Privacy Policy

We are pleased that you are visiting our website. The protection and security of your personal information when using our website is very important to us. We would therefore like to inform you at this point which of your personal data we collect when you visit our website and for what purposes it is used.

This data protection declaration applies to the website of the COMPREDICT GmbH, which can be reached under the domain compredict.ai as well as the various subdomains (“our website”).

Who is responsible and how do I contact you?

Responsible

for the processing of personal data within the meaning of the EU General Data Protection Regulation (GDPR)

COMPREDICT GmbH
Rheinstraße 40-42
64283 Darmstadt
DE
+49 (0)6151 3844614
contact@compredict.ai

Data protection officer

Compliant Business Solutions GmbH
Thurn-und-Taxis-Platz 6
60313 Frankfurt am Main
DE
Katrin Bel
katrin.bel@cb-sol.de

What is this about?

This data protection declaration meets the legal requirements for transparency in the processing of personal data. This is all information that relates to an identified or identifiable natural person. This includes, for example, information such as your name, your age, your address, your telephone number, your date of birth, your e-mail address, your IP address or user behavior when visiting a website. Information with which we cannot (or only with disproportionate effort) relate to you personally, e.g. through anonymization, are not personal data. The processing of personal data (e.g. the collection, querying, use, storage or transmission) always requires a legal basis and a defined purpose.

Stored personal data are deleted as soon as the purpose of the Processing has been achieved and there are no legitimate reasons for further retention of the data. We will inform you about the specific storage periods and criteria for storage in the individual processing operations. Regardless of this, we store your personal data in individual cases to assert, exercise or defend legal claims and if there are statutory retention requirements.

Who gets my data?

We only pass on your personal data that we process on our website to third parties if this is necessary for the fulfillment of the purposes and in individual cases is covered by the legal basis (e.g. consent or protection of legitimate interests). In addition, we pass on personal data to third parties in individual cases if this serves to assert, exercise or defend legal claims. Possible recipients can then e.g. Law enforcement authorities, lawyers, auditors, courts, etc.

Insofar as we use service providers for the operation of our website who, as part of order processing on our behalf, provide personal data in accordance with. Process Art. 28 GDPR, these recipients of your personal data can be. You can find more detailed information on the use of processors and web services in the overview of the individual processing operations.

Do you use cookies?

Cookies are small text files that we send to the browser of your device and store them as part of your visit to our website. As an alternative to using cookies, information can also be stored in the local storage of your browser. Some functions of our website cannot be offered without the use of cookies or local storage (technically necessary cookies). Other cookies, on the other hand, allow us to perform various analyses, so that we are able, for example, to recognize the browser you use when you visit our website again and to transmit various information to us (not necessary cookies). Cookies enable us to make our website more user-friendly and effective for you, for example by tracking your use of our website and by determining your preferred settings (e.g. country and language settings). If third parties process information via cookies, they collect the information directly through your browser. Cookies do not cause any damage to your device. You cannot run programs or contain viruses.

We inform you about the respective services for which we use cookies in the individual processing operations. Detailed information on the cookies used can be found in the cookie settings or in the Consent Manager of this website.

What rights do I have?

Under the conditions of the statutory provisions of the General Data Protection Regulation (GDPR), you as a data subject have the following rights:

- Information in accordance with Art. 15 GDPR about the data stored about you in the form of meaningful information on the details of the processing and a copy of your data;

- Correction in accordance with Art. 16 GDPR of inaccurate or incomplete data stored by us;

- Deletion in accordance with Art. 17 GDPR of the data stored by us, insofar as the processing is not necessary for the exercise of the right to freedom of expression and information, for the fulfilment of a legal obligation, for reasons of public interest or for the assertion, exercise or defence of legal claims;

- Restriction of the processing in accordance with Art. 18 GDPR, insofar as the correctness of the data is disputed, the processing is unlawful, we no longer need the data and you refuse to delete it, because you need it to assert, exercise or defend legal claims or you have objected to the processing in accordance with Art. 21 GDPR.

- Data portability in accordance with Art. 20 GDPR, insofar as you have provided us with personal data within the framework of consent pursuant to Art. 6 sec. 1 lit. a GDPR or on the basis of a contract pursuant to Art. 6 sec. 1 lit.b GDPR and these were processed by us by means of automated procedures. You receive your data in a structured, common and machine-readable format or we transmit the data directly to another responsible person, as far as this is technically feasible.

- In accordance with Art. 21 GDPR, you object to the processing of your personal data, insofar as they are carried out on the basis of Art. 6 sec. 1 lit. e, f GDPR and there are reasons for doing so, which arise from your particular situation or if the objection is directed against direct marketing. The right to object does not exist if overriding, overriding reasons for processing are proven or if the processing is carried out for the assertion, exercise or defence of legal claims. Insofar as there is no right to object in individual processing operations, this is indicated therein.

- Revocation in accordance with Art. 7 sec. 3 GDPR of your given consent with effect for the future.

- Complaint under Art. 77 GDPR to a supervisory authority if you believe that the processing of your personal data violates the GDPR. As a rule, you can contact the supervisory authority of your usual place of residence, your workplace or our company headquarters.

Transmission of data to third parties

Your personal data will not be transmitted to third parties for purposes other than those listed below.

We will only share your personal data with third parties if:

1. you have given us your express consent pursuant to Art. 6 para. 1 lit. a GDPR,

2. the transfer is permitted in accordance with Art. 6 para. 1 lit. f GDPR to safeguard our legitimate interests and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data,

3. in the event that there is a legal obligation for the transfer pursuant to Art. 6 para. 1 lit. c GDPR, and

4. this is legally permissible and is necessary according to Art. 6 para. 1 lit. b GDPR for the execution of contractual relationships with you.

In order to protect your data and, if necessary, to enable us to transfer data to third countries (outside the EU/EEA), we have concluded data processing agreements based on the standard contractual clauses of the European Commission. If the standard contractual clauses are not sufficient to provide an adequate level of security, your consent may serve as the legal basis for the transfer to third countries in accordance with Art. 49 para. 1 lit. a) GDPR. This sometimes does not apply to a transfer of data to third countries for which the European Commission has issued an adequacy decision pursuant to Article 45 GDPR.

Duration of storage of personal data

The criterion for the duration of the storage of personal data is the respective statutory retention period. After expiry of this period, the corresponding data will be routinely deleted, provided that they are no longer required for the fulfilment or initiation of the contract.

How will my data be processed in detail?

In the following we will inform you about the individual processing operations, the scope and purpose of the data processing, the legal basis, the obligation to provide your data and the respective storage period. An automated decision in individual cases, including profiling, does not take place.

Provision of the website

Type and scope of processing

When you visit and use our website, we collect the personal data that your browser automatically transmits to our server. The following information is temporarily stored in a so-called log file:

- IP address of the requesting computer

- Date and time of access

- Name and URL the retrieved file

- website from which access is made (referrer URL)

- browser used and, if applicable, the operating system of your computer, as well as the name of your access provider

[Our website is not hosted by us, but by a service provider who for the purpose of the aforementioned data on our behalf in accordance with. Art. 28 GDPR processed.]

Purpose and legal basis

The processing is carried out to safeguard our overriding legitimate interest in displaying our website and ensuring security and stability on the basis of the Art. 6 para. Lit. f GDPR. The collection of data and storage in log files is essential for the operation of the website. There is no right to object to the processing due to the exception according to Art. 21 Paragraph 1 GDPR. Insofar as the further storage of the log files is required by law, the processing takes place on the basis of Art. 6 Para. 1 lit. c GDPR. There is no legal or contractual obligation to provide the data, but it is technically not possible to call up our website without providing the data.

Storage duration

The aforementioned data are used for the duration of the display of the website [and for technical reasons beyond that for a maximum of [7 days]].

Contact Form

Type and scope of processing

On our website, we offer you the option of contacting us using a form provided. The information that is collected via mandatory fields is required to process the request. In addition, you can voluntarily provide additional information that you believe is necessary to process the contact request.

When using the contact form, your personal data will not be passed on to third parties.

Purpose and legal basis

The processing of your data by using our contact form takes place for the purpose of communication and processing of your request on the basis of your consent in accordance with. Art. 6 para. 1 lit. a GDPR. If your request relates to an existing contractual relationship with us, processing for the purpose of fulfilling the contract is based on Art. 6 Para. 1 lit. b GDPR. There is no legal or contractual obligation to provide your data, but it is not possible to process your request without providing the information in the mandatory fields. If you do not want to provide this data, please contact us by other means.

Storage period

If you use the contact form on the basis of your consent, we will save the data collected each request for a period of three years, starting with the handling of your request or until you withdraw your consent.

[If you use the contact form in the context of a contractual relationship, we will save the data collected for each request Duration of [three years] from the end of the contractual relationship.]

Presences on social media platforms

We maintain so-called fan pages or accounts or channels on the networks mentioned below in order to provide you with information and offers within social networks and to offer you further ways to contact us and to find out about our offers. In the following, we inform you about what data we or the respective social network process from you in connection with the access and use of our fan pages/accounts.

Data we process from you

If you wish to contact us via Messenger or Direct Message via the respective social network, we will normally process your username, through which you contact us and store any other data you provide if this is necessary to process/respond to your request.

The legal basis is Art. 6(1) sentence 1 f) GDPR (processing is necessary to safeguard the legitimate interests of the controller).

(Static) Usage data we receive from the social networks

We receive automatically provided statistics about our accounts through Insights functionalities. The statistics include the total number of page views, likes, page activity and post interactions, reach, video views/views, and the proportion of men/women among our fans/followers.

The statistics contain only aggregated data which cannot be related to individuals. They are not identifiable to us.

What data you process social networks

In order to view the content of our fan pages or accounts, you do not have to be a member of the respective social network and no user account is required for the respective social network.

Please note, however, that when the respective social network is accessed, the social networks also collect and store data from website visitors without a user account (e..B. technical data in order to be able to view the website to you) and use cookies and similar technologies, which we have no influence on. Details can be found in the privacy policy of the respective social network (see the corresponding links above)

If you wish to interact with the content on our fan pages/accounts, e.B.g. comment, share or like our postings/posts and/or contact us via Messenger functions, prior registration with the respective social network and the provision of personal data is required.

We have no influence on the data processing by the social networks in the context of your use. To our knowledge, your data will be stored and processed in particular in connection with the provision of the services of the respective social network, furthermore for the analysis of the usage behaviour (using cookies, pixel/web beacons and similar technologies) on the basis of which advertising based on your interests is played out both within and outside the respective social network. It cannot be excluded that your data will be stored by the social networks outside the EU/EEA and will be passed on to third parties.

Information on, among other things, the exact scope and purposes of the processing of your personal data, the storage period/deletion as well as guidelines on the use of cookies and similar technologies in the context of the registration and use of social networks can be found in the social protection policy/cookie policy. There you will also find information about your rights and possibilities of objection.

LinkedIn page

LinkedIn is a social network of LinkedIn Inc. based in Sunnyvale, California, USA, which enables the creation of private and professional profiles of natural persons and company profiles. Users can maintain their existing contacts within the social network and make new ones. Companies and other organizations can create profiles where photos and other company information are uploaded to present themselves as employers and hire employees. Other LinkedIn users have access to this information and can write their own articles and share this content with others. The focus of the network is on the professional exchange on specialist topics with people who have the same professional interests.

When using or visiting the network, LinkedIn automatically collects data from users or visitors during use or visit, such as user name, job title and IP address. This is done with the help of various tracking technologies. LinkedIn provides benefits based on the data collected in this way, among other things, information, offers and recommendations.

We collect your data via our company profile only in order to realize a possible provision for communication and interaction with us. This survey usually includes: Your name, message content, comment content, and the profile information you provide “publicly.”

The processing of your personal data for our above-mentioned purposes takes place on the basis of our legitimate business and communicative interest in offering an information and communication channel in accordance with Art. 6 para. 1 f GDPR. If you as a user have given your consent to data processing to the respective provider of the social network, the legal basis for the processing extends to Art. 6 para. 1 a, Art. 7 GDPR.

Due to the fact that the actual data processing is carried out by the provider of the social network, our access options are limited to your data. Only the provider of the social network is authorized to have full access to your data. Due to this, only the provider can directly take and implement appropriate measures to fulfill your user rights (request for information, deletion request, objection, etc.). The assertion of corresponding rights is therefore most effectively asserted directly against the respective provider.

Together with LinkedIn, we are responsible for the personal content of our company profile. Data subject rights can be asserted at LinkedIn Inc. as well as with us.

We do not make any decisions regarding the data collected on the LinkedIn site using tracking technologies.

For more information about LinkedIn, visit: https://about.linkedin.com.

Further information on data protection at LinkedIn can be found at: https://www.linkedin.com/legal/privacy-policy.

Further information on the storage period/deletion as well as guidelines for the use of cookies and similar technologies in the context of registration and use on LinkedIn can be found at: https://linkedin.com/legal/cookie-policy?trk=homepage-basic_footer-cookie-policy.

Download files (white paper, case study…)

On the website, we provide you with white papers or case studies that are associated with a high economic effort. These can therefore only be downloaded in return, stating your e-mail address combined with advertising consent.

The lawfulness of the processing is governed by Article 6 (1) (b) GDPR, according to which the processing is lawful if it is necessary for the performance of a contract to which the data subject is a party or for the implementation of pre-contractual measures taken at the request of the data subject.

The processed personal data will be deleted after expiry of the statutory retention obligations, unless the person responsible has a legitimate interest in further storage. In any case, only those data will continue to be stored that are really absolutely necessary to achieve the corresponding purpose. As far as possible, the personal data will be anonymized.

These documents will be made available to you upon request as part of a contractual relationship. The data collected is also necessary for the execution of the contractual measure, since without it it is not possible to respond to the request.

_Wir also uses the data for advertising purposes. The lawfulness of this processing is governed by Article 6 (1) (a) GDPR, according to which the processing is lawful if the data subject has given his or her consent to the processing of personal data concerning him or her for one or more specific purposes.

Your data will be deleted after revocation of your consent, unless the person responsible has a legitimate interest in further storage. This may be the case if the operator must continue to store your data on the basis of a contract with you. In any case, only those data will continue to be stored that are really absolutely necessary to achieve the corresponding purpose. The provision of data is neither legally nor contractually required. Non-provision means that you cannot gain access to the documents.

YouTube Channel

We use a YouTube channel that is part of YouTube’s platform and belongs to Google Ireland Limited, Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland. Please note that your use of our YouTube channel and its features, including the “Discussion” feature, is at your own risk. For more information about how Google collects and uses data, please refer to Google’s Privacy Policy: Google Privacy Policy

Our ability to influence or control Google’s processing and use of your data is limited. When you use Google services, including our YouTube channel, your personal data will be collected, processed and, in some cases, shared with third parties by Google. This includes both information that you actively provide (such as your name, username, or comments on videos) and information that is collected automatically (e.g., through cookies or your location).

Google may use various tools, including Google Analytics, to analyze your data. We have no control over whether such tools are used on our YouTube channel, and we do not have access to the data collected by these tools. Our insight is limited to the profiles of our subscribers.

Even if you don’t have a Google account, Google collects information when you view certain content. This may include information such as your IP address, the browser you are using, and others.

You can influence the data processing by Google in the settings of your Google account and in the specific privacy settings of YouTube. For more information, see Google’s guide to privacy for its products: Google Product Privacy

For more details about Google’s privacy practices and settings, please refer to their privacy policy under the “Privacy Settings” section: Google Privacy Policy

You can also request more information about data protection from Google via a special form: Google Privacy Form

AWS S3

Type and scope of processing

We use AWS S3 to properly provide the content of our website. AWS S3 is a service of the Amazon Web Services, Inc., which acts as a content delivery network (CDN) on our website.

A CDN helps to make the content of our online offer, in particular files such as graphics or scripts, available more quickly with the help of regionally or internationally distributed servers. When you access this content, you establish a connection to servers of the Amazon Web Services, Inc., , whereby your IP address and, if applicable, browser data such as your user agent are transmitted. This data is processed exclusively for the purposes mentioned above and to maintain the security and functionality of AWS S3.

Purpose and legal basis

The use of the Content Delivery Network is based on our legitimate interests, i.e. interest in a secure and efficient provision as well as the optimization of our online offer in accordance with Art. 6 para. 1 lit. f. GDPR.

We intend to transfer personal data to third countries outside the European Economic Area, in particular the USA. The transfer of data to the USA takes place in accordance with Art. 45 para. 1 GDPR on the basis of the adequacy decision of the European Commission. The participating U.S. companies and/or their U.S. subcontractors are certified under the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

In cases where there is no adequacy decision by the European Commission (including US companies that are not EU-U.S. DPF certified), we have other appropriate safeguards with the recipients of the data within the meaning of Art. 44 et seq. GDPR. Unless otherwise stated, these are standard contractual clauses of the EU Commission in accordance with Implementing Decision (EU) 2021/914 of 4 June 2021. A copy of these Standard Contractual Clauses can be found at https://eur-lex.europa.eu/legal-content/DE/TXT/HTML/?uri=CELEX:32021D0914&from=DE .

In addition, before such a third country transfer, we obtain your consent in accordance with Art. 49 para. 1 sentence 1 lit. a. GDPR, which you give via consent in the Consent Manager (or other forms, registrations, etc.). We would like to point out that in the case of transfers to third countries, there may be risks unknown in detail (e.g. data processing by security authorities of the third country, the exact scope and consequences of which we do not know for you, over which we have no influence and of which you may not become aware).

Storage period

The specific storage period of the processed data cannot be influenced by us, but is determined by Amazon Web Services, Inc.. Further information can be found in the privacy policy for AWS S3: https://aws.amazon.com/de/privacy/.

Type and scope of processing

We use Web-Guard Privacy Policy Sync for the proper provision of the content of our website GDPR. DSGVO Web-Guard Privacy Policy Sync is a service of Compliant Business Solutions GmbH, which acts as a Content Delivery Network (CDN) on our website.

A CDN helps to provide content of our online offer, in particular files such as graphics or scripts, more quickly with the help of regionally or internationally distributed servers. When you access this content, you establish a connection to servers of Compliant Business Solutions GmbH, Bockenheimer Anlage 46, 60322 Frankfurt am Main, whereby your IP address and, if applicable, browser data such as your user agent are transmitted. This data is processed exclusively for the above-mentioned purposes and to maintain the security and functionality of GDPR Web-Guard Privacy Policy Sync.

Purpose and legal basis

Storage period

The specific storage period of the processed data cannot be influenced by us, but is determined by Compliant Business Solutions GmbH. Further information can be found in the privacy policy for GDPR Web-Guard Privacy Policy Sync: https://cb-sol.de/datenschutzerklaerung/.

CDNJS

Type and scope of processing

We use CDNJS to properly provide the content of our website. CDNJS is a service of the Cloudflare, Inc., which acts as a content delivery network (CDN) on our website.

A CDN helps to make the content of our online offer, in particular files such as graphics or scripts, available more quickly with the help of regionally or internationally distributed servers. When you access this content, you establish a connection to servers of the Cloudflare, Inc., , whereby your IP address and, if applicable, browser data such as your user agent are transmitted. This data is processed exclusively for the purposes mentioned above and to maintain the security and functionality of CDNJS.

Purpose and legal basis

Storage period

The specific storage period of the processed data cannot be influenced by us, but is determined by Cloudflare, Inc.. Further information can be found in the privacy policy for CDNJS: https://www.cloudflare.com/privacypolicy/.

Clarity

Type and scope of processing

We have integrated Clarity on our website. Clarity is a service provided by Microsoft Corporation and provides optimisation tools that analyse the behaviour and feedback of users of our website through analysis and feedback tools.

Clarity uses cookies and other browser technologies to evaluate user behavior and recognize users.

This information is used, among other things, to compile reports on the activity of the website and to statistically evaluate visitor data. Furthermore, Clarity records clicks, mouse movements and scroll heights to create so-called heat maps and session replays.

In this case, your data will be passed on to the operator of Clarity, which Microsoft Corporation, One Microsoft Way Redmond, WA 98052-6399, United States.

Purpose and legal basis

The use of Clarity is based on your consent in accordance with Art. 6 (1) (a) GDPR and § 25 (1) TDDDG.

We intend to transfer personal data to third countries outside the European Economic Area, in particular the USA. The transfer of data to the USA is carried out in accordance with Art. 45 (1) GDPR on the basis of the adequacy decision of the European Commission. The participating U.S. companies and/or their U.S. subcontractors are certified according to the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

In cases where there is no adequacy decision by the European Commission (including US companies that are not certified according to EU-U.S. DPF), we have agreed with the recipients of the data other appropriate safeguards within the meaning of Art. 44 et seq. GDPR. Unless otherwise specified, these are standard contractual clauses issued by the EU Commission in accordance with Implementing Decision (EU) 2021/914 of 4 June 2021. A copy of these Standard Contractual Clauses can be found at https://eur-lex.europa.eu/legal-content/DE/TXT/HTML/?uri=CELEX:32021D0914&from=DE .

In addition, prior to such a transfer to a third country, we obtain your consent in accordance with Art. 49 (1) sentence 1 lit. a. GDPR, which you give via the consent in the Consent Manager (or other forms, registrations, etc.). We would like to point out that there may be unknown risks in the case of transfers to third countries (e.g. data processing by security authorities of the third country, the exact scope and consequences of which we do not know for you, over which we have no influence and of which you may not become aware).

Storage period

The specific storage period of the processed data cannot be influenced by us, but is determined by Microsoft Corporation. Further information can be found in the privacy policy for Clarity: https://privacy.microsoft.com/en-us/privacystatement.

ClickUp

Type and scope of processing

We use ClickUp from Mango Technologies, Inc., 350 Tenth Ave 5th floor, San Diego, CA 92101, United States, as an analysis service for the statistical evaluation of our online offering. This includes, for example, the number of visits to our online offering, subpages visited and the length of stay of visitors.

ClickUp uses cookies and other browser technologies to evaluate user behavior and recognize users.

This information is used, among other things, to compile reports on the activity of the website.

Purpose and legal basis

The use of ClickUp is based on your consent in accordance with Art. 6 (1) (a) GDPR and § 25 (1) TDDDG.

Storage period

The specific storage period of the processed data cannot be influenced by us, but is determined by Mango Technologies, Inc.. Further information can be found in the privacy policy for ClickUp: https://clickup.com/terms/privacy.

DSGVO Web-Guard API

Type and scope of processing

We use the GDPR Web-Guard API from Compliant Business Solutions GmbH, Bockenheimer Anlage 46, 60322 Frankfurt am Main, to access further services and data from Compliant Business Solutions GmbH. Your IP address will be transmitted to Compliant Business Solutions GmbH. Please note that there is a single section in this Privacy Policy for each additional service we use from Compliant Business Solutions GmbH.

Purpose and legal basis

The use of GDPR Web-Guard API is based on our legitimate interests, i.e. interest in optimising our online offer in accordance with Art. 6 para. 1 lit. f. GDPR.

Storage period

DSGVO Web-Guard Consent Manager

Type and scope of processing

We have integrated the GDPR Web-Guard Consent Manager on our website. The GDPR Web-Guard Consent Manager is a consent solution of Compliant Business Solutions GmbH, Bockenheimer Anlage 46, 60322 Frankfurt am Main, with which the consent to the storage of cookies can be obtained and documented. GDPR Web-Guard Consent Manager uses cookies or other web technologies to recognize users and to store the consent given or revoked.

Purpose and legal basis

The use of the service takes place on the basis of obtaining the legally required consent to the use of cookies in accordance with Art. 6 para. 1 lit. c. GDPR.

Storage period

The specific storage period of the processed data cannot be influenced by us, but is determined by Compliant Business Solutions GmbH. Further information can be found in the privacy policy for GDPR Web-Guard Consent Manager: https://cb-sol.de/datenschutzerklaerung/.

DSGVO Web-Guard Monitoring

Type and scope of processing

We have integrated the GDPR Web-Guard Monitoring on our website. GDPR Web-Guard Monitoring is a service provided by Compliant Business Solutions GmbH, which develops cloud-based software that allows website and application owners to track the GDPR compliance of their services.

GDPR Web-Guard Monitoring offers us the opportunity to permanently check our systems and record changes. Your IP address will be processed. In this case, your data will be passed on to the operator of GDPR Web-Guard Monitoring, Compliant Business Solutions GmbH, Bockenheimer Anlage 46, 60322 Frankfurt am Main.

Purpose and legal basis

The use of GDPR Web-Guard Monitoring is based on our legitimate interests, i.e. interest in optimizing our online offer in accordance with Art. 6 para. 1 lit. f. GDPR.

Storage period

The specific storage period of the processed data cannot be influenced by us, but is determined by Compliant Business Solutions GmbH. Further information can be found in the data protection declaration for GDPR Web-Guard Monitoring: https://cb-sol.de/datenschutzerklaerung/.

Google Ads

Type and scope of processing

We have integrated Google Ads on our website. Google Ads is a service provided by Google Ireland Limited to display targeted advertising to users. Google Ads uses cookies and other browser technologies to evaluate user behavior and recognize users.

Google Ads collects information about visitor behavior on various websites. This information is used to optimize the relevance of advertising. In addition, Google Ads delivers targeted advertising based on behavioral profiles and geographic location. Your IP address and other identification features such as your user agent are transmitted to the provider.

If you are registered with a Google Ireland Limited service, Google Ads can associate the visit with your account. Even if you are not registered with Google Ireland Limited or have not logged in, it is possible that the provider will find out and store your IP address and other identifiers.

In this case, your data will be passed on to the operator of Google Ads, which Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland.

Purpose and legal basis

The use of Google Ads is based on your consent in accordance with Art. 6 para. 1 lit. a. DSGVO and § 25 para. 1 TDDDG

Storage period

The specific storage period of the processed data cannot be influenced by us, but is determined by Google Ireland Limited. Further information can be found in the privacy policy for Google Ads: https://policies.google.com/privacy.

Google Analytics

Type and scope of processing

We use Google Analytics from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland, as an analysis service for the statistical evaluation of our online offer. This includes, for example, the number of visits to our online offer, subpages visited and the length of stay of visitors.

Google Analytics uses cookies and other browser technologies to evaluate user behavior and recognize users.

This information is used, among other things, to compile reports on the activity of the website.

Purpose and legal basis

The use of Google Analytics is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and § 25 para. 1 TDDDG.

Storage period

Google CDN

Type and scope of processing

We use Google CDN to properly provide the content of our website. Google CDN is a service of the Google Ireland Limited, which acts as a content delivery network (CDN) on our website.

A CDN helps to make the content of our online offer, in particular files such as graphics or scripts, available more quickly with the help of regionally or internationally distributed servers. When you access this content, you establish a connection to servers of the Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland, whereby your IP address and, if applicable, browser data such as your user agent are transmitted. This data is processed exclusively for the purposes mentioned above and to maintain the security and functionality of Google CDN.

Purpose and legal basis

Storage period

Google Tag Manager

Type and scope of processing

We use the Google Tag Manager of the Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland. Google Tag Manager is used to manage website tags through an interface and allows us to control the precise integration of services on our website.

This allows us to flexibly integrate additional services in order to evaluate user access to our website.

Purpose and legal basis

The use of Google Tag Manager is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR and § 25 para. 1 TDDDG.

Storage period

Google Translate

Type and scope of processing

We have integrated components from Google Translate on our website. Google Translate is a service of Google Ireland Limited and offers translation solutions for websites and web applications.

When you use the translation function of our website, you connect to servers of the Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland, whereby your IP address and, if applicable, browser data such as your user agent are transmitted. This data will be processed exclusively for the above purposes and for the maintenance of the security and functionality of Google Translate.

Purpose and legal basis

The use of Google Translate is based on your consent in accordance with Art. 6 para. 1 lit. a. GDPR.

Storage time

The actual storage time of the processed data is not influenced by us, but is determined by Google Ireland Limited. For more information, see the privacy policy for Google Translate: https://policies.google.com/privacy.

Google reCAPTCHA

Type and scope of processing

We have integrated components of Google reCAPTCHA on our website. Google reCAPTCHA is a service provided by Google Ireland Limited and enables us to distinguish whether a contact request originates from a natural person or is automated by means of a program. When you access this content, you establish a connection to servers of the Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland, whereby your IP address and, if applicable, browser data such as your user agent are transmitted. Furthermore, Google reCAPTCHA records the user’s dwell time and mouse movements in order to distinguish automated requests from human ones. This data is processed exclusively for the purposes mentioned above and to maintain the security and functionality of Google reCAPTCHA.

Purpose and legal basis

The use of Google reCAPTCHA is based on your consent in accordance with Art. 6 para. 1 lit. a. DSGVO and § 25 para. 1 TDDDG

Storage period

HubSpot API

Type and scope of processing

We use HubSpot, Inc. HubSpot API, Cambridge, Massachusetts, US to access additional services and data from HubSpot, Inc.. Your IP address will be transmitted to HubSpot, Inc.. Please note that a single section of this Privacy Policy is for each additional service we use from HubSpot, Inc..

Purpose and legal basis

The use of HubSpot API is based on our legitimate interests, i.e. interest in optimising our online offer in accordance with Art. 6 sec. 1 lit. f. GDPR.

Storage time

The actual storage time of the processed data is not influenced by us, but is determined by HubSpot, Inc.. For more information, see the privacy policy for HubSpot API: https://legal.hubspot.com/privacy-policy.

HubSpot Analytics

Type and scope of processing

We use HubSpot Analytics from HubSpot, Inc., Cambridge, Massachusetts, US, as an analysis service for the statistical evaluation of our online offer. This includes, for example, the number of visits to our online offer, subpages visited and the length of stay of visitors.

HubSpot Analytics uses cookies and other browser technologies to evaluate user behavior and recognize users.

This information is used, among other things, to compile reports on the activity of the website.

Purpose and legal basis

The use of HubSpot Analytics is based on your consent in accordance with Art. 6 para. 1 lit. a. DSGVO and § 25 para. 1 TDDDG.

We intend to transfer personal data to third countries outside the European Economic Area, in particular the USA. The data transfer to the USA takes place in accordance with Art. 45 para. 1 GDPR on the basis of the adequacy decision of the European Commission. The participating U.S. companies and/or their U.S. subcontractors are certified under the EU-U.S. Data Privacy Framework (EU-U.S. DPF).

In cases where there is no adequacy decision by the European Commission (including US companies that are not EU-U.S. DPF certified), we have agreed other appropriate safeguards with the recipients of the data within the meaning of Art. 44 et seq. GDPR. Unless otherwise stated, these are standard contractual clauses of the EU Commission in accordance with Implementing Decision (EU) 2021/914 of 4 June 2021. A copy of these Standard Contractual Clauses can be found at https://eur-lex.europa.eu/legal-content/DE/TXT/HTML/?uri=CELEX:32021D0914&from=DE .

In addition, prior to such a third country transfer, we obtain your consent in accordance with Art. 49 para. 1 sentence 1 lit. a. DSGVO, which you give via the consent in the Consent Manager (or other forms, registrations, etc.). We would like to point out that in the case of transfers to third countries, there may be risks unknown in detail (e.g. data processing by security authorities of the third country, the exact scope and consequences of which we do not know for you, over which we have no influence and of which you may not become aware).

Storage period

The specific storage period of the processed data cannot be influenced by us, but is determined by HubSpot, Inc.. Further information can be found in the privacy policy for HubSpot Analytics: https://legal.hubspot.com/privacy-policy.

HubSpot Cookie Banner

Type and scope of processing

We have integrated HubSpot Cookie Banner on our website. HubSpot Cookie Banner is a consent solution of the HubSpot, Inc., Cambridge, Massachusetts, US, with which consent to the storage of cookies can be obtained and documented. HubSpot Cookie Banner uses cookies or other web technologies to recognize users and to store the consent given or revoked.

Purpose and legal basis

The use of the service is based on the legally required consent to receive the use of cookies in accordance with Art. 6 sec. 1 lit.c. GDPR.

Storage time

The actual storage time of the processed data is not influenced by us, but is determined by HubSpot, Inc.. For more information, see the privacy policy for HubSpot Cookie Banner: https://legal.hubspot.com/privacy-policy.

HubSpot Forms

Type and scope of processing

We have integrated HubSpot Forms on our website. HubSpot Forms is a HubSpot, Inc. service that provides marketing automation software for marketing services and products, including SEO and content creation, lead management, email marketing, and web analytics.

HubSpot Forms is used to store data entered in forms, e.B. when contacting them via contact form. The specified data can be stored in our Customer Relationship Management System (CRM System).

In this case, your data will be passed on to the operator of HubSpot Forms that HubSpot, Inc. Cambridge, Massachusetts, US.

Purpose and legal basis

We process your data with the help of HubSpot Forms for the purpose of processing the contact request and processing it in accordance with Art. 6 sec. 1 lit.b. GDPR.

The use of HubSpot Forms and the integrated services is subject to our legitimate interest under Art. f. GDPR, optimizing our marketing activities and improving our service quality on the website.

Storage time

The actual storage time of the processed data is not influenced by us, but is determined by HubSpot, Inc.. For more information, see the privacy policy for HubSpot Forms: https://legal.hubspot.com/privacy-policy.

HubSpot Pixel

Type and scope of processing

We use HubSpot Pixel from HubSpot, Inc., Cambridge, Massachusetts, US, to create so-called Custom Audiences, i.e. to segment visitor groups to our online offer, to determine conversion rates and then to optimize them. This happens in particular when you interact with advertisements that we have placed with HubSpot, Inc..

Purpose and legal basis

The use of HubSpot Pixel is based on your consent in accordance with Art. 6 para. 1 lit. a. DSGVO and § 25 para. 1 TDDDG.

Storage period

LinkedIn Ads

Type and scope of processing

We have integrated LinkedIn Ads on our website. LinkedIn Ads is a service provided by LinkedIn Corporation that displays targeted advertising to users. LinkedIn Ads uses cookies and other browser technologies to evaluate user behavior and recognize users. LinkedIn Ads collects information about visitor behavior on various websites. This information is used to optimize the relevance of advertising. Furthermore, LinkedIn Ads delivers targeted advertising based on behavioral profiles and geographic location. Your IP address and other identification features such as your user agent are transmitted to the provider. In this case, your data will be passed on to the operator of LinkedIn Ads, which LinkedIn Corporation, Sunnyvale, California, US.

Web tracking technologies are used to create pseudonymized user profiles. These profiles cannot be merged with you as a natural person, but are used, for example, for segmentation when displaying advertisements.

Purpose and legal basis

The use of LinkedIn Ads is based on your consent in accordance with Art. 6 para. 1 lit. a. DSGVO and § 25 para. 1 TDDDG.

Storage period

The specific storage period of the processed data cannot be influenced by us, but is determined by LinkedIn Corporation. Further information can be found in the privacy policy for LinkedIn Ads: https://www.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy.

LinkedIn Insight-Tag

Type and scope of processing

We use LinkedIn Insight-Tag from LinkedIn Corporation, Sunnyvale, California, US to create target groups, segment visitor groups to our online offer, determine conversion rates and then optimize them. This happens in particular when you interact with advertisements that we have placed with LinkedIn Corporation. For this purpose, LinkedIn Corporation offers retargeting for website visitors in order to display targeted advertising outside of our website.

LinkedIn Insight-Tag collects data about visits to our website, including URL, referrer URL, IP address, device and browser properties (user agent) and timestamps. This data is used to provide anonymized reports about the website audience and ad performance.

Purpose and legal basis

The use of LinkedIn Insight-Tag is based on your consent in accordance with Art. 6 para. 1 lit. a. DSGVO and § 25 para. 1 TDDDG.

Storage period

The specific storage period of the processed data cannot be influenced by us, but is determined by LinkedIn Corporation. Further information can be found in the privacy policy for LinkedIn Insight-Tag: https://www.linkedin.com/legal/privacy-policy.

Personio

Type and scope of processing

We have integrated components from Personio on our website. Personio is a Personio GmbH, Rundfunkplatz 4, 80335 München, Germany service that offers applicant and human resources management software.

Personio is used in connection with application procedures to optimise applicant management, for example through automated analysis of work certificates. Furthermore, Personio allows us to create and evaluate job advertisements.

Purpose and legal basis

The use of the service is based on our legitimate interests, i.e. interest in optimising our application procedures in accordance with Art. 6 sec. 1 lit. f. GDPR. The legal basis for data processing is Section 26 of the German Data Code (BDSG).

Storage time

The actual storage time of the processed data is not influenced by us, but is determined by Personio GmbH. For more information, see the privacy policy for Personio: https://www.personio.de/datenschutz/.

Purpose and legal basis

Storage period

The specific storage period of the processed data cannot be influenced by us, but is determined by Automattic Inc.. Further information can be found in the privacy policy for WordPress CDN: https://automattic.com/privacy/.