Data Protection Information

 

Introduction

In the following, we will inform you about the processing of your personal data by us and the claims and rights to which you are entitled under data protection regulations, in particular the European General Data Protection Regulation (GDPR).

This data protection information explains to you the type, scope and purpose of the processing of personal data within our website (hereinafter “website”). The data protection information applies regardless of the domains, platforms and devices used (e.g. desktop, mobile, etc.).

Personal data within the meaning of the GDPR are all data that can be related to you personally, e.g. B. Name, address, email addresses, user behavior. Which data is processed in detail and how it is used depends largely on the services we use.

We use various other terms within the meaning of the GDPR in our data protection information. This includes terms such as processing, restriction of processing, profiling, pseudonymisation, person responsible, processor, recipient, third party, consent, supervisory authority and international organization. Art. 4 DS-GVO you can find corresponding definitions for these terms.

1. Who is responsible for data processing and who can I contact?

Our website address is: https://oviavo.com.

Responsible body is:

Oviavo GmbH

Almstadtstrasse 6

10119 Berlin

+49 30 20994700

datenschutz@oviavo.com

2. Which sources and data do we use?

We process personal data that we receive from you as part of our business relationship. Relevant personal data are contact details (name, address and other contact details, birthday), patient data (personal health data, test results, etc.). In addition, this can also include contract data (e.g. services used, names of clerks, payment information), advertising and sales data (including advertising scores), documentation data (e.g. consultation protocol), data on your use of the telemedia offered (e.g. time of access to our website , pages clicked on by us or interest in our products) as well as content data (e.g., entries in the contact form).

When using the website for purely informational purposes, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server. When you visit our website, we collect the following access data, which is technically necessary for us to display our website to you and to ensure stability and security. The access data includes the IP address, date and time of the request, time zone difference to Greenwich Mean Time (GMT), content of the request (i.e. name of the specific website accessed), access status / HTTP status code, amount of data transferred, referrer URL (previously visited page), operating system and its interface, language and version as well as type of browser software, notification of successful access. We will also receive your personal data if you contact us using the contact form or email. Personal data here are, for example, name, address, email address, telephone number (hereinafter referred to as “contact details”).

3. What do we process your data for (purpose of processing) and on what legal basis?

We process personal data in accordance with the provisions of the European General Data Protection Regulation (DS-GVO) and the Federal Data Protection Act (BDSG) for the following purposes and on the basis of the following legal bases:

Purpose

Insofar as you have given us your consent to the processing of personal data for certain purposes, in particular to contact us (e.g. via our contact form or by e-mail to process and process the request, sending cost estimates by e-mail, advertising by telephone, E-mail, WhatsApp, SMS, etc.), the legality of this processing is given on the basis of your consent. Consent given can be revoked at any time. Please note that the revocation will only take effect in the future. Processing that took place before the revocation is therefore not affected by the revocation. The revocation can be made to the above contact details or to info@oviavo.com. Legal basis consent, Art. 6 Para. 1a GDPR

Purpose

When you contact us (via contact form, phone, email, WhatsApp, SMS or other messenger services), your details will be processed in addition to any consent given to process the contact request and its processing based on the implementation of pre-contractual measures, Art. 6 Paragraph 1b GDPR, processed. Legal basis Implementation of pre-contractual measures at the request of the person, Art. 6 Para. 1b GDPR

Purpose

When you contact us (via contact form, phone, e-mail, WhatsApp, SMS or other messenger services) in connection with your application, we process your data to check your suitability for the position (or other open positions in our companies, if applicable) and to conduct the application process. Your application data will be reviewed by us upon receipt of your application. Suitable applications will then be forwarded internally to the department managers responsible for the respective open position. They will then decide on the further procedure. Within the company, only those persons who need access to your data for the proper processing of our application procedure have access to your data. Legal basis Establishment of an employment relationship, § 26 BDSG and after completion of the application procedure in the event of rejection to safeguard legitimate interests, Art. 6 para. 1f DS-GVO (defence against claims), if necessary, if consent is granted, Art. 6 para. 1a DS-GVO

Purpose

We process your access data (see data listed above under point 2) to safeguard our legitimate interests or those of third parties. We pursue the following legitimate interests in particular:

  • Guarantee of IT security, in particular the security of the website;
  • Advertising or market and opinion research, unless you have objected to the use of your data;
  • Assertion of legal claims and defense in legal disputes; Legal basis As part of the balancing of interests in order to safeguard legitimate interests, Art. 6 Para. 1f GDPR

Purpose

We are subject to various legal obligations, i.e. legal requirements (e.g. money laundering law, trade and tax laws). The purposes of processing include identity and age verification, fraud and money laundering prevention, and the fulfillment of tax control and reporting obligations. Legal basis Art. 6 Para. 1c GDPR) or in the public interest, Art. 6 Para. 1e GDPR

Declaration of consent

By ticking the box for the declaration of consent when completing the contact form, you expressly declare your informed consent to the collection, processing and use of the personal information, including your health data, that you provide so that we can obtain information about the possibilities and costs of medical services that you are interested in. This includes the transfer of your data to clinics, fertility centers and other health providers within the EU / EEA. Note: You can revoke this consent at any time with effect for the future by informing us of your revocation. Contact information and detailed information on how we handle your personal data and protect your privacy can be found in this data protection notice.

4. Who will get my data?

Within the company, those departments have access to your data that need it to fulfill our contractual and legal obligations. Processors employed by us (Art. 28 GDPR) can also receive data for these purposes. These are companies in the categories of IT services, logistics, telecommunications, debt collection, advice and consulting, as well as sales and marketing. If we use contract processors to provide our services, we take suitable legal precautions as well as appropriate technical and organizational measures to ensure the protection of personal data in accordance with the relevant statutory provisions. Data will only be passed on to third parties within the framework of the legal requirements or on the basis of your consent. We only pass on user data to third parties if this is, for example, based on Art. 6 Para. 1 lit. b) GDPR is required for contractual purposes or based on legitimate interests in accordance with. Art. 6 para. 1 lit. f. DS-GVO in an economical and effective operation of our business or you have consented to the data transfer. Under these conditions, recipients of personal data can e.g. B., fertility centers, clinics and other health providers within the EU / EEA. DS-GVO in an economical and effective operation of our business operations or you have consented to the data transfer. Under these conditions, recipients of personal data can e.g. B., fertility centers, clinics and other health providers within the EU / EEA. DS-GVO in an economical and effective operation of our business operations or you have consented to the data transfer. Under these conditions, recipients of personal data can e.g. B., fertility centers, clinics and other health providers within the EU / EEA.

5. How long will my data be stored?

As far as necessary, we process and store your personal data for the duration of our business relationship, which includes, for example, the initiation and execution of a medical treatment contract as well as care and non-medical advice following treatment in one of our partner fertility centers. In addition, we are subject to various storage and documentation obligations arising from the German Commercial Code (HGB), the German Fiscal Code (AO), and the Money Laundering Act (GwG), among others. The periods of retention or documentation stipulated there are two to ten years. Finally, the duration of storage is also assessed according to the statutory limitation periods, which, for example, according to §§ 195 ff. of the German Civil Code (BGB), are usually three years, but in certain cases can be up to thirty years, whereby the regular limitation period is three years.

6. Will data be transferred to a third country or to an international organization?

A data transfer to third countries (countries outside the European Economic Area – EEA) does not take place.

7. What data protection rights do I have?

Each data subject has:

  • the right to information according to Art. 15 GDPR,
  • the right to correction according to Art. 16 GDPR,
  • the right to erasure according to Art. 17 GDPR,
  • the right to restriction of processing according to Art. 18 GDPR and
  • the right to data portability from Art. 20 GDPR.

You can also revoke your consent, generally with effect for the future. In addition, there is a right of appeal to a data protection supervisory authority (Art. 77 DS-GVO in conjunction with Section 19 BDSG). In addition, we would like to point out your right of objection according to Art 21 GDPR:

Information about your right of objection according to Art. 21 GDPR

You have the right, for reasons that arise from your particular situation, to object at any time to the processing of personal data concerning you which is based on Article 6 Paragraph 1 Letter e GDPR (data processing in the public interest) and Article 6 Paragraph 1 Letter f of data protection – Basic Regulation (data processing on the basis of a balance of interests) takes place, to lodge an objection; This also applies to profiling based on this provision within the meaning of Article 4 No. 4 GDPR, which we use to evaluate questionnaires or for advertising purposes.

If you object, we will no longer process your personal data unless we can prove compelling legitimate reasons for processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

In individual cases we process your personal data in order to operate direct mail. You have the right to object at any time to the processing of personal data concerning you for the purpose of such advertising; this also applies to profiling insofar as it is connected to such direct advertising. If you object to processing for direct marketing purposes, we will no longer process your personal data for these purposes.

The objection can be made informally and there are no costs other than the transmission costs according to the basic tariffs. If possible, the objection should be sent to:

by post: Oviavo GmbH, Almstadtstraße 6, 10119 Berlin,

or by phone: +49 15129609116, or by email: info@oviavo.com

8. To what extent is there automated decision-making in individual cases?

In principle, we do not use fully automated automatic decision-making in accordance with Article 22 of the GDPR to establish and implement the business relationship. If we use these procedures in individual cases, we will inform you about this separately, provided this is required by law.

9. To what extent will my data be used for profiling (scoring)?

We partially process your data automatically with the aim of evaluating certain personal aspects (profiling). We use profiling, for example, in the following cases:

  • We use evaluation tools to provide you with targeted information and advice on products and services. These enable needs-based communication and advertising, including market and opinion research.
  • In order to be able to answer your inquiries in the best possible way, we analyze your individual requirements such as: “Treatment request, treatment period and place of residence”.

10. Do I have an obligation to provide data?

The provision of personal data is not required by law for our services. You are not obliged to provide the personal data. Without this data, however, we will usually not be able to provide you with an individual offer from our clinic partners or to advise you on this.

11. Sending of cost estimates by email (email dispatch)

With the following information, we will inform you about the content of our email dispatch of cost estimates as well as the registration, dispatch and statistical evaluation procedures as well as your rights of objection. By requesting a free offer, you declare that you agree to the receipt and the procedure described below. Content of the email: We send cost estimates, emails and other electronic notifications with promotional information only with the consent of the recipient or legal permission. If the content of the registration is specifically described, you are decisive for the consent of the user. They also contain information about our products, offers, promotions and our company.

Statistical survey and analysis –

The cost estimates and offers within the scope of the email dispatch contain a so-called “web beacon”, ie a pixel-sized file that is called up when our emails are opened. As part of this retrieval, technical information, such as information about the browser and your system, as well as your IP address and the time of retrieval, are initially collected. This information is used for the technical improvement of the services based on the technical data or the target groups and their reading behavior based on their retrieval locations (which can be determined using the IP address) or the access times. The statistical surveys also include determining whether the emails are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to the individual recipients. However, it is not our aim to observe individual users. The evaluations serve us much more to recognize the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users. The statistical surveys and analyzes as well as the logging of the registration process are carried out on the basis of our legitimate interests in accordance with. Art. 6 para. 1 lit. f GDPR. We are interested in the use of user-friendly and secure email dispatch that serves both our business interests and the expectations of the users. To recognize the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users. The statistical surveys and analyzes as well as the logging of the registration process are carried out on the basis of our legitimate interests in accordance with. Art. 6 para. 1 lit. f GDPR. We are interested in the use of user-friendly and secure email dispatch that serves both our business interests and the expectations of the users. To recognize the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users. The statistical surveys and analyzes as well as the logging of the registration process are carried out on the basis of our legitimate interests in accordance with. Art. 6 para. 1 lit. f GDPR. We are interested in the use of user-friendly and secure email dispatch that serves both our business interests and the expectations of the users.

Termination / Revocation

You can cancel the receipt of our emails at any time, ie revoke your consent. You will find a link to cancel the receipt of emails at the end of each email. If users have only registered to receive emails and have canceled this registration, their personal data will be deleted.

12. Contacting us

When you contact us (via contact form, telephone, email, Whatsapp or other messenger services), your details will be used to process the contact request and to process it in accordance with. Art. 6 para. 1b DSGVO processed. Your details will be saved in our customer relationship management system (“CRM system”). We use the CRM system “Salesfore” from the provider: salesforce.com EMEA Limited Company No. 05094083, registered in England, Floor 26 Salesforce Tower, 110 Bishopsgate, EC2N 4AY London, United Kingdom) on the basis of our legitimate interests (efficient and fast processing of user inquiries). For this purpose, we have concluded a contract with Salesforce with so-called standard contractual clauses, in which Salesfore undertakes to process user data only in accordance with our instructions and to comply with the EU data protection level. Salesforce is also certified under the Privacy Shield Agreement and thus offers an additional guarantee of compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000KzX1AAK&status=Active ).

13. Access data and log files

On the basis of our legitimate interests within the meaning of Art. 6 Paragraph 1f GDPR, we collect data on every access to the server on which our online offer is located (so-called server log files). The access data includes the name of the accessed website, file, date and time of access, amount of data transferred, notification of successful access, browser type and version, the operating system used by you, referrer URL (previously visited page), IP address and the requesting provider . For security reasons (e.g. to investigate acts of abuse or fraud), log file information is stored for a maximum of seven days and then deleted. Data, the further storage of which is necessary for evidence purposes, are excluded from deletion until the respective incident has been finally clarified.

14. Cookies & range measurement

Cookies are information that is transferred from our web server or third party web servers to the user’s web browser and stored there for later retrieval. Cookies can be small files or other types of information storage. We use “session cookies” which are only stored for the duration of the current visit to our online presence (e.g. to enable the storage of your login status or the shopping cart function and thus the use of our online offer at all). A randomly generated unique identification number, a so-called session ID, is stored in a session cookie. A cookie also contains information about its origin and the storage period. These cookies cannot save any other data. Session cookies are deleted when you have finished using our online offer and, for example, log out or close the browser. This data protection information informs users about the use of cookies in the context of pseudonymous range measurement. If users do not want cookies to be stored on their computer, they are asked to deactivate the corresponding option in the system settings of their browser. Saved cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer. You can use cookies, which are used for range measurement and advertising purposes, via the deactivation page of the network advertising initiative ( This data protection information informs users about the use of cookies in the context of pseudonymous range measurement. If users do not want cookies to be stored on their computer, they are asked to deactivate the corresponding option in the system settings of their browser. Saved cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer. You can use cookies, which are used for range measurement and advertising purposes, via the deactivation page of the network advertising initiative ( This data protection information informs users about the use of cookies in the context of pseudonymous range measurement. If users do not want cookies to be stored on their computer, they are asked to deactivate the corresponding option in the system settings of their browser. Saved cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer. You can use cookies, which are used for range measurement and advertising purposes, via the deactivation page of the network advertising initiative ( you are asked to deactivate the corresponding option in the system settings of your browser. Saved cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer. You can use cookies, which are used for range measurement and advertising purposes, via the deactivation page of the network advertising initiative ( you are asked to deactivate the corresponding option in the system settings of your browser. Saved cookies can be deleted in the system settings of the browser. The exclusion of cookies can lead to functional restrictions of this online offer. You can use cookies, which are used for range measurement and advertising purposes, via the deactivation page of the network advertising initiative (http://optout.networkadvertising.org/ ) and also the US website ( http://www.aboutads.info/choices ) or the European website ( http://www.youronlinechoices.com/uk/your- ad choices / ).

15. Google Analytics

On the basis of your consent (in accordance with Art. 6 Paragraph 1 lit. a GDPR) we use the web analysis service Google Analytics from Google Inc. (“Google”) to optimize our website. Google uses cookies. The information generated by the cookie about the use of the online offer by the user is usually transferred to a Google server in the USA and stored there. Google is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law ( https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active). Google will use this information on our behalf to evaluate the use of our online offer by users, to compile reports on the activities within this online offer and to provide us with other services related to the use of this online offer and the internet. In doing so, pseudonymous user profiles can be created from the processed data. We use Google Analytics to only display the advertisements placed within Google’s advertising services and its partners to users who have also shown an interest in our online offer or who have certain characteristics (e.g. interests in certain topics or products that are based on the visited Websites are determined), which we transmit to Google (so-called. “Remarketing” or “Google Analytics Audiences”). With the help of remarketing audiences, we would also like to ensure that our ads correspond to the potential interest of the users and are not annoying. We only use Google Analytics with activated IP anonymization. This means that the IP address of the user is shortened by Google within member states of the European Union or in other states party to the Agreement on the European Economic Area. The full IP address is only transmitted to a Google server in the USA and shortened there in exceptional cases. The IP address transmitted by the user’s browser will not be merged with other Google data. Users can prevent the storage of cookies by setting their browser software accordingly; http://tools.google.com/dlpage/gaoptout?hl=de . You can find more information on the use of data by Google, setting and objection options on the Google website:  https://www.google.com/intl/de/policies/privacy/partners  (“Use of data by Google when you use websites or apps of our partners “),  http://www.google.com/policies/technologies/ads  (” use of data for advertising purposes “),  http://www.google.de/settings/ads  (” manage information that Google uses, to show you advertisements “).

16. Google Re/Marketing Services

On the basis of our legitimate interests (ie interest in the analysis, optimization and economic operation of our online offer within the meaning of Art. 6 Para. 1f GDPR), we use Google’s marketing and remarketing services (“Google Marketing Services” for short) Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA, (“Google”). Google is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law ( https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active). The Google Marketing Services allow us to display advertisements for and on our website in a more targeted manner in order to only present users with advertisements that potentially correspond to their interests. If, for example, a user is shown advertisements for products that he was interested in on other websites, this is referred to as “remarketing”. For these purposes, when our and other websites on which Google Marketing Services are active are called up, Google immediately executes a code from Google and so-called (re) marketing tags (invisible graphics or code, also known as “web Beacons ”) integrated into the website. With their help, an individual cookie, ie a small file, is saved on the user’s device (comparable technologies can also be used instead of cookies). The cookies can be set by various domains, including google.com, doubleclick.net, invitemedia.com, admeld.com, googlesyndication.com or googleadservices.com. This file records which websites the user has visited, which content he is interested in and which offers he has clicked, as well as technical information about the browser and operating system, referring websites, visiting time and other information on the use of the online offer. The IP address of the user is also recorded, whereby we inform you as part of Google Analytics that the IP address is shortened within member states of the European Union or in other contracting states of the Agreement on the European Economic Area and only transferred in full to a Google server in the USA and shortened there in exceptional cases. The IP address will not be merged with the user’s data within other Google offers. The aforementioned information can also be combined by Google with information from other sources. If the user then visits other websites, the advertisements tailored to him can be displayed according to his interests. The user data is processed pseudonymously as part of Google Marketing Services. This means that Google does not save and process e.g. the name or email address of the user, but processes the relevant data cookie-related within pseudonymous user profiles. In other words, from Google’s point of view, the ads are not managed and displayed for a specifically identified person, but for the cookie owner, regardless of who this cookie owner is. This does not apply if a user has expressly allowed Google to process the data without this pseudonymisation. The information collected by Google Marketing Services about users is transmitted to Google and stored on Google’s servers in the USA. The Google marketing services we use include the online advertising program “Google AdWords”. In the case of Google AdWords, each AdWords customer receives a different “conversion cookie”. Cookies cannot therefore be tracked via the websites of AdWords customers. The information obtained with the help of the cookie is used to create conversion statistics for AdWords customers who have opted for conversion tracking. AdWords customers find out the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they do not receive any information with which users can be personally identified. We can also use the “Google Tag Manager” to integrate and manage Google analysis and marketing services on our website. You can find more information on the use of data for marketing purposes by Google on the overview page: who have opted for conversion tracking. AdWords customers find out the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they do not receive any information with which users can be personally identified. We can also use the “Google Tag Manager” to integrate and manage Google analysis and marketing services on our website. You can find more information about Google’s data usage for marketing purposes on the overview page: who have opted for conversion tracking. The AdWords customers find out the total number of users who clicked on their ad and were redirected to a page with a conversion tracking tag. However, they do not receive any information with which users can be personally identified. We can also use the “Google Tag Manager” to integrate and manage Google analysis and marketing services on our website. You can find more information about Google’s data usage for marketing purposes on the overview page: with which users can be personally identified. We can also use the “Google Tag Manager” to integrate and manage Google analysis and marketing services on our website. You can find more information about Google’s data usage for marketing purposes on the overview page: with which users can be personally identified. We can also use the “Google Tag Manager” to integrate and manage Google analysis and marketing services on our website. You can find more information about Google’s data usage for marketing purposes on the overview page: https://www.google.com/policies/technologies/ads , the data protection information from Google is   available at https://www.google.com/policies/privacy . If you would like to object to interest-based advertising by Google Marketing Services, you can use the setting and opt-out options provided by Google:  http://www.google.com/ads/preferences .

17. Facebook, Custom Audiences and Facebook Marketing Services

Due to our legitimate interests in the analysis, optimization and economic operation of our online offer and for these purposes, the so-called “Facebook pixel” of the social network Facebook, which is operated by Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA, or if you are based in the EU, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland (“Facebook”) is used. Facebook is certified under the Privacy Shield Agreement and thus offers a guarantee that it will comply with European data protection law ( https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active). With the help of the Facebook pixel, Facebook is on the one hand able to determine the visitors of our online offer as a target group for the presentation of advertisements (so-called “Facebook ads”). Accordingly, we use the Facebook pixel to only display the Facebook ads placed by us to Facebook users who have also shown an interest in our online offer or who have certain characteristics (e.g. interests in certain topics or products based on the visited Websites) that we transmit to Facebook (so-called “Custom Audiences”). With the help of the Facebook pixel, we also want to ensure that our Facebook ads correspond to the potential interest of the users and are not annoying. With the help of the Facebook pixel, we can also understand the effectiveness of Facebook ads for statistical and market research purposes by seeing whether users have been redirected to our website after clicking on a Facebook ad (so-called “conversion”). The Facebook pixel is integrated directly by Facebook when you visit our website and can save a so-called cookie, ie a small file, on your device. If you then log in to Facebook or visit Facebook while logged in, the visit to our online offer will be noted in your profile. The data collected about you is anonymous to us, so it does not allow us to draw any conclusions about the identity of the user. However, the data is stored and processed by Facebook, so that a connection to the respective user profile is possible and can be used by Facebook as well as for its own market research and advertising purposes. If we should transmit data to Facebook for comparison purposes, it will be encrypted locally in the browser and only then sent to Facebook via a secure https connection. This is done solely for the purpose of making a comparison with the data that is also encrypted by Facebook. Furthermore, when using the Facebook pixel, we use the additional function “extended comparison” (this involves data such as telephone numbers, e-mail addresses or Facebook IDs of the users) to create target groups (“Custom Audiences” or “Look Alike Audiences”) Facebook (encrypted) transmitted. Further information on the “extended adjustment”: If we should transmit data to Facebook for comparison purposes, it will be encrypted locally in the browser and only then sent to Facebook via a secure https connection. This is done solely for the purpose of making a comparison with the data that is also encrypted by Facebook. Furthermore, when using the Facebook pixel, we use the additional function “extended comparison” (this involves data such as telephone numbers, email addresses or Facebook IDs of the users) to create target groups (“Custom Audiences” or “Look Alike Audiences”) Facebook (encrypted) transmitted. Further information on the “extended adjustment”: If we should transmit data to Facebook for comparison purposes, it will be encrypted locally in the browser and only then sent to Facebook via a secure https connection. This is done solely for the purpose of making a comparison with the data that is also encrypted by Facebook. Furthermore, when using the Facebook pixel, we use the additional function “extended comparison” (this involves data such as telephone numbers, email addresses or Facebook IDs of the users) to create target groups (“Custom Audiences” or “Look Alike Audiences”) Facebook (encrypted) transmitted. Further information on the “extended adjustment”: This is done solely for the purpose of making a comparison with the data that is also encrypted by Facebook. Furthermore, when using the Facebook pixel, we use the additional function “extended comparison” (this involves data such as telephone numbers, email addresses or Facebook IDs of the users) to create target groups (“Custom Audiences” or “Look Alike Audiences”) Facebook (encrypted) transmitted. Further information on the “extended adjustment”: This is done solely for the purpose of making a comparison with the data that is also encrypted by Facebook. Furthermore, when using the Facebook pixel, we use the additional function “extended comparison” (this involves data such as telephone numbers, email addresses or Facebook IDs of the users) to create target groups (“Custom Audiences” or “Look Alike Audiences”) Facebook (encrypted) transmitted. Further information on the “extended adjustment”: E-mail addresses or Facebook IDs of the users) for the formation of target groups (“Custom Audiences” or “Look Alike Audiences”) transmitted to Facebook (encrypted). Further information on the “extended adjustment”: E-mail addresses or Facebook IDs of the users) for the formation of target groups (“Custom Audiences” or “Look Alike Audiences”) transmitted to Facebook (encrypted). Further information on the “extended adjustment”: https://www.facebook.com/business/help/611774685654668 ). Also on the basis of our legitimate interests, we use the “Custom Audiences from File” procedure of the social network Facebook, Inc. In this case, the email addresses of the newsletter recipients are uploaded to Facebook. The upload process is encrypted. The upload is used solely to determine the recipients of our Facebook ads. We want to ensure that the ads are only shown to users who are interested in our information and services. The processing of the data by Facebook takes place within the framework of Facebook’s data usage guidelines. Accordingly, general information on the presentation of Facebook ads in the Facebook data usage guidelines: https://www.facebook.com/policy.php . Special information and details about the Facebook pixel and how it works can be found in the Facebook help section:  https://www.facebook.com/business/help/651294705016616 . You can object to the collection by the Facebook pixel and the use of your data to display Facebook ads. To set which types of advertisements are shown to you within Facebook, you can call up the page set up by Facebook and follow the instructions there on the settings for usage-based advertising:  https://www.facebook.com/settings?tab=ads. The settings are platform-independent, ie they are adopted for all devices such as desktop computers or mobile devices. To prevent the collection of your data by means of the Facebook pixel on our website, please click the following link: Facebook opt-out Note: If you click the link, an “opt-out” cookie will be saved on your device. If you delete the cookies in this browser, you will have to click the link again. Furthermore, the opt-out only applies within the browser you are using and only within our web domain on which the link was clicked. You can find more information about Facebook “Custom Audience” re-targeting and how you can change your settings at:  https://www.facebook.com/settings/?tab=ads  and https://www.facebook.com/about/privacy  You can object to the use of Facebook Custom Audience under the following links:  https://www.facebook.com/settings/?tab=ads  and  http: //www.youronlinechoices .com / de / praferenzmanagement /  You can use cookies, which are used for range measurement and advertising purposes, also via the deactivation page of the network advertising initiative ( http://optout.networkadvertising.org/ ) and also the US website ( http: / /www.aboutads.info/choices ) or the European website ( http://www.youronlinechoices.com/uk/your-ad-choices/ ).

18. Applicant management

We use Gmail for our applicant management. Your data can be deleted at any time on request.

19. Our social media presence

You will find us with a presence on social networks and platforms so that we can communicate with you there and inform you about our services. We would like to point out that your data can be processed outside the European Union and that the data is usually processed there for market research and advertising purposes. Usage profiles can be created from the usage behavior and the resulting interests of the users. These usage profiles can in turn be used, for example, to place advertisements inside and outside the platforms that presumably correspond to the interests of the users. For this purpose, cookies may be stored on the users’ computers, in which the usage behavior and the interests of the users are stored. Other data can also be stored in these usage profiles, especially if the users are members of the respective platforms and are logged into them. The processing of the users’ personal data takes place on the basis of our legitimate interests in the broadest possible communication with our users in accordance with Art. 6 Paragraph 1 lit. f GDPR. If the respective social networks obtain consent for the data processing, the legal basis for the processing is Art. 6 Paragraph 1 lit. a GDPR. For information about the respective processing and the respective possibilities of objection, we refer to the following linked data protection information of the providers: especially if the users are members of the respective platforms and are logged in to them. The processing of the users’ personal data takes place on the basis of our legitimate interests in the broadest possible communication with our users in accordance with Art. 6 Para. 1 lit. f GDPR. If the respective social networks obtain consent for the data processing, the legal basis for the processing is Art. 6 Para. 1 lit. a GDPR. For information about the respective processing and the respective possibilities of objection, we refer to the following linked data protection information of the providers: especially if the users are members of the respective platforms and are logged in to them. The processing of the users’ personal data takes place on the basis of our legitimate interests in the broadest possible communication with our users in accordance with Art. 6 Paragraph 1 lit. f GDPR. If the respective social networks obtain consent for the data processing, the legal basis for the processing is Art. 6 Paragraph 1 lit. a GDPR. For information about the respective processing and the respective possibilities of objection, we refer to the following linked data protection information of the providers: The processing of the users’ personal data takes place on the basis of our legitimate interests in the broadest possible communication with our users in accordance with Art. 6 Para. 1 lit. f GDPR. If the respective social networks obtain consent for the data processing, the legal basis for the processing is Art. 6 Paragraph 1 lit. a GDPR. For information about the respective processing and the respective possibilities of objection, we refer to the following linked data protection information of the providers: The processing of the users’ personal data takes place on the basis of our legitimate interests in the broadest possible communication with our users in accordance with Art. 6 Para. 1 lit. f GDPR. If the respective social networks obtain consent for the data processing, the legal basis for the processing is Art. 6 Paragraph 1 lit. a GDPR. For information about the respective processing and the respective possibilities of objection, we refer to the following linked data protection information of the providers:

In the case of requests for information and the assertion of user rights, we recommend that these be asserted directly with the providers, as the providers have direct access to the data. If you still need support, you can use the contact details above.

20. Integration of third-party services and content

Within our online offer, we use content or service offers from third parties on the basis of our legitimate interests (i.e. interest in the analysis, optimisation and economic operation of our online offer in the sense of Art. 6 Para. 1f DSGVO) in order to integrate their content and services, such as videos or fonts (hereinafter uniformly referred to as “content”). This always presupposes that the third-party providers of such content are aware of the IP address of the users, as without the IP address they would not be able to send the content to their browsers. The IP address is therefore necessary for the display of this content. We make every effort to use only such content whose respective providers use the IP address only to deliver the content. Third party providers may also use so-called pixel tags (invisible graphics, also known as “web beacons”) for statistical or marketing purposes. The “pixel tags” can be used to evaluate information such as visitor traffic on the pages of this website. The pseudonymous information may also be stored in cookies on the user’s device and may contain, among other things, technical information on the browser and operating system, referring web pages, visiting time and other details on the use of our online offer, as well as being able to be linked to such information from other sources. The following presentation offers an overview of third party providers and their contents, along with links to their data protection information, which contains further information on the processing of data and, in some cases already mentioned here, the possibility to object (so-called opt-out):

  • External fonts from Google, Inc.,  https://www.google.com/fonts  (“Google Fonts”). The integration of Google Fonts takes place by calling up a server on Google (usually in the USA). Data protection information:  https://www.google.com/policies/privacy/ , Opt-Out:  https://www.google.com/settings/ads/ .
  • Maps provided by the “Google Maps” service provided by the third-party provider Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Data protection information:  https://www.google.com/policies/privacy/ , Opt-Out:  https://www.google.com/settings/ads/ .
  • Videos from the “YouTube” platform of the third-party provider Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. Data protection information:  https://www.google.com/policies/privacy/ , Opt-Out:  https://www.google.com/settings/ads/ .
  • Functions of the Google+ service are integrated into our online offer. These functions are offered by the third party provider Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. If you are logged into your Google+ account, you can link the contents of our pages to your Google+ profile by clicking the Google+ button. This enables Google to assign your visit to our website to your user account. We would like to point out that, as the provider of the pages, we have no knowledge of the content of the data transmitted or their use by Google+. Data protection information:  https://www.google.com/policies/privacy/ , Opt-Out:  https://www.google.com/settings/ads/ .
  • Functions of the Instagram service are integrated into our online offer. These functions are offered by Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA. If you are logged into your Instagram account, you can link the contents of our pages to your Instagram profile by clicking the Instagram button. This enables Instagram to assign your visit to our website to your user account. We would like to point out that, as the provider of the pages, we have no knowledge of the content of the data transmitted or its use by Instagram. Data protection information:  http://instagram.com/about/legal/privacy/ .
  • Our online offer uses functions of the LinkedIn network. The provider is the LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. Each time you visit one of our pages that contains LinkedIn functions, a connection to LinkedIn servers is established. LinkedIn is informed that you have visited our website with your IP address. If you click on the LinkedIn “Recommend” button and are logged into your LinkedIn account, LinkedIn is able to assign your visit to our website to you and your user account. We would like to point out that, as the provider of the pages, we have no knowledge of the content of the data transmitted or its use by LinkedIn. Data protection information:  https://www.linkedin.com/legal/privacy-policy, Opt-Out:  https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out .
  • Functions of the Twitter service can be integrated into our online offer. These functions are offered by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. By using Twitter and the “Re-Tweet” function, the websites you visit are linked to your Twitter account and made known to other users. This data is also transmitted to Twitter. We would like to point out that, as the provider of the website, we have no knowledge of the content of the data transmitted or how it is used by Twitter. Data protection information from Twitter at  http://twitter.com/privacy . You can  change your data protection settings on Twitter in the account settings at  http://twitter.com/account/settins .
  • Web analysis and optimization with the help of the Mixpanel service, the third-party Mixpanel. In order to understand how our customers use the mobile applications and to continuously improve them, we use the tracking tool from www.mixpanel.com, a web analysis service provided by Mixpanel Inc. For this purpose, cookies can be used. These are small text files that are stored locally on the visitor’s computer and thus enable recognition when visiting our website again. Mixpanel Inc. collects and stores usage data in pseudonymous profiles. As required by § 15 TelemedienG, the pseudonymous usage profiles are not merged with personal data about the bearer of the pseudonym.  Deactivate https://mixpanel.com/optout/ . In this case, please note that as a result, a cookie will be set on your end device, which ensures that no more data is collected and evaluated from you. You should therefore not delete this cookie. We also use Mixpanel to send you targeted push notifications if you have agreed to this. If you no longer want notifications, you can deactivate them at any time in the app. You can view Mixpanel’s privacy policy here:  https://mixpanel.com/terms . Mixpanel is certified under the Privacy Shield Agreement and thus offers an additional guarantee of compliance with European data protection law (https://www.privacyshield.gov/participant?id=a2zt0000000KzX1AAK&status=Active )
  • Web analysis and optimization with the help of the Pardot service, the third-party provider Pardot, Pardot LLC, 950 E. Paces Ferry Rd. Suite 3300 Atlanta, GA 30326, USA. We use Pardot to evaluate how visitors use the website. It uses JavaScript and cookies to identify website visitors, evaluate e-mail campaigns and track website forms. Anonymous visitor information can be shared with other Pardot customers if necessary. You can find more information about Pardot cookies at the following URL:  http://help.pardot.com/customer/portal/articles/2125923-how-does-pardot-tack-activities
  • Websites and advertising campaigns (landing pages) of the unbounce service, the third-party provider unbounce Marketing Solutions Inc., 400-401 West Georgia Street, Vancouver, BC, Canada, V6B 5A1. These pages are hosted by unbounce and the user’s browser communicates directly with unbounce so that the user’s IP address is transmitted and cookies can be set. All information entered by the user on these pages is also saved by unbounce. An evaluation of the activities is then made available to nexum AG. Further information about Unbounce and data protection at Unbounce can be found here:  http://unbounce.com/privacy/
  • Sending emails with the help of ActiveCampaign: We use the email marketing provider ActiveCampaign, Chicago, USA for the manual and automated sending of emails. ActiveCampaign is certified under the Privacy Shield Agreement and thus offers a guarantee to comply with European data protection law ( https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active ).

Last modified : 07.04.2020