Privacy policy
Privacy Policy and Additional Data Protection Information
Updated 11/02/2023 Version 1.1
Information on the handling of your personal data
1. An initial overview
At the time your data is collected, we must inform you in a clear and comprehensible manner about the handling of your personal data. Here, you will find a brief overview and detailed information in the following chapters,
- who we are as a company, and how you can contact us or our data controller; we will provide you with the relevant contact details there;
- the purpose for which we will use your personal data;
- which categories of your personal data we process;
- the legal basis on which we process your personal data;
- how long we store your personal data;
- which recipients may receive your personal data;
- whether the personal data will be transferred to a country outside the EU;
- that you have basic rights in the area of data protection, e.g., in relation to:
- Information
- Correction
- Deletion
- Restriction of processing
- Data portability
- Contradiction, or
- detailed information on automated decision-making.
- You will also find additional information on the handling of data from external and internal applicants,
- on the handling of data in the context of the use of our websites and online presence on social media sites,
- on the handling of your data when using our newsletter service,
- and the use of cloud services.
Please remember that personal data is required as part of our corporate work. Without personal data, we would not be able to carry out your requests, manage you as a contractual partner or provide you with information about our activities, services or our company. Of course, we will only collect the data required for this purpose. If we request additional data from you, we will inform you of this and will point out that this information is voluntary. Incidentally, we do not carry out any automated decision-making processes.
Data protection is very important to us. We would therefore like to inform you comprehensively and transparently about how we process your personal data – naturally in compliance with the applicable legal provisions, such as the European General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG), and all other relevant data protection regulations. In our data protection management system, we have defined how we handle personal data and act accordingly.
Our privacy policy and other information on data protection are regularly reviewed and adapted as part of our data protection management. The latest version will be published on this page.
2. Detailed information:
Contact information
Contact information of the person responsible
SKOPOS Institut für Markt- und Kommunikationsforschung GmbH & Co. KG
Hans-Böckler-Str. 163
50354 Hürth
Germany
Tel.: +49 (0) 2233 9988-880
Fax: +49 (0) 2233 9988-111
Contact information of the data protection officer
A legally prescribed data protection officer has been appointed for our company and the person responsible can be contacted by regular mail at the address above with the additional note DATA PROTECTION or by email at: datenschutz(at)skopos-group.de.
In addition, you can contact us directly or the responsible data protection supervisory authority (Landesbeauftragte für Datenschutz und Informationsfreiheit North Rhine-Westphalia, Postfach 20 04 44, 40102 Düsseldorf, telephone: 0211/384 24-0, Fax: 0211/384 24-999, Email: poststelle@ldi.nrw.de, https://www.ldi.nrw.de) at any time and complaining to them if necessary.
3. Purpose
Which data we process in detail and for what purpose we use it depends on the services you use with us. Details on the purposes of our data processing can be found in the respective contract documents, forms, declarations of consent, and other information provided to you in this context. This data protection information is part of our contractual texts, website, or other documents that we provide or have provided to you. Essentially, we process personal data by default for the following purposes:
- Customer and supplier management
- Applicant management
- Employee administration
- Order management
- Operating of the website www.skopos-group.de
- Publications on our websites and on social media portals
- Management of training and event participants
In addition, we process your data in the cases listed below for the purpose of
- shipping (mail, email, etc.) company information, provided that you have given us your consent to do so
- communication (analog and digital)
- obtaining information from credit agencies
- the use of your email address for marketing purposes, newsletters, etc.
- the fulfillment of legal requirements, such as tax laws, compulsory insurance, etc.
- the fulfillment of legal safety, control, and reporting obligations
- the archiving of data for security purposes and to fulfill obligations to provide evidence
- disclosure in the context of official/judicial measures
- the implementation of video conferences
4. Categories
Data categories of personal your data that we can process, depending on your use of our service or the existing contractual relationship with you, are the following:
- Master data (e.g. name, telephone number, email address, mailing address, etc.), of customers (including potential customers), suppliers, and service providers (including potential suppliers), of employees within the scope of the employment relationship, of participants in market research studies, of applicants, training, and event participants, other potential customers and other categories of persons associated with the aforementioned persons who may be involved within the scope of the respective affiliations (e.g. family members, employees of service providers, and/or suppliers, etc.).
- Contact information for the aforementioned categories of persons (addresses, telephone numbers, email addresses, etc.)
- Transaction data relating to the aforementioned categories of persons (interests, orders, participation in training courses and events of all kinds, etc.)
- Bank details and data on payments and, if applicable, creditworthiness
- Usage data on websites and customer portals offered by us (IP address, time of accessing pages, pages visited, etc.)
- Consent data, for the documentation of granted/revoked consent
5. Legal basis
If you have an employment relationship with us, we process your personal data to establish, implement, and terminate the associated contractual relationship on the basis of Section 6 (1) (b) in conjunction with Section 88 GDPR and §26 BDSG.
If we are in another contractual relationship or communicate in the context of pre-contractual measures, the processing of personal data takes place for the execution of relevant contracts, implementation of measures, and activities in this context. These processing operations are based on Section 6 (1) (b) GDPR.
In addition, we process your data for the purposes listed below on the basis of the following legal bases:
- Customer management (Section 6 (1) (b) GDPR)
- Supplier management (Section 6 (1) (b) GDPR)
- Employee administration (Section 6 (1) (c) GDPR)
- Applicant management (Section 6 (1) (a) and (b) GDPR in conjunction with Section 88 GDPR, §26 GDPR)
- Administration (Section 6 (1) (c) GDPR)
- Operation and hosting of the company’s websites, in particular to provide you with the requested page content and to ensure the necessary security in their operation (Section 6 (1) (f) GDPR)
- Publication of photos on the websites and social media portals (Section 6 (1) (a) GDPR), provided that you have given us your consent to do so
- Market and opinion research (Section 6 (1) (a) GDPR), provided that you have given us your consent to do so
- Use of your email address for marketing purposes, newsletter (Section 6 (1) (a) GDPR), provided that you have given us your consent to do so
- Compliance with legal requirements, such as tax laws, etc. (Section 6 (1) (c) GDPR)
- Fulfillment of legal control and reporting obligations (Section 6 (1) (e) GDPR)
- Archiving of data for backup (Section 6 (1) (c) and, if applicable, (f) GDPR)
- Fulfillment of obligations to provide evidence (Section 6 (1) (c) GDPR)
- Disclosure in the context of official/judicial measures (Section 6 (1) (e) GDPR)
In the event that we collect further personal data about you on the basis of Section 6 (1) (f) GDPR – in the sense of a balancing of interests – we will inform you of this separately in advance.
6. Storage
We only process and store your data for as long as is necessary for our activities and purposes or as required by legal retention obligations (e.g. HGB, AO, etc.). In individual cases, this can lead to personal data being stored for several years.
7. Recipient
In principle, your personal data will only be made available to internal or external recipients who need it to fulfill contractual or legal obligations or to perform their tasks. This means that data is passed on or disclosed
- to bodies that process data as contractual processing entities or in joint responsibility with us (e.g. in the areas of HR, legal department, computer centers, accounting, data disposal, customer administration, marketing, sales, information and communication technology, website administration and hosting, applicant management, etc.).
- in the case of a legitimate interest to authorities, lawyers, associations, courts, experts, credit agencies, debt collection agencies, etc.
- in the event of a legal obligation to authorities, public bodies, social insurance institutions, etc.
- to any other third parties if you have given us your express consent to do so.
We will not pass on your data beyond this.
Service providers that we have commissioned as part of order processing or in the sense of joint responsibility may only use the data for the purposes for which we have passed it on to them. This is contractually regulated with these service providers and the data processing is subject to the same framework conditions as ours.
8. Data transfer outside the EU
As a rule, data is not transferred to bodies in countries outside the European Union (EU) or the European Economic Area (EEA) (so-called third countries). Only when data is collected by visiting our websites, using our newsletter, using cloud services, using and visiting our social media sites, a data transfer to third countries (including to unsafe third countries) cannot be ruled out. Please note the relevant information at the relevant sections in this privacy policy.
9. Rights of data subjects
You can assert your data protection rights against us under certain conditions:
- You have the right to request information about your data stored by us in accordance with the provisions of Section 15 GDPR – if necessary with restrictions.
- If your data stored by us is inaccurate or incorrect, you can request that it be corrected in accordance with Section 16 GDPR.
- According to Section 17 GDPR, you can request that the personal data stored about you be deleted. However, this only applies as long as no other legal provision prevents the deletion.
- If the requirements of Section 18 GDPR are met, you can request that the processing of your data be restricted.
- Under certain circumstances, you have the right for us to provide you with your personal data under the conditions of Section 20 GDPR.
- You have the right to withdraw your consent at any time with effect for the future in accordance with Section 7 (3) GDPR. From this point on, your personal data will no longer be processed for the purposes to which you object. The objection can be made informally.
If, for example, you have explicitly consented in accordance with Section 6 (1) (a) GDPR, we will use your email address to send you our newsletter on a regular basis. You can unsubscribe at any time, for example via a link at the bottom of each newsletter. Alternatively, you can also send your request to unsubscribe by email to info[at]skopos-group.de at any time.
As part of the existing contractual relationships with our customers, we send contract and/or service-related information by email to the contact email addresses we have stored as customer information, especially in the service area. This includes, for example, information on upcoming maintenance and service intervals or current technical information on the products purchased from us. If you do not wish to receive this information, you can inform us at any time by sending an email to info[at]skopos-group.de or by clicking on the unsubscribe link provided in every customer information. If you would like to name a different or additional contact person from your company to whom we deliver the information, please send us an email to info[at]skopos-group.de.
- In accordance with Section 77 GDPR, you have the right to file a complaint with a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or our company headquarters.
- If your personal data is processed on the basis of legitimate interests in accordance with Section 6 (1) (1) (f) GDPR, you have the right to object to the processing of your personal data in accordance with Section 21 GDPR, provided that there are reasons for this, arising from your particular situation or the objection is aimed against direct advertising. In the latter case, you have a general right to object, which will be implemented by us without specifying a particular situation.
If you wish to exercise one of the aforementioned rights, please contact us in writing at the address of the controller (see contact details above) or contact us directly by email at info[at]skopos-group.de.
10. Additional information regarding data from external and internal applicants
Personal data relating to you is generally collected directly from you – e.g. as part of the application process – on the basis of Section 88 GDPR, § 26 (1) BDSG.
In addition, we may also have received data from third parties (e.g., job exchanges such as Indeed, Stepstone, or similar recruiting agencies).
We may also process personal data that we have legitimately obtained from publicly accessible sources (e.g., professional social networks).
The processed categories of personal data of applicants include in particular your master data (such as first name, surname, name affixes, nationality, personnel number), contact data (such as private address, (mobile) telephone number, email address), as well as the data of the entire application process (cover letter, CV, work, or other certificates, proof of qualifications).
If you have also voluntarily provided special categories of personal data (such as health data, degree of disability, religious affiliation) in the letter of application or during the application process, we will only think about processing this data if you have expressly consented to this (Section 9 (2) (a) GDPR).
We process personal employee and applicant data on the basis of and in compliance with the European General Data Protection Regulation (EU GDPR), the German Federal Data Protection Act (BDSG) and all other relevant provisions of German labor law (e.g., AGG, BetrVG, SGB, etc.).
The primary purpose of processing your personal data as part of the application process is to carry out the application procedure, in particular to determine the extent to which you are suitable for the posted job role. The processing of your applicant data is necessary for the decision to establish an employment relationship. The primary legal basis for this is Section 88 GDPR in conjunction with § 26 (1) BDSG.
10.1 Data transfer for internal and external applicants:
Within our company, only those persons and departments receive your personal data who need it to make a decision about your employment and to fulfill our legal and contractual obligations. Outside our company, we only disclose your personal data to bodies that process this data as processors (applicant management) and to companies in our group of companies if you have given us your consent to do so.
Notwithstanding this, we only pass on your personal data – e.g., to investigating authorities – if we are legally obliged to do so.
10.2 Storage period for internal and external applicants:
Personal applicant data transmitted to us will be deleted as soon as it is no longer required for the above-mentioned purposes, at the latest after 6 months. This does not apply if you have expressly consented to a longer storage period, if the storage is necessary for evidence purposes, or if legal regulations prevent deletion. For example, we retain your applicant data for as long as there is a possibility that you may assert legal claims against us, e.g., due to a breach of the provisions of the AGG [German Equality Opportunity Act].
However, if your application leads to the establishment of an employment contract with you, your data will be stored for the purposes of the usual administrative and organizational processes and for the implementation of the employment relationship until the employment relationship is terminated.
11. Additional information on the collection and storage of personal data when visiting our website:
When you visit our website, the browser used on your device automatically sends information to the server of our website and our customer portal. This information is temporarily stored in a what is known as a log file. The following information is collected without any action on your part and stored until it is automatically deleted:
- IP address of the requesting computer,
- Host name of the requesting computer,
- Date and time of access,
- Website from which access is made (referrer URL),
- Browser used and the browser version and operating system of your computer
We process the aforementioned data for the following purposes:
- Ensuring a smooth connection to the website,
- To ensure ease of use of our website,
- Evaluating system security and stability, as well as
- For other administrative purposes.
The legal basis for data processing Section 6 (1) (f) GDPR. Our legitimate interest lies in the operation of our website and the associated representation of our company. Under no circumstances do we use the data collected for the purpose of drawing conclusions about your person.
Your data will be deleted as soon as it is no longer required for the stated purposes, at the latest after 6 months.
11.1 Cookies, analysis tools, plugins, and other third-party elements
We use cookies on our website. These are small files that your browser automatically creates and that are stored on your device (laptop, tablet, smartphone, etc.) when you visit our website. Cookies do not cause any damage to your end device and do not contain any viruses, trojans, or other malware. Cookies are small text files that are stored on your hard disk assigned to the browser you are using and through which certain information flows to the body that sets the cookie (in this case us). Cookies cannot run programs or transfer viruses to your computer. They serve to make Internet services more user-friendly and effective overall.
Information is stored in the cookie that results in each case in connection with the specific end device used. However, this does not mean that we obtain direct knowledge of your identity.
Our website uses cookies to the following extent:
- Transient cookies (temporary use)
- Persistent cookies (time-limited use)
Transient cookies are automatically deleted as soon as you close the browser. These include session cookies in particular. These store a something called a session ID, with which various requests from your browser can be assigned to the shared session. This allows your computer to be recognized when you return to the website.
Persistent cookies are automatically deleted after a specified period, which may vary depending on the cookie. You can delete the cookies in the security settings of your browser at any time.
11.1.1 Required first-party cookies
The use of our required first-party cookies serves on the one hand to make the use of our service more pleasant for you. We use these session cookies to recognize that you have already visited individual pages of our website. These are automatically deleted after you leave our site.
In addition, we also use temporary cookies to optimize user-friendliness, which are stored on your end device for a specified period of time. If you visit our site again to use our services, it will automatically recognize that you have already visited us and which entries and settings you have made so that you do not have to enter them again. This data will be deleted after 6 months at the latest.
We process your data on the basis of our legitimate interest in the external presentation of our company via the website you have accessed and to promote user-friendliness. The legal basis for the processing is Section 6 (1) (1) (f) GDPR.
Most browsers accept cookies automatically. However, you can configure your browser so that no cookies are stored on your computer or a message always appears before a new cookie is created. However, the complete deactivation of cookies may mean that you cannot use all the functions of our website.
This stored information is stored separately from any other data transmitted to us. In particular, the cookie data is not linked to your other data (e.g., in the case of contact requests or online applications).
11.1.2 Third-party cookies, plugins, and other third-party elements
The third-party cookies, plugins and other third-party elements listed below and used by us are only used with your express consent and thus on the basis of Section 6 (1) (1) (a) GDPR. You can revoke your consent at any time with an effect into the future. If you do not give or withdraw your consent, the website may not be displayed correctly or you may not be able to use all the functions of the website.
With the third-party cookies, plugins, or other third-party elements used, we want to ensure a needs-based design and the continuous optimization of our website.
The respective function descriptions, any recipients of the data, information on possible transfers to a third country, and the storage period can be found in the following information on the individual processing operations involving third-party cookies, plug-ins or other third-party elements.
Google Analytics
We use Google Analytics on our website, a web analysis service of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”), provided that you give us your consent in accordance with Section 49 (1) (a) GDPR. Cookies are used in this context. The information generated by the cookie about the use of the online service by the user is usually transmitted to a Google server in the USA and stored there.
Google will use this information on our behalf to evaluate the use of our online service by users, to compile reports on the activities within this online service, and to provide us with further services associated with the use of this online service and the use of the Internet. The processed data can be used to create user profiles under a pseudonym.
We only use Google Analytics with activated IP anonymization. This means that the IP address of the user is shortened by Google within member states of the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transferred to a Google server in the USA and abbreviated there.
The IP address transmitted by the user’s browser will not be merged with other Google data. Users can prevent the storage of cookies by setting their browser software accordingly; users can also prevent Google from collecting the data generated by the cookie and relating to their use of the online service and from processing this data by Google by refusing to give their consent or by downloading and installing the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout?hl=de.
Further information on the use of data by Google, settings and objection options, can be found in Google’s privacy policy (https://policies.google.com/privacy) and in the settings for the display of advertisements by Google (https://adssettings.google.com/authenticated).
This service provider is licensed in accordance with the EU-U.S. Data Privacy Framework. We have entered into the standard contractual clauses with Google. This enables us to counteract the possible absence or limitation of legal protection options and the lower level of data protection in the USA compared to the EU.
Users’ personal data is deleted or anonymized after 14 months.
Google Tag Manager
We use Google Tag Manager on our website, a tag management system for the integration of tracking or statistical tools from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”), provided that you give us your consent in accordance with Section 49 (1) (a) GDPR. The Google Tag Manager itself does not create any user profiles, does not store any cookies to our knowledge, and does not carry out any independent analyses. It is only used to manage and display the tools integrated via it. According to its own information, the Google Tag Manager does not record any IP addresses or other personal data.
This service provider is licensed in accordance with the EU-U.S. Data Privacy Framework. We have entered into the standard contractual clauses with Google. This enables us to counteract the possible absence or limitation of legal protection options and the lower level of data protection in the USA compared to the EU.
Additional information can be found at https://support.google.com/tagmanager/answer/9323295?hl=de.
Google Web Fonts (local hosting)
We use web fonts provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”) for the uniform display of fonts on our websites. These Google Fonts are installed locally. There is no connection to Google servers and therefore no data transfer to Google. Additional information on Google Web Fonts can be found at
https://developers.google.com/fonts/faq and in Google’s Privacy Policy
https://policies.google.com/privacy?hl=de.
Google Maps
We use Google Maps on our website, a map service of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”), provided that you give us your consent in accordance with Section 49 (1) (a) GDPR. To use the functions of Google Maps, it is necessary to save your IP address. This information about the use of the online offer by users is usually transmitted to a Google server in the USA and stored there.
When you access a website on our website that contains Google Maps, your browser establishes a direct connection to Google’s servers if you have consented to the use of Google Maps. Until you consent to the use of Google Maps, the service will not be loaded and no connection to Google’s servers will be established.
The map content is transmitted by Google directly to your browser, which integrates it into the website. We therefore have no influence on the scope of the data collected by Google in this way. To the best of our knowledge, this is at least the following data:
- Date and time of the visit to the website in question,
- Internet address or URL of the website accessed,
- IP address, (start) address entered during route planning.
We have no influence on the further processing and use of the data by Google and can therefore accept no responsibility for this.
This service provider is licensed in accordance with the EU-U.S. Data Privacy Framework. We have entered into the standard contractual clauses with Google. This enables us to counteract the possible absence or limitation of legal protection options and the lower level of data protection in the USA compared to the EU.
The terms of use of Google Maps can be found at https://www.google.com/intl/de_de/help/terms_maps.html.
Google reCAPTCHA
We use Google reCAPTCHA on our site, an automated test from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”), to distinguish humans from machines based on different interaction patterns and associated parameters. For this purpose, reCAPTCHA analyzes the behavior of the website visitor based on various characteristics. This analysis begins automatically as soon as the website visitor accesses the website, provided you have consented to the use of reCAPTCHA. For analysis purposes, reCAPTCHA evaluates various information (e.g., IP address, time spent by the website visitor on the website, or mouse movements made by the user). The data collected during the analysis is forwarded to Google. The reCAPTCHA analyses run completely in the background. Website visitors are not informed separately or repeatedly that an analysis is taking place.
This service provider is licensed in accordance with the EU-U.S. Data Privacy Framework. We have entered into the standard contractual clauses with Google. This enables us to counteract the possible absence or limitation of legal protection options and the lower level of data protection in the USA compared to the EU.
Twitter (X) Social-Plug-In
We use the plug-in of the social network Twitter (X) on our website. Twitter (X) is an Internet service of Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA, hereinafter referred to as “Twitter (X)”.
This service provider is licensed in accordance with the EU-U.S. Data Privacy Framework. We have concluded the standard contractual clauses with this service provider.
If the plug-in is stored on one of the pages you visit on our website, your Internet browser will download a representation of the plug-in from the Twitter servers. For technical reasons, it is necessary for Twitter to process your IP address. In addition, the date and time of your visit to our website are also recorded.
If you are logged in to Twitter while visiting one of our plugged-in websites, the information collected by the plug-in about your specific visit will be recognized by Twitter. Twitter may assign the information collected in this way to your personal user account there. If you use the Twitter “Share” button, for example, this information is stored in your Twitter user account and may be published via the Twitter platform. If you wish to prevent this, you must either log out of Twitter before visiting our website or make the appropriate settings in your Twitter user account.
Twitter provides additional information about the collection and use of data as well as your rights and protection options in this regard in the data protection information available at https://twitter.com/privacy.
YouTube
We use YouTube on our website. This is a video portal of YouTube LLC, 901 Cherry Ave, 94066 San Bruno, CA, USA, hereinafter referred to as “YouTube”. YouTube is a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, hereinafter referred to as “Google”.
This service provider is licensed in accordance with the EU-U.S. Data Privacy Framework. We have concluded the standard contractual clauses with this service provider. The legal basis is Section 6 (1) (f) GDPR. We use YouTube in connection with the “extended data protection mode” function in order to be able to show you videos. The legal basis is Section 6 (1) (f) GDPR. Our legitimate interest lies in improving the quality of our website. According to YouTube, the “extended data protection mode” function means that the data described in more detail below is only transmitted to the YouTube server when you actually start a video.
Without this “extended data protection”, a connection to the YouTube server in the USA is established as soon as you access one of our Internet pages on which a YouTube video is embedded.
This connection is necessary in order to be able to display the respective video on our website via your Internet browser. In the course of this, YouTube will at least record and process your IP address, the date and time, and the website you visited. In addition, a connection to the Google advertising network “DoubleClick” is established.
If you are logged in to YouTube at the same time, YouTube will assign the connection information to your YouTube account. If you wish to prevent this, you must either log out of YouTube before visiting our website or make the appropriate settings in your YouTube user account.
For the purpose of functionality and analysis of user behavior, YouTube permanently stores cookies on your end device via your Internet browser. If you do not agree to this processing, you have the option of preventing the storage of cookies by changing the settings in your Internet browser. You can find more information on this above under “Cookies”.
Google provides additional information about the collection and use of data as well as your rights and protection options in this regard in the data protection information available at https://policies.google.com/privacy.
LinkedIn Insight Tag
We use the LinkedIn conversion tracking tool on our website if you have given us your consent to do so. The service provider is LinkedIn Ireland Unlimited, Wilton Place, Dublin 2, Ireland, hereinafter referred to as “LinkedIn”. LinkedIn is a subsidiary of LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA.
LinkedIn provides additional information on the collection and use of data as well as your rights and protection options in this regard in the data protection information available at https://de.linkedin.com/legal/privacy-policy.
Vimeo
We use plugins from the Vimeo video portal of Vimeo Inc, 555 West 18th Street, New York, New York 10011, USA, on our website.
When you visit one of our pages equipped with a Vimeo plugin, a connection to the Vimeo servers is established. The Vimeo server is informed which of our pages you have visited, provided you have given us your consent to do so. Vimeo also obtains your IP address. This also applies if you are not logged in to Vimeo or do not have a Vimeo account. The information collected by Vimeo is transmitted to the Vimeo server in the USA.
If you are logged into your Vimeo account, you enable Vimeo to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your Vimeo account.
Additional information on the handling of user data can be found in Vimeo’s privacy policy at: https://vimeo.com/privacy.
Calendly
We use Calendly on our website, a planning and organization tool for booking appointments, provided you have given us your consent to do so. Calendly is a service provided by C Calendly LLC, 115 E Main St., Ste A1B, Buford, GA 30518, USA, hereinafter referred to as “Calendly”.
This service provider is licensed in accordance with the EU-U.S. Data Privacy Framework. We have concluded the standard contractual clauses with this service provider.
Additional information on the collection and use of data when booking appointments via Calendly as well as your rights and protection options in this regard can be found at https://calendly.com/privacy.
Zapier
We use the Zapier automation software on our website if you have given us your consent to do so. Zapier is a service provided by Zapier Inc., 548 Market Street 6241, San Francisco, CA 94104, USA, hereinafter referred to as “Zapier”.
This service provider is licensed in accordance with the EU-U.S. Data Privacy Framework. We have concluded the standard contractual clauses with this service provider.
Additional information on the collection and use of data when booking appointments via Calendly as well as your rights and protection options in this regard can be found at https://zapier.com/privacy.
WhatConverts
We use the WhatConverts service on our website for analysis purposes, provided you have given us your consent to do so. WhatConverts is a service provided by Icon Digital LLC, 1409 Coachman Drive, Waxhaw, NC 28173, USA, hereinafter referred to as “WhatConverts”.
We have concluded the standard contractual clauses with this service provider.
Additional information on the handling of user data and your rights and protection options in this regard can be found at https://www.whatconverts.com/gdpr.
Wordfence
We have integrated Wordfence on our website. The provider is Defiant Inc, Defiant, Inc, 800 5th Ave Ste 4100, Seattle, WA 98104, USA (hereinafter ‘Wordfence’).
We use the Wordfence plugin from the provider Defiant Inc, Attn: Legal Department, 1700 Westlake Ave N Ste 200, Seattle, WA 98109, USA (‘Wordfence’). Wordfence stores the IP addresses of visitors in order to recognise brute force and DDoS attacks. Up to four different cookies are used for this purpose.
IP addresses classified as harmless are placed on a whitelist. Dubious IP addresses are placed on a blacklist. The IP addresses are stored in the database on our server. Wordfence also sends the collected data to its servers in the USA, a so-called ‘third country’ without an equivalent level of data protection.
Wordfence is used on the basis of Art. 6 para. 1 lit. f GDPR. The website operator has a legitimate interest in protecting its website as effectively as possible against cyberattacks.
The data transfer to the USA is based on the standard contractual clauses of the EU Commission. You can find details here: https://www.wordfence.com/help/general-data-protection-regulation/.
12. Online Presence on Social Media Sites
We maintain online presences within social media networks and platforms such as Xing, LinkedIn, Facebook, and YouTube in order to communicate with the customers, interested parties, and users active there and to inform them about our services and our company. With regard to the operation of these online presences, we are jointly responsible with the aforementioned providers.
We would like to point out that LinkedIn, Facebook, Instagram, and YouTube in particular may process user data outside the European Union. This may result in risks for users because, for example, it could make it more difficult to enforce users’ rights.
Furthermore, user data is generally processed by the platforms for market research and advertising purposes. For example, user profiles can be created from the usage behavior and the resulting interests of the users. The usage profiles can in turn be used, for example, to place advertisements inside and outside the platforms that presumably correspond to the interests of the users. For these purposes, cookies are usually stored on the user’s computer, which store the usage behavior and preferences of the user. Furthermore, data can also be stored independently in the user profiles on the devices utilized by the users (especially if the users are members of the respective platforms and are logged in to them). We do not receive any access to the actual usage data. We only use general usage statistics to check the effectiveness of use.
The processing of users’ personal data is based on our legitimate interests in effective user information and communication with users in accordance with Section 6 (1) (f) GDPR.
For a detailed description of the respective processing and the opt-out options, please refer to the following linked information from the providers.
Also in the case of requests for information and the assertion of user rights, we would like to point out that these can be asserted most effectively with the providers. Only the providers have access to the users’ data and can take appropriate measures and provide information directly. If you still need help, you can contact us.
- Xing (XING AG, Dammtorstrasse 29-32, 20354 Hamburg, Germany) – Privacy Policy: https://privacy.xing.com/de/datenschutzerklaerung
- LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland) – Privacy Policy: https://de.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy
- Facebook (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) – Privacy Policy: https://de-de.facebook.com/privacy/policy/https://www.facebook.com/policy.php
- YouTube (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) – Privacy Policy: https://policies.google.com/privacy?hl=de&gl=de
- Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA) – Privacy Policy: https://privacycenter.instagram.com/policy
13. Newsletter
You will only receive our newsletter if you give us your consent in accordance with Section 6 (1) (a) GDPR, i.e., if you agree to receive our newsletter. Your consent to this, including your acknowledgement of the data protection provisions, is recorded via the form on our website. You will also receive a confirmation email with additional data protection information.
We use the service provider Mailchimp of Rocket Science Group LLC, 675 Ponce De Leon Ave NE, Suite 5000, Atlanta, GA 30308, USA, to send the newsletter. This service provider is licensed in accordance with the EU-U.S. Data Privacy Framework. We have concluded the standard contractual clauses with this service provider.
Mailchimp is a service that can be used to organize and analyze the sending of newsletters, among other things. The legal basis for the use of Mailchimp is your consent in accordance with Section 6 (1) (a) GDPR. If you enter your data for the purpose of receiving our newsletter (usually your email address), it will be stored on Mailchimp’s servers in the USA. With the help of Mailchimp, we can analyze our newsletter campaigns. When you open an email sent with Mailchimp, a file contained in the email (known as a web beacon) connects to Mailchimp’s servers in the USA. This makes it possible to determine whether a newsletter message has been opened and which links, if any, have been clicked on. Technical information is also collected (e.g., time of access, IP address, browser type, and operating system). This information cannot be assigned to the respective newsletter recipient. They are used exclusively for the statistical analysis of newsletter campaigns. The results of these analyses can be used to better adapt future newsletters to the interests of the recipients.
If you do not agree with this analysis by Mailchimp, you can revoke your consent at any time and unsubscribe from our newsletter. We provide you with a link for this purpose in every newsletter. The legality of data processing operations that have already taken place remains unaffected by the revocation. The data you provide us with for the purpose of subscribing to the newsletter will be stored by us or the newsletter service provider until we receive your request to unsubscribe from the newsletter, and the data will be deleted from the newsletter distribution list after you unsubscribe from the newsletter. Data stored by us for other purposes remains unaffected by this.
14. Data Transmission within the SKOPOS Group
If you agree that your contact data can be used for advertising purposes, you consent that we can pass on your contact data within the SKOPOS Group (https://www.skopos-group.de/) for the purpose of self-marketing directed at you. This applies in particular to participation in events organized by other companies in the SKOPOS Group or information provided by other companies in the SKOPOS Group for advertising purposes.
15. Cloud Services
We use software services that are accessible via the Internet and run on the servers of their providers (“cloud services”, also referred to as “software as a service”), e.g., “Microsoft Teams” or “Microsoft Exchange” for the following purposes: Exchange of documents, content, and information with specific recipients or for authenticated and 2-factor-secured login of users as well as chats and participation in audio and video conferences.
In this context, personal data may be processed and stored on the servers of the providers, to the extent that they are part of communication processes with us or are otherwise processed by us as set out in this privacy policy. This data may include, in particular, master data and contact data of users, data on transactions, contracts, other processes and their content. The cloud service providers also process usage data and metadata that they use for security purposes and to optimize their services. In this context, personal data may be transferred to cloud service providers in unsafe third-party countries such as the USA. For this reason, we have entered into the EU standard contractual clauses with the providers to ensure an adequate level of data protection.
If we use cloud services to provide other users or publicly accessible websites with forms of the documents and content specified above, the providers may store cookies on users’ devices for the purposes of web analysis or to remember user settings (e.g. in the case of media control).
Notes on legal bases: If we ask for consent to the use of cloud services, the legal basis for processing is consent in accordance with Section 6 (1) (a) GDPR. Furthermore, their use may be part of our (pre-)contractual services in accordance with Section 6 (1) (b) GDPR, provided that the use of cloud services has been agreed in this context. Otherwise, user data is processed on the basis of our legitimate interests pursuant to Section 6 (1) (f) GDPR (i.e., interest in efficient and secure administration and collaboration processes).
Processed data types: Inventory data (e.g., names, addresses), contact data (e.g., email, telephone numbers), content data (e.g., text input, photographs, and videos), usage data (e.g., websites visited, interest in content, and access times), meta/communication data (e.g., device information, IP addresses).
Persons concerned: Customers, employees (e.g., Employees, applicants, and former employees), interested parties, and communication partners.
Purposes of processing: Office and organizational procedures.
Legal bases: Consent (Section 6 (1) 1 (a) GDPR), contract fulfillment, and pre-contractual inquiries (Section 6 (1) (1) (b). GDPR), Legitimate interests (Section 6 (1) (1) (f). GDPR), consent in accordance with Section 6 (1) (a) GDPR when transferred to servers in the USA.
Services used and service providers:
Microsoft cloud services: Cloud storage services; Service provider: Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399 USA; Website: microsoft.com/en-de; Security information: www.microsoft.com/de-de/trustcenter.
16. Rights of use Legal Information
We expressly object to the use of our contact data published in the context of the legal notice obligation and in the data protection declaration by third parties for sending unsolicited advertising and information material.
We expressly reserve the right to take legal action in the event of the unsolicited sending of advertising information, such as spam emails.
17. Creation
This declaration has been prepared in cooperation with:
Dapro Serv GmbH Telephone: +49 (0) 241-55967796
Auf der Hüls 128 Email: info@daproserv.com
52068 Aachen, Germany Website: www.daproserv.com
If you think that our privacy policy can be improved, we would be pleased to receive your comments and suggestions.
Cookie-Settings