Privacy Policy

We, the CIDEON Software & Services GmbH & Co. KG (“Cideon”), thank you for visiting our website. The protection of your personal data is an important concern to us. In the following, we would like to inform you about the processing of personal data of visitors to our website.
 

A. Responsible Person

The following company is responsible for the processing of personal data on this website:
 

CIDEON Software & Services GmbH & Co. KG
Lochhamer Schlag 11
D-82166 Gräfelfing

Phone: +49 (0)89 909003-0
Email: privacy@cideon.com

 

B. Data Protection Officer

You can reach our data protection officers at:

Dr. Martin Schmidt
Data Protection Officer

Comfield Unternehmensberatung GmbH & Co. KG
Uhlandstraße 162 • 10719 Berlin
martin.schmidt@comfield.eu
 

C. Individual Processing Activities

Below you will find information about the processing of personal data on our website.
 

1. Orders via the Website

Data Processing: When you order something from us via our website, we process your name, your business address and your business email address.

Purpose: The purpose of the data processing is to process the order.

Legal basis: The legal basis for the processing is Article 6 paragraph 1 sentence 1 letter b) GDPR (processing of the data is necessary for the performance of the contract), if you order for yourself. If you order for a company, we process the data of the ordering persons on the basis of our legitimate interest in using the data provided for the purpose of fulfilling the contract (see Article 6 paragraph 1 sentence 1 letter f) GDPR).

Recipient of data: The internal recipient of your data is our sales department.

Transfer to third countries: The data will not be transferred to third countries.

Duration of processing: We are required to keep documents relating to orders for up to 10 years. If the invoices or other documents contain personal data of the ordering parties, we will also keep this data for the corresponding period of time. The data will then be deleted.
 

2. Contact

Data processing: If you have any questions about our services or products, you can contact us via one of our contact forms or by phone or email. If you submit your information via a contact form, we will ask you for your first name, last name, and business email address. You may also voluntarily provide your business phone number, position and the company you work for. We may process personal information that you include in your message to us. If you call us, we will generally process your first and last name, as well as the information above, if necessary to respond to your request. If you send us an email, we will process your email address, which usually includes your first and last name and your company affiliation, as well as any other information you provide to us in the course of further communication.

Purpose: We process this information to respond to your request.

Legal basis: If you contact us with a concern about a product or service that you (or your company) have already purchased from us, we will process your data based on our legitimate interest in helping our customers with customer support (see Article 6 Paragraph 1 Sentence 1 Letter b) GDPR, if you have personally purchased a service from us, or Article 6 Paragraph 1 Sentence 1 Letter f) GDPR, in the case of a contract with your company). If you contact us for the first time because you are interested in our products, we will process your data on the basis of your consent, see Article 6 paragraph 1 sentence 1 letter a) GDPR. You may revoke your consent to the storage and processing of your data at any time by sending us an email to privacy@cideon.com with a request to delete the data. If a contract is concluded between us and you after we have contacted you, we will process the data on the basis of Article 6(1)(1)(b) (data processing is necessary for the performance of the contract). If the contract is concluded with your company, we process the data on the basis of our legitimate interest in using the contact details of employees of our contractual partners for the purpose of initiating a contract.

Recipients of the data: Depending on the subject of your contact, internal recipients will be our sales department, our customer service department and possibly other recipients whose input is required to respond to your request. 

Transfer to third countries: No data will be transferred to third countries.

Duration of processing: If you contact us for the first time and voluntarily, we will delete your contact information after six months or as soon as you request us to do so. For support requests in ongoing business relationships, we store the data for the duration of our business relationship.
 

3. Server Logfiles

Data processing: Each time you visit our website, so-called server log files (temporary access data) are collected. This data is necessary for the technical provision and to ensure the functionality of our website. The data processed include: the operating system used, the requesting access provider, the IP address used, the time of the page access, the amount of data sent in bytes, the website from which you came to our website and the browser used. This data is automatically sent to our website server by the browser used on your device.

Purpose: The purpose of the processing is to ensure the smooth operation and technical provision of the website.

Legal basis: The legal basis for the processing of server data is Article 6 paragraph 1 sentence 1 letter f) GDPR. Our legitimate interest is to ensure the smooth operation of the website.

Data recipients: We are the internal data recipient. The external recipients are Fastly Inc. and Cloudflare Inc. In order to protect your data and to comply with applicable data protection regulations, our host providers only process the data collected via this website on behalf of Cideon.

Transfer to third countries: The data may also be processed outside the EU by Fastly Inc. and Cloudflare Inc. in the USA. Information about data processing at Fastly and Cloudflare can be found in their privacy policies:

Fastly: https://www.fastly.com/privacy/
Cloudflare: https://www.cloudflare.com/trust-hub/gdpr/

Duration of processing: Server log files are periodically deleted after no more than 7 days.

 

4. Newsletter

Data processing: If you would like to receive our newsletter Cideon eNews, we need a valid email address from you. We use the so-called double opt-in procedure, i.e. we send an email to the given email address and ask the recipient to confirm his registration. When you register, we also store the date and time of registration and the first and last name of the recipient. No other information is collected.

Purpose: The purpose of the data processing is to send the newsletter and to verify your consent to avoid misuse.

Legal basis: The legal basis for data processing is your consent in accordance with Article 6(1)(1)(a) GDPR. You may revoke your consent to the storage of your data, your email address and its use for sending the newsletter at any time. The revocation can be done via a link in the newsletter itself or by sending an email to privacy@cideon.com.

Recipient of data: The internal recipient of the data is our marketing department (Digital Business). The external recipient is our service provider HubSpot. In order to protect your data and to comply with applicable data protection laws, we have entered into an order processing agreement with HubSpot.

Transfer to third countries: We do not transfer data to third countries.

Duration of processing: We store the data until you revoke your consent and unsubscribe from the newsletter.
 

5. Cookies

We use cookies and similar technologies to recognize the preferences of users of our websites and to help us design the websites in the best possible way. Cookies are small files that are stored on your device and can be used to determine whether your device has previously communicated with our sites. You can find detailed information about the cookies we use in our Cookie Settings.

Below you will find general information about the use of cookies, as well as some of the more important cookie types on our site.
 

5.1. Technically Necessary Cookies

Data Processing: Technically Necessary Cookies are used to technically enable or facilitate the use of the Site. This includes functions such as maintaining sessions, storing language settings or implementing basic preferences, accelerating website performance, and storing consent for the use of cookies.  

Purpose: The purpose of the processing is to provide the technical functions of our website.

Legal basis: Section 25 Paragraph 2 No. 2 TDDDG allows the use of cookies or similar technologies without the user's consent if this is absolutely necessary in order to provide the digital service expressly requested by the user.

Data recipients: The information collected by these technically necessary cookies remains largely internal. However, when you access the contact forms, we share technically necessary information with HubSpot. In order to protect your information and comply with applicable privacy laws, we have entered into an order processing agreement with HubSpot.

Transfer to third countries: We do not transfer data to third countries.

Duration of processing: Technically necessary cookies are only stored for as long as necessary to fulfill their technical function. This can range from a session to several months, depending on the type of cookie and the purpose of processing. Details can be found in the Cookie Settings.
 

5.2. Technically Unnecessary Cookies (Functional, Analytical and Marketing Cookies)

Data processing: Functional, analytics and marketing cookies collect information about your user behavior on our website, including the pages you visit, the links you click and other actions you take on our website.

Purpose: We use functional, analytical and marketing cookies to improve the user experience and to analyze usage patterns in order to optimize the structure and content of the website. In addition, these cookies help us personalize content by providing relevant content and recommendations based on your user behavior. Marketing cookies allow us to deliver personalized advertising based on your interests and behavior. Finally, these cookies enable us to measure and analyze the effectiveness of advertising campaigns and marketing strategies in order to continuously improve our marketing measures.

Legal basis: The use of functional, analysis and marketing cookies is based on your consent in accordance with Article 6(1) sentence 1(a) GDPR.

Data recipients: The information collected by these cookies may be shared with internal recipients, such as our marketing department, and external recipients, such as advertising networks and analytics service providers. We work with third-party providers who process this data on our behalf. These are Adobe, Google, HubSpot, LinkedIn and Vimeo. To protect your data and to comply with the applicable data protection regulations, we have concluded order processing contracts with the third-party providers.

Third country transfer: Data may be transferred to a third country via third-party cookies. You can find information on this in the Cookie Settings.

Duration of processing: Most cookies are automatically deleted when you close your browser (so-called session cookies). Other cookies remain stored on your end device for a certain period of time and enable us to recognize your end device on your next visit (persistent cookies). The storage period may vary depending on the type of cookie and its purpose. You can find information on this in the Cookie Settings.

Do-not-track cookie: If you decide against the use of cookies, we set a so-called “do-not-track cookie”. This enables our web server to recognize that no further cookies may be set. In this case, or if you set your browser so that it generally does not accept cookies, the functions of our website may be restricted, e.g. services such as login areas or content filters may not be provided.

Setting options: Most browsers accept cookies automatically. You can delete cookies that have already been set on your device at any time or set your browser so that it does not accept cookies (although this may restrict the functionality of our website). Please refer to the instructions of your browser or device manufacturer to find out how this works in detail.
 

6. HubSpot

Data processing: This website uses HubSpot, a service of HubSpot Inc., a software provider from the USA with a branch in Ireland (HubSpot Inc., 2nd Floor 30 North Wall Quay, Dublin 1, Ireland, Phone: +353 1 5187500), which we use to cover various aspects of our online marketing. These include, among others:
 

• Content management (e.g. website content)
• Email marketing (newsletters and automated mailings, e.g. to inform about updates)
• Social media publishing & reporting (e.g. LinkedIn)
• Reporting (e.g. traffic sources, hits, etc. ...)
• Contact management (e.g. user segmentation & CRM)
• Provision of landing pages and contact forms

HubSpot uses so-called “web beacons” and also “cookies”, which are stored on your computer and enable us to analyze your use of the website. HubSpot evaluates the information collected (e.g. IP address, geographical location, type of browser, duration of the visit and pages accessed) on our behalf in order to compile reports on the visit and the pages you have visited.

Purpose: The data collected by HubSpot is used exclusively to provide and optimize our marketing. We may use your data to contact you as a visitor to our website and to determine which of our company's services are of interest to you. If you subscribe to our email newsletter and download studies and other documents, we can also use HubSpot to record your visits using your additional personal details (e.g. name, email address) and, if necessary, provide you with targeted information on your preferred topics. We also use HubSpot to provide our contact forms. These enable you, as a visitor to our website, to find out more about our company and request information about our products.

Legal basis: We only use HubSpot's services if you have given us your consent (see Article 6 (1) sentence 1 (a) GDPR). You can revoke your consent to the storage and processing of your data at any time by changing the selection of active cookies in the Cookie Settings.

Data recipients and third country transfer: The data collected by us via HubSpot is stored on the servers of our contractor HubSpot in the EU. To protect your data and to comply with the applicable data protection regulations, we have concluded an order processing contract with HubSpot. You can find HubSpot's full privacy policy here. HubSpot also informs you here about HubSpot Inc.'s compliance with EU data protection regulations. HubSpot provides information about the cookies used by HubSpot here and here.
 

7. GoToWebinar

Data processing: GoToWebinar, a service of GoTo Inc., collects and processes personal data such as names, e-mail addresses, professional information (e.g. company and position), IP addresses and interaction data to conduct the webinar (e.g. participation, questions and answers, survey results).

Purpose: We use GoToWebinar for the planning, implementation and follow-up of online webinars and virtual meetings. This enables us to organize training courses, presentations or meetings efficiently and interactively, regardless of the location of the participants.

Legal basis: If the processing of personal data is necessary to fulfill a contract for participation in a webinar to which you are a party, the processing is carried out in fulfillment of our contractual obligation (Article 6 (1) (b) GDPR). Otherwise, the use of GoToWebinar is based on your consent in accordance with Article 6(1) sentence 1(a) GDPR. You can withdraw your consent at any time.

Data recipients: Internal recipients are our marketing and sales team and customer support. The external data recipient is GoTo Technologies Ireland Unlimited Company, 77 Sir John Rogerson's Quay, Block C, Suite 207, Grand Canal Docklands, Dublin 2, D02 VK60, Ireland. To protect your data and to comply with the applicable data protection regulations, we have concluded a contract with GoTo Technologies Ireland Unlimited Company for the processing of personal data.

Third country transfer: Since GoToWebinar is operated by GoTo Inc, 333 Summer Street Boston, MA 02210USA, a company based in the USA, data may be transferred to the USA. Information on data processing by LogMeIn, Inc. can be found at the following link: https://www.goto.com/company/trust/privacy.

Duration of processing: The data collected by GoToWebinar is stored for as long as is necessary to fulfill the purpose. The storage period is based on Google's internal guidelines.
 

8. Google Services

Data processing: To improve our reach and our online presence, we use various statistics, analysis and tracking services and web applications from Google on this website. These are only activated if you give your consent. The Google services we use include Google Analytics 4 (GA4), DoubleClick, Google Ads Conversion, Google Remarketing and Google Tag Manager (GTM).
 

• Google Analytics 4 (GA4): With the consent of our users, we analyze the use of our website with GA4. GA4 uses "cookies" to collect information about the usage and surfing behavior of users and possibly merge it with other data. The data is transferred to Google servers and stored there.
  
• DoubleClick: DoubleClick helps us to analyze and improve the reach and effectiveness of our advertisements. DoubleClick sets cookies to track whether users have seen or clicked on an ad and can thus control the frequency of display.
  
• Google Ads Conversion: With Google Ads Conversion, we can track whether users have reached our website via an advertisement in order to determine the effectiveness of our advertising measures.
  
• Google Remarketing: This function enables us to display relevant advertising to users across devices after a visit to our website. Google evaluates user behavior and displays targeted advertising within the Google advertising network.
  
• Google Tag Manager (GTM): The GTM helps us to integrate and manage cookies, statistical tools or tracking services on our website. The GTM itself does not set any cookies and does not create its own user profiles.
   

Purpose: The purpose of the processing is to improve user-friendliness by analysing usage patterns, personalizing content based on user behaviour, displaying targeted advertising, and evaluating the effectiveness of advertising campaigns and marketing strategies.

Legal basis: The use of Google services is based on your consent in accordance with Article 6(1) sentence 1(a) GDPR. You can withdraw your consent to the storage and processing of your data at any time by changing the selection of active cookies in the Cookie Settings. We also use Google Consent Mode v2 for this purpose. This mode transmits cookie and data protection settings from the cookie consent tool on your website to the Google services used. If the users’ consent, the Google services set cookies and read data from end devices in order to get to know the users better. This is not possible without consent. 

Data recipients: The internal recipient of the data is our marketing department. External recipients are Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland and Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. To protect your data and to comply with the applicable data protection regulations, we have concluded an order processing contract with Google.

Third country transfer: Data may also be processed outside the EU by Google Inc. in the USA. Information on data processing at Google can be found at this link: https://policies.google.com/privacy.

Duration of processing: The data collected by Google is stored for as long as is necessary to fulfill the purpose. The storage period depends on Google's internal guidelines.

Further setting options for handling Google cookies: You can prevent participation in Google tracking procedures as follows:

• Disabling cookies for conversion tracking: set your browser to block cookies from the domain “www.googleadservices.com”. You can find more information here: https://www.google.de/settings/ads.
• Deactivation of interest-based ads: Use the link http://www.aboutads.info/choices. Please note that this setting will be deleted if you delete your cookies.
• Permanent deactivation in your browser: Use the corresponding plugins for Firefox, Internet Explorer or Google Chrome at http://www.google.com/settings/ads/plugin.
• Browser add-on: You can prevent the collection and processing of data generated by Google cookies by downloading and installing the browser add-on available here: https://tools.google.com/dlpage/gaoptout.
   

9. Google reCAPTCHA

Data processing: We use Google reCAPTCHA on our website to check and prevent interactions on our website through automated access, for example by so-called bots. This service allows Google to determine from which website a request is sent and from which IP address you are using the reCAPTCHA input box. In addition to your IP address, Google may also collect other information that is necessary to offer and guarantee this service.

Purpose: The purpose of the processing is to ensure the security of our website and to prevent unwanted, automated access in the form of spam or similar.

Legal basis: The legal basis for the use of Google reCAPTCHA is Article 6(1) sentence 1(f) GDPR. Our legitimate interest lies in the security of our website and the prevention of automated access.

Data recipient: The external data recipient is Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA. In cases where personal data is transferred to countries outside the European Union (EU) where there is no adequate level of protection in accordance with the GDPR, we agree to apply EU standard contractual clauses.

Third country transfer: Data may also be processed outside the EU by Google LLC in the USA. Information on data processing at Google can be found at this link: https://policies.google.com/privacy .

Duration of processing: The data collected by Google reCAPTCHA is stored for as long as is necessary to fulfill the purpose.
 

10. Adobe Services

Data processing: On our website, we use Adobe Analytics and Adobe Launch, services provided by Adobe Systems Software Ireland Limited, 4-6 Riverwalk, Citywest Business Park, Dublin 24, Ireland (hereinafter “Adobe”). These services help us to analyze user behavior on our website and to optimize the website. Adobe Analytics uses “cookies” to collect information about the usage behavior of users. This includes, among other things, the IP address, the browser used, the operating system, the pages visited and the date and time of the visit. Adobe Launch is used to manage and implement these tracking and analysis tools.

Purpose: The purpose of the processing is to analyze user behavior to optimize the website structure and content, to provide relevant content based on user behavior and to measure the effectiveness of marketing measures.

Legal basis: The use of Adobe Analytics and Adobe Launch is based on your consent in accordance with Article 6 (1) sentence 1 (a) GDPR. You can revoke your consent at any time by making the appropriate settings in the Cookie Settings.

Data recipient: Adobe Systems Software Ireland Limited, 4-6 Riverwalk, Citywest Business Park, Dublin 24, Ireland.

Third country transfer: The data may also be processed by Adobe Inc, 345 Park Avenue, San Jose, CA 95110-2704, USA. Information on data processing by Adobe can be found in Adobe's privacy policy: https://www.adobe.com/de/privacy.html.

Duration of processing: The data collected by Adobe Analytics and Adobe Launch is stored for as long as is necessary to fulfill the purpose. The storage period is based on Adobe's internal guidelines.

Setting options: You can prevent the collection and processing of data generated by Adobe cookies by making the appropriate settings in your browser or by using the Adobe opt-out tool available here: https://www.adobe.com/de/privacy/opt-out.html.
 

11. LinkedIn Insight and LinkedIn Ads

Data processing: With the consent of the users, we use the “LinkedIn Insight Tag”, a JavaScript code snippet, on our website. The LinkedIn Insight Tag enables LinkedIn to collect data about the users of our website, including URL, referrer URL, IP address, device, and browser characteristics (user agent) and timestamp. The IP addresses are shortened or (if they are used to reach LinkedIn members across devices) hashed.

Purpose: LinkedIn Insight and associated tools such as LinkedIn Ads provide us with extensive statistical and analytical information on the use of our website, the reach of our advertising and how you as a user react to our content. The tag also allows us to track conversions, retarget our website visitors and gain additional information about the LinkedIn members who view our ads.

Legal basis: The LinkedIn Insight Tag is used on the basis of your consent in accordance with Article 6(1) sentence 1(a) GDPR. You can revoke your consent at any time by making the appropriate settings in the Cookie Settings.

Data recipient: The external recipient is LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland.

Third country transfer: Data processing may also be carried out by LinkedIn Corporation, 1000 W. Maude Avenue, Sunnyvale, CA 94085, USA. Information on data processing by LinkedIn can be found in LinkedIn's privacy policy: https://www.linkedin.com/legal/privacy-policy.

Duration of processing: The members' direct identifiers are removed within seven days in order to pseudonymize the data. This remaining pseudonymized data is deleted within 180 days.

Settings options: LinkedIn members can control the use of their personal data for advertising purposes in their account settings. You can find more information on protecting your privacy in LinkedIn's privacy policy at: https://www.linkedin.com/legal/privacy-policy.
 

12. Vimeo

Data processing: On our website, we use plugins from the video portal Vimeo, operated by Vimeo, Inc, 555 West 18th Street, New York, New York 10011, USA. When you visit one of our pages equipped with a Vimeo plugin and play the video, a connection to the Vimeo servers is established. This tells the Vimeo server which of our pages you have visited. Vimeo also obtains your IP address. This also applies if you are not logged in to Vimeo or do not have a Vimeo account.

Purpose: The purpose of the processing is to provide and embed video content on our website.

Legal basis: Vimeo is used on the basis of your consent in accordance with Article 6(1) sentence 1(a) GDPR. You can revoke your consent at any time by making the appropriate settings in the Cookie Settings.

Data recipient: Vimeo, Inc, 555 West 18th Street, New York, New York 10011, USA. To protect your data and to comply with the applicable data protection regulations, we have concluded an order processing contract with Vimeo.

Third country transfer: Data is also processed outside the EU by Vimeo, Inc. in the USA. Information on data processing by Vimeo can be found in Vimeo's privacy policy: https://vimeo.com/privacy.

Duration of processing: The data collected by Vimeo is stored for as long as is necessary to fulfill the purpose. The storage period depends on Vimeo's internal guidelines.

Setting options: Further information and setting options to protect your privacy can be found in Vimeo's privacy policy at: https://vimeo.com/privacy.
 

13. Facebook

We operate a Facebook fan page to present our company. For this purpose, we use the technical platform and services of Facebook Ireland Ltd, 4 Grand Canal Square Grand Canal Harbour, Dublin 2, Ireland. We would like to point out that you use this Facebook fan page and its functions on your own responsibility. This applies in particular to the use of the interactive functions (e.g. commenting, sharing, rating).

When you visit our Facebook fan page, Facebook collects your IP address and other information about you, your Facebook account, your interests, your activities and your usage behavior. In addition, information is accessed that is stored on your end device or browser in the form of cookies. The information collected by Facebook is used to provide us, as the operator of the Facebook fan page, with statistical information about the use of the fan page.

Facebook provides more information on this under the following link: de-de.facebook.com/help/pages/insights

The data collected about you in this context is processed by Facebook Ltd. and may be transferred to countries outside the European Union. Facebook describes in general terms what information Facebook receives and how it is used in its data usage guidelines. There you will also find information on how to contact Facebook and the settings options for advertisements.

The data usage guidelines are available at the following link: de-de.facebook.com/about/privacy 

You can find Facebook's complete data policy here: de-de.facebook.com/full_data_use_policy 

Facebook does not conclusively and clearly state how it uses the data from visits to Facebook fan pages for its own purposes, to what extent activities on the fan page are assigned to individual users, how long Facebook stores this data and whether data from a visit to the fan page is passed on to third parties, and we are not aware of this.

When you access a Facebook fan page, the IP address assigned to your end device and other log files are transmitted to Facebook. According to Facebook, the IP address is anonymized (for “German” IP addresses). Facebook also stores information about the end devices of its users (e.g. as part of the “login notification” function); Facebook may still be able to assign IP addresses to individual users.

If you are currently logged in to Facebook as a user, a cookie with your Facebook ID is stored on your device. This enables Facebook to track that you have visited this page and how you have used it.

If you want to avoid this, you should log out of Facebook or deactivate the “stay logged in” function, delete the cookies on your device and close and restart your browser. This will delete Facebook information that can be used to directly identify you. This allows you to use our Facebook fan page without revealing your Facebook ID. When you access interactive functions on the page (like, comment, share, message, etc.), a Facebook login screen appears. After logging in, you will once again be recognizable to Facebook as a specific user.

Information on how you can manage or delete existing information about you can be found on the following Facebook support pages: de-de.facebook.com/about/privacy

As the operator of the Facebook fan page, we do not collect or process any other data from your use of our service. Further information about Facebook and other social networks and how you can protect your data can also be found at: www.youngdata.de.
 

14. Other Social Media Presences (YouTube, LinkedIn, Xing, X)

To present our company, we also operate presences on the social media platforms YouTube (platform operator: Google Ireland Limited Gordon House, Barrow Street Dublin 4), LinkedIn (platform operator: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland), Xing (platform operator: New Work SE, Am Strandkai 1, 20457 Hamburg, Germany) and X (platform operator: Twitter International Unlimited Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland). Some of the parent companies of these platform operators are based in the USA.

We would like to point out that you use these offers and their functions on your own responsibility. This applies in particular to the use of their interactive functions (e.g. commenting, sharing, rating or creating a user profile).

When you visit the platforms, our presence there and view our content there, the respective platform operator collects personal data from you. This includes, for example: Your IP address, log files, information about you personally (e.g. age, gender, interests), information about the type and duration of use, information about your account there (if any) and information about your activities and usage behavior. In addition, information can be accessed that is stored on your end device or in your browser in the form of cookies, for example. We have therefore concluded an agreement on joint responsibility within the meaning of Article 26 GDPR or an order processing contract within the meaning of Article 28 GDPR with the platform operators - insofar as offered by them.

The information collected by the respective platform operator is used to provide us with statistical information about the use of our content there and to display personalized content tailored to you and to advertise our content.

In addition, the data collected about you is also processed by the respective platform operator on its own responsibility and may be transferred to countries outside the European Union (for example to the respective parent companies in the USA).

What information the respective platform operators receive and how it is used is described by the platform operators in general terms in their respective data protection notices. 

There you will also find information on the use of cookies and plugins on the platforms, on how to contact the platform operators or the data protection officers, as well as on the data protection settings there and the setting options for (personalized) advertisements.

The way in which the platform operators use your data for their own purposes, the extent to which your data is merged with other data and used further, the extent to which activities on our presence there are assigned to individual users, how long this data is stored and whether data is passed on to third parties is determined by the platform operators. We have no influence on this data processing, which is the responsibility of the platform operators.

You can find more information on this under the following links:

• YouTube: https://policies.google.com/privacy?hl=en
• LinkedIn: https://www.linkedin.com/legal/privacy-policy
• Xing: https://privacy.xing.com/en/privacy-policy
• X: https://x.com/en/privacy 

You can also easily access our social media presences on YouTube, Facebook, X and LinkedIn from our website. For this purpose, we have embedded links in the form of graphics or in the form of the corresponding logos on our website. By clicking on these logos, you will be redirected to the respective platform or our presence there. The data processing described above then takes place there.
 

15. LinkedIn Plugin

Data processing: On our website we use the LinkedIn plugin, a service of LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (hereinafter "LinkedIn"). Through this service, LinkedIn collects data about visits to our website, including URL, referrer URL, IP address, device and browser characteristics (user agent) and timestamp. The IP addresses are shortened or hashed, and the direct identifiers of the members are removed within seven days to pseudonymize the data.

Purpose: The purpose of the processing is to analyze user behavior to optimize the website structure and content, to provide relevant content based on user behavior, to display targeted advertising and to measure the effectiveness of marketing measures.

Legal basis: The LinkedIn plugin is used on the basis of your consent in accordance with Article 6(1) sentence 1(a) GDPR. You can revoke your consent at any time by making the appropriate settings in the Cookie Settings.

Data recipients: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland and LinkedIn Inc, Sunnyvale, 1000 W Maude Avenue, USA. To protect your data and to comply with the applicable data protection regulations, we have concluded an order processing contract with LinkedIn.

Third country transfer: Data may also be processed outside the EU by LinkedIn Inc. in the USA. Information on data processing by LinkedIn can be found in LinkedIn's privacy policy: https://www.linkedin.com/legal/privacy-policy.

Duration of processing: The members' direct identifiers are removed within seven days in order to pseudonymize the data. This remaining pseudonymized data is then deleted within 180 days.

Setting options: You can prevent LinkedIn from participating in tracking as follows:

• Opt-out: By making the appropriate settings in your browser or via the cookie consent tool on our website.
  
• Browser add-on: You can prevent the collection and processing of data generated by LinkedIn cookies by installing appropriate browser add-ons.
   

D. Rights of Data Subjects

As a data subject, you can exercise the following rights if the legal requirements are met:

Right to Information (Art. 15 GDPR):
You have the right to request information about whether and which personal data about you is being processed. This includes information about the purpose of processing, the categories of personal data, the recipients or categories of recipients to whom the data is disclosed and the planned storage period.

Right to Rectification (Art. 16 GDPR):
You have the right to request the rectification of inaccurate or the completion of incomplete personal data stored about you.

Right to Erasure (Art. 17 GDPR):
In certain circumstances, you have the right to request the erasure of your personal data, e.g. if the data is no longer required for the purposes for which it was collected or if you have withdrawn your consent and there is no other legal basis for the processing.

Right to Restriction of Processing (Art. 18 GDPR):
In certain circumstances, you have the right to request the restriction of the processing of your personal data, e.g. if you contest the accuracy of the data or the processing is unlawful, but you oppose its erasure.

Right to Data Portability (Art. 20 GDPR):
You have the right to receive your personal data, which you have provided to us, in a structured, commonly used and machine-readable format and the right to transmit those data to another controller without hindrance from us.

Right to Object (Art. 21 GDPR):
You have the right to object, on grounds relating to your particular situation, at any time to processing of your personal data, unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms.

Automated Decision-Making Including Profiling (Art. 22 GDPR):
You have the right not to be subject to a decision based solely on automated processing - including profiling - which produces legal effects concerning you or similarly significantly affects you.

Right to Lodge a Complaint with a Supervisory Authority (Article 77(1) GDPR):
You have the right to lodge a complaint with a supervisory authority. As a rule, you can contact the supervisory authority of your usual place of residence or workplace or the Bavarian State Office for Data Protection Supervision (Bayerisches Landesamt für Datenschutzaufsicht), represented by the President Michael Will, P.O. Box 1349, 91504 Ansbach.
 

E. Changes to This Data Protection Notice

For legal and/or organizational reasons, it may be necessary from time to time to amend or adapt our data protection information. Please refer to the latest version of our data protection notice, which you can access automatically by clicking on the relevant link displayed when you request a cookie. Changes always apply to personal data collected in the future. This does not affect the protection of data collected and stored by us prior to the change.
 

F. Contact

If you have any questions about data protection, you can contact us at any time. The best way to do this is to use the contact address below or the contact details in our legal notice. You can ask us at any time whether and which of your data we have stored. In addition, you can send us information, blocking, deletion and correction requests regarding your personal data as well as revocations of consents granted or suggestions by email or letter.

You can also contact our data protection officer at any time, who is available in the event of requests for information, suggestions or complaints:

Dr. Martin Schmidt
Data Protection Officer

Comfield Unternehmensberatung GmbH & Co. KG
Uhlandstraße 162 • 10719 Berlin
martin.schmidt@comfield.eu

As of: August 30, 2024