IMPRINT

If a user is a Facebook member and does not want Facebook to collect data about him or her and link it to his or her membership data stored on Facebook, he or she must log out of Facebook before visiting the website.

It is also possible to block Facebook social plug-ins with add-ons for your browser, for example with the “Facebook Blocker”.

Twitter

We use the buttons of the Twitter service. These buttons are provided by Twitter Inc, 795 Folsom St., Suite 600, San Francisco, CA 94107, USA. They are recognizable by terms such as “Twitter” or “follow” associated with a stylized blue bird. Using the buttons, it is possible to share a post or page on Twitter or follow us on Twitter.

When a user accesses our website that contains such a button, his or her browser establishes a direct connection to the servers of Twitter. The content of the Twitter buttons is transmitted by Twitter directly to the user’s browser. We therefore have no influence on the extent of the data that Twitter collects with the help of this plugin and inform the users according to their level of knowledge. According to this, only the IP address of the user, the URL of the respective website is transmitted when the button is obtained, but it is not used for any other purpose than to display the button.

The legal basis for the use of the plug-ins is Art. 6 para. 1 lit. f DS-GVO. For the purpose, duration and scope of data collection and the further processing and use of your data, as well as your rights in this regard and possible settings to protect your privacy, please refer to the data protection information of Twitter: https://twitter.com/privacy?lang=de

Xing and Kununu

We use the buttons of the Xing service. These buttons are provided by XING SE, Dammtorstraße 30, 20354 Hamburg, Germany. With the help of the buttons it is possible to follow us on Xing. Only when you click on the Xing plug-in will your browser establish a direct connection with the Xing servers. The content of the plug-in is transmitted by Xing directly to your browser, which integrates it into the website. We therefore have no influence on the scope of the data that Xing collects with the help of this plug-in and inform users according to their level of knowledge. According to this, only the IP address of the user, the URL of the respective website is transmitted when the button is obtained, but it is not used for any other purpose than to display the button.

The legal basis for the use of the plug-ins is Art. 6 para. 1 lit. f DS-GVO. For the purpose, duration and scope of data collection and the further processing and use of your data, as well as your rights and possible settings to protect your privacy, please refer to the Xing data protection information: https://www.xing.com/app/share?op=data_protection

Linkedin

We use the buttons of the Linkedin service. These buttons are provided by Linkedin Inc, 222 2nd St, San Francisco, CA 94105, USA. With the help of the buttons it is possible to follow us at Linkedin. Only when you click on the Linkedin plug-in will your browser establish a direct connection to the Linkedin servers. The content of the plugin is transmitted by Linkedin directly to your browser, which integrates it into the website. We therefore have no influence on the amount of data Linkedin collects with the help of this plug-in and inform users according to their level of knowledge. According to this, only the IP address of the user, the URL of the respective website is transmitted when the button is obtained, but is not used for any other purpose than the display of the button.

The legal basis for the use of the plug-ins is Art. 6 para. 1 lit. f DS-GVO. For the purpose, duration and scope of data collection and the further processing and use of your data, as well as your rights in this regard and possible settings to protect your privacy, please refer to the Linkedin data protection information: https://www.linkedin.com/legal/privacy-policy

YouTube integration

Our website uses plugins from the YouTube site operated by Google. The operator of the pages is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA.

When you visit our site equipped with a YouTube plugin, a connection to the YouTube servers is established. This tells the YouTube server which of our pages you have visited.

If you are logged in to your YouTube account, you allow YouTube to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account.

YouTube is used in the interest of an attractive presentation of our online offers and thus on the basis of Art. 6 para. 1 lit. f DS-GVO.

Further information on the handling of user data can be found in the YouTube privacy policy at: https://www.google.de/intl/de/policies/privacy

Google Maps

We use the map service Google Maps via an API. The provider of this service is Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

To use the functions of Google Maps it is necessary to store your IP address. This information is usually transferred to a Google server in the USA and stored there. We have no influence on this data transfer.

The use of Google Maps is in the interest of an attractive presentation of the online offers and an easy findability of the places we have indicated on the website. This represents a legitimate interest in the sense of Art. 6 para. 1 lit. f DSGVO.

More information on the handling of user data can be found in Google’s privacy policy: https://www.google.de/intl/de/policies/privacy/

Medium

We use the buttons of the Medium service. These buttons are provided by Medium, 799 Market St, San Francisco, California 94102, USA. They are recognizable by terms such as “Medium” or “Sequence”, combined with a stylized letter M. With the help of the buttons it is possible to follow us at Medium.

When a user accesses our website that contains such a button, his or her browser establishes a direct connection with the servers at Medium. The content of the Medium buttons is transmitted from Medium directly to the user’s browser. We therefore have no influence on the amount of data that Medium collects with the help of this plugin and inform the users according to their level of knowledge. According to this, only the user’s IP address, the URL of the respective website is transmitted when the button is obtained, but it is not used for any other purpose than the display of the button.

The legal basis for the use of the plug-ins is Art. 6 para. 1 lit. f DS-GVO. For the purpose, duration and scope of data collection and the further processing and use of your data, as well as your rights in this regard and possible settings to protect your privacy, please refer to the data protection information of Medium: https://policy.medium.com/medium-privacy-policy-f03bf92035c9

Sound Cloud

We use the buttons of the Soundcloud service. These buttons are offered by SoundCloud Limited, Rheinsberger Str. 76/77, 10115 Berlin, Germany. They can be recognized by terms like “Soundcloud” or “sequence”, connected by a stylized cloud. Using the buttons it is possible to follow us at Soundcloud.

When a user accesses our website that contains such a button, his browser establishes a direct connection to the Soundcloud servers. The content of the Soundcloud buttons is transmitted by Soundcloud directly to the user’s browser. We therefore have no influence on the extent of the data that Medium collects with the help of this plugin and informs the users according to his level of knowledge. According to this, only the user’s IP address, the URL of the respective website is transmitted when the button is obtained, but it is not used for any other purpose than to display the button.

The legal basis for the use of the plug-ins is Art. 6 para. 1 lit. f DS-GVO. For the purpose, duration and scope of data collection and the further processing and use of your data, as well as your rights and possible settings to protect your privacy, please refer to the Soundcloud data protection information: https://soundcloud.com/pages/privacy

CleverReach

We offer you the possibility to subscribe to our newsletter on our website. If you have given us separate consent to inform you by e-mail about our company’s own products and services, the corresponding processing is based on Art. 6 para. 1 p. 1 lit. a DSGVO.

We use the software CleverReach to distribute our newsletter. Within the scope of this registration, you agree that your entered data will be transmitted to CleverReach GmbH & Co. KG. Please note the privacy policy and general terms and conditions of CleverReach GmbH & Co. KG. By subscribing to the newsletter, you also consent to us measuring your click and opening behavior in order to provide you with an optimal offer from our newsletter mailing service.

If we process your personal data on the basis of your consent, you can revoke your consent at any time without this affecting the lawfulness of the processing that has taken place to date. If consent is revoked, we will cease the corresponding data processing. If you no longer wish to receive a newsletter in the future, you can unsubscribe by clicking on the unsubscribe link provided in every newsletter email. Your data for the newsletter dispatch will be deleted within two months after termination of the newsletter receipt, provided that the deletion does not conflict with any legal retention obligations.

Microsoft Bookings

We use Microsoft “Bookings” service for online scheduling. For scheduling, it is mandatory to enter the name and the e-mail address. Optionally, the telephone number, address and notes also be entered. The use of the service is voluntary and based on the user’s consent within the meaning of Article 6 (1) (a) DSGVO.

With the “booking” of an appointment request, the data is transferred to the Microsoft Cloud. The data is then processed within the framework of the Microsoft 365 cloud service in Microsoft data centres in the EU. It has been contractually agreed with Microsoft that the data will not leave the EU area and will not be evaluated, read or processed in any other way by Microsoft. The order processing contract we have concluded with Microsoft Ireland contains the EU data protection clauses, Microsoft’s data centre operation is certified in accordance with the ISO 27018 data protection guidelines, and all data is machine-encrypted. The use of Microsoft 365 is compliant with the GDPR (General Data Protection Regulation) under the condition of voluntariness.

At this point, we would like to point out that there are currently no DSGVO-compliant data protection guarantees for the use of Microsoft 365, as the ECJ has declared the EU-US Privacy Shield invalid as suitable data protection guarantees in a ruling of 16.7.2020. You can find more information and a statement from Microsoft at https://news.microsoft.com/de-de/stellungnahme-zum-urteil-des-eugh-was-wir-unseren-kunden-zum-grenzueberschreitenden-datentransfer-bestaetigen-koennen/.

Your data will be automatically deleted after the deadline, unless you exercise your right to delete beforehand. You have the right to delete the data entered in the scheduling process at any time by sending an informal e-mail to the user concerned. Further information on your rights can be found in the section “Your rights as a user” in our data protection declaration.

Eventbrite

On our website you have the possibility to book tickets for different events. The booking of tickets is done via the ticket booking system Eventbrite. The provider is Eventbrite, Inc., Delaware, 155 5th Street, Floor 7, San Francisco, CA 94103, USA.

When you book a ticket with us, Eventbrite collects all the data you provide during the booking process (name, e-mail address, etc.). In addition, your payment data, IP address and other metadata (browser,

operating system, version, terminal device) are also collected. You can view Eventbrite’s privacy policy here: https://www.eventbrite.de/support/articles/de/Troubleshooting/datenschutzrichtlinie-voneventbrite?lg=de.

The data you enter will remain with us until you request us to delete it, revoke your consent to store it, or the purpose for storing the data no longer applies. Mandatory legal provisions – in particular retention periods – remain unaffected.

The legal basis for data processing is Art. 6(1)(f) DSGVO. The website operator has a legitimate interest in making the booking of tickets as uncomplicated as possible. If appropriate consent has been obtained, the processing is carried out exclusively on the basis of Art. 6(1)(a) GDPR and § 25 (1) TTDSG, insofar the consent includes the storage of cookies or the access to information in the user’s end device (e.g., device fingerprinting) within the meaning of the TTDSG. This consent can be revoked at any time. Data transfer to the US is based on the standard contractual clauses of the EU Commission. Details can be found here: https://www.eventbrite.de/support/articles/de/Troubleshooting/datenschutzrichtlinie-voneventbrite?lg=de.

Data processing

We have concluded a data processing agreement (DPA) with the above-mentioned provider. This is a contract mandated by data privacy laws that guarantees that they process personal data of our website visitors only based on our instructions and in compliance with the GDPR. 

Online-based Audio and Video Conferences (Conference tools)

Data processing

We use online conference tools, among other things, for communication with our customers. The tools we use are listed in detail below. If you communicate with us by video or audio conference using the Internet, your personal data will be collected and processed by the provider of the respective conference tool and by us. The conferencing tools collect all information that you provide/access to use the tools (email address and/or your phone number). Furthermore, the conference tools process the duration of the conference, start and end (time) of participation in the conference, number of participants and other “context information” related to the communication process (metadata).

Furthermore, the provider of the tool processes all the technical data required for the processing of the online communication. This includes, in particular, IP addresses, MAC addresses, device IDs, device type, operating system type and version, client version, camera type, microphone or loudspeaker and the type of connection. Should content be exchanged, uploaded, or otherwise made available within the tool, it is also stored on the servers of the tool provider. Such content includes, but is not limited to, cloud recordings, chat/ instant messages, voicemail uploaded photos and videos, files, whiteboards, and other information shared while using the service. Please note that we do not have complete influence on the data processing procedures of the tools used. Our possibilities are largely determined by the corporate policy of the respective provider. Further information on data processing by the conference tools can be found in the data protection declarations of the tools used, and which we have listed below this text.

Purpose and legal bases

The conference tools are used to communicate with prospective or existing contractual partners or to offer certain services to our customers (Art. 6(1)(b) GDPR). Furthermore, the use of the tools serves to generally simplify and accelerate communication with us or our company (legitimate interest in the meaning of Art. 6(1)(f) GDPR). Insofar as consent has been requested, the tools in question will be used on the basis of this consent; the consent may be revoked at any time with effect from that date.

 Duration of storage

Data collected directly by us via the video and conference tools will be deleted from our systems immediately after you request us to delete it, revoke your consent to storage, or the reason for storing the

data no longer applies. Stored cookies remain on your end device until you delete them. Mandatory legal retention periods remain unaffected. We have no influence on the duration of storage of your data that is stored by the operators of the conference tools for their own purposes. For details, please directly contact the operators of the conference tools.

 Conference tools used

We employ the following conference tools:

 Zoom

We use Zoom. The provider of this service is Zoom Communications Inc, San Jose, 55 Almaden Boulevard, 6th Floor, San Jose, CA 95113, USA. For details on data processing, please refer to Zoom’s privacy policy: https://zoom.us/en-us/privacy.html.

Data transmission to the US is based on the Standard Contractual Clauses (SCC) of the European Commission. Details can be found here: https://zoom.us/de-de/privacy.html.

Data processing

We have concluded a data processing agreement (DPA) with the above-mentioned provider. This is a contract mandated by data privacy laws that guarantees that they process personal data of our website visitors only based on our instructions and in compliance with the GDPR.