Privacy Policy

Data protection is of especially great importance for INFORS HT. It is possible to use the websites of INFORS HT essentially without specifying any personal data. However, when a data subject wishes to make use of special services of our company through our website, it might be necessary to process personal data. If it is necessary to process personal data and there is no statutory basis for such processing, we generally obtain a consent from the data subject.

Personal data—such as the name, address, email address or telephone number of a data subject—is always processed in compliance with the statutory requirements. Through this privacy policy, our company wishes to inform the public concerning the nature, scope and purpose of the personal data (information relating to and directly or indirectly identifying a person) we collect, use and process when you visit our website or use our services. Further, this privacy policy clarifies the rights of data subjects for them.

As the controller for the processing ("data controller"), INFORS HT has implemented numerous technical and organizational measures in order to ensure as complete protection as possible against loss and manipulation and unauthorized third-party access to the personal data processed through this website. Internet-based data transmissions can nevertheless manifest security breaches, with the result that absolute protection cannot be guaranteed. For this reason, each data subject is free to transfer personal data to us in alternative ways as well, such as by telephone.

Our security measures are continually improved consistent with technological development.

We also take seriously our own data protection within the company. Our employees and the service providers we engage are obligated to confidentiality and compliance with the data protection provisions. Moreover, they are permitted access to your personal data only to the extent necessary.


2. Name and address of the data controller

The controller in terms of the data protection laws is:

Infors AG
Rittergasse 27
4103 Bottmingen
Switzerland
Tel.: +41 61 425 77 00
Email: info@infors-ht.com
Website: www.infors-ht.com


3. Address of the data protection coordinator

The data protection coordinator of the data controller is:

Infors AG
Data Protection Coordinator
Rittergasse 27
4103 Bottmingen
Switzerland
Tel.: +41 61 425 77 00
Email: eu-dataprotection@infors-ht.com
Website: www.infors-ht.com

For all questions and suggestions on data protection, any data subject may contact our data security coordinator directly at any time.


4. Cookies

When you visit our websites, you are informed that we use cookies. At the same time, you are referred to this privacy policy and receive the opportunity to object to a setting of cookies.

The websites of INFORS HT use cookies. Cookies are text files which are stored and saved on a computer system through a browser.

A large number of websites and servers use cookies. Many cookies contain a so-called cookie ID. A cookie ID is a unique identifier of the cookie. It consists of a character string through which websites and servers can be associated with the specific browser where the cookie was stored. This allows the visited websites and servers to distinguish the individual browser of the data subject from other browsers that contain other cookies. A specific browser can be recognized and identified through the unique cookie ID.

Through the use of cookies, INFORS HT can provide user-friendly services to the users of this website, which would not be possible without the setting of cookies.

With the use of cookies, the information and offers on our website can be optimized in terms of the user. As already mentioned, cookies make it possible for us to recognize the users of our website. The purpose of this recognition is to make it easier for users to use our website. For example, the user of a website that uses cookies does not have to reenter his or her access data upon each visit to the website because this is done by the website and the cookie stored on the user's computer system. A further example is the cookie of a shopping cart in the online shop. The online shop remembers the articles which a customer has placed in the virtual shopping cart through a cookie.

The data subject can prevent the setting of cookies by our website at any time by means of a corresponding setting of the browser used and thereby permanently object to the setting of cookies. Furthermore, cookies that have already been set can be erased at any time through a browser or other software. This is possible in all popular browsers. If the data subject deactivates the setting of cookies in the browser used, in some circumstances not all functions of our web page are completely usable.


5. Logging of general data and information

Each time the website of INFORS HT is viewed by a data subject or an automated system, the website logs an array of general data and information. This general data and information is stored in the log files of the server. The following can be logged: (1) browser types and versions used, (2) the operating system used by the accessing system, (3) the website from which an accessing system reaches our website (so-called referrer), (4) the sub-websites which are selected on our website through an accessing system, (5) the date and time of an access to the website, (6) an Internet Protocol Address (IP address), (7) the Internet service provider of the accessing system and (8) other similar data and information which serve to avert threats in the case of accesses to our information technology systems.

In using this general data and information, INFORS HT draws no inferences concerning the data subject. Instead this information is needed in order to (1) deliver the content of our website correctly, (2) optimize the content of our website and the advertising for it, (3) ensure the stable functionality of our information technology systems and the technology of our website and (4) supply to law enforcement agencies the necessary information for prosecution in the event of a cyberattack. This anonymously collected data and information is therefore, on the one hand, statistically analyzed by INFORS HT and also further evaluated with the objective of increasing data protection and data security in our company in order to ultimately ensure an optimum level of protection for the personal data processed by us. The anonymous data of the server log files is stored separately from all personal data given by a data subject.


6. Registration on our website

The data subject has the option of registering by supplying personal data on the website of the data controller. What personal data is thereby transferred to the data controller results from the particular input mask used for the registration. The personal data entered by the data subject is collected and stored exclusively for internal use at the data controller and for its own purposes. The data controller can arrange to have the data transferred to one or more processors—to a parcel service, for example—which also uses the personal data exclusively for an internal use attributable to the data controller.

The IP address, date and time of the registration assigned by the data subject's Internet Service Provider (ISP) is also stored through registration on the website of the data controller. This data is stored because the misuse of our services can be prevented only in this way and, when necessary, storing facilitates the use of such data to solve crimes that have been committed. In this respect, storage of this data is required to protect the data controller. This data is strictly not shared with third parties unless there is a legal duty to do so or it is shared for purposes of criminal prosecution.

The registration of the data subject with voluntarily given personal data allows the data controller to offer the data subject content or services which can only be offered to registered users due to its nature. Registered persons remain free to change personal data given in the registration at any time or to have it completely erased from the database of the data controller.

Upon request, the data controller will at any time provide any data subject information about what personal data is stored concerning the data subject. In addition, the data controller will rectify or erase personal data at the request or direction of the data subject if it is not contrary to any statutory retention obligations. All employees of the data controller are available to the data subject as contact persons in this regard.


7. Registration in the Member Area

Certain individuals have the possibility of registering on the data controller’s web page for the member area as a member to access an internal website area. We provide additional content and services in the member area of our website that are only available to registered members.

The data subject must log in using his/her user name and individual password in order to use the member area. When registration occurs for the member area, we also store the IP address, assigned by the Internet Service Provider (ISP), of the computer system used by the data subject at the time of registration as well as the date and time of registration. This data is stored because the misuse of our services can be prevented only in this way and, when necessary, storing facilitates the use of such data to solve crimes that have been committed. In this respect, storage of this data is required to protect the data controller. This data is strictly not shared with third parties unless there is a legal duty to do so or it is shared for purposes of criminal prosecution.

The personal data entered by the data subject is used exclusively for the purpose of completing the registration for the member area and its use. In addition, the personal data entered by the data subject is used to provide the data subject with the information necessary for using the member area (messages, news in the member area, and particularly technical messages, in case of necessary changes, improvements, or difficulties, for instance).

The legal basis for processing your personal data when using the member area is your consent. Appeals to other statutory legal bases is expressly excluded. The data subject is not obligated to provide information, neither by statute nor by contract. However, the member area can only be used by providing the personal data listed above. The consent to the storage of personal data that the data subject has given us for registering the member area can be withdrawn at any time. An e-mail message to us is sufficient to do so.

Your personal data will remain stored as long as the registration lasts, particularly storage for continued contract performance/processing, for us to pursue legal proceedings, or as still necessary for our other justified interests, or we are required by law to continue to store your data (e.g., within the scope of statutory retention periods).


8. Newsletter tracking

The newsletters of INFORS HT contain so-called tracking pixels. A tracking pixel is a miniature graphic that is embedded in emails which are sent in HTML format in order to facilitate the recording of a log file and a log file analysis. This enables the performance of a statistical analysis of the success or failure of online marketing campaigns. By means of the embedded tracking pixel, INFORS HT can identify whether and when an email was opened by a data subject and which links in the email were activated by the data subject.

Such personal data collected through the tracking pixels contained in the newsletters is stored and analyzed by the data controller in order to optimize the sending of the newsletter and to customize the content of future newsletters even better to the interests of the data subject. This personal data is not shared with third parties. Data subjects are, at any time, entitled to withdraw the separate declaration of consent that was given in this respect through the double-opt-in procedure. After a withdrawal this personal data is erased by the data controller. INFORS HT automatically interprets unsubscribing from receipt of the newsletter as a withdrawal.


9. Contact option through the website

Because of legal regulations, the website of INFORS HT contains information that facilitates speedy electronic contact with our company as well as direct communication with us, which also involves a general address of so-called electronic mail (email address). If a data subject contacts the data controller by email or through a contact form, the personal data transmitted by the data subject are automatically stored. The personal data transferred to the data controller via a contact form are determined by the input mask used for this purpose. Such personal data, which are voluntarily transmitted to the data controller by a data subject, are stored exclusively for purposes of handling the inquiry or for contacting the data subject. In addition, we also use your contact data for our marketing activities, such as sending emails with general information or with references to specific offers and events. You may opt out of receiving this marketing information at any time. Each email contains a link for unsubscribing. These personal data are not shared with third parties.


10.  Download form

The INFORS HT website offers a number of downloads that you can download using the download form. The personal data transferred to the data controller via a download form are determined by the input mask used for this purpose. Such personal data, which are voluntarily transmitted to the data controller by a data subject, are used exclusively for the purpose of making downloads available. In addition, we also use your contact data for our marketing activities, such as sending emails with general information or with references to specific offers and events. You may opt out of receiving this marketing information at any time. Each email contains a link for unsubscribing. These personal data are not shared with third parties.


11. Routine erasure and locking of personal data

The data controller processes and stores personal data of the data subject only for the period required to achieve the purpose of the storage or for as long as provided in statutes or regulations to which the data controller is subject.

Should the purpose for storage cease to apply or a prescribed storage period lapse, the personal data is routinely locked and erased in accordance with the legal regulations.


12. Rights of the data subject

a) Right to confirmation

Every data subject has the right to request from the data controller a confirmation as to whether personal data concerning him or her is being processed. If a data subject wishes to exercise this right to confirmation, he or she can contact the data protection coordinator on this at any time.


b) Right of access

Every person who is affected by the processing of personal data has the right to access information, at any time without charge, about the stored personal data concerning such person and to obtain a copy of such information from the data controller. Where appropriate, access can also be given concerning the following information:

  • the purposes of the processing
  • the categories of personal data concerned
  • the recipients or categories of recipient to whom the personal data has been or will be disclosed, in particular recipients in third countries or international organizations
  • where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period
  • the existence of the right to request from the controller rectification or erasure of personal data or restriction of processing of personal data concerning you or to object to such processing
  • the right to lodge a complaint with a supervisory authority
  • where the personal data is not collected from the data subject: all available information on the origin of the data

Moreover, the data subject has a right of access to information about whether personal data was transferred to a third country or an international organization. If this is the case, the data subject also has the right to be informed of the appropriate safeguards relating to the transfer.

If a data subject wishes to exercise this right of access, he or she can contact the data protection coordinator on this at any time.


c) Right to rectification

Any person affected by the processing of personal data has the right to obtain without undue delay the rectification of inaccurate personal data concerning him or her. Taking into account the purposes of the processing, the data subject further has the right to have incomplete personal data completed, including by means of providing a supplementary statement.

If a data subject wishes to exercise this right to rectification, he or she can contact the data protection coordinator on this at any time.


d) Right to erasure (right to be forgotten)

Any person affected by the processing of personal data has the right to obtain from the controller the erasure of personal data concerning him or her without undue delay where one of the following grounds applies and to the extent the processing is not required:

  • The personal data is no longer necessary in relation to the purposes for which it was collected or otherwise processed.
  • The data subject withdraws consent on which the processing is based and there is no other legal ground for the processing;
  • The data subject objects to the processing on grounds relating to his or her particular situation, and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing in the case of direct marketing and associated profiling.
  • The personal data has been unlawfully processed.
  • The personal data has to be erased for compliance with a legal obligation in Union or Member State law to which the controller is subject.
  • The personal data has been collected in relation to the offer of information society services made directly to a child.

Should one of the above-mentioned grounds apply and a data subject wishes to have personal data that is stored at INFORS HT erased, he or she can contact the data controller's data protection coordinator for this at any time. The data protection coordinator of INFORS HT will see that the request for erasure is fulfilled without delay.

e) Right to restriction of processing

Any person affected by the processing of personal data has the right to obtain from the controller restriction of processing where one of the following applies:

  • The accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data.
  • The processing is unlawful, the data subject opposes the erasure of the personal data and requests the restriction of its use instead.
  • The controller no longer needs the personal data for the purposes of the processing, but it is required by the data subject for the establishment, exercise or defense of legal claims.
  • The data subject has objected to the processing pending verification whether the legitimate grounds of the controller override those of the data subject.

If one of the above-mentioned requirements is present and a data subject wishes to have personal data that is stored at INFORS HT restricted, he or she can contact the data controller's data protection coordinator for this at any time. The data protection coordinator of INFORS HT will have the processing restricted.

f) Right to data portability

Any person affected by the processing of personal data has the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format. When the statutory requirements exist, the person also has the right to have this data transmitted to another controller.

The data subject further has the right to have the personal data transmitted directly from one controller to another, where technically feasible, and when doing so does not adversely affect the rights and freedoms of others.

The data subject can exercise the right to data portability at any time by contacting the data protection coordinator of INFORS HT.

g) Right to object

Any person affected by the processing of personal data has the right to object on grounds relating to his or her particular situation at any time to the processing of personal data concerning him or her.

In the case of an objection, INFORS HT shall no longer process the personal data unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defense of legal claims.

The data subject can exercise the right to object by directly contacting the data protection coordinator.

i) Right to withdraw a consent under data protection law

Any person affected by the processing of personal data has the right to withdraw at any time a consent to the processing of personal data.

If the data subject wishes to exercise a right of withdrawal, he or she can contact the data controller's data protection coordinator on this at any time.

13. Data protection for employment applications and in the recruiting process

The data controller collects and processes the personal data of applicants for purposes of managing the recruiting process. The processing takes place electronically. This is especially the case when an applicant transfers corresponding application documents electronically to the data controller through a web form on a website. If the data controller enters into an employment agreement with an applicant, the transmitted data is stored for purposes of managing the employment relationship in compliance with legal regulations. If the data controller does not enter into an employment agreement with the applicant, the application documents are automatically erased three months after announcement of the rejection decision unless barred by any other legitimate interests of the data controller. Other legitimate interest in this sense is a burden of proof in a proceeding under the Equal Treatment Act.


14. Data protection provisions on the use and application of Google Analytics (with anonymization function)

The data controller has integrated the Google Analytics component (with anonymization function) on this website. Google Analytics is a web analysis service. Web analysis is the collection, compilation and analysis of data on the behavior of visitors to websites. A web analysis service logs, among other data, the website (so-called referrer) from which a data subject has come to a website, which sub-pages of the website have been accessed or how often and for what length of time a sub-page has been viewed. A web analysis is utilized primarily for website optimization and for cost-benefit analysis of online advertising.

The operating company of the Google Analytics component is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. If the data controller on this website sits outside of the European Economic Area or Switzerland, Google Analytics data processing is undertaken by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google LLC and Google Ireland Limited are referred to as "Google" herein.

The data controller uses the suffix "_gat._anonymizeIp" for web analysis through Google Analytics. Through this suffix, the IP address of the data subject's Internet connection is truncated and anonymized by Google when our websites are accessed from a Member State of the European Union or from another country that is party to the Agreement on the European Economic Area.

The purpose of the Google Analytics component is to analyze visitor traffic on our website. Google uses the acquired data and information for, among other things, analyzing the usage of our website in order to compile for us online reports which show the activities on our websites and for rendering further services related to the use of our website.

Google Analytics sets a cookie on the data subject's information technology system. What cookies are has already been discussed above. The setting of the cookie enables Google to analyze the use of our website. Through each view of one of the individual pages of this website which is operated by the data controller and on which a Google Analytics component has been integrated, the respective Google Analytics component prompts the browser on the data subject's information technology system to transfer data to Google for purposes of online analysis. As part of this technical process Google is informed of personal data, such as the data subject's IP address, which, among other things, serves to enable Google to track the origin of visitors and clicks and, as a result, commission settlements.

Through the cookie, personal information—such as the access time, the place from which an access originated and the frequency of the visits to our website by the data subject—is stored. With each visit to our websites this personal data, including the IP address of the Internet connection used by the data subject, is transmitted to Google in the United States of America. This personal information is stored by Google in the USA. In some circumstances, Google shares with third parties such personal data that was collected through the technical process.

As already represented above, the data subject can prevent the setting of cookies by our website at any time by means of a corresponding setting of the browser used and thereby permanently object to the setting of cookies. Such a setting of the browser used would also prevent Google from setting a cookie on the data subject's information technology system. In addition, a cookie already set by Google Analytics can be erased at any time through the browser or other software.

The data subject also has the option of objecting to and preventing acquisition of the data generated by Google Analytics relating to a use of this website and to the processing of this data by Google. For this, the data subject must download and install a browser add-on at the link https://tools.google.com/dlpage/gaoptout. This browser add-on informs Google Analytics through JavaScript that no data and information on visits to websites may be transferred to Google Analytics. Google classifies the installation of the browser add-on as an objection. If the data subject's information technology system is subsequently erased, formatted or reinstalled, the data subject must reinstall the browser add-on in order to deactivate Google Analytics. If the browser add-on is uninstalled or deactivated by the data subject or another person within his or her sphere of control, it is possible to reinstall or reactivate the browser add-on.

Further information and the applicable data protection provisions of Google can be accessed at https://policies.google.com/privacy?hl=de&gl=de and at https://marketingplatform.google.com/about/analytics/terms/de/.


15. Data protection provisions on the use and application of Google Ads

The data controller has integrated Google Ads on this website. Google Ads is a service for online advertising that allows advertisers to place ads both in the search engine results of Google and in the Google advertising network. Google Ads enables an advertiser to predefine specific keywords, whereby an ad is exclusively displayed in the search engine results of Google when the user retrieves a keyword-related search result with the search engine. The ads are distributed on topically relevant websites in the Google advertising network through an automated algorithm and with due regard to the predefined keywords.

The operating company of the services of Google Ads is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. If the data controller on this website sits outside of the European Economic Area or Switzerland, the Google Ads data processing is undertaken by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google LLC and Google Ireland Limited are referred to as "Google" herein.

The purpose of Google Ads is to promote our website through the display of interest-related advertising on the websites of third-party companies and in the search engine results of the Google search engine and a display of third-party advertising on our website.

If a data subject reaches our website through a Google Ad, Google stores a so-called conversion cookie on the data subject's information technology system. What cookies are has already been discussed above. A conversion cookie loses its validity after a few days and does not serve as identification of the data subject. As long as the cookie has not yet expired, the conversion cookie tracks whether certain sub-pages, such as the shopping cart of an online shopping system, has been viewed on our website. Through the conversion cookie, both we and Google can track whether a data subject who has arrived at our website through an ad has generated a sale—in other words, has checked out or canceled a shopping cart.

The data and information collected through the use of the conversion cookie is used by Google for compiling visit statistics for our website. We in turn use these visit statistics in order to ascertain the total number of users who are conveyed to us through ads—in other words, in order to determine the success or failure of the respective ads and to optimize our ads for the future. Neither our company nor other advertisers of Google Ads receive information from Google through which the data subject could be identified.

The conversion cookie stores personal information, such as the websites visited by the data subject. With each visit to our websites, personal data, including the IP address of the Internet connection used by the data subject, is therefore transmitted to Google in the USA. This personal information is stored by Google in the USA. In some circumstances, Google shares with third parties such personal data that was collected through the technical process.

As already represented above, the data subject can prevent the setting of cookies by our website at any time by means of a corresponding setting of the web browser used and thereby permanently object to the setting of cookies. Such a setting of the browser used would also prevent Google from setting a conversion cookie on the data subject's information technology system. In addition, a cookie already set by Google Ads can be erased at any time through the browser or other software.

The data subject also has the option to object to the interest-related advertising by Google. To this end, the data subject must call up the link www.google.de/settings/ads from each of the browsers he or she uses and adjust the desired settings there.

Further information and the applicable data protection provisions of Google can be accessed at https://policies.google.com/technologies/ads?hl=de.


16. Data protection provisions on the use and application of YouTube

The data controller has integrated components of YouTube on this website. YouTube is an Internet video portal that enables video publishers to upload video clips for free and for other users to also watch, evaluate and comment on them. YouTube allows the publication of all types of videos, which is why complete film and television broadcasts as well as music videos, trailers or videos made by users themselves can be downloaded through the Internet portal.

The operating company of YouTube is YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. YouTube, LLC is a subsidiary of Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA.

Through each view of one of the individual pages of this website which is operated by the data controller and on which a YouTube component (YouTube video) has been integrated, the respective YouTube component automatically prompts the browser on the data subject's information technology system to download a representation of the corresponding YouTube component of YouTube. Further information on YouTube can be accessed at https://www.youtube.com/intl/de/howyoutubeworks/. As part of this technical process, YouTube and Google learn which specific sub-page of our website is visited by the data subject.

If the data subject is simultaneously logged in at YouTube, upon the viewing of a sub-page which includes a YouTube video, YouTube recognizes which specific sub-page of our website the person visits. This information is collected by YouTube and Google and associated with the respective YouTube account of the data subject.

YouTube and Google are informed through the YouTube component that the data subject has visited our website each time when the data subject is simultaneously logged on at YouTube while viewing our website; this happens regardless of whether the data subject clicks on a YouTube video. If such a transfer of this information to YouTube and Google is not desired by the data subject, the data subject can prevent the transfer by logging out of his or her YouTube account before viewing our website.

The privacy policy published by YouTube, which is available at https://policies.google.com/privacy?hl=de&gl=de, gives information on the collection, processing and use of personal data by YouTube and Google.


17. Data protection provisions on the use and application of the scalable central measurement system of INFOnline GmbH

The data controller has integrated a tracking pixel for reach measurement on this website. A tracking pixel is a miniature graphic that is embedded in websites to facilitate the recording of a log file and a log file analysis in order to subsequently perform a statistical analysis. The integrated tracking pixels serve the scalable central measurement system (SCM) of INFOnline GmbH.

The scalable central measurement system is operated by INFOnline GmbH, Forum Bonn Nord, Brühler Str. 9, 53119 Bonn, Germany.

The scalable central measurement system serves to ascertain statistical key figures—in other words, reach measurement. The embedded tracking pixel is used to understand whether, when and by how many users (including the data subject) our website was opened and what content was viewed.

The data obtained through the scalable central measurement system is collected anonymously. To acquire the access numbers for purposes of recognizing the users of a website, either a so-called session cookie is set, creating a signature consisting of various automatically transmitted information, or alternative methods are used. The IP address of the Internet connection used by the data subject is collected and processed only in anonymized form. The data subject is not identified at any point.

As already represented above, the data subject can prevent the setting of cookies by our website at any time by means of a corresponding setting of the web browser used and thereby permanently object to the setting of cookies. Such a setting of the browser used would also prevent INFOnline from setting a cookie on the data subject's information technology system. In addition, cookies that have already been set by INFOnline can be erased at any time through a browser or other software.

The data subject also has the option of objecting to and preventing acquisition of the data generated by INFOnline relating to a use of this website and to the processing of this data by INFOnline. To this end, the data subject must press the opt-out button at the link http://optout.ioam.de, which sets an opt-out cookie. The opt-out cookie set with the objection is stored on the information technology system used by the data subject. If the cookies are erased on the system of the data subject after an objection, the data subject must call up the link again and set a new opt-out cookie.

The setting of the opt-out cookie involves the possibility that the websites of the data controller will no longer be completely usable. The applicable data protection provisions of INFOnline can be accessed at https://www.infonline.de/datenschutz/.


18. Data protection provisions on the use and application of Google Tag Manager

Google Tag Manager is a solution we can use to manage so-called website tags through an interface (and thus, for example, incorporate Google Analytics and other Google marketing services in our online offering). Tag Manager itself (which implements the tags) processes no personal data of users. With regard to the processing of personal data of users, we refer to the following information on Google services. Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, Parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; Website: https://marketingplatform.google.com; Privacy policy: https://policies.google.com/privacy;


19. Data protection provisions on the use and application of Google Optimize

Use of Google Analytics data for purposes of improvement of areas of our online offering and improved alignment of our marketing measures with potential interests of users; Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, Parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; Website: https://marketingplatform.google.com; Privacy policy: https://policies.google.com/privacy.


20. Data protection provisions on the use and application of Facebook Pixels

The operating company for the services of Facebook Pixels is Facebook Inc., 1601 Willow Avenue, Menlo Park, CA 94025, USA, or, if you reside outside the USA and Canada, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. Facebook Inc. and Facebook Ireland Ltd. are referred to as "Facebook" herein.

The behavior of page visitors can be monitored by means of Facebook Pixels after they have been redirected to our website by clicking on a Facebook ad. As a result, the effectiveness of the Facebook ads can be evaluated for statistical and marketing research purposes and future advertising efforts optimized.

Data captured in this way is anonymous to us and therefore offers us no conclusions about your identity. However, the data is stored and processed by Facebook, with the result that a connection with the respective user profile is possible and Facebook can use the data for its own promotional purposes in accordance with the Facebook data policy (https://www.facebook.com/about/privacy/). Facebook can thereby enable the placement of ads on pages of Facebook as well as outside of Facebook. We are unable to influence this use of the data.

Through the use of cookies (text files) that are stored on your terminal, Facebook can subsequently recognize you in the member area of Facebook and optimize the efficiency of ads, offering ads oriented toward target groups, for example, in accordance with the data usage policy of Facebook. This concerns you only if you have an account at Facebook and are logged into the member area of Facebook. If you are not a member of Facebook, you are not affected by this data processing.

You can find general information on the use of data by Facebook and about your rights and options in this regard for protecting your privacy in the data policy of Facebook at https://www.facebook.com/policy. You can find special information and details on Facebook Pixel and its functionality in the help section of Facebook https://www.facebook.com/business/help/651294705016616. If you wish to object to the acquisition by Facebook Pixel, you can do this at https://www.facebook.com/settings?tab=ads. You must be signed in at Facebook for this purpose.

If you have no Facebook account, you can, in addition, object to the employment of cookies that are used for reach measurement and advertising purposes through the deactivation page of the Network Advertising Initiative (http://optout.networkadvertising.org/) and additionally the U.S. website (http://www.aboutads.info/choices) or the European website (http://www.youronlinechoices.com/uk/your-ad-choices/).


21. Data protection provisions on the use and application of AddThis

AddThis provides functions for sharing content on social networks. AddThis uses the personal information of users for providing and executing the sharing functions. In addition, AddThis can use this pseudonymous information of users for marketing purposes. Service provider: AddThis, 1595 Spring Hill Rd Suite 300 Vienna, VA 22182, USA; Website: https://www.addthis.com; Privacy policy: https://www.addthis.com/privacy; Opt-out: https://www.addthis.com/privacy/opt-out.


22. Data protection provisions on the use and application of Hotjar

This website uses the web analysis service Hotjar of Hotjar Ltd., Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta, Europe, in order to better understand the needs of our website visitors and optimize the offering of this website. The technology of Hotjar enables us to develop a better understanding of the user experience (for example, how much time visitors spend on which pages, which links they click on, what they like and what not, etc.). We utilize this knowledge to orient our offering to the needs of users. Hotjar works with cookies and other technologies in order to gather information about the behavior of our website visitors and about their terminals (particularly the IP address of the device (logged and stored only in anonymized form), the screen size, the device type (unique device identifiers), information on the browser used, the location (the country only)). Hotjar stores this information in a pseudonymous user profile. Neither Hotjar nor we use the information to identify individual users or conflate it with other data on individual users. You can find further information in Hotjar's privacy policy at https://www.hotjar.com/legal/policies/privacy.

You can object to the storage of a user profile and of information about your visit to our website by Hotjar as well as to the setting of Hotjar tracking cookies on other websites through the following link https://www.hotjar.com/legal/policies/do-not-track/.


23. Legal basis of the processing

In the following we communicate the legal bases upon which we process personal data. Please note that additional national data protection guidelines in your or our domiciliary country may apply.

  • The data subject has consented to the processing of his or her personal data for a specific purpose or for several specific purposes.
  • Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.
  • Processing is necessary for compliance with a legal obligation to which the controller is subject.
  • Processing is necessary in order to protect the vital interests of the data subject or of another natural person.
  • Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
  • Processing is required to protect the legitimate interests of the controller or a third party, unless the interests or fundamental rights and freedoms of the data subject that require the protection of personal data preponderate.


24. Duration of the storage of personal data

The criterion for the duration of the storage of personal data is the respective statutory retention period. Following the lapse of the period, the corresponding data is routinely erased unless it is still required for contract performance or contract initiation.


25. Statutory or contractual requirements for the provision of personal data; necessity of contract formation; obligation of the data subject to supply the personal data; possible consequences of not providing it

We advise you that the provision of personal data is partially prescribed by law (e.g. tax regulations) or can also arise from contractual provisions (e.g. information on the contracting party). For contract formation it may occasionally be necessary for a data subject to provide us personal data that we subsequently have to process. An example is where the data subject is obligated to provide us personal data when our company enters into a contract with the data subject. The consequence of not providing the personal data could defeat entry into the contract with the data subject. A data subject must contact one of our employees before providing personal data. Our employee will clarify for the data subject in the individual case whether provision of the personal data is prescribed by law or contract or is required for contract formation, whether there is an obligation to provide the personal data, and the potential consequences of not providing the personal data.


26. Existence of automated decision-making

As a responsible company, we abstain from automated decision-making or profiling.


27. Amendments to the privacy policy

We can update this privacy policy at any time without advance notice. The respectively current version published on our website applies.

We care about your privacy

We use cookies to improve user experience. We analyse our traffic, we personalise content and ads on our website, and we provide social media features. Certain cookies are necessary for our website to work properly and to enable you to use its features. With your consent, we also use analytics cookies to improve our website and marketing cookies to display advertisements and content on our website. 
Cookie settings