required to fulfil the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.
If the data is stored in log files, this is the case after seven days at the latest. Storage beyond this period is possible. In this case, the IP addresses of the users are deleted or anonymised so that it is no longer possible to identify the accessing client.
5. Exercise your rights
The collection of data for the provision of the website and the storage of data in log files is absolutely necessary for the operation of the website. The user can object to this. Whether the objection is successful must be determined as part of a balancing of interests.
Use of cookies
1. Description and scope of data processing
When you visit our website, we use technical aids for various functions, in particular cookies, which can be stored on your end device. When you access our website and at any time thereafter, you have the choice of whether you generally allow cookies to be set or which individual additional functions you would like to select. You can make changes in your browser settings or via our Consent Manager.
Cookies are text files or information in a database that are stored on your hard drive and assigned to the browser you are using so that certain information can flow to the organisation that sets the cookie. Below we describe the type of cookies we use:
We use technically necessary cookies that are required for the technical structure of the website. Without these cookies, our website cannot be displayed (completely correctly) or the support functions are not possible.
The following data is stored and transmitted by the technically necessary cookies:
- Saves the settings of the visitors selected in the Cookie Box of Borlabs Cookie.
We use cookies on our website that are not technically necessary. Cookies that are not technically necessary are text files that are not only used for the functionality of the website, but also collect other data.
By setting technically unnecessary cookies, the following data is processed:
- IP address
- Date and time the website was accessed
- Tracking of the surfing behaviour
- Linking the website visit with other social media platforms
2. Purpose of data processing
The purpose of using technically necessary cookies is to ensure the functionality of our website. Some functions of our website cannot be offered without the use of cookies. For these, it is necessary for the browser to be recognised even after a page change.
We require the technically necessary cookies for the following applications:
- Saves the settings of the visitors selected in the Cookie Box of Borlabs Cookie.
Cookies that are not technically necessary are used for the purpose of improving the quality of our website, its content and thus our reach and efficiency. By setting these cookies, we learn how the website is used and can thus constantly optimise our offer. In particular, these cookies serve the following purposes:
These cookies are used for website analysis and tracking as well as to unblock social media content.
3. Legal basis for data processing
The provisions of the Telecommunications Telemedia Data Protection Act (TDDDG) apply to the storage of information in the end user’s terminal equipment and/or access to information already stored in the end user’s terminal equipment. If the setting and reading of cookies is technically necessary, this is done to ensure the functionality of our website. In this case, cookies are stored and accessed on your terminal equipment on the basis of Section 25 (2) No. 2 TDDDG. This storage and access to the information in your end device serves to make it easier for you to use our website and to be able to offer you our services as you have requested. Some functions of our website do not work without the use of these cookies and could therefore not be offered. The cookies are generally deleted after the end of the session (e.g. logging out or closing the browser) or after the expiry of a specified period. Information on different storage periods for cookies can be found in the following sections of this privacy policy.
Insofar as cookies are used that are not technically necessary, this is done on the basis of your express consent, which you can give via the cookie banner. In this case, the basis for storing and accessing information is Section 25 (1) TDDDG in conjunction with Art. 6 (1) (a), Art. 7 GDPR. Art. 6 para. 1 lit. a), Art. 7 GDPR. You can revoke your consent at any time with effect for the future or subsequently grant it again by configuring your cookie settings accordingly. Alternatively, you can prevent the storage of cookies by making the appropriate settings in your browser software. Please note that the browser settings you make only apply to the browser you are using. If personal data is processed following the storage of and access to the information on your end device, the provisions of the GDPR apply. You can find information on this in the following sections
of this privacy policy.
4. Exercise your rights
You can revoke your consent to the use of cookies at any time and manage your
manage your consent preferences under the following link: You can withdraw/manage your consent at any time by clicking the following button:
[borlabs-cookie type=”btn-cookie-preference” title=”Cookie Einstellungen”/]
E-Mail contact
1. Description and scope of data processing
It is possible to contact us via the email address provided on our website. In this case, the user’s personal data transmitted with the email will be stored.
The data is used exclusively for processing the conversation.
2. Purpose of data processing
In the case of contact by e-mail, this also constitutes the necessary legitimate interest in the processing of the data.
3. Legal basis for data processing
The legal basis for the processing of data transmitted in the course of sending an e-mail is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is to answer your enquiry that you send by email in the best possible way.
If the e-mail contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR.
4. Duration of storage
The data is deleted as soon as it is no longer required to fulfil the purpose for which it was collected. For personal data sent by email, this is the case when the respective conversation with the user has ended. The conversation is ended when it can be inferred from the circumstances that the matter in question has been conclusively clarified.
The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.
5. Exercise your rights
If the user contacts us by email, they can object to the storage of their personal data at any time. In such a case, the conversation cannot be continued.
All personal data stored in the course of contacting us will be deleted in this case.
Contact form
1. Description and scope of data processing
There is a contact form on our website that can be used to contact us electronically. If a user makes use of this option, the data entered in the input mask will be transmitted to us and stored.
The following data is stored when the message is sent:
- E-mail address
- Last name
- First name
- IP address of the accessing computer
- Date and time
- Operation system
2. Purpose of data processing
The processing of personal data from the input mask of the contact form or via the e-mail address provided serves us solely to process the contact.
The other personal data processed during the sending process is used to prevent misuse of the contact form and to ensure the security of our information technology systems.
3. Legal basis for data processing
The legal basis for the processing of data transmitted in the course of sending an email is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest is to answer your enquiry that you send to us via the contact form in the best possible way. If the e-mail contact is aimed at concluding a contract, the additional legal basis for the processing is Art. 6 para. 1 sentence 1 lit. b GDPR.
4. duration of storage
The data is deleted as soon as it is no longer required to fulfil the purpose for which it was collected. For the personal data from the input screen of the contact form and those sent by email, this is the case when the respective conversation with the user has ended. The conversation is ended when it can be inferred from the circumstances that the matter in question has been conclusively clarified.
The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.
5. exercise your rights
If the user contacts us via the input mask in the contact form, he can object to the storage of his personal data at any time in the following way:
To revoke your consent, please contact datenschutz@isys.de
All personal data stored in the course of contacting us will be deleted in this case.
Download of selected documents with contact details
1. Description and scope of data processing
Users can access various documents (e.g. white papers) on our website, provided the user leaves their contact details. If a user makes use of this option, the data entered in the input mask will be transmitted to us and stored.
The following data is stored at the time the message is sent:
- E-mail address
- Last name
- First name
- IP address of the accessing computer
- Date and time
- Operation system
2. Purpose of data processing
We use the processing of the personal data from the input screen and the e-mail address provided to contact you for sales purposes. In addition, we inform the user about news about iSYS (e.g. events, webinars, etc.).
The other personal data processed during the sending process is used to prevent misuse of the registration form and to ensure the security of our information technology systems.
3. Legal basis for data processing
The legal basis for the processing of users’ personal data is the user’s consent in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.
4. Duration of storage
Your personal information will be stored for as long as necessary to fulfil the purposes described in this Privacy Policy or as permitted by law.
5. Exercise your rights
You have the right to revoke your declaration of consent under data protection law at any time. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
To withdraw your consent, please contact info@isys.de
All personal data stored in the course of contacting us will be deleted in this case.
Application by E-mail and application form
There is an application form on our website that can be used for electronic applications. If an applicant makes use of this option, the data entered in the input mask will be transmitted to us and stored. These data are
- Salutation
- Surname
- First name
- Your address
- Telephone / mobile phone number
- E-mail address
- Salary expectations
- Details of education and schooling
- Language skills
- Curriculum vitae
- Certificates
- photo
Alternatively, you can also send us your application by e-mail. In this case, we will record your e-mail address and the data you provide in the e-mail.
After sending your application, you will receive an e-mail from us confirming receipt of your application documents.
Your data will not be passed on to third parties. The data will be used exclusively for processing your application.
2. Purpose of data processing
The processing of personal data from the application form is solely for the purpose of processing your application. If you contact us by email, this also constitutes the necessary legitimate interest in processing the data.
The other personal data processed during the sending process serves to prevent misuse of the application form and to ensure the security of our information technology systems.
3. Legal basis for data processing
The legal basis for the processing of your data is the initiation of a contract at the request of the data subject, Art. 6 para. 1 sentence 1 lit. b Alt. 1 GDPR and § 26 para. 1 sentence 1 BDSG.
4. Duration of storage
After completion of the application process, the data will be stored for up to 6 months. Your data will be deleted after 6 months at the latest. In the event of a legal obligation, the data will be stored in accordance with the applicable regulations.
The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.
Hosting
The website is hosted on our own servers. Third parties do not have access to server log files.
The servers automatically collect and store information in so-called server log files, which your browser automatically transmits when you visit the website. The information stored is
- Information about the browser type and version used
- The user’s operating system
- The user’s internet service provider
- Date and time of access
- Websites from which the user’s system accesses our website
- Websites that are accessed by the user’s system via our website
This data is not merged with other data sources. This data is collected on the basis of Art. 6 para. 1 lit. f GDPR. Our legitimate interest in processing this data is to display our website without errors and to optimise its functions.
The website server is geographically located in Germany.
Content delivery networks
jsDelivr CDN
1. Description and scope of data processing
On our website, we use functions of the Content Delivery Network jsDelivr CDN of the provider Volentio JSD Limited, Suite 2a1, Northside House, Mount Pleasant, Barnet, England, EN4 9EB. A content delivery network (CDN) is a network of regionally distributed servers connected via the Internet, which are used to deliver content – especially large media files such as videos. jsDelivr CDN offers web optimisation and security services that we use.
optimisation and security services that we use to improve the loading times of our website and to protect it from misuse. When you visit our website, a connection is established to the jsDelivr CDN servers, e.g. to retrieve content. This allows personal data to be stored and analysed in server log files, in particular the user’s activity (in particular which pages have been visited) and device and browser information (in particular the IP address and operating system).
2. Purpose of data processing
The functions of jsDelivr CDN are used to deliver and accelerate online applications and content.
3. Legal basis for data processing
This data is collected on the basis of Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in the technically error-free presentation and optimisation of its website – the server log files must be recorded for this purpose.
4. Duration of storage
Your personal information will be stored for as long as necessary to fulfil the purposes described in this privacy policy or as required by law.
5. Exercise your rights
Information on exercising your rights against jsDelivr CDN can be found at:
https://www.jsdelivr.com/terms/privacy-policy.
Integrated third-party services
We use various service providers to provide the services we offer on the Website.
In general, we have a legitimate interest in sharing your data with the relevant service providers if these services are essential for the provision of the basic service offered on the website in order to provide the relevant website service.
If such services are required for additional services, extended functions or additional purposes, your personal data will only be shared with service providers if you give your consent.
Here you can withdraw your consent to the use of integrated third-party services at any time and manage your consent settings: You can withdraw/manage your consent at any time by clicking on the button in the bottom left-hand corner of the website.
Use of Google Analytics 4 (GA 4)
1 Scope of the processing of personal data
We use Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (hereinafter: Google).
Among other things, Google Analytics analyses how website visitors use our website. Google places cookies on your end device. During the visit, user behaviour is recorded in the form of ‘events’. This allows personal data to be stored and analysed, including
- First visit to the website
- Interaction with the website, usage path
- Clicks on external links
- Video usage
- File downloads
- Advertising impressions and clicks
- Scrolling behaviour (if to the end of the page)
- Searches on the website
- Language selection
- Page visits
- Location (region)
- Your IP address (in truncated form)
- Technical information about your browser and the end devices you use (e.g. language setting, screen resolution)
- Your internet provider
- Referrer URL
We use the User ID function. The user ID allows us to assign a unique, permanent ID to one or more sessions (and the activities within these sessions) and analyse user behaviour across devices.
IP address anonymisation is activated by default in GA 4. This means that your IP address will be truncated by Google within the member states of the European Union or other parties to the Agreement on the European Economic Area. As an exception, only in rare cases will the full IP address be transmitted to a Google server in the USA and truncated there. Google states that the IP address transmitted by your browser will not be merged with other Google data within the scope of Google Analytics.
merged with other Google data.
Further information on the processing of data by Google can be found here:
https://policies.google.com/privacy
2. Purpose of data processing
We use GA 4 to analyse the use of our online presence and to generate reports on the activities on our website. The reports are used to analyse the performance of our website and to target advertising to people who have already shown an initial interest by visiting our website.
3. Legal basis for the processing of personal data
The legal basis for the processing of users’ personal data is generally the consent of the user in accordance with Art. 6 para. 1 sentence 1 lit. a) GDPR.
4. Duration of storage
Your personal data will be deleted after 2 months. This deletion takes place automatically once a month.
5. Exercise your rights
You have the right to revoke your declaration of consent under data protection law at any time. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. You can withdraw your consent via our Cookie Consent Tool.
You can prevent the collection and processing of your personal data by Google by preventing the storage of third-party cookies on your computer, using the ‘Do Not Track’ function of a supporting browser, deactivating the execution of script code in your browser or installing a script blocker such as NoScript(https://noscript.net) or Ghostery
(https://www.ghostery.com) in your browser.
Further information on objection and removal options vis-à-vis Google can be found at
https://policies.google.com/technologies/partner-sites
You can also prevent Google from collecting the data generated by the cookie and relating to your use of the online presence (including your IP address) and from processing this data by Google by downloading and installing the browser plug-in available at the following link
and install it: https://tools.google.com/dlpage/gaoptout?hl=de
You can deactivate the use of your personal data by Google by clicking on the following link: https://adssettings.google.de
Use of Google Maps
1. Scope of the processing of personal data
We use the online map service Google Maps from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA and the representative in the Union Google Ireland Ltd, Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland (hereinafter referred to as: Google). We use the Google Maps plugin to visualise geographical data and embed it on our online presence. By using Google Maps on our online presence, information about the use of our online presence, your IP address and addresses entered in the route planning function are transmitted to a Google server and stored there.
Further information on the processing of data by Google can be found here:
https://policies.google.com/privacy?gl=DE&hl=de
2. Purpose of data processing
The use of the Google Maps plug-in serves to improve user-friendliness and an appealing presentation of our online presence.
3. Legal basis for the processing of personal data
The legal basis for the processing of users’ personal data is generally the consent of the user in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.
4. Duration of storage
Your personal information will be stored for as long as necessary to fulfil the purposes described in this Privacy Policy or as required by law.
5. Exercise your rights
You have the right to revoke your declaration of consent under data protection law at any time. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
You can prevent the collection and processing of your personal data by Google by preventing the storage of third-party cookies on your computer, using the ‘Do Not Track’ function of a supporting browser, deactivating the execution of script code in your browser or installing a script blocker such as NoScript(https://noscript.net/) or Ghostery(https://www.ghostery.com) in your browser.
You can use the following link to deactivate the use of your personal data by Google: https://adssettings.google.de
Further information on objection and removal options vis-à-vis Google can be found at: https://policies.google.com/privacy?gl=DE&hl=de
Use of Google ReCaptcha
1. Scope of the processing of personal data
We use Google ReCaptcha from the provider Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA and the representative in the Union Google Ireland Ltd, Gordon House, Barrow Street, D04 E5W5, Dublin, Ireland. This tool is designed to check whether a data entry is compliant and has not been made by a bot, and Google ReCaptcha analyses and authenticates the behaviour of an online presence visitor with regard to various characteristics.
behaviour with regard to various characteristics. This allows personal data to be stored and analysed, in particular the user’s activity (especially mouse movements and which elements have been clicked on) and device and browser information (especially time, IP address and operating system).
The data is not associated with data that may be collected or used in connection with the parallel use of authenticated Google services such as Gmail.
Further information on the processing of data by Google can be found here:
https://policies.google.com/privacy?gl=DE&hl=de
2. Purpose of data processing
The use of Google ReCaptcha serves to protect our online presence from misuse.
misuse.
3. Legal basis for the processing of personal data
The legal basis for the processing of users’ personal data is generally the user’s consent in accordance with
consent of the user pursuant to Art. 6 para. 1 sentence 1 lit. a GDPR.
4. Duration of storage
Your personal information will be stored for as long as necessary to fulfil the purposes described in this privacy policy or as required by law, e.g. for tax and accounting purposes.
5. Exercising your rights
You have the right to withdraw your declaration of consent under data protection law at any time. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
You can prevent the collection and processing of your personal data by Google by preventing the storage of third-party cookies on your computer, using the ‘Do Not Track’ function of a supporting browser, deactivating the execution of script code in your browser or installing a script blocker such as NoScript(https://noscript.net/) or Ghostery(https://www.ghostery.com) in your browser.
You can use the following link to deactivate the use of your personal data by Google:
https://adssettings.google.de
Further information on objection and removal options vis-à-vis Google can be found at: https://policies.google.com/privacy?gl=DE&hl=de
Use of Gravity Forms
1. Scope of the processing of personal data
We use Gravity Forms from Rocketgenius Inc, 1620 Centerville Turnpike #102, Virginia Beach, VA 23464, USA (hereinafter referred to as Rocketgenius). Gravity Forms is a complete form management solution for WordPress. This is used to improve the presentation of our online presence content. According to its own information, Rocketgenius does not process any personal data itself and does not set any cookies for the user.
Further information on the processing of data by Rocketgenius can be found here:
https://www.gravityforms.com/privacy/
2. Purpose of the data processing
The purpose of using the Gravity Form plug-in is to improve the user-friendliness of our online presence. We use this plug-in to easily create, integrate and display forms in an appealing way.
3. Legal basis for the processing of personal data
The legal basis for the processing of users’ personal data is generally the consent of the user in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR.
4. Duration of storage
Your personal information will be stored for as long as necessary to fulfil the purposes described in this privacy policy or as required by law, e.g. for tax and accounting purposes.
5. Exercising your rights
You have the right to withdraw your declaration of consent under data protection law at any time. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
You can prevent the collection and processing of your personal data by Rocketgenius by preventing the storage of third-party cookies on your computer, using the ‘Do Not Track’ function of a supporting browser, deactivating the execution of script code in your browser or installing a script blocker such as NoScript(https://noscript.net/) or Ghostery
(https://www.ghostery.com) in your browser.
Further information on objection and removal options vis-à-vis Rocketgenius can be found at
https://www.gravityforms.com/privacy/
Use of Spotify
1. Scope of the processing of personal data
We use functionalities of the Spotify music streaming service from Spotify AB, Regeringsgatan 19, SE-111 53, Stockholm, Sweden (hereinafter: Spotify).
Spotify is a digital music, podcast and video streaming service that enables us to offer our digital content via a range of devices such as computers, phones, tablets, speakers, televisions and cars. In particular, the following personal data is processed by Spotify:
- Information about the type of Spotify Service subscription
- Information about interactions with the Spotify Service
- Inferences about your interests and preferences based on the use of the Spotify Service
- User-generated content
- URL information
- Online identifiers including cookie data and IP addresses
- Information about the types of devices used
- Device attributes of devices on your Wi-Fi network that are available to connect to the Spotify Service
- non-precise location determined from technical data
- Motion-generated or orientation-generated mobile sensor data
Cookies and other comparable technologies from Spotify are stored on your end device.
Further information on the use of cookies by Spotify can be found here:
https://www.spotify.com/de/legal/cookies-policy/
Spotify assures that the data transfer to other countries takes place in accordance with the respective data protection laws and that, for example, the standard data protection clauses approved by the EU Commission are in place.
Other recipients of the data are:
- Service provider
- Payment processor
- Advertising partner
- Spotify Partner
- Scientific research
- Other Spotify group companies
- Law enforcement and data protection authorities
- Buyers or prospective buyers
However, as we generally have no influence on the processing of your personal data by Spotify, the company jointly responsible for our corporate presence, we cannot provide any binding information on the purpose and scope of the processing of your data.
Further information on the processing of data by Spotify can be found here:
https://www.spotify.com/de/legal/privacy-policy/
2. Purpose of the data processing
We use Spotify to provide audio formats such as music and podcasts.
3. Legal basis for the processing of personal data
The legal basis for data processing is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest lies in the purposes of data processing mentioned under 2.
4. Duration of storage
The data generated by the company website is not stored in our own systems.
Your personal information will be stored by Spotify for as long as is necessary to fulfil the purposes
fulfil the purposes described in this Privacy Policy or as required by law, e.g. for tax
e.g. for tax and accounting purposes.
5. Exercising your rights
You can prevent the collection and processing of your personal data by Spotify by preventing the storage of third-party cookies on your computer, using the ‘Do Not Track’ function of a supporting browser, deactivating the execution of script code in your browser or installing a script blocker such as NoScript(https://noscript.net/) or Ghostery
(https://www.ghostery.com) in your browser.
Further information on objection and removal options vis-à-vis Spotify can be found at
https://www.spotify.com/de/legal/privacy-policy/
This privacy policy was created with the support of DataGuard.