Privacy Policy

Disclaimer for Translation Errors – This Privacy Policy was originally published in German. While we strive to provide accurate translations of our privacy policy, we cannot guarantee the accuracy or completeness of any translated version. In the event of any discrepancies between the original German text and the translated version in English, the original German text shall prevail. We disclaim any liability for any errors, omissions, or inaccuracies in the translation, and you acknowledge that you are responsible for verifying the content of the original German version. The original German version of this text can be accessed here: https://potsdam-sciencepark.de/de/datenschutz/

General Information

Compliance with data protection laws is not only a legal obligation for Standortmanagement Golm GmbH but also an essential factor in building trust. Through the following data protection provisions, we aim to inform you transparently about the type, scope, and purpose of the personal data collected and processed within this website, as well as your rights.

Responsibility for Data Processing

The company, Standortmanagement Golm GmbH, located at Am Mühlenberg 11, 14476 Potsdam, Germany (hereinafter referred to as “We”), is the data controller as defined by Article 4, No. 7 of the EU General Data Protection Regulation (GDPR) in its capacity as the operator of the website www.potsdam-sciencepark.de. If you have any questions, you may contact us at datenschutzbeauftragter@potsdam-sciencepark.de

Data Protection Officer

Anja Lauterbach

As a data subject, you have the following rights regarding your personal data:

• Right to Access: You have the right to request information, including the categories of data processed, processing purposes, storage duration, and potential recipients, in accordance with Article 15 GDPR and Section 34 of the Federal Data Protection Act (BDSG).
• Right to Rectification or Erasure: You have the right to request the correction of inaccurate or incomplete data and the deletion of such data under the conditions of Articles 16 and 17 GDPR and Section 35 BDSG.
• Right to Restrict Processing: Under Article 18 GDPR or Section 35(1), Sentence 2 BDSG, you may request the restriction of processing under certain conditions.
• Right to Object: You may object to data processing based on legitimate interests pursuant to Article 21(1) GDPR if the processing relies on legitimate interests.
• Right to Withdraw Consent: You have the right to withdraw any consent you have provided, with future effect, under Article 7(3) GDPR.
• Right to Data Portability: In line with Article 20 GDPR, you have the right to receive your data in a commonly used format.
• Right Not to Be Subject to Automated Decision-Making: You have the right, under Article 22 GDPR, not to be subjected to decisions based solely on automated processing, including profiling as defined in Article 4 No. 4 GDPR, which produce legal effects concerning you or similarly significantly affect you.
• Right to Lodge a Complaint: According to Article 77 GDPR, you have the right to file a complaint with a data protection supervisory authority regarding the processing of your personal data, particularly in the EU member state of your habitual residence, workplace, or the location of the alleged violation.

Procedure

If you wish to exercise your rights under the GDPR and BDSG, we will process the data you provide to us to fulfill your request.

Following this, we will retain the data you provided to us and any data we have provided to you for documentation purposes until the end of the administrative fine limitation period (three years).

The legal basis for processing and storing this data is Article 6(1), Sentence 1(f) GDPR (Legitimate Interest in Data Processing). Our legitimate interest arises from our obligation to address your request and the need to defend ourselves in a potential administrative fine proceeding by demonstrating that we responded appropriately to your request.

You may object to the processing of your data based on our legitimate interest at any time under the conditions of Article 21 GDPR. Please use the contact details provided in the legal notice for this purpose. Please note, however, that processing your data is necessary to document compliance with data subject rights in accordance with Article 21(1) GDPR, as other methods of proof are either unavailable or unsuitable.

We protect our website and other systems—along with your data—against loss, destruction, unauthorized access, alteration, or distribution by unauthorized individuals through technical and organizational measures. In particular, your personal data is transmitted over the Internet in encrypted form using the TLS (Transport Layer Security) encryption protocol.

However, please be aware that information transmission over the Internet is never entirely secure, and therefore we cannot guarantee the complete security of data transmitted from our website.

Modalities of Data Processing

Sources and Categories of Personal Data

We process your personal data to the extent necessary for establishing, defining, or modifying a contractual relationship between us (inventory data). Inventory data may include, in particular, your name, title, contact information (such as postal address, telephone number, email address), date of birth, etc.

Additionally, we process usage data, which includes data generated through your activities on our website and services, such as your IP address, the beginning and end of your visit to our website, and details regarding which content you accessed.

The aforementioned data is either collected directly from you (e.g., via website visit) or, when permitted by data protection laws, from third parties or publicly accessible sources (e.g., trade and association registers, press, media, Internet).

Data Transfers to Non-EU Third Countries

As a rule, all information we receive from or about you is processed on servers within the European Union. A transfer of your data to or processing in third countries outside the EU occurs only with your explicit consent, if legally mandated or permitted, where an adequate level of data protection in the third country is guaranteed, or where contractual obligations, such as standard data protection clauses, are in place.

Data Sharing and Commissioned Processing

We never share your personal data with third parties without authorization. However, we may share your data with third parties if you have consented to the data transfer, if the transfer is necessary to fulfill our legal obligations, or if we are legally authorized or obligated to transfer data based on legal requirements, administrative, or court orders. This may include, in particular, providing information for purposes of law enforcement, averting danger, or enforcing intellectual property rights.

In some cases, we may also transmit your data to external service providers who process data on our behalf and under our instructions (processors) to streamline or support our data processing activities. Each processor is bound by contract according to Article 28 GDPR. This means that the processor must provide adequate guarantees that suitable technical and organizational measures will be implemented to ensure processing in compliance with GDPR and to safeguard your rights as a data subject. Despite engaging processors, we remain the responsible party for the processing of your personal data under data protection laws.

Purpose of Data Processing

We generally use the data solely for the purposes for which it was collected from you. We may process the data for other purposes only if such other purposes are compatible with the original purpose (Article 5(1)(c) GDPR).

Retention Period

Unless otherwise specified in individual cases, we store the data collected from you only as long as necessary to fulfill the respective purpose, unless statutory retention obligations, such as under commercial or tax law, prevent deletion.

We aim to provide you with the utmost transparency regarding the data we collect from you, the circumstances under which we collect it, the legal basis for processing, and the purpose of this processing.

Server Log Files

Each time a webpage is accessed or data is retrieved from a server, general information is automatically transmitted to the server providing the data. This data transmission occurs automatically and is a fundamental aspect of internet-based device communication.

The standard data transmitted includes the following information: your IP address, product and version details about the browser and operating system you are using (known as the user agent), the webpage from which you accessed our site (known as the referrer), the date and time of the request (known as the timestamp), the HTTP status, and the amount of data transferred during the request.

This information is logged by the server, stored in a table, and temporarily saved (referred to as server log files). By analyzing these log files, we can detect and resolve errors on the website, assess website load at specific times and make adjustments or improvements, and ensure server security by identifying IP addresses involved in any attacks on our server.

Your IP address is stored only for the duration of your use of the website and is then promptly deleted or partially anonymized. Other data is stored for a limited time (usually 7 days).

The legal basis for the use of server log files is Article 6(1)(f) GDPR (legitimate interest in data processing). This legitimate interest arises from the necessity of operating and maintaining our website, as explained above. You may object to the processing of your data based on our legitimate interest at any time under the conditions set out in Article 21 GDPR. Please use the contact information provided in our legal notice for this purpose. However, we preemptively note that the processing of your data in server log files is essential under Article 21(1) GDPR, as the website cannot function otherwise.

We use “cookies” and your browser’s “Web Storage” to improve the user-friendliness of our website.

Cookies

Definition of Cookies:

A cookie is a small text file that stores data about visited websites. Cookies can be used in various ways. For example, they can store a “user profile” containing your preferred language and other settings that our website needs to provide specific services. This file is saved on your device and can help recognize you when you revisit our website.

In some cases, cookies also provide us with information on your preferred activities on our website, allowing us to tailor our website to your interests or improve navigation speed.

How to Avoid Cookies:

You can manually delete cookies at any time in your browser’s security settings. You can also prevent the storage of cookies from the outset by adjusting your browser settings. Please note, however, that this may limit the full functionality of our website or lead to display and usage errors.

Third-Party Cookies:

Third-party providers that we use to create and operate our site, particularly through plugins (see “Third-Party Services” below), may independently store cookies on your device. If you prefer only our own cookies and not those of third parties, you can prevent the storage of these cookies by setting your browser to “block third-party cookies.”

Types of Cookies Used:

Our website uses specific cookies, as detailed in the table on pages 6 and 7 of the PDF document.

Legal Basis:

The legal basis for cookies essential to the website’s functionality (e.g., shopping cart cookie, session cookie) is Article 6(1)(f) GDPR (legitimate interest in data processing). Our legitimate interest lies in providing you with a functioning website, as cookies are essential to current internet technology and necessary for many website functions. We require cookies to make the website available to you as requested.

You may object to the processing of your data based on our legitimate interest at any time under Article 21 GDPR. Please use the contact information provided in our legal notice. However, we point out that processing certain cookies may be necessary under Article 21(1) GDPR, as we cannot technically operate the website otherwise. You may also disable cookies independently in your browser; please consult your browser’s instructions for more information.

The legal basis for cookies that are not essential to website functionality is Article 6(1)(a) GDPR (consent). Upon first accessing the website, we request your consent via a displayed notice. You may withdraw your consent at any time by deleting all cookies in your browser, as detailed in your browser’s instructions.

Web Storage

Definition of Web Storage:

Web Storage is a web application technology for storing data in a web browser, often seen as an extension of cookies. Unlike cookies, Web Storage is entirely managed by the client and does not transmit data to the server with each website access. Instead, access occurs only locally through scripts on the website. This means that third-party access to stored data via the website is excluded. Only you and we can access locally stored data.

Legal Basis:

The legal basis for Web Storage essential to the website’s functionality is Article 6(1)(f) GDPR (legitimate interest in data processing). This is based on our need to provide you with a fully operational website. Web Storage is integral to current internet technology and necessary for many website functions. We require Web Storage to provide the website in response to your request.

You may object to the processing of your data based on our legitimate interest at any time under Article 21 GDPR. Please use the contact information provided in our legal notice. However, we note that Web Storage processing may be necessary under Article 21(1) GDPR, as it may be technically impossible to operate the website otherwise. You may also adjust your browser settings to disable Web Storage; please refer to your browser’s instructions for further guidance.

The legal basis for Web Storage that is not essential to website functionality is Article 6(1)(a) GDPR (consent). Upon first accessing the website, we request your consent via a displayed notice. You may withdraw this consent at any time by deleting all cookies in your browser, as detailed in your browser’s instructions.

 

Our website provides options for direct contact with us. By initiating contact, you consent to the processing and storage of the data you provide (particularly your email address) for the purpose of addressing your inquiry. You may withdraw this consent at any time with effect for the future. To do so, please use the contact details provided in the imprint. Please note that we will not process your inquiry further if you do so.

Regarding the provision of particularly sensitive personal data as defined in Art. 9 GDPR (e.g., nationality), we wish to inform you that transmitting such data over the internet entails risks, particularly concerning the interception or surveillance of data. If you have any uncertainties in this regard, we advise you to contact us by post or phone.

The data you provide to us will be processed exclusively for the purpose of addressing your inquiry, unless legal retention periods preclude such processing. We reserve the right to process the data transmitted in anonymized form for statistical purposes. The following information may be processed depending on your inquiry:

• General Inquiry: Name, address (street, number, postal code, city, country), telephone number, email, date of birth, nationality, gender, marital status, children, employer, employment status, expected arrival, start of employment contract, end of employment contract, estimated contract extension, your inquiry, how you found our services, offers of additional services.
• Housing Search: Name, address (street, number, postal code, city, country), telephone number, email, date of birth, nationality, gender, marital status, children, employer, employment status, expected arrival, start of employment contract, end of employment contract, estimated contract extension, temporary accommodation (type, city, max rent), permanent accommodation (city, number of rooms, size, max rent, preferences), how you found our services, offers of additional services.
• Childcare: Name, address (street, number, postal code, city, country), telephone number, email, date of birth, nationality, gender, marital status, children, employer, employment status, expected arrival, start of employment contract, end of employment contract, estimated contract extension, children (gender, name, preferred name, date of birth, language, childcare needs, type of care, care location, special needs if relevant – type of disability), how you found our services, offers of additional services.
• Language Course: Name, address (street, number, postal code, city, country), telephone number, email, date of birth, nationality, gender, marital status, children, employer, employment status, expected arrival, start of employment contract, end of employment contract, estimated contract extension, language course (language, existing certificates), billing address (name, address (street, number, postal code, city, country), telephone number, email, VAT identification number), how you found our services, offers of additional services.

The provision of mandatory fields in our forms is necessary for us to:

• Assess the requested consulting subject and other consulting topics arising from the responses directly,
• Offer effective and comprehensive consultation, and
• Provide effective and swift solutions.

The legal basis for the use of the data you transmit to us through your inquiry is Art. 6(1)(a) GDPR (consent of the data subject). You may withdraw your consent at any time with effect for the future. To do so, please use the contact details provided in the imprint.

The legal basis for processing the mandatory information is Art. 6(1)(f) GDPR (legitimate interest in data processing). We have outlined our legitimate interest in the list provided above.

You may object to the processing of your data based on our legitimate interest at any time in accordance with Art. 21 GDPR. To do so, please use the contact details provided in the imprint.

We offer you the opportunity to stay informed through our regular newsletter, which provides updates and information about special offers. To subscribe to the newsletter, you can enter your email address into our distribution list. You will then need to confirm your subscription again (double opt-in procedure). We use the data you provide to us solely for the purpose of sending the newsletter and do not disclose it to third parties for other purposes. For more information on data sharing, please see the section below titled “Third-Party Services – External Newsletter Service.”

Further information on data processing when receiving our newsletter can be found in the section below titled “Third-Party Services – Analytics Services.” The legal basis for using your email address is Art. 6(1)(a) GDPR (consent of the data subject). You may withdraw your consent at any time with future effect. To do so, please use the link in each newsletter email or contact us using the details provided in the imprint.

Our website uses the “Matomo” service (formerly “Piwik”) provided by InnoCraft Ltd. (InnoCraft), 150 Willis St, 6011 Wellington, New Zealand. Matomo is a web analytics service.

The anonymized data collected (IP address, browser information) is used to improve our website, services, and offerings based on usage. The information collected is stored exclusively on our own server and is not transmitted to third parties. This service sets cookies. For more information on data protection with Matomo, please visit: Matomo Privacy Policy.

The legal basis for using Matomo is Art. 6(1)(a) GDPR (consent of the data subject). We request your consent for the use of this service through a notice displayed upon your first visit to the website. You can withdraw your consent at any time with future effect by revisiting the cookie banner.

To simplify our data processing and expand the functionality of our website, we utilize services/resources from third parties, such as plugins, external content, software, or other external service providers (services). This may involve the transfer of personal data to the service provider. To protect your data, we have contractually obligated service providers to process your data only according to our instructions, in accordance with Art. 28 GDPR.

We explicitly note that we are primarily responsible for data collection and transmission under the GDPR but not for any further processing by the respective service provider.

We use the following services:

Google Services

Our website uses the following services from Google Ireland Limited (“Google EU”), Gordon House, Barrow Street, Dublin 4, Ireland. This company represents Google LLC (“Google US”) in the EU, located at 1600 Amphitheatre Parkway Mountain View, CA 94043, USA.

Using these services may transmit data to Google EU and, under certain circumstances, from Google EU to Google US. The Google group may process the transmitted data to create anonymized user profiles for statistical purposes. If you have a Google account and are logged in, Google may associate the transmitted data with your account across devices. We generally have no influence over this data processing; therefore, Google EU is responsible for it.

For more information on how Google handles user data, please refer to their privacy policy: Google Privacy Policy.

Details on standard contractual clauses (ensuring data protection standards in third countries) can be found here: Google Cloud Terms.

You can manage your Google ad settings at the following website: Google Ads Settings (This setting will be deleted when you clear your cookies).

Google Fonts

Our website uses the external font service “Google Fonts” from Google. This service allows us to present our website uniformly and appealingly on various user devices by loading fonts from an external server instead of the user’s device. The necessary fonts are typically requested from a Google server in the USA. This request transmits and stores various information, including your IP address, product and version information about the browser and operating system (user agent), the website from which you accessed (referer), date and time of the request, and possibly your internet service provider.

The legal basis for processing your data concerning the “Google Fonts” service is Art. 6(1)(f) GDPR (legitimate interest in data processing). This legitimate interest arises from our need for an appealing and uniform presentation of our online offerings. You can object to the processing of your data based on our legitimate interest at any time, under the conditions of Art. 21 GDPR. Please use the contact details provided in the imprint for this purpose.

Google DoubleClick

We use the advertising service “DoubleClick” from Google. DoubleClick serves digital advertising on the internet. The core of DoubleClick consists of ad servers that allow marketers, advertisers, and ad networks to target users with targeted online advertising.

DoubleClick typically uses cookies to display relevant ads to users, improve campaign performance reports, or prevent users from seeing the same ads multiple times. A cookie ID captures which ads are displayed in which browser, preventing duplicate displays. Additionally, DoubleClick can capture so-called conversions related to ad requests. For example, this occurs when a user sees a DoubleClick ad and later visits the advertiser’s website with the same browser and makes a purchase. According to Google, DoubleClick cookies do not contain personal information. Due to the marketing tools employed, your browser automatically establishes a direct connection with Google’s server. We have no influence over the extent and further use of the data collected by Google through this tool, and thus inform you according to our knowledge: By integrating DoubleClick, Google receives the information that you have accessed the relevant part of our website or clicked on one of our ads. If you are registered with a Google service, Google may associate the visit with your account. Even if you are not registered with Google or are not logged in, there is a possibility that the provider learns and stores your IP address.

You can prevent participation in this tracking process in several ways:

• By adjusting your browser software to refuse cookies (see above “How to Avoid Cookies”),
• By deactivating cookies for conversion tracking at the following website: Google Ads Settings (This setting will be deleted when you clear your cookies) or
• By permanently deactivating it in your browsers Firefox, Internet Explorer, or Google Chrome at the link: Google Ads Plugin. Please note that you may not be able to use all features of our web offerings fully in this case.

The legal basis for using Google DoubleClick is Art. 6(1)(a) GDPR (consent of the data subject). We ask for your consent to use this service through a notice displayed upon your first visit to the website. You can withdraw your consent at any time with future effect by clearing all cookies in your browser. You can find out how to do this in your browser’s instructions.

YouTube

Our website uses the video service “YouTube” from Google. YouTube is used to embed videos at various points on our website. Playback of videos typically transmits the following information to a Google server in the USA, where it is stored for several months: your IP address, product and version information about the browser and operating system (user agent), the website from which you accessed (referer), date and time of the request, and possibly your internet service provider. YouTube uses this data to collect statistics and improve the service.

Playing a video may also lead to a connection to Google’s own advertising network “DoubleClick” (see above).

This service stores and analyzes cookies (see above under “Cookies”) on your device.

This service utilizes your browser’s web storage. Further information is provided above in the section “Web Storage.”

The legal basis for using YouTube is Art. 6(1)(a) GDPR (consent of the data subject). We ask for your consent to use this service through a notice displayed upon your first visit to the website. You can withdraw your consent at any time with future effect by clearing all cookies in your browser. You can find out how to do this in your browser’s instructions.

External Newsletter Service

We use external service providers that allow us to provide you with a newsletter containing current information and offers. These services are typically cloud-based services for newsletter distribution. They allow us to create, send, and manage newsletters. The software is provided over the internet, meaning we use the service through a web interface on an external server of the respective provider, which may involve data processing outside the EU. In particular, it may be necessary to transmit your data provided during newsletter registration to the respective provider. We have concluded a so-called data processing agreement with the provider to ensure that they process your data only according to our instructions. Since we ask for your consent before sending our newsletter, the legal basis for processing data for newsletter distribution is Art. 6(1)(a) GDPR (consent of the data subject). You can withdraw this consent at any time with future effect. Please use the unsubscribe link in the newsletter or contact us.

The legal basis for data transfer in the context of using cloud newsletter software is Art. 6(1)(f) GDPR (legitimate interest in data processing), unless otherwise specified for the respective service. This legitimate interest arises from our need to simplify and relieve our data processing. You can object to the processing of your data based on our legitimate interest at any time under the conditions of Art. 21 GDPR. Please use the contact details provided in the imprint for this purpose.

We use:

Sendinblue

We use the newsletter service “Sendinblue” (formerly Newsletter2go) from Sendinblue GmbH, Köpenicker Str. 126, 10179 Berlin.

For more information on how user data is handled, please refer to the Sendinblue privacy policy: Sendinblue Privacy Policy.

Content Delivery Networks (CDNs)

Our website utilizes so-called Content Delivery Networks (CDNs). A CDN is a network of powerful servers that cache content in various locations worldwide. A CDN primarily has two tasks: to deliver content quickly and to alleviate the web host by distributing traffic.

CDNs transmit two types of content: static and dynamic content. Static content is delivered in the same form to all website visitors, such as video content from streaming services or code frameworks (e.g., Javascript, jQuery). Dynamic content is adapted to the user first and created at the moment of the request. This includes content delivered through web applications, emails, or online shops that are personalized. To use the latter, information about the website visitor must first be transmitted to the CDN. This may also involve the transfer of personal data.

With each application call, general information from your browser is automatically transmitted to the server (so-called server log files). More information on this can be found above under “Server Log Files.”

The legal basis for using CDNs and transmitting your data to them is Art. 6(1)(f) GDPR (legitimate interest in data processing), unless otherwise specified for the respective service. This legitimate interest arises from our need for a technically flawless and fast presentation of our website and to relieve our IT infrastructure. You can object to the processing of your data based on our legitimate interest at any time under the conditions of Art. 21 GDPR. Please use the contact details provided in the imprint for this purpose.

We use:

Cloudflare

We use the CDN service provided by Cloudflare Inc. (“Cloudflare”), 101 Townsend St., San Francisco, California 94107, USA. Cloudflare complies with the requirements of the “EU-U.S. Privacy Shield.” The Privacy Shield agreement regulates the protection of personal data transferred from a member state of the European Union to the USA. It ensures that the transferred data is subject to a level of data protection comparable to that of the European Union. A list of certified companies can be accessed here: https://www.privacyshield.gov/list.

Further information regarding the handling of user data can be found in Cloudflare’s privacy policy: https://www.cloudflare.com/security-policy/.

Analytics Tools

We utilize certain services that record data from website visitors and provide it for analysis. We use this data for usage-oriented improvement of our website, services, and offerings. In particular, the following information regarding visitor behavior may be collected: your IP address, product and version information about the browser and operating system used (so-called user agent), the website from which your access occurred (so-called referrer), date and time of the request, and potentially your internet service provider, approximate origin (country and city), language, clicks on content, and duration of view.

The legal basis for the use of analytics tools is Article 6(1)(a) of the GDPR (consent of the data subject). We request your consent to use the service through a notice displayed upon your first visit to the website. You can withdraw your consent at any time with future effect by deleting all cookies in your browser. Instructions on how to do this in your browser can be found in the browser’s manual.

We use:

Newsletter Tracking

Our newsletter uses so-called web beacons or tracking pixels to analyze your reading behavior. Tracking pixels are extremely small image files that are integrated into the newsletter email and allow for log file recording and analysis. When you open the newsletter email, the tracking pixel is loaded from the newsletter service’s server, and simultaneously, some information about you is transmitted, such as whether the email was opened, the time of access, and the associated IP address.

Furthermore, links in the email can provide insights into which products are more interesting—i.e., clicked on more frequently than others.

Both the respective web beacon/tracking pixel and the links in the email can be uniquely attributed to the email address used for sending, allowing for conclusions about the respective newsletter recipient.

Media Services

We utilize certain services to enrich and supplement our website with digital content. Typically, we use embedding features from external platforms. This results in data being transmitted to and generally stored by the provider’s server when the content is accessed, e.g., your IP address, product and version information about the browser and operating system used (so-called user agent), the website from which your access occurred (so-called referrer), date and time of the request, and potentially your internet service provider. For more information, see above under “Server Log Files.” The legal basis for the use of media services is generally Article 6(1)(f) of the GDPR (legitimate interest in data processing), unless otherwise specified for the respective service. The legitimate interest arises from our interest in providing you with a content-rich and visually appealing website. You can object to the processing of your data based on our legitimate interest at any time under the conditions set forth in Article 21 of the GDPR. Please use the contact details provided in the imprint for this purpose.

We use:

Google Fonts

Our website uses the “Google Fonts” service provided by Google. Please see the privacy notices above.

Mapbox

Our website utilizes the external mapping service “Mapbox” provided by Mapbox Inc., 740 15th Street NW, 5th Floor, Washington DC 20005, USA.

Mapbox is used to provide an interactive map on our website that shows you how to find and reach us. This service enables us to present our website attractively by loading map material from an external server. The necessary data is typically requested from a server in the USA. Through this request, among other things, the following information is transmitted to and stored by the server: your IP address, product and version information about the browser and operating system used (so-called user agent), the website from which your access occurred (so-called referrer), date and time of the request, and potentially your internet service provider. We have entered into a data processing agreement with the provider. You can find this agreement here: https://www.mapbox.com/legal/dpa/ (in English). More information on the handling of user data can be found in Mapbox’s privacy policy at https://www.mapbox.com/legal/privacy/.

YouTube

Our website uses the “YouTube” service provided by Google. Please see the privacy notices above.

MyFonts

Our website uses the “MyFonts” service provided by MyFonts Inc., 500 Unicorn Park Drive, Woburn, MA 01801, USA (hereinafter: MyFonts).

If you have JavaScript enabled in your browser and do not have a JavaScript blocker installed, MyFonts will perform page view tracking, which counts the number of visits to our website for statistical purposes and transmits this information to MyFonts. The data is anonymized during transmission. We do not know what data MyFonts associates with the received data and for what purposes MyFonts uses this data. To prevent the execution of JavaScript code from MyFonts altogether, you can install a JavaScript blocker (e.g., www.noscript.net).

Further information on data protection at MyFonts can be found here: https://www.myfonts.com/legal/website-use-privacy-policy.

In addition to our website, we maintain online presences on social platforms to communicate with customers, prospects, and users active there and to inform them about our services.

When you visit our presence on a social platform, your data is typically processed by the respective platform provider for our market research and advertising purposes. The provider may also process the data for its own purposes. Usage profiles may be created based on your usage behavior and resulting interests. These usage profiles may, in turn, be used to display advertisements both within and outside the platforms that presumably correspond to your interests. For these purposes, cookies (see above) are generally stored on your device, which store your usage behavior and interests. In particular, if you are a member of the respective platforms and are logged in, additional data may be stored independently in the usage profiles. For a detailed presentation of the respective data processing and options for objection, we refer to the linked information from the providers below, as only they are aware of the exact processes of their data processing.

We would like to point out that your data may also be processed outside the European Union. This may present risks, as it could complicate the enforcement of your rights.

The legal basis for the use of online presences and the associated data processing is generally Article 6(1)(f) of the GDPR (legitimate interest in data processing). The legitimate interest arises from our need to present ourselves to the visitors and users of social networks and to contribute statements of all kinds to the media and opinion market. You can object to the processing of your data based on our legitimate interest at any time under the conditions set forth in Article 21 of the GDPR. Please use the contact details provided in the imprint for this purpose.

The use of statistical data from all visitors to our social media web presences, which is collected, processed, and made available to us by the respective site operators, is based on Article 6(1)(f) of the GDPR (legitimate interest in data processing). The legitimate interest arises from our need for anonymous evaluation of the visit and usage behavior on our web presences for usage-oriented improvement of the design of our online offerings and optimization of our communication with prospects. You can object to the processing of your data based on our legitimate interest at any time under the conditions set forth in Article 21 of the GDPR. Please use the contact details provided in the imprint for this purpose.

If you are asked by the respective providers for your consent to data processing, the legal basis for the processing is Article 6(1)(a) of the GDPR (consent of the data subject). You can withdraw this consent at any time with future effect. Please contact the provider that requested your consent for this purpose.

In the event that you wish to assert your aforementioned rights, we point out that these can most effectively be enforced against the providers, despite any potential joint responsibility. Typically, only the providers have direct access to your data and can take appropriate measures and provide information directly. However, if you still require assistance, you can contact us, and we will support you to the best of our ability.

We are represented on:

YouTube

YouTube is a social video platform of YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA, represented by Google Ireland Ltd. (“Google EU”), Gordon House, Barrow Street, Dublin 4, Ireland. This company represents Google LLC (“Google US”) in the EU, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Further information on data protection at YouTube can be found at: https://policies.google.com/privacy.

Twitter (now: X)

Twitter (X) is a social network of Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland. Twitter International Company is the European subsidiary of Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. Further information on data protection at Twitter can be found at: https://twitter.com/de/privacy.

You can configure the data collection of Twitter (X) on the following page: https://x.com/settings/account/personalization.

LinkedIn

LinkedIn is a professional network of LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland. This company represents LinkedIn Corporation, 1000 W. Maude Ave., Sunnyvale, California 94085, USA, in the EU.

Further information on data protection at LinkedIn can be found at: https://www.linkedin.com/legal/privacy-policy. You can configure the data collection of LinkedIn on the following page: https://www.linkedin.com/psettings/guest-controls/.

 

Status of the Privacy Policy: February 9, 2021
Source: Süddeutsche Datenschutzgesellschaft mbH

1. As a legal basis, legitimate interest is no longer adequate according to the rulings of the Court of Justice of the European Union (CJEU) from July 29, 2019 (C-40/17) and October 1, 2019 (C-673/17). You require an effective prior consent from each website visitor, e.g., through a legally compliant cookie banner. In other words: The user must be transparently informed about the data processing taking place and must then voluntarily activate it themselves. Further information on this can be found in the report regarding your website. Therefore, we design your privacy policy by default based on the current legal situation. If you expressly do not wish to implement a consent solution, you have two options:
   – You completely remove the service, so that no data processing takes place.
   – You base the use of the service on your legitimate interest. In that case, your privacy policy must be adjusted again. We will not assume any liability for this, as this solution is no longer legally defensible.