Data Protection

General Overview

Technically necessary cookies make the use of our website possible by enabling basic functions such as page navigation and access to secure areas of the website. Visiting our website cannot function properly without these cookies.

When using our website, cookies are used (e.g., to recognize the browser) in order to improve performance (e.g., faster loading of content). When you visit our website, the country and language selection determined or chosen by you is stored in cookies in order to save you having to make a new selection on subsequent visits. It is checked in advance whether your browser supports cookies and this information is stored in another cookie. You will then be shown country and language based localized contact information, which will also be saved. The legal basis for this is your consent (Art. 6 para. 1 lit. a) GDPR, § 25 TTDSG).

We use third-party analytics cookies to understand how visitors use our site. This helps us to improve the quality and content of our site. The aggregate statistical information includes data such as the total number of visitors. For example, we learn how often, and in which order the individual pages were accessed and how much time the visitors spend on our pages on average. We also find out whether users have already visited our website at an earlier point in time. The legal basis for this is the consent you have given in accordance with Art. 6 para 1 S. 1 lit. a) GDPR, § 25 TTDSG. For further information please see Nr. 13 (Web analysis services).

We use advertising cookies in order to be able to assess the efficiency of our advertising measures and derive optimizations from this. The legal basis for this is your consent (Art. 6 para 1 S. 1 lit. a) GDPR, § 25 TTDSG).

(5) Controlling Cookies

You can set your browser so that you are informed about the setting of cookies and only allow cookies in individual cases, exclude the acceptance of cookies for certain cases or in general, and activate the automatic deletion of cookies when the browser is closed. If cookies are deactivated, the functionality of this website may be restricted.

Our website uses cookies. Cookies are small text files that are sent from our web server to your browser when you visit our website and are stored on your end device for later retrieval. They serve to make our offer more user-friendly, effective, and secure.

(6) Cookiebot

We use functions of the provider Cookiebot on our website. The company behind Cookiebot is Cybot A/S, Havnegade 39, 1058 Copenhagen, DK. Among other things, Cookiebot offers us the option of providing you with a comprehensive cookie notice (also known as a cookie banner or cookie notice). By using this function, data from you can be sent to Cookiebot or Cybot, stored and processed. In this data protection declaration we inform you why we use Cookiebot, which data is transferred and how you can prevent this data transfer.

Cookiebot is a software product by Cybot. The software automatically creates a GDPR-compliant cookie notice for our website visitors. In addition, the technology behind Cookiebot scans, controls and evaluates all cookies and tracking measures on our website.

What data is stored by Cookiebot?

If you allow cookies, the following data will be transmitted to Cybot, stored and processed.

• IP address (in anonymous form, the last 3 digits are set to 0)
• Date and time of your consent
• Our website URL
• Technical browser data
• Encrypted, anonymous key
• The cookies you have consented to (as proof of consent)

The following cookies are set by Cookiebot if you have consented to the use of cookies:

Name: CookieConsent
Value: {stamp:’P7to4eNgIHvJvDerjKneBsmJQd9331656935318-2
Purpose: Your consent status is stored in this cookie. This allows our website to read and follow the current status on future visits.
Expiry Date: after one year
Name: CookieConsentBulkTicket
Value: kDSPWpA%2fjhljZKClPqsncfR8SveTnNWhys5NojaxdFYBPjZ2PaDnUw%3d%3331656935318-6
Purpose: This cookie is set if you allow all cookies and have therefore activated a “collective consent”. The cookie then stores its own, random, and unique ID.
Expiry Date: after one year

Legal Basis

If you agree to cookies, your personal data will be processed and stored via these cookies. If we are allowed to use cookies with your consent (Art. 6 Para. 1lit. a) GDPR), this consent is also the legal basis for the use of cookies or the processing of your data. The Cookiebot is used in order to be able to manage the consent to cookies and to enable you to give your consent. The use of this software enables us to operate the website in an efficient and legally compliant manner, which represents a legitimate interest (Article 6 (1) (f) GDPR.

(7) Overview of Cookies Used (Cookiebot):

6. Contact Form

(1) There is a contact form on our website which can be used to contact us electronically. If you contact us via this contact form, data entered in the input fields will be processed by us.

(2) When submitting the form, the following data is also saved:

• Your IP address
• Date and time of sending

Please note that the scope of personal data collected in the contact form also depends on which data you disclose yourself in the contact form.

(3) The purpose of processing personal data is to process the contact request and to be able to contact you with regard to your request. The legal basis for the processing of personal data you provide in connection with the contact is Art. 6 para 1 S. 1 lit. b) GDPR.

(4) Other personal data processed during sending (IP address, date and time of sending) serves to prevent misuse of our contact form. The legal basis for this is our legitimate interest in accordance with Art. 6 (para S. 1 1 lit. f) GDPR. We have a legitimate interest in preventing or being able to prove misuse of our contact form.

(5) The data will be deleted as soon as it is no longer required to achieve the purpose for which they were collected.

(6) The recipient of the data is our server host, who works for us within the framework of an order data agreement.

(7) The provision of personal data is neither required by law nor by contract and is also not required for the conclusion of a contract. You are also not obliged to provide the personal data. However, failure to provide it could mean that you may not be able to use our contact form.

7. E-Mail Contact

(1) It is possible to contact us via the e-mail addresses provided on the website. In this case, the user’s personal data transmitted with the e-mail will be stored. The data will only be used to process the request. The legal basis for processing the data transmitted in the course of sending an e-mail is Art. 6 para 1 S. 1 lit. f) GDPR. If the e-mail contact is aimed at concluding a contract, the additional legal basis for the processing is Art. 6 para 1 S. 1 lit. b) GDPR.

(2) The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. For personal data from the input mask of the contact form and that sent by e-mail, this is the case when the respective conversation with the user has ended. The conversation is over when it can be inferred from the circumstances that the facts in question have been finally clarified.

(3) Irrespective of paragraph 2, the following applies: contact requests from customers which relate to a specific business transaction are stored as long as this is necessary for the implementation and processing of the contract (Art. 6 para 1 S. 1 lit. b) DSGVO) or required under legal storage obligations (Art. 6 para 1 S. 1 lit. c) DSGVO). Contact requests from customers not relating to a specific business transaction are stored as long as the business relationship exists. The legal basis is Art. 6 para 1 S.1 lit. f) GDPR to protect our legitimate interests and those of the customer, in particular support and quality assurance. Customers can object to the processing at any time in individual cases.

8. Collection of Personal Data not from Data Subject

In accordance with Art. 14 GDPR, we would like to inform you about the sources and data categories we use when researching or collecting data from third parties. For this purpose, we use the Echobot tool, which does not collect data directly from you, but moreover from its own research and data from third parties. The legal basis is Art. 5 para 1 lit. d) GDPR and the protection of legitimate interests for the purpose of verifying and updating our database in accordance with Art. 6 para 1 S. 1 lit. f) GDPR. The data is only used within the scope of this data protection declaration. It will only be used for advertising if we have given our consent.

9. Disclocure of Data to Third Partiese

(1) As part of the hosting of our website, your data processed by us will be processed by external service providers on our behalf and according to our instructions on the basis of an order processing contract.

(2) If web analysis services and third-party providers are used, the data will be transmitted to the extent described here, see Section B.

10. Duration of Storage

We process and store your personal data for as long as it is necessary to fulfill our contractual and legal obligations. We delete your personal data as soon as it is no longer required for the above purposes. It may happen that personal data is kept for the period in which claims can be asserted against our companies (statutory limitation periods of three or up to thirty years). In addition, we store your personal data insofar as we are legally obliged to do so. Corresponding proof and storage obligations result from commercial, tax and social security regulations.

11. Automated decision-making, profiling

As a matter of principle, we do not use fully automated decisionfindings in accordance with Article 22 of the GDPR to establish and implement the business relationship.

B. Automated Decision Making, Profiling by Third Parties

12. Technology and Plug-ins

In accordance with Art. 2 GDPR, we do not use fully automated decision-making to establish and implement business relationships.

(1)  Google Analytics

Our website uses Google Analytics, a web analytics service provided by Google Ireland. Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google Analytics uses cookies, which are stored on your end device and which enable an analysis of your use of the website. Among other things, data is recorded about which website you came from, which sub-pages you visited, how often and for how long.

Primarily, Google uses this information to evaluate the use of our website, to compile reports on website activity for us and to provide other services related to the use of our website. Google also uses the data for its own purposes, in particular to provide its web analysis and tracking service or to create a profile.

There may be a link to other data, e.g., via existing Google accounts.

We store your data for 14 months.

Basically, Google processes your IP address when using Google Analytics. We have activated the Google Analytics IP anonymization function on our website. As a result, your IP address will be shortened before it is transmitted to Google within the European Union or in other contracting states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be sent to a Google server in the USA and shortened there.

Google may transmit your personal data to Google group companies, such as Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.

We use Google Analytics to analyze and optimize the use of our website. The statistics obtained allow us to design our website according to your preferences. This processing is based on your voluntarily given consent. The legal basis for this is Art. 6 para 1 S. 1 1 lit. a) GDPR, Art. 49 Paragraph 1 Clause 1 Letter a) GDPR. You can revoke your consent at any time with effect for the future by changing the cookie settings in the Cookie Consent Manager.

You can prevent the setting of cookies at any time by means of a corresponding setting in your browser and thus permanently object to the setting of cookies. In addition, a cookie already set by Google Analytics can be deleted at any time via your browser or other software programs.

It is possible to prevent the collection of data generated by Google Analytics relating to the use of this website and the processing of this data by Google. To do this, the browser add-on must be downloaded and installed from the link https://tools.google.com/dlpage/gaoptout

The installation of the browser add-on is evaluated by Google as a contradiction. This browser add-on tells Google Analytics via JavaScript that no data and information about visits to websites may be transmitted to Google Analytics.

Finally, you can also prevent the transmission of data to Google Analytics by setting an opt-out cookie in your browser.

Further information on the purpose and scope of data collection and its processing by Google within the framework of Google Analytics can be found in Google’s data protection declaration at https://www.google.com/policies/privacy/ and at https://policies.google.com/technologies/ads?hl=de. There you will also receive further information on your rights in this regard and setting options to protect your privacy.

Insofar as consent has been obtained, the above-mentioned service is used exclusively on the basis of Art. 6 para 1 S. 1 lit. a) GDPR and § 25 TTDSG. Consent can be revoked at any time. Unless consent has been obtained, this service is used on the basis of Art. 6 para 1 S. 1 lit. f) GDPR; the website operator has a legitimate interest in optimizing its marketing campaigns.

(2)   Google Tag Manager

This website uses the Google Tag Manager as part of Google Analytics. Tags are small code elements on our website that are used, among other things, to measure traffic and visitor behavior, to record the impact of online advertising and social media, to use remarketing and targeting of target groups and to test and optimize the website. Google Tag Manager is a solution that allows Saueressig to manage website tags via one interface. The Tag Manager tool itself (which implements the tags) is a cookieless domain. The tool triggers other tags, which in turn may collect data. Google Tag Manager does not access this data. If a deactivation has been made at the domain or cookie level, this will remain in place for all tracking tags implemented with Google Tag Manager.

Further information on Google Tag Manager can be found on the Internet at: https://www.google.com/analytics/tag-manager/use-policy/

Insofar as consent has been obtained, the above-mentioned service is used exclusively on the basis of Art. 6 para 1 S. 1 lit. a) GDPR and § 25 TTDSG. Consent can be revoked at any time. Unless consent has been obtained, this service is used on the basis of Art. 6 para 1 S. 1 lit. f) GDPR; the website operator has a legitimate interest in optimizing its marketing campaigns.

(3) Google Ads

We use the online advertising program Google Ads from Google. We use conversion tracking as part of Google Ads. Google sets a cookie on your end device if you have reached our website via a Google ad on an external website.

Google provides us with statistical evaluations using the information collected through the cookies. This tells us the total number of users who have clicked on our advertisement(s) and been redirected to our website. Based on these evaluations, we can see which of the advertising measures used are particularly effective. We do not receive any further data, in particular we cannot identify the users based on this information.

We do not collect or process any personal data ourselves. By using Google Ads and conversion tracking, we pursue our interest in showing you advertising that may be of interest to you, making our website more interesting for you and being able to calculate advertising costs accordingly.

Due to the use of conversion tracking, your browser automatically establishes a direct connection to the Google server. We have no influence on the scope and further use of the data collected through the use of conversion tracking by Google. We will inform you according to our level of knowledge: Through the integration, Google receives the information that you have accessed the relevant part of our website or clicked on one of our advertisements. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, Google will receive your IP address and statistical information (browser type and version number, address of the previously visited website (referrer), date and time of the request) and the Address of the pages that you call up from us.

Google may transmit your personal data to Google group companies, such as Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA.

Processing is based on your voluntarily given consent. The legal basis for this is Art. 6 para 1 S. 1 lit. a) GDPR, Art. 49 para1 Clause 1 lit. a) GDPR. You can revoke your consent at any time with effect for the future by changing the cookie settings in the Cookie Consent Manager.

You can also prevent the setting of cookies at any time in various ways: a) by setting your browser accordingly; in particular, suppressing third-party cookies means that you will not receive any third-party ads; b) by deactivating cookies for conversion tracking by setting your browser so that cookies from the domain https://www.google.de/settings/ads; are blocked; c) by deactivating interest-based ads from providers that are part of the “About Ads” self-regulation campaign via the link https://www.aboutads.info/choices; d) by permanent deactivation in your browser under the link https://www.google.com/settings/ads/plugin. We would like to point out that in this case you may not be able to use all the functions of our website.

Further information on the purpose and scope of data collection and its processing by Google within the framework of Google Ads can be found in Google’s data protection declaration at https://www.google.de/intl/de/policies/privacy/ and https://policies.google.com/technologies/ads?hl=de. There you will also receive further information on your rights in this regard and setting options to protect your privacy

(4)   LinkedIn Insight Tag

We use the Insight Tag of the social network LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (“LinkedIn”) on our website. With this measure, we want to make our website user-friendly and comfortable and continuously optimize it in terms of content and technology.

The LinkedIn Insight Tag enables the collection of data regarding visits to our website, including URL, referrer URL, IP address, device and browser properties, timestamp, and page views. LinkedIn does not share any personally identifiable information with us, but only provides aggregated reports on website audience and viewing performance. LinkedIn also offers retargeting for website visitors, so that we can use this data to display targeted advertising outside of our website without the LinkedIn member being identified. LinkedIn members can control the use of their personal data for advertising purposes in their LinkedIn account settings.

LinkedIn may also transmit personal data to other LinkedIn companies, such as LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA.

The processing is based on your voluntarily given consent. The legal basis for this is Art. 6 Paragraph 1 Clause 1 Letter a) GDPR, Art. 49 para 1 Clause 1 lit. a) GDPR. You can revoke your consent at any time with effect for the future by changing the cookie settings in the Cookie Consent Manager.

You can decide at any time about the function of the tool via your browser settings. We would like to point out that in this case you may not be able to use all the functions of our website.

As an alternative to changing your browser settings, you can click on the following link to prevent LinkedIn from collecting data on this website in the future: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

Further information on the purpose and scope of data collection and its processing by LinkedIn can be found in LinkedIn’s data protection information at https://www.linkedin.com/legal/privacy-policy. There you will also receive further information on your rights in this regard and setting options to protect your privacy.

(5)   Facebook Custom Audiences

The website also uses the “Custom Audiences” remarketing function of Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”). As a result, users of the website are shown interest-based advertisements (“Facebook Ads”) when they visit the social network Facebook or other websites that also use the process. In doing so, we are interested in showing you advertising that is of interest in order to make our website more interesting for you.

Due to the marketing tools used, your browser automatically establishes a direct connection to the Facebook server when you visit our website. We have no influence on the scope and further use of the data collected by Facebook through the use of this tool and are therefore informing you according to our state of knowledge: By integrating Facebook Custom Audiences, Facebook receives the information that you have visited the corresponding website of ours accessed our website or clicked on one of our advertisements. If you are registered with a Facebook service, Facebook can assign the visit to your account. This survey by Facebook enables us, for example, to show you, as a (former) visitor to our website, advertising from us on other websites (so-called retargeting). Even if you are not registered with Facebook or have not logged in, there is a possibility that the provider will find out and store your IP address and other identifiers.

Facebook may also transmit data to other Facebook companies, such as Facebook Inc., 1 Hacker Way, Menlo Park, California 94025, USA.

Your personal data will only be processed if you have given your consent. The legal basis for the processing of your data is Art. 6 para 1 S. 1 lit. a) GDPR, Art. 49 para 1 clause 1 lit. a) GDPR. You can revoke your consent at any time with effect for the future by changing the cookie settings in the Cookie Consent Manager.

In addition, the “Facebook Custom Audiences” function can be deactivated for logged-in users at https://www.facebook.com/settings/?tab=ads .

Further information on the purpose and scope of the data collection and its processing by Facebook can be found at https://www.facebook.com/about/privacy. There you will also receive further information on your rights in this regard and setting options to protect your privacy.

(6)   Twitter Remarketing

We use the Twitter Remarketing service from Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland (“Twitter”). This allows us to address visitors to our website on the Twitter platform with advertising that is of interest to them. Twitter uses so-called “tags” for this purpose. In addition, visits, and data on the use of our website are recorded in pseudonymous form. If you then visit Twitter, you may be shown interest-based advertising.

Twitter may also transmit data to Twitter group companies in third countries, such as Twitter, Inc., 1355 Market St, Suite 900, San Francisco, California 94103, USA.

Your personal data will only be processed if you have given your consent. The legal basis for processing is Art. 6 Paragraph 1 Clause 1 Letter a) GDPR, Art. 49 Paragraph 1 Clause 1 Letter a) GDPR. You can revoke your consent at any time with effect for the future in the Cookie Consent Manager.

In addition, if you do not want interest-based advertising to be displayed to you on Twitter, you can deactivate this function on Twitter at  https://support.twitter.com/Art.s/20171528. Twitter also supports the “Do Not Track (DNT)” option. You can activate this at: https://support.twitter.com/Art.s/20171372.

Further information on the purpose and scope of data collection and its processing by Twitter is available at https://business.twitter.com/de/help/troubleshooting/how-twitter-ads-work.html. There you will also receive further information on your rights in this regard and setting options to protect your privacy.

Insofar as consent has been obtained, the above-mentioned service is used exclusively on the basis of Art. 6 para 1 S. 1 lit. a) GDPR and § 25 TTDSG. Consent can be revoked at any time. Unless consent has been obtained, this service is used on the basis of Art. 6 para 1 S. 1 lit. f) GDPR; the website operator has a legitimate interest in optimizing its marketing campaigns.

(7)   Microsoft Advertising

We use the Microsoft Advertising service from Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland (“Microsoft”) on our website. If you reach our website via a Microsoft Advertising advertisement, Microsoft will set a cookie on your end device. This allows Microsoft and us to recognize that someone clicked on an ad and was directed to our website. Here we only learn the total number of users who clicked on such an advertisement and were forwarded to our website. Microsoft uses the cookie to process information from which pseudonymised usage profiles are created, by means of which visitor behavior is analyzed and which is used to place advertisements.

Microsoft may also transmit data to Microsoft group companies, such as Microsoft Privacy, Microsoft Corporation, One Microsoft Way, Redmond, Washington 98052, USA.

Your personal data will only be processed if you have given your consent. The legal basis for the processing of your data is Art. 6 Paragraph 1 Clause 1 Letter a) GDPR, Art. 49 Paragraph 1 Clause 1 Letter a) GDPR. You can revoke your consent at any time with effect for the future by changing the cookie settings in the Cookie Consent Manager.

You can also prevent this processing by declaring your objection (opt-out) under the following link https://choice.microsoft.com/de-DE/opt-out.

Further information on the purpose and scope of data collection and its processing by Microsoft is available at https://privacy.microsoft.com/de-de/privacystatement. There you will also receive further information on your rights in this regard and setting options to protect your privacy.

Insofar as consent has been obtained, the above-mentioned service is used exclusively on the basis of Art. 6 para 1 S. 1 lit. a) GDPR and § 25 TTDSG. Consent can be revoked at any time. Unless consent has been obtained, this service is used on the basis of Art. 6 para 1 S. 1 lit. f) GDPR; the website operator has a legitimate interest in optimizing its marketing campaigns.

(8) Evalanche

(1) We use the Evalanche marketing tool. The provider is SC-Networks GmbH, Würmstraße 4, 82319 Starnberg (hereinafter Evalanche).

(2) Evalanche is a tool for optimizing and automating our marketing activities. With Evalanche we can e.g., automate our lead generation and target our website content based on audiences. Furthermore, we can analyze user behavior of our website visitors and trigger further marketing campaigns on this basis. For this purpose, Evalanche stores various data of the website visitors, such as addresses, interests, geographic location, etc.

(3) Evalanche is certified according to the internationally recognized IT security standard ISO 27001.

(4) Insofar as consent has been obtained, the above-mentioned service is used exclusively on the basis of Art. 6 para 1 S. 1 lit. a) GDPR and § 25 TTDSG. Consent can be revoked at any time. Unless consent has been obtained, this service is used on the basis of Art. 6 para 1 S. 1 lit. f) GDPR; the website operator has a legitimate interest in optimizing its marketing campaigns.

13. Social Media Plug-Ins

(1) LinkedIn, Xing, YouTube, Facebook, and Twitter

On our website we use the plugins of the social networks LinkedIn, Xing, Youtube, Facebook and Twitter.

We do not use direct plug-ins for this, but the so-called two-click solution. You can decide for yourself whether and when data is transmitted to the operators of the respective social networks. Therefore, when you visit our website, no data is automatically transmitted to the social networks. Only when you click on the respective button yourself does your browser establish a connection to the servers of the respective social network. The plug-in provider contains the information that you have accessed the corresponding website of our online offer. In addition, the data mentioned under 2.1 of this declaration will be transmitted.

We have no influence on the data and data processing operations collected by the respective plug-in providers. Personal data may be transferred to third countries, including the USA, and/or linked to other data, e.g., via an existing user account with the respective provider. Information on the purpose and scope of the data collection and its processing by the plug-in provider can be found in the data protection declarations of these providers. There you will also receive further information on your rights in this regard and setting options to protect your privacy.

1. LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland; https://www.linkedin.com/legal/privacy-policy.
2. Xing AG, Gänsemarkt 43, 20354 Hamburg, DE; https://privacy.xing.com/en/privacy-policy.
3. Youtube LLC, 901 Cherry Ave., San Bruno, CA 94066,
4. USA; https://www.google.de/intl/de/policies/privacy.
5. Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland;
   http://www.facebook.com/policy.php

   http://www.facebook.com/help/186325668085084

   http://www.facebook.com/about/privacy/yourinfo-on-other#applications

   http://www.facebook.com/about/privacy/your-info#everyoneinfo.
6. Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland; https://twitter.com/de/privacy

(2)   Integration of YouTube Videos

We have integrated YouTube videos into our online offer, which are stored on http://www.YouTube.com and can be played directly from our website. These are all integrated in “extended data protection mode”, i.e., no data about you as a user is transmitted to YouTube if you do not play the videos. Only when you play the videos will the data mentioned in the following paragraph be transmitted. We have no influence on this data transmission.

By visiting the website, YouTube receives the information that you have accessed the corresponding subpage of our website. In addition, the data mentioned under 2.1 of this declaration will be transmitted. This occurs regardless of whether YouTube provides a user account through which you are logged in or whether there is no user account. If you are logged in to Google, your data will be assigned directly to your account. If you do not wish to be associated with your profile on YouTube, you must log out before activating the button. YouTube stores your data as usage profiles and uses them for advertising, market research and/or needs-based design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact YouTube to exercise this right.

Further information on the purpose and scope of the data collection and its processing by YouTube can be found in the data protection declaration. There you will also find further information on your rights and setting options to protect your privacy: https://www.google.de/intl/de/policies/privacy.

14. Online Social Media Presence

We operate online presences in social media in order to be able to communicate with you as a customer or interested party and inform you about our products and services and career opportunities. We would like to inform you as to how we process your personal data when you visit our online presence in social media.

14.1 Notices for all platforms

We operate online presences on the following social media of the following platform operators at the following addresses:

• LinkedIn (LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland), our presence: https://www.linkedin.com/company/syntax_57010/,  platform privacy policy: https://www.linkedin.com/legal/privacy-policy?trk=hb_ft_priv
• Xing (New Work SE, Dammtorstraße 30, 20354 Hamburg, Deutschland), our presence: https://www.xing.com/pages/syntaxsystemsgmbh-co-kg, platform privacy policy: https://privacy.xing.com/de/datenschutzerklaerung
• Facebook (Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland), our presence: https://www.facebook.com/SyntaxSystemsDE/, platform privacy policy: https://de-de.facebook.com/policy.php
• Twitter (Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA), our presence: https://twitter.com/syntaxsystemsde, platform privacy policy: https://twitter.com/de/privacy
• YouTube (Google Ireland Limited, Gordon House, Barrow Street Dublin 4), our presence: https://www.youtube.com/c/SyntaxSystems, platform privacy policy: https://policies.google.com/privacy?hl=de
• StepStone (StepStone Deutschland GmbH, Völklinger Straße 1 40219 Düsseldorf, Deutschland), our presence: https://www.stepstone.de/cmp/de/Syntax-Systems-GmbH-Co-KG-33215/jobs.html (see also Section 2.5 above if you apply to us), platform privacy policy: https://www.stepstone.de/ueber-stepstone/rechtliche-hinweise/datenschutzerklaerung/

14.2 Processing by Syntax

This data protection declaration applies to our online presence on social media. The following additional information applies:

The processing of personal data in connection with our presence in social media takes place – unless otherwise described below – on the basis of our legitimate interests in public relations, communication and product improvement. The legal basis for this is Art. 6 para 1 S. 1 1 lit. f) GDPR.

We can see your posts and similar interactions on our online properties and also your public profile (depending on which data you have allowed to be viewed). We may use this information to improve our products and information, particularly on the platforms.

If you contact us via our online presence in social media, we process the data that you make available to us when contacting us in order to answer your request. We may then answer your inquiries via the respective platform. In this context, we would like to point out that communication via the platforms is potentially insecure and that you can contact us at any time via other means and accordingly receive an answer via other means. The legal basis for this is regularly Art. 6 (1) sentence 1 lit. b) GDPR (contract initiation and/or contract execution with regard to answering an inquiry).

In individual cases, it may also be necessary for us to process data left on our online presence in social media or transmitted to us due to legal obligations (e.g., for the purpose of passing them on to authorities or courts) or for the purpose of product monitoring and product safety. The legal basis for this is Art. 6 Paragraph 1 Clause 1 Letter c) (legal obligation) or Letter f) (legitimate interest) GDPR.

In addition, we receive aggregated, anonymous usage statistics from the platforms in individual cases, which we use to evaluate usage behavior and to improve our information offering. These may also have been created by the platform operator on the basis of personal user data. For more information on the relevant services and evaluation options, please refer to the previously linked data protection notices of the respective platform operators.

With regard to the aforementioned processing activities (evaluations), you are entitled to certain data subject rights in accordance with Art. 12 et seq. GDPR (cf. Section 16 below). Of course, you can also assert corresponding rights against us. The following clause 7 applies accordingly. For corresponding inquiries, please use the contact details given above. If we do not have sufficient influence on the respective data processing in individual cases, we reserve the right to refer individual questions and to the extent legally permissible to the respective platform operator. For any assertion of data subject rights against the platform operator, please refer to the respective data protection notices for further information.

14.3 Additional Notes on LinkedIn

As part of our LinkedIn presence, we use LinkedIn’s Lead Gen Forms service. We thus provide download forms that are automatically pre-filled with your contact and profile data as a LinkedIn member. This includes your title, last name, company, industry, postal code, and email address.

By submitting the pre-filled download form, you consent to us sending you interesting information about current developments, news and offers from Syntax to the e-mail address you have provided. The legal basis Art. 6 para 1 S. 1 lit. a) GDPR, § 25 TTDSG.

In order to be able to send you information tailored to your interests, we also took into account other information that you or LinkedIn have transmitted to us when using our services (including information about your function in the company, information about your company, how often you visit our website) when designing the measures have, what other downloads you have made, etc.).

Please refer to Provider’s Data Protection Information for the data LinkedIn makes available to us in this context. The systems used for this also use the aforementioned data automatically in order to constantly improve the respective processes. We also evaluate the use of our e-mails (e.g., whether they are read or not).

This processing of your personal data is based on your consent, which you give by submitting the download form. The legal basis for this is Art. 6 para 1 S. 1 lit. a) GDPR, § 25 TTDSG. You can revoke your consent at any time (e.g., by clicking on the unsubscribe link contained in the e-mails) with effect for the future.

15. Links to other Websites

(1) Our website may contain links to websites operated by third parties that are not covered by this data protection declaration. These third-party websites have their own privacy policies and may also use cookies or other tracking technologies. The respective operator or the person named as responsible for the corresponding website is responsible.

(2) The links to external websites are checked by us before they are linked. However, we have no influence on whether their operators comply with data protection regulations. If we become aware of violations or violations of the law, we will remove the relevant links immediately.

C. Rights of Data Subjects

16. Your Rights

If personal data is processed by you, you are the data subject under GDPR and you have the following rights vis-à-vis us as the person responsible.

a) Rights under Art. 15 et seq. GDPR

(1) The data subject has the right to request confirmation from the person responsible as to whether personal data relating to them are being processed; if this is the case, they have a right to information regarding this personal data and to the information listed in Art. 15 GDPR. Under certain legal conditions, you have the right to correction under Art. 16 GDPR, the right to restriction of processing under Art. 18 GDPR and the right to erasure (“right to be forgotten”) under Art. 17 GDPR. In addition, you have the right to the data you have provided being issued in a structured, common and machine-readable format (right to data transferability) in accordance with Art. 20 GDPR, provided that the processing is carried out using automated procedures and on the basis of consent in accordance with Art. 6 para 1 S. 1 lit. a) or Art. 9 (2) lit. a) or on a contract pursuant to Art. 6 para 1 S. 1 lit. b) GDPR.

b) Widerruf einer Einwilligung nach Art. 7 Abs. 3 GDPR

Beruht die Verarbeitung auf einer Einwilligung können Sie die Einwilligung in die Verarbeitung personenbezogener Daten jederzeit uns gegenüber widerrufen. Bitte beachten Sie, dass der Widerruf erst für die Zukunft wirkt. Verarbeitungen, die vor dem Widerruf erfolgt sind, sind davon nicht betroffen.

c) Right of Objection

You have the option of contacting us or a data protection supervisory authority with an objection (Art. 77 GDPR). The applicable supervisory authority in Baden-Württemberg is:

Der Landesbeauftragte für den Datenschutz und die Informationsfreiheit, Postfach 10 29 32, 70025 Stuttgart, Tel.: 0711/615541-0, FAX: 0711/615541-15, E-Mail: [email protected].

d) Right of Objection according to Article 21 GDPR

In addition to the aforementioned rights, you have the right to object as follows:

Individual Right of Objection

For reasons arising from your particular situation, you have the right at any time to object to the processing of personal data relating to you, which is based on Art. 6 para 1 S.1 lit. e) GDPR (data processing in the public interest) and Art. 6 para 1 S. 1 1 lit f) GDPR (data processing on the basis of a balance of interests) to file an objection; this also applies to profiling based on this provision within the meaning of Art. 4 No. 4 GDPR.

If you file an objection, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms or the processing serves to assert, exercise or defend legal claims.

Right to Object to the Processing of Data for Advertising Purposes

In individual cases, we process your personal data in order to carry out direct advertising. You have the right to object at any time to the processing of your personal data for the purpose of such advertising; this also applies to profiling insofar as it is associated with such direct advertising. If you object to the processing for direct marketing purposes, we will no longer process your personal data for these purposes.

D. Final Provisions

17. Security

1) We have taken technical and organizational security measures in accordance with Art. 24, 32 GDPR to protect your personal data from loss, destruction, manipulation, and unauthorized access. All our employees and all third parties involved in data processing are obliged to comply with the requirements of the GDPR and to treat personal data confidentially.

(2) SSL or TLS encryption: For security reasons and to protect the transmission of confidential content, such as orders or inquiries that you send to us as the site operator, this site uses an SSL or TLS encryption. TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from “http://” to “https://” and by the lock symbol in your browser line.

18. Changes to our Privacy Policy

We reserve the right to change our security and data protection measures if this becomes necessary due to technical developments, the expansion of our services or legal changes. In these cases, we will also adapt our data protection declaration accordingly. Therefore, please consider the currently valid versions of our data protection declaration.