Privacy policy eviom

Current as of March 2023

Person responsible and data protection officer

Name and address of the Controller

In accordance with General Data Protection Regulations, other privacy regulations of the member states, and other data protection regulations, the Controller is
eviom GmbH
Sonnenstraße 23
80331 Munich
Germany
+49 (0) 89 / 99 82 71 8 00
info@eviom.com
www.eviom.com

Name and address of the Privacy Officer

If you have any questions or comments on the subject of data protection, please contact the data protection officer at Vogel Communications Group GmbH & Co. KG, Max-Planckstr. 7-9, 97082 Würzburg, https://contact.vogel.de or email: datenschutz@vogel.de.

General remarks on data processing

  1. Scope of personal data processing

In principle, we only process personal data of our users in the scope that is required to provide a working website, our content, and our services. Processing our users’ personal data only regularly occurs given the user’s consent. An exception applies to those cases where a prior consent is not possible for given reasons and legal provisions allow data processing.

  1. Legal basis for the processing of personal data

For cases where we ask for the data subject’s consent to personal data processing measures, art. 6, sec. 1, s. 1, lit. a (GDPR), provides the legal basis.

For processing of personal data required to fulfill a contract where the data subject is a contractual partner, art. 6, sec. 1, s. 1, lit. b (GDPR), provides the legal basis. This also applies to processing procedures required for pre-contractual measures.

For cases where processing of personal data is required to meet a legal obligation that our company is subject to, art. 6, sec. 1, s. 1, lit. c (GDPR), provides the legal basis.

In case of vital interests of the data subject or of another natural person making personal data processing necessary, art. 6, sec. 1, s. 1, lit. d (GDPR), provides the legal basis.

In case processing is required to protect a vital interest of our company or of a third party, and if the interests, basic rights, and basic freedoms of the data subject do not out-weigh the interests mentioned first, art. 6, sec. 1, s. 1, lit. f (GDPR), provides the legal basis.

  1. Data erasure and storage duration

The data subject’s personal data is erased or locked as soon as the reason for storage expires. Storage beyond that can occur if this is intended by the European or national legislator through Union regulations, laws, or other provisions that the Controller is subject to. Data is also erased or locked if a storage period made mandatory by the regulations mentioned expires, unless a necessity for further storage of said data persists to conclude or fulfill a contract.

Data subject rights

If your personal data is processed, you are data subject within the meaning of GDPR and you hold the following rights against the Controller:

  1. Right of access

You can demand confirmation from the Controller, whether personal data that concern you is being processed by us.

If such processing takes place, you can demand the Controller to provide you with the following information:

  1. the purposes for which personal data is processed;
  2. the categories of personal data being processed;
  3. the recipients or categories of recipients that your personal data has been or will be disclosed with;
  4. the scheduled storage period of your personal data or, in case of impossibility of such specifications, the criteria for stipulating the storage duration;
  5. the existence of a right to rectification or erasure of your personal data, a right to restriction of processing by the Controller, or a right to object to this processing;
  6. the existence of a right to lodge a complaint with a supervisory authority:
  7. all available information on the source of the data if the data is not collected from the data subject themselves;
  8. the existence of automated individual decision-making, including profiling, in accordance with art. 22, sec. 1 and 4 (GDPR), and – at least for these cases – sound information on the applied logic, the scope, and the intended effects on the data subject by this kind of processing.

You have the right to receive information whether or not your personal data is transferred to a third country, or to an international organization. Here, you can demand to be informed of the appropriate safeguards in the context of this transfer in accordance with art. 46 (GDPR).

  1. Right to rectification

You have the right to rectification and/or completion if the processed personal data is inaccurate or incomplete. The Controller shall implement the rectification without undue delay.

  1. Right to restriction of processing

Given the following conditions, you may demand the restriction of processing of your personal data:

  • if you dispute the accuracy of your personal data for a period that allows the Controller to check the accuracy of the personal data;
  • the processing is unlawful, you object to the erasure of personal data, and instead demand the use of personal data be restricted;
  • the Controller no longer needs your personal data for the purposes of processing, but you require the data to assert, exercise, or defend legal claims, or
  • if you have objected to the processing in accordance with art. 21, sec. 1 (GDPR), and it is yet to be decided whether the legitimate interests of the Controller override your interests.

If processing of your personal data has been restricted, the data may only be processed – apart from your own copies –  with your consent or for the purpose of asserting, exercising, or defending legal claims, or protecting the rights of another natural or legal person, or for reasons of important public interest of the EU or an EU member state.

If processing has been restricted based on the conditions mentioned above, the Controller will inform you prior to this decision being rescinded.

  1. Right to erasure

a) Erasure obligation

You may demand the Controller to erase your personal data without undue delay, and the Controller is obligated to immediately erase said data given one of the following reasons:

  1. Your personal data is no longer required for the purposes for which they were collected or processed.
  2. You revoke your consent that the processing was based on in accordance with art. 6, sec. 1, s. 1, lit. a; or art. 9, sec. 2, lit. a (GDPR), and no other legal basis for processing exists.
  3. You object to the processing in accordance with art. 21, sec. 1 (GDPR), and there are no overriding legitimate reasons for processing; or you object to the processing in accordance with art. 21, sec. 2 (GDPR).
  4. Your personal data was being processed unlawfully.
  5. The erasure of your personal data is required to comply with legal obligations according to Union law or the law of the member states the Controller is subject to.
  6. Your personal data was collected in relation to information society services in accordance with art. 8, sec. 1 (GDPR).

b) Information to third parties

If the Controller has made your personal data public and is obligated to erase said data pursuant to art. 17, sec. 1 (GDPR), they shall consider available systems and implementation costs to take appropriate measures, technical types included, to inform Controllers of data processing that process said personal data of your demand as the data subject to erase any links to said personal data, or copies, or replications of said personal data.

c) exceptions

The right to erasure does not exist if the processing is necessary

  1. to evoke the right to free speech and information;
  2. to comply with legal obligations that require the processing based on Union law or law of member states that the Control is subject to, or to perform a task based on public interest or exercising of public authority that was transferred to the Controller;
  3. for reasons of public interest in the area of public health in accordance with art. 9, sec. 2, lit. h and i, and art. 9, sec. 3 (GDPR);
  4.  for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes in accordance with art. 89, sec. 1 (GDPR), if the right under a) likely renders impossible or seriously impairs the realization of the goals of processing, or
  5. for asserting, exercising, or defending legal claims.
  1. Right to be informed

If you have exercised the right to rectification, erasure, or restriction of processing against the Controller, they shall then be obliged to inform all recipients that have had access to your personal data of this rectification or erasure of the data or the restriction of processing, unless this proves to be impossible or necessitates unreasonable effort.

You have the right to be informed of said recipients by the Controller.

  1. Right to data portability

You have the right to receive your personal data you provided to the Controller in a structured, common, machine-readable format. Additionally, you have the right to transfer said data to a different Controller without obstruction by the Controller that the personal data was provided to, as long as

  1. the processing is based on consent in accordance with art. 6, sec. 1, s. 1, lit. a (GDPR) or art. 9, sec. 2, lit. a (GDOR), or on a contract in accordance with art. 6, sec. 1, s. 1, lit. b (GDPR) and
  2. the processing is based on automated procedures.

In exercising this right, you additionally have the right to request direct transfer of your personal data from on Controller to another, given technical feasibility. Freedoms and rights of other persons must not be impaired by this.

The right to data portability does not apply to personal data processing required for an execution of a task based on public interest or exercising of public authority that was transferred to the Controller.

  1. Right of revocation

Based on your personal situation, you have the right to object at any time to the processing of your personal data carried out on the basis of art. 6, sec. 1, s. 1, lit. e or f (GDPR), including profiling based on these provisions.

The Controller will no longer process your personal data unless they can provide compelling reasons worthy of protection for processing which override your interests, rights, and freedoms, or the processing serves to assert, exercise, or defend legal claims.

If your personal data are processed for the purpose of direct advertising, you have the right to object at any time to the processing of your personal data for the purpose of said marketing, including profiling related to said direct advertising.

If you object to processing for direct advertising purposes, your personal data will no longer be processed for these purposes.

You may exercise your right to object in connection with the use of information society services by means of automated procedures involving technical specifications, regardless of directive 2002/58/EC.

  1. Right to revoke consent regarding data protection

You have the right to revoke your consent regarding data protection at any point. Revocation does not change the lawfulness of data processing that occurred up to the time of revocation.

  1. Automated individual decision including profiling

You have the right not to be subjected to a decision based solely on automated processing – including profiling – that has legal effect for you or seriously impairs you in a similar way. This does not apply if the decision

  • is required for entering or executing a contract between you and the Controller,
  • or is admissible based on legal provision of the Union or the member states the Controller is governed by, and if these provisions include suitable measures to protect your rights, your freedoms, and your vital interests, or
  • is based on your explicit consent.

However, these decisions may not be based on special categories according to art. 9, sec. 1, GDPR, unless art. 9, sec. 2, lit. a or g, GDPR apply, and suitable measures to protect the rights, freedoms, and your vital interests have been implemented.

Regarding the cases stated in (1) and (3), the Controller takes suitable measures to protect the rights, freedoms, and your vital interests, which includes at least the right to effect intervention by a person on the Controller’s side, to explain your position, and to contest the decision.

  1. Right to lodge a complaint with a supervisory authority

In addition to other administrative or judicial remedies, you have the right to lodge a complaint with a supervisory authority, especially in the member state where you reside, work, or where the alleged infraction has taken place if you think that the processing of your personal data violates the GDPR.

The supervisory authority receiving the complaint will then inform the complainant of the status and the result of the complaint including the possibility of a judicial remedy in accordance with art. 78 (GDPR).

Provision of the website and creation of logfiles

  1. Description and range of data processing

Every time our website is viewed, our system automatically collects data and information pertaining to the system of the computer used to view the site.

The following data is then collected:

  • Information on the browser type and the version used
  • The user’s operating system
  • The user’s ISP
  • The user’s IP address
  • Date and time of access
  • Websites from which the user’s system reaches our website
  • Websites that are accessed by the user’s system from our website

This data is also saved in our system’s logfiles. This data is not stored with other personal data of the user.

  1. Legal basis for data processing

Legal basis for the temporary storing of data and logfiles is art. 6, sec. 1, sent. 1, lit. f, GDPR.

  1. Purpose of data processing

The temporary storing of the IP address by the system is required to facilitate the delivery of the website to the user’s computer. For this, the user’s IP address must be stored for the duration of the session.

Logfiles are used for storing to ensure the website’s functionality. Additionally, the data helps us optimize the website and ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not occur here.

These purposes represent our vital interest in data processing in accordance with art. 6, sec. 1, s. 1, lit f., GDPR.

  1. Storage duration

Data will be deleted as soon as the reason for their collection no longer exists. For data collection with the purpose to display the website, this occurs once the session has ended.

For data stored in logfiles, this occurs no later than after seven days. Storing data beyond that is possible. In this case, users’ IP addresses are deleted or altered to prevent identification of the calling client.

  1. Possibility of objection and elimination

Data collection is imperative for the provision of the website, and storing data in logfiles is imperative for the operation of the website. Thus, there is no possibility for the user to object.

Cookie usage

  1. Description and range of data processing

Our website uses cookies. Cookies are text files saved in or by the browser on the user’s computer system. When a user calls up a website, a cookie can be saved on the user’s operating system. This cookie contains a typical character sequence that allows clear identification of the browser when the website is called up again.

We use cookies to make our website more user-friendly. Some elements of our website necessitate the calling browser to be identifiable even after a different website is called up.
Thus, the cookies store and transmit the following data:

  • Language settings
  • Log-in information

On our website, we additionally use cookies that allow analysis of the users’ surfing behavior.
Through this, the following data can be transmitted:

  • Search words entered
  • Frequency of called-up websites
  • Usage of website features

User data collected this way is pseudonymized through technical features. Thus, attributing data to the calling user is no longer possible. The data is not stored together with other personal data of the users.
When viewing our website, users are informed of the use of cookies for analytical purposes and referred to this privacy policy by an info banner. Here, a note on how to disallow cookies being stored using browser settings can be found, too.

When calling our website, the user is informed of the use of cookies for analytical purposes and their consent to processing personal data used in this context is obtained. Here, the privacy policy is mentioned, too.

  1. Legal basis for data processing

Legal basis for processing of personal data with the use of cookies is art. 6, sec. 1, s. 1, lit. f (GDPR).

  1. Purpose of data processing

The purpose of using technically necessary cookies is to ease utilization of websites for the users. Some features of our website cannot be offered without the use of cookies. It is necessary for said features to recognize the browser on return to the website.

We require cookies for the following features:

  • Adoption of language settings
  • Saving search terms

User data collected by technically required cookies is not used for creation of user profiles.

Analytical cookies are used for the purpose of improving the quality and content of our website. Analytical cookies allow us to learn how the website is used and thus we can steadily improve our offers.

Improvement of quality and content of our website.

These purposes represent our vital interest in personal data processing in accordance with art. 6, sec. 1, s. 1, lit f. (GDPR).

  1. Storage duration, possibility of objection and elimination

Cookies are saved on the user’s computer and from there transmitted to our website Thus, as user, you have full control regarding the use of cookies. You can deactivate or limit the transmission of cookies by changing the settings of your internet browser. Previously saved cookies can be deleted at any time. This can also be an automated process. The ability to use the full scope of features of our websites might be impaired if cookies for our website are deactivated.

Newsletter

  1. Description and range of data processing

We offer the possibility to subscribe to an editorial newsletter on our website for free Hereby, the data from the registration form will be transferred to us upon newsletter signup:

  • E-mail address
  • Name
  • First name
  • Accessing computer IP address
  • Date and time of registration

We utilize the list provider MailChimp to send our newsletter. MailChimp is a service of The Rocket Science Group, LLC, 512 Means Street, Ste 404 Atlanta, GA 30318.

MailChimp offers extensive possibilities to analyze how our newsletter is opened and used. These analyses are group-related and we do not use them for individual evaluation. Further information on MailChimp and the data privacy at MailChimp can be found here: mailchimp.com/legal/privacy/.

You may revoke your consent regarding the use of your e-mail address to send the newsletter at any time. This revocation can occur via a link in the newsletters themselves or via message to info@eviom.com.

During registration, you will be asked to consent to the processing of data and you will be referred to this privacy policy.

No data is transmitted to third parties in the context of data processing for the purpose of mailing newsletters. Data is used exclusively for mailing of the newsletter.

  1. Legal basis for data processing

Given the user’s consent, legal basis for data processing following the sign-up to newsletters by the user is art. 6, sec. 1, s. 1, lit. a (GDPR).

  1. Purpose of data processing

The user’s e-mail address is collected in order to send the newsletter.

The collection of other personal data during the registration process is used to prevent misuse of the services or of the email address used.

  1. Storage duration

Data will be deleted as soon as the reason for their collection no longer exists. Therefore, the user’s e-mail address will be stored for the duration of an active newsletter subscription.

Generally, other personal data collected during the registration process is deleted after a period of seven days.

  1. Possibility of objection and elimination

Any user can unsubscribe from the newsletter at any point. A respective link for this purpose can be found in every newsletter.

This also allows to revoke consent to storage of personal data provided during the registration process.

Contact form and e-mail contact

  1. Description and range of data processing

Our website features contact forms usable for electronic contact and free downloads. If a user elects to use this service, the data entered into the form is transmitted to and saved by us.

Additionally, the following data is saved at the moment the message is sent:

  • E-mail address
  • Name
  • First name
  • Phone / cellphone number
  • Company
  • Accessing computer IP address
  • Date and time of registration

During submission, you will be asked to consent to the processing of data and you will be referred to this privacy policy.

Alternatively, contact using the email address provided is possible. In this case, the user’s personal data sent in the email is saved.

We use the following services to collect your data and to provide your downloads:

Hubspot

We use HubSpot for our online marketing activities on this website. HubSpot is a software company from the USA with a subsidiary in Ireland. Contact: HubSpot, 2nd Floor 30 North Wall Quay, Dublin 1, Ireland, Phone: +353 1 5187500.

This is an integrated software solution we use to cover various aspects of our online marketing. This includes among others:

E-mail marketing (automated mailings, e.g. to provide downloads), contact management (e.g. user segmentation & CRM), landing pages, and contact forms.

  1. Purpose of data processing

Our registration service allows visitors of our website to learn more about our company, download content, and to provide their contact information and other demographic information. This information and the content of our website is stored on the servers of our software partner HubSpot. They can be used by us to get in contact with users of our website, and to determine which of our services are interesting to you. Any data we collect is subject to this privacy policy. We use any collected information solely for the purpose of optimization of our marketing measures.

  1. Storage duration

We store your personal data until revocation. Beyond that, we comply with legal storage periods.

  1. Possibility of objection and elimination

At any time, you can object to the processing of your personal data that we collect for the provision of your download, and can evoke your rights as the data subject mentioned under IV of this privacy policy.   For this, send us an informal e-mail to info@eviom.com or unsubscribe using an unsub link at the end of every newsletter.

More information on Privacy Policy at HubSpot.
More information from HubSpot regarding EU data protection regulations.

Evalanche

We use EVALANCHE for contact forms and to run automated marketing campaigns. The provider is SC-NETWORKS GMBH, Enzianstr. 2, 82319 Starnberg, Germany.

EVALANCHE is a service used to create and analyze online forms for downloads, automated e-mail campaigns, and more. The data you provide for the purpose of downloading are saved on Evalanche servers in Germany.

If you wish to no longer receive e-mails from us, you can unsubscribe. For this, we provide an appropriate link at the end of every message.

  1. Scope of data processing

We are able to analyze our marketing campaigns with the help of EVALANCHE. For example, we can see if a message was opened and if any links were clicked. Thus, we can determine which links are clicked the most, and more.

Additionally, we can recognize whether certain predefined actions were performed after opening/clicking (conversion rate). Thus, we can see if, for example, you visited a website after clicking on the message.

Additionally, Evalanche allows us to classify newsletter recipients using various categories (“clustering”). With this, the recipients can be classified according to, for example, age, gender, or place of residence. This allows for better tailoring e-mails for their respective target groups.

Detailed information on the features of Evalanche can be found here:
https://www.sc-networks.de/loesungen/enterprise/

  1. Storage duration

We store your personal data until revocation. Beyond that, we comply with legal storage periods.

  1. Possibility of objection and elimination

At any time, you can object to the processing of your personal data that we collect for the provision of your download, and can evoke your rights as the data subject mentioned under IV of this privacy policy. For this, send us an informal e-mail to info@eviom.com or at the of every newsletter.

Zoho

  1. Scope of data processing

We use services provided by Zoho Corporation B. V., Hoogoorddreef 15, 1101BA Amsterdam (hereinafter “Zoho”). Zoho is certified under the US-EU-data privacy agreement “Privacy Shield” and thus commits to adhering to European data privacy regulations. You can find further information on this on the pages of Zoho. We use Zoho for web forms, data management, quoting, and invoicing.

  1. Legal basis for data processing

Given the user’s consent, legal basis for data processing  is art. 6, sec. 1, s. 1, lit. a (GDPR).

The legal basis for the processing of data collected when an e-mail is sent is art. 6, sec. 1, s. 1, lit. f (GDPR). In case the purpose of the contact via e-mail is to enter into a contract, the additional legal basis for processing is art. 6, sec.1, s. 1, lit. b (GDPR).

  1. Purpose of data processing

Processing personal data from the input form is solely used for processing the contact. For contacts via email, this also constitutes the required vital interest for data processing.

All other personal data processed during the sending process serves the purposes of preventing misuse of the contact form, and of ensuring the security or our information systems.

  1. Storage duration

Data will be deleted as soon as the reason for their collection no longer exists. For personal data from the input form of the contact form and those provided via e-mail, this is the case as soon as the respective conversation with the user has ended. The conversation is over when it can be told that the issue at hand has been resolved.

Addtionally collected personal data during the sending process will be deleted within a period of seven days at the latest.

  1. Possibility of objection and elimination

The user may revoke their consent to the processing of personal data at any time. By contacting us via e-mail, the user may object to the storage of their personal data at any time. The conversation cannot be continued in this case.

Any personal data collected during the contact will be deleted in this case.

Fanpage

Use of our eviom GmbH – Facebook – company presence

  1. Scope of data processing

We use the eviom GmbH company presence of Facebook Menlo Park, California, USA. We provide information on our site and offer Facebook users the possibility to communicate.

Raffles, communication with users, sharing of blog articles, information, product and service descriptions.

We have no information on the processing of your personal data by the company jointly responsible for the eviom GmbH company presence – Facebook. Information on this can be found in the privacy policy of:
Facebook: https://de-de.facebook.com/policy.php

Taking any action on our Facebook company presence (e.g. comments, posts, likes, etc.), may also mean you are publishing personal data (e.g. real name or user profile picture).

  1. Legal basis

Legal basis for the processing of your data in the context of the use of our Facebook company presence is art. 6, sec. 1, s. 1, lit. f (GDPR).

  1. Purpose of data processing

We use our Facebook company presence to provide Instagram Inc. users with information regarding our services, raffles, advertisement. Hereby, each user can publish personal data through activities.

  1. Storage duration

We store your activities and personal data published via our Facebook company presence until revocation. Beyond that, we comply with legal storage periods.

  1. Possibility of objection and elimination

At any time, you can object to the processing of your personal data that we collect when you use our Facebook company presence, and can evoke your rights as the data subject mentioned under IV of this privacy policy. For this, send us an informal e-mail to info@eviom.com or via the respective messenger or comment features.

More information on the processing of your personal data can be found here: https://de-de.facebook.com/

Use of our eviom GmbH – Instagram Inc. – company presence

  1. Scope of data processing

We use the eviom GmbH company presence of Instagram Inc., 4 Grand Canal Square, Dublin 2, Ireland. We provide information on our site and offer Instagram Inc. users the possibility to communicate.

Raffles, communication with users, sharing of blog articles, information, product and service descriptions.

We have no information on the processing of your personal data by the company jointly responsible for the eviom GmbH company presence – Instagram Inc. Information on this can be found in the privacy policy of:
Instagram Inc.: https://help.instagram.com/519522125107875

Taking any action on our Instagram Inc. company presence (e.g. comments, posts, likes, etc.), may also mean you are publishing personal data (e.g. real name or user profile picture).

  1. Legal basis

Legal basis for the processing of your data in the context of the use of our Instagram, Inc. company presence is art. 6, sec. 1, s. 1, lit. f (GDPR).

  1. Purpose of data processing

We use our Instagram Inc. company presence to provide Instagram Inc. users with information regarding our services, raffles, advertisement. Hereby, each user can publish personal data through activities.

  1. Storage duration

We store your activities and personal data published via our Instagram Inc. company presence until revocation. Beyond that, we comply with legal storage periods.

  1. Possibility of objection and elimination

At any time, you can object to the processing of your personal data that we collect when you use our Instagram Inc. company presence, and can evoke your rights as the data subject mentioned under IV of this privacy policy. For this, send us an informal e-mail to info@eviom.com or via the respective messenger or comment features.

More information on the processing of your personal data by Instagram Inc. can be found here: https://www.instagram.com/?hl=en

Use of our eviom GmbH – LinkedIn – company presence

  1. Scope of data processing

We use the eviom GmbH company presence of LinkedIn Wilton Place, Dublin 2, Irland. We provide information on our site and offer LinkedIn users the possibility to communicate.

Raffles, communication with users, sharing of blog articles, information, product and service descriptions.

We have no information on the processing of your personal data by the company jointly responsible for the eviom GmbH company presence – LinkedIn. Information on this can be found in the privacy policy of:
LinkedIn: https://www.linkedin.com/legal/privacy-policy?trk=uno-reg-guest-home-privacypolicy

Taking any action on our LinkedIn company presence (e.g. comments, posts, likes, etc.), may also mean you are publishing personal data (e.g. real name or user profile picture).

  1. Legal basis

Legal basis for the processing of your data in the context of the use of our LinkedIn company presence is art. 6, sec. 1, s. 1, lit. f (GDPR).

  1. Purpose of data processing

We use our LinkedIn company presence to provide Instagram Inc. users with information regarding our services, raffles, advertisement. Hereby, each user can publish personal data through activities.

  1. Storage duration

We store your activities and personal data published via our LinkedIn company presence until revocation. Beyond that, we comply with legal storage periods.

  1. Possibility of objection and elimination

At any time, you can object to the processing of your personal data that we collect when you use our LinkedIn company presence, and can evoke your rights as the data subject mentioned under IV of this privacy policy. For this, send us an informal e-mail to info@eviom.com or via the respective messenger or comment features.

More information on the processing of your personal data by LinkedIn can be found here: https://www.linkedin.com/?trk=nav_logo

Use of our eviom GmbH – Pinterest Inc. – company presence

  1. Scope of data processing

We use the eviom GmbH company presence of Pinterest Inc., 651 Brannan Street, San Francisco, USA. We provide information on our site and offer Pinterest Inc. users the possibility to communicate.

Raffles, communication with users, sharing of blog articles, information, product and service descriptions.

We have no information on the processing of your personal data by the company jointly responsible for the eviom GmbH company presence – Pinterest Inc. Information on this can be found in the privacy policy of:
Pinterest: https://policy.pinterest.com/de/privacy-policy

Taking any action on our Pinterest Inc. company presence (e.g. comments, posts, likes, etc.), may also mean you are publishing personal data (e.g. real name or user profile picture).

  1. Legal basis

Legal basis for the processing of your data in the context of the use of our Pinterest Inc. company presence is art. 6, sec. 1, s. 1, lit. f (GDPR).

  1. Purpose of data processing

We use our Pinterest Inc. company presence to provide Instagram Inc. users with information regarding our services, raffles, advertisement. Hereby, each user can publish personal data through activities.

  1. Storage duration

We store your activities and personal data published via our Pinterest Inc. company presence until revocation. Beyond that, we comply with legal storage periods.

  1. Possibility of objection and elimination

At any time, you can object to the processing of your personal data that we collect when you use our Pinterest Inc. company presence, and can evoke your rights as the data subject mentioned under IV of this privacy policy. For this, send us an informal e-mail to info@eviom.com or via the respective messenger or comment features.

More information on the processing of your personal data by Pinterest Inc. can be found here: https://www.pinterest.com

Use of our eviom GmbH – Twitter Inc. – company presence

  1. Scope of data processing

We use the eviom GmbH company presence of Twitter Inc., 1355 Market Street, Suite 900, San Francisco, USA. We provide information on our site and offer Twitter Inc. users the possibility to communicate.

Raffles, communication with users, sharing of blog articles, information, product and service descriptions.

We have no information on the processing of your personal data by the company jointly responsible for the eviom GmbH company presence – Twitter Inc. Information on this can be found in the privacy policy of:
Twitter Inc.: https://twitter.com/de/privacy

Taking any action on our Twitter Inc. company presence (e.g. comments, posts, likes, etc.), may also mean you are publishing personal data (e.g. real name or user profile picture).

  1. Legal basis

Legal basis for the processing of your data in the context of the use of our Twitter Inc. company presence is art. 6, sec. 1, s. 1, lit. f (GDPR).

  1. Purpose of data processing

We use our Twitter Inc. company presence to provide Instagram Inc. users with information regarding our services, raffles, advertisement. Hereby, each user can publish personal data through activities.

  1. Storage duration

We store your activities and personal data published via our Twitter Inc. company presence until revocation. Beyond that, we comply with legal storage periods.

  1. Possibility of objection and elimination

At any time, you can object to the processing of your personal data that we collect when you use our Twitter Inc. company presence, and can evoke your rights as the data subject mentioned under IV of this privacy policy. For this, send us an informal e-mail to info@eviom.com or via the respective messenger or comment features.

More information on the processing of your personal data by Twitter Inc. can be found here: https://twitter.com/

Use of our eviom GmbH – XING SE – company presence

  1. Scope of data processing

We use the eviom GmbH company presence of XING SE Dammtorstraße 30
20354 Hamburg, Germany. We provide information on our site and offer XING SE users the possibility to communicate.

Raffles, communication with users, sharing of blog articles, information, product and service descriptions.

We have no information on the processing of your personal data by the company jointly responsible for the eviom GmbH company presence – XING SE. Information on this can be found in the privacy policy of:
XING SE: https://privacy.xing.com/de/datenschutzerklaerung

Taking any action on our XING SE company presence (e.g. comments, posts, likes, etc.), may also mean you are publishing personal data (e.g. real name or user profile picture).

  1. Legal basis

Legal basis for the processing of your data in the context of the use of our XING SE company presence is art. 6, sec. 1, s. 1, lit. f (GDPR).

  1. Purpose of data processing

We use XING SE Inc. company presence to provide XING SE users with information regarding our services, raffles, advertisement. Hereby, each user can publish personal data through activities.

  1. Storage duration

We store your activities and personal data published via our XING SE company presence until revocation. Beyond that, we comply with legal storage periods.

  1. Possibility of objection and elimination

At any time, you can object to the processing of your personal data that we collect when you use our XING SE company presence, and can evoke your rights as the data subject mentioned under IV of this privacy policy. For this, send us an informal e-mail to info@eviom.com or via the respective messenger or comment features.

More information on the processing of your personal data by XING SE can be found here: https://www.xing.com/

Plugins used

Use of Google AdWords

  1. Scope of personal data processing

On our website, we use Google AdWords of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States. This is an online advertisement program that uses conversion tracking. Google AdWords will save a cookie on your computer when you reach our website via a Google ad. A different cookie is attributed to each Google AdWords customer.

  1. Legal basis for the processing of personal data

The legal basis for the processing is art. 6, sec. 1, s. 1, lit. f (GDPR).

  1. Purpose of data processing

We only receive information regarding the total amount of users that reacted to our ad. No information that could be used to identify you is passed on. The use does not serve tracking purposes.

  1. Storage duration

The cookie will expire after 30 days.

  1. Possibility of objection and elimination

You can prevent Google conversion tracking by deactivating the tracking process in your browser. More information can be found at https://www.google.com/intl/de/policies/privacy/

Use of Google Analytics

  1. Scope of personal data processing

On our website, we use Google Analytics, a web analysis service of Google Inc., 1600 Amphiteatre Parkway, Mountain View, CA 94043, USA.(“Google“). Google Analytics uses “cookies“ which are stored on your computer and which enable an analysis of your use of the website. The information generated by the cookie about your use of this website is transferred to a Google server in the USA and stored there. In case of an active IP anonymization on this website, Google will first shorten your IP address within member states of the European Union or in states that are contractual parties to the agreement on the European Economic Area. The IP address is only transferred in full to Google in the USA and then shortened there in exceptional cases. IP-anonymization is active on this website. By order of the operator of this website, Google will use this information to analyze your use of the website, to compile reports on website activities, and to provide additional services regarding website usage and internet usage to the website operator. The IP address transmitted by your browser in the context of Google Analytics is not merged with other Google data. You can prevent the storage of cookies through a corresponding setting of your browser software, however, we do point out that you may be unable to fully use all features of our website in this case.

  1. Legal basis for the processing of personal data

The legal basis for the processing is art. 6, sec. 1, s. 1, lit. f (GDPR).

  1. Purpose of data processing

The purpose of the processing of personal data lies in the targeted approach of a target group that has already indicated initial interest by visiting the website.

  1. Storage duration

Advertisement data in server logs is anonymized by Google, on their own account, deleting parts of the IP address and cookie information after 9 or 18 months.

  1. Possibility of objection and elimination

Beyond that, you can prevent collection of data created by the cookie within the context of your use of the website (incl. your IP address) by Google and the processing of said data by Google, through downloading and installing the browser plugin available here: http://tools.google.com/dlpage/gaoptout?hl=de. More information can be found at https://www.google.com/intl/de/policies/privacy/

Use of Google Analytics Remarketing (also Google Dynamic Remarketing)

  1. Scope of personal data processing

On our website, we use the remarketing feature of Google Inc.., 1600 Amphiteatre Parkway, Mountain View, CA 94043, USA. We offer you appropriate and interest-based ads together with Google. Google Analytics Remarketing uses cookies. These are saved on your computer. According to information by Google, no personal data is collected in the process. According to them, no connection to other Google services exists, either.

  1. Legal basis for the processing of personal data

The legal basis for the processing is art. 6, sec. 1, s. 1, lit. f (GDPR).

  1. Purpose of data processing

The purpose of the processing lies in the targeted approach of a target group. The cookies saved on your computer identify you when you visit a website and can thus display interest-based ads.

  1. Storage duration

Advertisement data in server logs is anonymized by Google, on their own account, deleting parts of the IP address and cookie information after 9 or 18 months.

  1. Possibility of objection and elimination

You can prevent the use of the remarketing feature by implementing the settings found here: https://http://www.google.de/settings/ads More information can be found at https://www.google.com/intl/de/policies/privacy/

Use of Instagram Plugin

  1. Scope of personal data processing

Our websites have implemented plugins of the service Instagram. These are offered by Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA.

We use the integrated Instagram buttons to facilitate a link to our Instagram profile. Additionally, a widget is integrated that allows us to display certain photos and videos of our Instagram profile on our website.

Upon visiting one of our websites featuring such a plugin, your browser establishes a direct connection to a server of Instagram. The content of the plugins are directly sent to your browser and implemented on the website. Here, data is automatically transferred to Instagram and stored on their servers. These transferred data include connection data (e.g. your IP address, date and time, the called URL), the browser used, and the operating system. Your visit to our pages can thus be tracked by Instagram even if you do not actively use the plugin feature.

When logged into your Instagram account, you can link the content of our websites to your Instagram profile by clicking the Instagram button. This allows Instagram to associate your visit to our websites with your user account. If you want to prevent this immediate assignment, you need to log out off Instagram before visiting our website. Further information on this can be found in the privacy policy of Instagram:

https://help.instagram.com/155833707900388

  1. Legal basis for the processing of personal data

The legal basis for the processing of personal data is art. 6, sec. 1, s. 1, lit. f (GDPR).

  1. Purpose of data processing

You can find information on the processing of personal data in the privacy policy of Instagram:

https://help.instagram.com/155833707900388

  1. Storage duration

We have no information regarding the storage duration.

  1. Possibility of objection and elimination

Further information can be found here:
https://help.instagram.com/155833707900388

Use of Facebook Pixel

  1. Scope of personal data processing

Given your consent and within our online presence, we utilize the “visitor action pixel” by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA (“Facebook”). It allows us to track user actions after they saw of clicked on a Facebook ad. Thus, we can collect efficiency data on Facebook ads for statistical and market analytical purposes. Data collected thusly is anonymous to us which means we cannot see the personal data of individual users. However, this data is stored and processed by Facebook which is what we inform you of given our current knowledge. Facebook can connect this data to your Facebook account and also use it for their own advertisement purposes in accordance with Facebook’s data usage policy
https://www.facebook.com/about/privacy/. You can allow Facebook and its partners to run ads on and outside of Facebook. Furthermore, a cookie can be stored on your computer for these purposes.

Users giving said consent must be older than 13 years. Younger users are kindly asked to consult their parents.

  1. Legal basis for the processing of personal data

The legal basis for the processing is art. 6, sec. 1, s. 1, lit. f (GDPR).

  1. Purpose of data processing

The use of Facebook Pixels serves the purpose of optimization of advertisement measures.

  1. Storage duration

We have no information regarding the storage duration.

  1. Possibility of objection and elimination

Further information can be found in the privacy policy of Facebook
https://www.facebook.com/policy.php.

Use of Google Webfonts

  1. Scope of personal data processing

On this website, Google Webfonts (http://www.google.com/webfonts/) is used for better visual display of different information. Upon calling the website, the Webfonts are transferred to the browser cache to use them for the display. A standard font is used if the browser does not support Google Webfonts or does no authorize access.

No cookies are stored on the visitor’s computer when calling the website. Data transferred in the context of calling the site are sent to resource-specific domains such as fonts.googleapis.com or fonts.gstatic.com. They are not connected to data that may be collected or used in the context of parallel use of authenticated Google services such as Gmail.

Google also stores the IP address of the device used by the visitor of these websites.

  1. Legal basis for the processing of personal data

The legal basis for the processing is art. 6, sec. 1, lit. f (GDPR). The flawless performance of the website constitutes the vital interest.

  1. Purpose of data processing

This is required so that your browser can also display an improved visual of our texts. A standard font of your computer is displayed if your browser does not support this feature.

  1. Storage duration

We have no information regarding the storage duration at our order processor.

  1. Possibility of objection and elimination

You can setup your browser so that the fonts will not be loaded from the Google servers (e.g. by installing add-ons such as NoScript or Ghostery for Firefox). The text will be displayed in the system’s standard font if your browser does not support Google Fonts or you prevent access to the servers of Google.

Use of Pinterest

  1. Range of processing

On our website, we use the plugin of Pinterest Inc., 808 Brannan Street San Francisco, CA 94103-490, USA. When visiting our websites featuring this plugin, your browser establishes a connection to the servers of Pinterest in the USA: Logfiles of your website visit are transferred to Pinterest. This may include the following data:

  • Your IP address,
  • The address of the visited website also containing Pinterest features.
  • Type and settings of your browser,
  • Date and time of call,
  • Your use of Pinterest.
  1. Legal basis for the processing of personal data

The legal basis for the processing of users’ personal data is art. 6, sec. 1, s. 1, lit. a (GDPR).

  1. Purpose of data processing

The use of Pinterest serves the user friendliness of our website.

  1. Storage duration

We have no information regarding the storage duration.

  1. Possibility of objection and elimination

Further information on the scope and purpose of data collection by Pinterest can be found at:
https://about.pinterest.com/de/privacy-policy .

Use of XING-Plugin

  1. Scope of personal data processing

Our website features the “XING share-button” of XING SE, Dammtorstraße 29-32, 20354 Hamburg, Germany. When calling this website, your browser establishes a short-term connection to the servers of XING SE (“XING”) that provide the “XING share-button” features (specifically the calculation/display of the counter value).

  1. Legal basis for the processing of personal data

The legal basis for the processing of users’ personal data is art. 6, sec. 1, s. 1, lit. a (GDPR).

  1. Purpose of data processing

The “XING-Share-Button” is implemented for user friendliness. Clicking the button will forward you to the XING landing page. You can recommend the link to our website when logged into your profile.

  1. Storage duration

XING stores no personal data of you regarding the calling of this website. Particularly, XING does not store any IP addresses. Additionally, there is no evaluation of your usage behavior regarding cookie usage in connection with the “XING sahre-button”.

  1. Possibility of objection and elimination

The respective up-to-date data privacy information regarding the “XING share-button” and supplementary information can be found on the following website: https://www.xing.com/app/share?op=data_protection

Use of LinkedIn

  1. Scope of personal data processing

Our websites uses features of the network LinkedIn. LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA is the provider.

Anytime on our websites featuring LinkedIn features is called, a connection to servers of LinkedIn is established. LinkedIn is informed of your visit to our websites with your IP address. When clicking the “recommend button” of LinkedIn while logged into your LinkedIn account, LinkedIn can assign your visit to our website to you and your user account. We would like to point out that as operator of the website, we have no knowledge of neither the content of the transferred data, nor of their usage by LinkedIn.

Further information on this can be found in the privacy policy of LinkedIn:
https://www.linkedin.com/legal/privacy-policy.

  1. Legal basis for the processing of personal data

The legal basis for the processing of users’ personal data is art. 6, sec. 1, s. 1, lit. a (GDPR).

  1. Purpose of data processing

The use of the LinkedIn plugin serves the user friendliness of our website.

  1. Storage duration

We have no information regarding the storage duration.

  1. Possibility of objection and elimination

If the person this concerns does not want such a transfer of this data, they can prevent the transfer by logging out of their LinkedIn account before calling our website. LinkedIn offers the possibility to opt out of e-mail messages, SMS messages, and targeted displays, and to manage display settings at https://www.linkedin.com/psettings/guest-controls  Additionally, LinkedIn uses partners that may set cookies such as Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua, and Lotame. Such cookies can be refused at https://www.linkedin.com/legal/cookie-policy Applicable privacy policies of LinkedIn can be found at https://www.linkedin.com/legal/privacy-policy. The cookie policy of LinkedIn can be found at https://www.linkedin.com/legal/cookie-policy.