Sta­tus Sep­tem­ber 2021

Privacy Policy

Table of Contents

Identity and contact details of the data controller

The data con­troller respon­si­ble in accor­dance with the pur­pos­es of the Gen­er­al Data Pro­tec­tion Reg­u­la­tion (GDPR) of the Euro­pean Union and oth­er data pro­tec­tion reg­u­la­tions is:

talessio GmbH
Alexan­der­str. 52
72072 Tübin­gen
Ger­many

Phone: +49.7071.53938.0
Fax: +49.7071.53938.90
Email: [email protected]​talessio.​com
Web: https://​talessio​.com/

Contact details of the data protection officer

The des­ig­nat­ed data pro­tec­tion offi­cer is:

Dat­a­Co GmbH
Dachauer Str. 65
80335 Munich
Ger­many

Phone: +49.89.7400.45840
Web: https://​www​.data​guard​.de/

General information on data processing

Scope of processing personal data

In gen­er­al, we only process the per­son­al data of our users to the extent nec­es­sary to pro­vide a func­tion­ing web­site with our con­tent and ser­vices. The reg­u­lar pro­cess­ing of per­son­al data only takes place with the con­sent of the user. Excep­tions include cas­es where pri­or con­sent can­not be tech­ni­cal­ly obtained and where the pro­cess­ing of the data is per­mit­ted by law.

Legal basis for data processing

Where con­sent is appro­pri­ate for pro­cess­ing per­son­al data, Art. 6 (1) (1) (a) GDPR serves as the legal basis to obtain the con­sent of the data sub­ject for the pro­cess­ing of their data.

As for the pro­cess­ing of per­son­al data required for the per­for­mance of a con­tract of which the data sub­ject is par­ty, Art. 6 (1) (1) (b) GDPR serves as the legal basis. This also applies to pro­cess­ing oper­a­tions required to car­ry out pre-con­trac­tu­al activities.

When it is nec­es­sary to process per­son­al data in order to ful­fil a legal oblig­a­tion to which our com­pa­ny is sub­ject, Art. 6 (1) (1) © GDPR serves as the legal basis.

If vital inter­ests of the data sub­ject or anoth­er nat­ur­al per­son require the pro­cess­ing of per­son­al data, Art. 6 (1) (1) (d) GDPR serves as the legal basis.

If the pro­cess­ing of data is nec­es­sary to safe­guard the legit­i­mate inter­ests of our com­pa­ny or that of a third par­ty, and the fun­da­men­tal rights and free­doms of the data sub­ject do not out­weigh the inter­est of the for­mer, Art. 6 (1) (1) (f) GDPR will serve as the legal basis for the pro­cess­ing of data.

Data removal and storage duration

The per­son­al data of the data sub­ject will be erased or restrict­ed as soon as the pur­pose of its stor­age has been accom­plished. Addi­tion­al stor­age may occur if this is pro­vid­ed for by the Euro­pean or nation­al leg­is­la­tor with­in the EU reg­u­la­tions, law, or oth­er rel­e­vant reg­u­la­tions to which the data con­troller is sub­ject. Restric­tion or era­sure of the data also takes place when the stor­age peri­od stip­u­lat­ed by the afore­men­tioned stan­dards expires, unless there is a need to pro­long the stor­age of the data for the pur­pose of con­clud­ing or ful­fil­ing the respec­tive contract.

Rights of the data subject

When your per­son­al data is processed, you are a data sub­ject with­in the mean­ing of the GDPR and have the fol­low­ing rights:

Right to information

You may request the data con­troller to con­firm whether your per­son­al data is processed by them.

If such pro­cess­ing occurs, you can request the fol­low­ing infor­ma­tion from the data controller:

  1. The pur­pose for which the per­son­al data is processed.
  2. The cat­e­gories of per­son­al data being processed.
  3. The recip­i­ents or cat­e­gories of recip­i­ents to whom the per­son­al data have been or will be disclosed.
  4. The planned dura­tion of the stor­age of your per­son­al data or, if spe­cif­ic infor­ma­tion is not avail­able, cri­te­ria for deter­min­ing the dura­tion of storage.
  5. The exis­tence of the right to request from the con­troller rec­ti­fi­ca­tion or era­sure of per­son­al data or restric­tion of pro­cess­ing of per­son­al data con­cern­ing you or to object to such processing.
  6. The exis­tence of the right to lodge a com­plaint with a super­vi­so­ry authority.
  7. Where per­son­al data are not col­lect­ed from you any avail­able infor­ma­tion as to their source.
  8. The exis­tence of auto­mat­ed deci­sion-mak­ing includ­ing pro­fil­ing under Arti­cle 22 (1) and Arti­cle 22 (4) GDPR and, in cer­tain cas­es, mean­ing­ful infor­ma­tion about the data pro­cess­ing sys­tem involved, and the scope and intend­ed result of such pro­cess­ing on the data subject.

You have the right to request infor­ma­tion on whether your per­son­al data will be trans­mit­ted to a third coun­try or an inter­na­tion­al orga­ni­za­tion. In this con­text, you can then request for the appro­pri­ate guar­an­tees in accor­dance with Art. 46 GDPR in con­nec­tion with the transfer.

Your right to infor­ma­tion may be lim­it­ed where it is like­ly that such restric­tion will ren­der impos­si­ble or seri­ous­ly impede the achieve­ment of sci­en­tif­ic or sta­tis­ti­cal pur­pos­es and that such lim­i­ta­tion is nec­es­sary for the achieve­ment of sci­en­tif­ic or sta­tis­ti­cal purposes.

Right to rectification

You have a right to rec­ti­fi­ca­tion and/​or mod­i­fi­ca­tion of the data, if your processed per­son­al data is incor­rect or incom­plete. The data con­troller must cor­rect the data with­out delay

Your right to rec­ti­fi­ca­tion may be lim­it­ed to the extent that it is like­ly to ren­der impos­si­ble or seri­ous­ly impair the achieve­ment of the pur­pos­es of the research or sta­tis­ti­cal work and the lim­i­ta­tion is nec­es­sary for the achieve­ment of the pur­pos­es of the research or sta­tis­ti­cal work.

Right to the restriction of processing

You may request the restric­tion of the pro­cess­ing of your per­son­al data under the fol­low­ing conditions:

  • If you chal­lenge the accu­ra­cy of your per­son­al data for a peri­od that enables the data con­troller to ver­i­fy the accu­ra­cy of your per­son­al data.
  • The pro­cess­ing is unlaw­ful, and you oppose the era­sure of the per­son­al data and instead request the restric­tion of their use instead.
  • The data con­troller or its rep­re­sen­ta­tive no longer need the per­son­al data for the pur­pose of pro­cess­ing, but you need it to assert, exer­cise or defend legal claims; or
  • If you have object­ed to the pro­cess­ing pur­suant to Art. 21 (1) GDPR and it is not yet cer­tain whether the legit­i­mate inter­ests of the data con­troller over­ride your interests.

If the pro­cess­ing of per­son­al data con­cern­ing you has been restrict­ed, this data may – with the excep­tion of data stor­age – only be used with your con­sent or for the pur­pose of assert­ing, exer­cis­ing or defend­ing legal claims or pro­tect­ing the rights of anoth­er nat­ur­al or legal per­son or for rea­sons of impor­tant pub­lic inter­est of the Union or of a Mem­ber State.

If the pro­cess­ing has been restrict­ed accord­ing to the afore­men­tioned con­di­tions, you will be informed by the data con­troller before the restric­tion is lifted.

Your right to restrict the pro­cess­ing may be lim­it­ed where it is like­ly that such restric­tion will ren­der impos­si­ble or seri­ous­ly impede the achieve­ment of sci­en­tif­ic or sta­tis­ti­cal pur­pos­es and that such lim­i­ta­tion is nec­es­sary for the achieve­ment of sci­en­tif­ic or sta­tis­ti­cal purposes.

Right to erasure

Obligation to erase

If you request from the data con­troller to delete your per­son­al data with­out undue delay, they are required to do so imme­di­ate­ly if one of the fol­low­ing applies:

  1. Per­son­al data con­cern­ing you is no longer nec­es­sary for the pur­pos­es for which they were col­lect­ed or processed.
  2. You with­draw your con­sent on which the pro­cess­ing is based pur­suant to Art. 6 (1) (1) (a) and Art. 9 (2) (a) GDPR and where there is no oth­er legal basis for pro­cess­ing the data.
  3. Accord­ing to Art. 21 (1) GDPR you object to the pro­cess­ing of the data and there are no longer over­rid­ing legit­i­mate grounds for pro­cess­ing, or you object pur­suant to Art. 21 (2) GDPR.
  4. Your per­son­al data has been processed unlawfully.
  5. The per­son­al data must be delet­ed to com­ply with a legal oblig­a­tion in Union law or Mem­ber State law to which the data con­troller is subject.
  6. Your per­son­al data was col­lect­ed in rela­tion to infor­ma­tion soci­ety ser­vices offered pur­suant to Art. 8 (1) GDPR.
Information to third parties
  1. If the data con­troller has made your per­son­al data pub­lic and must delete the data pur­suant to Art. 17 (1) GDPR, they shall take appro­pri­ate mea­sures, includ­ing tech­ni­cal means, to inform data proces­sors who process the per­son­al data, that a request has been made to delete all links to such per­son­al data or copies or repli­ca­tions of the per­son­al data, tak­ing into account avail­able tech­nol­o­gy and imple­men­ta­tion costs to exe­cute the process.
Exceptions

The right to dele­tion does not exist if the pro­cess­ing is necessary

  1. to exer­cise the right to free­dom of speech and information;
  2. to ful­fil a legal oblig­a­tion required by the law of the Union or Mem­ber States to which the data con­troller is sub­ject, or to per­form a task of pub­lic inter­est or in the exer­cise of pub­lic author­i­ty del­e­gat­ed to the representative.
  3. for rea­sons of pub­lic inter­est in the field of pub­lic health pur­suant to Art. 9 (2) (h) and Art. 9 (2) (i) and Art. 9 (3) GDPR.
  4. for archival pur­pos­es of pub­lic inter­est, sci­en­tif­ic or his­tor­i­cal research pur­pos­es or for sta­tis­ti­cal pur­pos­es pur­suant to Art. 89 (1) GDPR, to the extent that the law referred to in sub­para­graph (a) is like­ly to ren­der impos­si­ble or seri­ous­ly affect the achieve­ment of the objec­tives of that pro­cess­ing, or
  5. to enforce, exer­cise or defend legal claims.

Right to information

If you have the right of rec­ti­fi­ca­tion, era­sure or restric­tion of pro­cess­ing over the data con­troller, they are oblig­ed to noti­fy all recip­i­ents to whom your per­son­al data have been dis­closed of the cor­rec­tion or era­sure of the data or restric­tion of pro­cess­ing, unless this proves to be impos­si­ble or involves a dis­pro­por­tion­ate effort.

You reserve the right to be informed about the recip­i­ents of your data by the data controller.

Right to data portability

You have the right to receive your per­son­al data giv­en to the data con­troller in a struc­tured and machine-read­able for­mat. In addi­tion, you have the right to trans­fer this data to anoth­er per­son with­out hin­drance by the data con­troller who was ini­tial­ly giv­en the data, if:

  1. the pro­cess­ing is based on con­sent in accor­dance with Art. 6 (1) (1) (a) GDPR or Art. 9 (2) (a) GDPR or per­for­mance of a con­tract in accor­dance with Art. 6 (1) (1) (b) GDPR and
  2. the pro­cess­ing is done by auto­mat­ed means.

In exer­cis­ing this right, you also have the right to trans­mit your per­son­al data direct­ly from one per­son to anoth­er, inso­far as this is tech­ni­cal­ly fea­si­ble. Free­doms and rights of oth­er per­sons shall not be affected.

The right to data porta­bil­i­ty does not apply to the pro­cess­ing of per­son­al data nec­es­sary for the per­for­mance of a task in the pub­lic inter­est or in the exer­cise of offi­cial author­i­ty del­e­gat­ed to the data controller.

Right to object

For rea­sons that arise from your par­tic­u­lar sit­u­a­tion, you have, at any time, the right to object to the pro­cess­ing of your per­son­al data pur­suant to Art. 6 (1) (1) (e) or 6 (1) (1) (f) GDPR; this also applies to pro­fil­ing based on these provisions.

The data con­troller will no longer process the per­son­al data con­cern­ing you unless he can demon­strate com­pelling legit­i­mate grounds for pro­cess­ing that out­weigh your inter­ests, rights and free­doms, or the pro­cess­ing is for the pur­pose of enforc­ing, exer­cis­ing or defend­ing legal claims.

If the per­son­al data relat­ing to you are processed for direct mar­ket­ing pur­pos­es, you have the right to object at any time to the pro­cess­ing of your per­son­al data in regard to such adver­tis­ing; this also applies to pro­fil­ing asso­ci­at­ed with direct marketing.

If you object to pro­cess­ing for direct mar­ket­ing pur­pos­es, your per­son­al data will no longer be processed for these purposes.

Regard­less of Direc­tive 2002/​58/​EG, you have the option, in the con­text of the use of infor­ma­tion soci­ety ser­vices, to exer­cise your right to object to auto­mat­ed deci­sions that use tech­ni­cal specifications.

You also have the right to object, on grounds relat­ing to your par­tic­u­lar sit­u­a­tion, to the pro­cess­ing of per­son­al data con­cern­ing you which is car­ried out for sci­en­tif­ic or his­tor­i­cal research pur­pos­es or for sta­tis­ti­cal pur­pos­es pur­suant to Arti­cle 89(1) of the GDPR.

Your right to objec­tion may be lim­it­ed where it is like­ly that such restric­tion will ren­der impos­si­ble or seri­ous­ly impede the achieve­ment of sci­en­tif­ic or sta­tis­ti­cal pur­pos­es and that such lim­i­ta­tion is nec­es­sary for the achieve­ment of sci­en­tif­ic or sta­tis­ti­cal purposes.

Right to withdraw the data protection consent declaration

You have the right to with­draw your con­sent at any time. The with­draw­al of con­sent does not affect the legal­i­ty of the pro­cess­ing car­ried out on the basis of the con­sent until the withdrawal.

Automated decisions on a case-by-case basis, including profiling

You have the right to not be sub­ject to a deci­sion based sole­ly on auto­mat­ed pro­cess­ing – includ­ing pro­fil­ing – that will have a legal effect or sub­stan­tial­ly affect you in a sim­i­lar man­ner. This does not apply if the decision:

  1. is required for the con­clu­sion or exe­cu­tion of a con­tract between you and the data controller,
  2. is per­mit­ted by the Union or Mem­ber State leg­is­la­tion to which the data con­troller is sub­ject, and where such leg­is­la­tion con­tains appro­pri­ate mea­sures to safe­guard your rights and free­doms and legit­i­mate inter­ests, or
  3. is based on your eplic­it consent.

How­ev­er, these deci­sions must not be based on spe­cial cat­e­gories of per­son­al data under Art. 9 (1) GDPR, unless Art. 9 (2) (a) or Art. 9 (2) (b) GDPR applies and rea­son­able mea­sures have been tak­en to pro­tect your rights and free­doms as well as your legit­i­mate interests.

With regard to the cas­es referred to in (1) and (3), the data con­troller shall take appro­pri­ate mea­sures to uphold your rights and free­doms as well as your legit­i­mate inter­ests, includ­ing the right to obtain assis­tance from the data con­troller or his rep­re­sen­ta­tive, to express your opin­ion on the mat­ter, and to con­test the decision.

Right to complain to a supervisory authority

With­out prej­u­dice to any oth­er admin­is­tra­tive or judi­cial rem­e­dy, you shall have the right to com­plain to a super­vi­so­ry author­i­ty, in the Mem­ber State of your res­i­dence, or your place of work or place of alleged infringe­ment, if you believe that the pro­cess­ing of the per­son­al data con­cern­ing you vio­lates the GDPR.

The super­vi­so­ry author­i­ty to which the com­plaint has been sub­mit­ted shall inform the com­plainant of the sta­tus and results of the com­plaint, includ­ing the pos­si­bil­i­ty of a judi­cial rem­e­dy pur­suant to Art. 78 GDPR.

Provision of website and creation of log files

Description and scope of data processing

Each time our web­site is accessed, our sys­tem auto­mat­i­cal­ly col­lects data and infor­ma­tion from the com­put­er sys­tem of the access­ing computer.

The fol­low­ing data is collected:

  • Infor­ma­tion about the brows­er type and ver­sion used,
  • the oper­at­ing sys­tem of the user,
  • the user’s inter­net ser­vice provider,
  • Date and time of access,
  • Web­sites from which the user’s sys­tem access­es our web­site and
  • Web pages that are accessed by the user’s sys­tem via our website.

This data is stored in the log files of our sys­tem. Not affect­ed by this are the IP address­es of the user or oth­er data that allow the data to be assigned to a user. This data is not stored togeth­er with oth­er per­son­al data of the user.

Purpose of data processing

The stor­age in log­files is done to ensure the func­tion­al­i­ty of the web­site. The data is also used to opti­mize the web­site and to ensure the secu­ri­ty of our IT sys­tems. An analy­sis of the data for mar­ket­ing pur­pos­es does not take place.

For the afore­men­tioned pur­pos­es, our legit­i­mate inter­est lies in the pro­cess­ing of data in com­pli­ance with Art. 6 (1) 1 (f) GDPR.

Legal basis for data processing

The legal basis for the tem­po­rary stor­age of data is Art. 6 (1) (1) (f) GDPR.

Duration of storage

The data will be delet­ed as soon as it is no longer nec­es­sary for the pur­pose of its col­lec­tion. The ses­sion is com­plete when the col­lec­tion of data for the pro­vi­sion of the web­site is accomplished.

Objection and removal

The col­lec­tion of data for the pro­vi­sion of the web­site as well as the stor­age of data in log files are essen­tial for the oper­a­tion of the web­site. There­fore, the user may not object to the afore­men­tioned processes.

Use of cookies

Description and scope of data processing

Our web­site uses cook­ies. Cook­ies are text files that are stored in the inter­net brows­er or by the inter­net brows­er on the user’s com­put­er sys­tem. When a user calls up a web­site, a cook­ie may be stored on the user’s oper­at­ing sys­tem. This cook­ie con­tains a char­ac­ter­is­tic string of char­ac­ters that enables the brows­er to be unique­ly iden­ti­fied when the web­site is called up again.

We use cook­ies to make our web­site more user-friend­ly. Some ele­ments of our web­site require that the call­ing brows­er can be iden­ti­fied even after a page change.

The fol­low­ing data is stored and trans­mit­ted in the cookies:

  • Lan­guage set­tings and
  • Log-in infor­ma­tion.

We also use cook­ies on our web­site that enable an analy­sis of the user’s surf­ing behaviour.

The fol­low­ing data can be trans­mit­ted in this way:

    • Use of web­site functions.

The user data col­lect­ed in this way is pseu­do­nymised by tech­ni­cal pre­cau­tions. There­fore, it is no longer pos­si­ble to assign the data to the call­ing user. The data is not stored togeth­er with oth­er per­son­al data of the users.

Purpose of data processing

The pur­pose of using tech­ni­cal­ly nec­es­sary cook­ies is to sim­pli­fy the use of web­sites for users. Some func­tions of our web­site can­not be offered with­out the use of cook­ies. For these, it is nec­es­sary that the brows­er is recog­nised even after a page change.

We need cook­ies for the fol­low­ing applications:

    • Adopt lan­guage settings.

The user data col­lect­ed through tech­ni­cal­ly nec­es­sary cook­ies are not used to cre­ate user profiles.

Analy­sis cook­ies are used to improve the qual­i­ty of our web­site and its con­tent. Through the analy­sis cook­ies, we learn how the web­site is used and can thus con­stant­ly opti­mise our offer. Fur­ther infor­ma­tion on the use of analy­sis cook­ies can be found under “Plu­g­ins used”.

Legal basis for data processing

The legal basis for the pro­cess­ing of per­son­al data using cook­ies is Art. 6 (1) (1) (a) GDPR.

The legal basis for the pro­cess­ing of per­son­al data using tech­ni­cal cook­ies is Art. 6 (1) (1) (f) GDPR, legit­i­mate interests.

Duration of storage and possibility of objection and removal

Cook­ies are stored on the user’s com­put­er and trans­mit­ted to our site by the user. There­fore, you as a user also have full con­trol over the use of cook­ies. By chang­ing the set­tings in your inter­net brows­er, you can deac­ti­vate or restrict the trans­mis­sion of cook­ies. Cook­ies that have already been stored can be delet­ed at any time. This can also be done auto­mat­i­cal­ly. If cook­ies are deac­ti­vat­ed for our web­site, it may no longer be pos­si­ble to use all func­tions of the web­site to their full extent.

If you use a Safari brows­er from ver­sion 12.1, cook­ies are auto­mat­i­cal­ly delet­ed after sev­en days. This also applies to opt-out cook­ies, which are set to pre­vent track­ing measures.

Contact via Email

Description and scope of data processing

You can con­tact us via the email address pro­vid­ed on our web­site. In this case the per­son­al data of the user trans­mit­ted with the email will be stored. The data will be used exclu­sive­ly for the pro­cess­ing of the conversation.

Should you email [email protected]​talessio.​com, [email protected]​talessio.​com or a client- or project spe­cif­ic email address, your per­son­al data will be processed in our tick­et sys­tem for exist­ing cus­tomers, web­site vis­i­tors and for han­dling appli­ca­tions via email: Jira Ser­vice Man­age­ment of Atlass­ian. Pty Ltd, Lev­el 6, 341 George Street, Syd­ney NSW 2000, Aus­tralia (here­inafter referred to as: Atlass­ian). The data is stored on servers with­in the EU /​EEA. Part of the order pro­cess­ing con­tract with Atlass­ian are so-called EU stan­dard data pro­tec­tion claus­es (Art. 46 para. 2 p. 1 lit. c DSGVO). These are to be clas­si­fied as an appro­pri­ate guar­an­tee for the pro­tec­tion of the trans­fer and pro­cess­ing of per­son­al data out­side the EU. A copy of the stan­dard data pro­tec­tion claus­es can be request­ed by send­ing us an infor­mal email.

Fur­ther infor­ma­tion on the pro­cess­ing of data by Atlass­ian can be found here: https://​www​.atlass​ian​.com/​d​e​/​l​e​g​a​l​/​p​r​i​v​a​c​y​-​p​o​l​icy.

Purpose of data processing

If you con­tact us via email, this also con­sti­tutes the nec­es­sary legit­i­mate inter­est in the pro­cess­ing of the data.

Legal basis for data processing

If the user has giv­en con­sent, the legal basis for pro­cess­ing the data is Art. 6 (1)(a) GDPR.

The legal basis for the pro­cess­ing of data trans­mit­ted while send­ing an email is Art. 6 (1) (1) (f) GDPR. If the pur­pose of the email con­tact is to con­clude a con­tract, the addi­tion­al legal basis for the pro­cess­ing is Art. 6 (1) (b) GDPR.

Duration of storage

The data is delet­ed as soon as it is no longer required to achieve the pur­pose for which it was col­lect­ed. For per­son­al data sent by e‑mail, this is the case when the respec­tive con­ver­sa­tion with the user has end­ed. The con­ver­sa­tion is end­ed when the cir­cum­stances indi­cate that the mat­ter in ques­tion has been con­clu­sive­ly clarified.

Possibility of Objection and Removal

If the user con­tacts us by e‑mail at [email protected]​talessio.​com, he or she can object to the stor­age of his or her per­son­al data at any time. In such a case, the con­ver­sa­tion can­not be continued.

All per­son­al data stored in the course of con­tact­ing us will be delet­ed in this case.

Contact form

Description and scope of data processing

Our web­site con­tains a con­tact form that can be used for elec­tron­ic con­tact. If a user uses this option, the data entered in the input mask is trans­mit­ted to us and stored.

The fol­low­ing data is stored at the time the mes­sage is sent:

  • E‑mail address,
  • Name,
  • First name,
  • Tele­phone /​mobile number,
  • IP address of the call­ing computer,
  • Date and time of contact,
  • Com­pa­ny name and
  • oth­er data that you pro­vide to us voluntarily.

For the pro­cess­ing of the data, your con­sent is obtained dur­ing the sub­mis­sion process and ref­er­ence is made to this pri­va­cy policy.

Alter­na­tive­ly, it is pos­si­ble to con­tact us via the e‑mail address pro­vid­ed. In this case, the user’s per­son­al data trans­mit­ted with the e‑mail will be stored. The data is used exclu­sive­ly for pro­cess­ing the conversation.

Should you email [email protected]​talessio.​com, [email protected]​talessio.​com or a client- or project spe­cif­ic email address, your per­son­al data will be processed in our tick­et sys­tem for exist­ing cus­tomers, web­site vis­i­tors and for han­dling appli­ca­tions via email: Jira Ser­vice Man­age­ment of Atlass­ian. Pty Ltd, Lev­el 6, 341 George Street, Syd­ney NSW 2000, Aus­tralia (here­inafter referred to as: Atlass­ian). The data is stored on servers with­in the EU /​EEA. Part of the order pro­cess­ing con­tract with Atlass­ian are so-called EU stan­dard data pro­tec­tion claus­es (Art. 46 para. 2 p. 1 lit. c DSGVO). These are to be clas­si­fied as an appro­pri­ate guar­an­tee for the pro­tec­tion of the trans­fer and pro­cess­ing of per­son­al data out­side the EU. A copy of the stan­dard data pro­tec­tion claus­es can be request­ed by send­ing us an infor­mal email.

Fur­ther infor­ma­tion on the pro­cess­ing of data by Atlass­ian can be found here: https://​www​.atlass​ian​.com/​d​e​/​l​e​g​a​l​/​p​r​i​v​a​c​y​-​p​o​l​icy.

Purpose of data processing

The pro­cess­ing of the per­son­al data from the input mask serves us exclu­sive­ly for the pur­pose of estab­lish­ing con­tact. If you con­tact us by email, this also con­sti­tutes our nec­es­sary legit­i­mate inter­est in the pro­cess­ing of the data.

The oth­er per­son­al data processed dur­ing the send­ing process serve to pre­vent mis­use of the Con­tact form and to ensure the secu­ri­ty of our infor­ma­tion tech­nol­o­gy systems.

Legal basis for data processing

The legal basis for the pro­cess­ing of the data is Art. 6 (1) (1) (a) GDPR if the user has giv­en his consent.

The legal basis for the pro­cess­ing of data trans­mit­ted while send­ing an email is Art. 6 (1) (1) (f) GDPR. If the pur­pose of the email con­tact is to con­clude a con­tract, the addi­tion­al legal basis for the pro­cess­ing is Art. 6 (1) (1) (b) GDPR.

Duration of storage

The data is delet­ed as soon as it is no longer required to achieve the pur­pose for which it was col­lect­ed. For the per­son­al data from the input mask of the con­tact form and those sent by e‑mail, this is the case when the respec­tive con­ver­sa­tion with the user has end­ed. The con­ver­sa­tion is end­ed when the cir­cum­stances indi­cate that the mat­ter in ques­tion has been con­clu­sive­ly clarified.

Revocation, Objection and Removal

The user has the option to revoke his con­sent to the pro­cess­ing of per­son­al data or to object to the stor­age of his per­son­al data by send­ing an infor­mal e‑mail to [email protected]​talessio.​com at any time. In such a case, the con­ver­sa­tion can­not be continued.

All per­son­al data stored in the course of con­tact­ing us will be delet­ed in this case.

Application via Email and application form

Scope of processing personal data

Our web­site con­tains an appli­ca­tion form that can be used for elec­tron­ic appli­ca­tions. If an appli­cant uses this option, the data entered in the input mask will be trans­mit­ted to us and stored. These data are:

  • First name,
  • Name,
  • Address,
  • Tele­phone /​mobile number,
  • E‑mail address,
  • Salary expec­ta­tion,
  • Lan­guage skills,
  • Cur­ricu­lum vitae,
  • Tes­ti­mo­ni­als and
  • oth­er data vol­un­tar­i­ly sub­mit­ted by the user as part of the application.

For the pro­cess­ing of your data, your con­sent is obtained as part of the sub­mis­sion process and ref­er­ence is made to this pri­va­cy policy.

Alter­na­tive­ly, you can also send us your appli­ca­tion by e‑mail. In this case, we will col­lect your e‑mail address and the data you pro­vide in the e‑mail.

After send­ing your appli­ca­tion, you will receive a con­fir­ma­tion of receipt of your appli­ca­tion doc­u­ments by e‑mail from us.

Your data will not be passed on to third par­ties. The data will only be used for pro­cess­ing your application.

Should you email [email protected]​talessio.​com, [email protected]​talessio.​com or a client- or project spe­cif­ic email address, your per­son­al data will be processed in our tick­et sys­tem for exist­ing cus­tomers, web­site vis­i­tors and for han­dling appli­ca­tions via email: Jira Ser­vice Man­age­ment of Atlass­ian. Pty Ltd, Lev­el 6, 341 George Street, Syd­ney NSW 2000, Aus­tralia (here­inafter referred to as: Atlass­ian). The data is stored on servers with­in the EU /​EEA. Part of the order pro­cess­ing con­tract with Atlass­ian are so-called EU stan­dard data pro­tec­tion claus­es (Art. 46 para. 2 p. 1 lit. c DSGVO). These are to be clas­si­fied as an appro­pri­ate guar­an­tee for the pro­tec­tion of the trans­fer and pro­cess­ing of per­son­al data out­side the EU. A copy of the stan­dard data pro­tec­tion claus­es can be request­ed by send­ing us an infor­mal email.

Fur­ther infor­ma­tion on the pro­cess­ing of data by Atlass­ian can be found here: https://​www​.atlass​ian​.com/​d​e​/​l​e​g​a​l​/​p​r​i​v​a​c​y​-​p​o​l​icy.

Purpose of data processing

The pro­cess­ing of per­son­al data from the appli­ca­tion form serves us sole­ly to process your appli­ca­tion. If you con­tact us by email, this also con­sti­tutes the nec­es­sary legit­i­mate inter­est in the pro­cess­ing of the data.

The oth­er per­son­al data processed dur­ing the send­ing process serve to pre­vent mis­use of the appli­ca­tion form and to ensure the secu­ri­ty of our infor­ma­tion tech­nol­o­gy systems.

Legal basis for data processing

The legal basis for the pro­cess­ing of the data is the com­ple­tion of the con­trac­tu­al rela­tion­ship with you, Art. 6 (1) (1) (b) Alt. 1 GDPR and § 26 (1) (1) BDSG (Fed­er­al Act of Dataprotection).

Duration of Storage

After com­ple­tion of the appli­ca­tion process, the data will be stored for up to six months. Your data will be delet­ed after the six months at the lat­est. In the event of a legal oblig­a­tion, the data will be stored with­in the frame­work of the applic­a­ble provisions.

The addi­tion­al per­son­al data col­lect­ed dur­ing the send­ing process will be delet­ed after a peri­od of sev­en days at the latest.

Possibility of Objection and Removal

The user has the option to object to the stor­age of his/​her per­son­al data at any time by send­ing an infor­mal email to [email protected]​talessio.​com. In such a case, the appli­ca­tion can no longer be considered.

All per­son­al data stored in the course of elec­tron­ic appli­ca­tions will be delet­ed in this case.

Corporate web profiles on social networks

Twitter

Twit­ter Inter­na­tion­al Com­pa­ny, One Cum­ber­land Place, Fen­ian Street, Dublin 2, Ire­land.

On our com­pa­ny page, we pro­vide infor­ma­tion and offer Twit­ter users the oppor­tu­ni­ty to com­mu­ni­cate. If you car­ry out an action on our Twit­ter com­pa­ny web­site (e.g. com­ments, posts, likes, etc.), you may make per­son­al data (e.g. clear name or pho­to of your user pro­file) pub­lic. How­ev­er, as we gen­er­al­ly or to a large extent have no influ­ence on the pro­cess­ing of your per­son­al data by Twit­ter, the com­pa­ny joint­ly respon­si­ble for the talessio GmbH cor­po­rate pres­ence, we can­not pro­vide any bind­ing infor­ma­tion on the pur­pose and scope of the pro­cess­ing of your data.

Our cor­po­rate pres­ence in social net­works is used for com­mu­ni­ca­tion and infor­ma­tion exchange with (poten­tial) cus­tomers. In par­tic­u­lar, we use the cor­po­rate pres­ence for:

  • Com­pa­ny presentation.

In this con­text, pub­li­ca­tions about the com­pa­ny’s appear­ance may con­tain the fol­low­ing contents:

  • Infor­ma­tion about ser­vices and
  • Cus­tomer contact.

Every user is free to pub­lish per­son­al data through activities.

The legal basis for data pro­cess­ing is Art. 6 para. 1 sen­tence 1 lit. a DSGVO.

The data gen­er­at­ed by the cor­po­rate pres­ence is not stored in our own sys­tems.

You can object to the pro­cess­ing of your per­son­al data that we col­lect in the course of your use of our Twit­ter cor­po­rate pres­ence at any time and assert your data sub­ject rights. To do so, send us an infor­mal email to [email protected]​talessio.​com. You can find more infor­ma­tion about the pro­cess­ing of your per­son­al data by Twit­ter and the cor­re­spond­ing objec­tion options here:

Twit­ter: https://​twit​ter​.com/​d​e​/​p​r​i​v​acy

Use of corporate profiles in professionally oriented networks

Scope of data processing

We use the pos­si­bil­i­ty of com­pa­ny pres­ences on pro­fes­sion­al net­works. We main­tain a com­pa­ny pres­ence on the fol­low­ing pro­fes­sion­al networks:

LinkedIn:

LinkedIn, Unlim­it­ed Com­pa­ny Wilton Place, Dublin 2, Ireland

XING:

XING SE, Damm­torstraße 30, 20354 Ham­burg, Germany

On our site, we pro­vide infor­ma­tion and offer users the oppor­tu­ni­ty to communicate.

The com­pa­ny web­site is used for appli­ca­tions, information/​PR and active sourcing.

We do not have any infor­ma­tion on the pro­cess­ing of your per­son­al data by the com­pa­nies joint­ly respon­si­ble for the cor­po­rate pres­ence. You can find more infor­ma­tion on this in the pri­va­cy pol­i­cy of:

LinkedIn:

https://​www​.linkedin​.com/​l​e​g​a​l​/​p​r​i​v​a​c​y​-​p​o​l​i​c​y​?​t​r​k​=​h​b​_​f​t​_​p​riv

XING:

https://​pri​va​cy​.xing​.com/​d​e​/​d​a​t​e​n​s​c​h​u​t​z​e​r​k​l​a​e​r​ung

If you car­ry out an action on our com­pa­ny web­site (e.g. com­ments, posts, likes, etc.), you may make per­son­al data (e.g. clear name or pho­to of your user pro­file) public.

Legal basis for data processing

The legal basis for the pro­cess­ing of your data in con­nec­tion with the use of our cor­po­rate web pro­file is Art. 6 (1) (1) (f) GDPR.

Purpose of the data processing

Our cor­po­rate web pro­file serves to inform users about our ser­vices. Every user is free to pub­lish per­son­al data.

Duration of storage

We store your activ­i­ties and per­son­al data pub­lished via our cor­po­rate web pro­file until you with­draw your con­sent. In addi­tion, we com­ply with the statu­to­ry reten­tion periods.

Possibility of Objection and Removal

You can object to the pro­cess­ing of your per­son­al data that we col­lect in the course of your use of our com­pa­ny web­site at any time and assert your data sub­ject rights. To do so, send us an infor­mal e‑mail to [email protected]​talessio.​com.

You can find more infor­ma­tion on objec­tion and removal options here:

LinkedIn: https://​www​.linkedin​.com/​l​e​g​a​l​/​p​r​i​v​a​c​y​-​p​o​l​i​c​y​?​t​r​k​=​h​b​_​f​t​_​p​riv

XING: https://​pri​va​cy​.xing​.com/​d​e​/​d​a​t​e​n​s​c​h​u​t​z​e​r​k​l​a​e​r​ung

Hosting

The web­site is host­ed on servers of a ser­vice provider com­mis­sioned by us.

Our ser­vice provider is:

  • 1&1 IONOS SE, Elgen­dor­fer Straße 57, 56410 Montabaur, Germany

The servers auto­mat­i­cal­ly col­lect and store infor­ma­tion in so-called serv­er log files, which your brows­er auto­mat­i­cal­ly trans­mits when you vis­it the web­site. The infor­ma­tion stored is:

  • Brows­er type and brows­er version,
  • Oper­at­ing sys­tem used,
  • Refer­rer URL,
  • Host name of the access­ing computer,
  • Date and time of the serv­er request and
  • IP address.

This data is not merged with oth­er data sources. The col­lec­tion of this data is based on Art. 6 para. 1 lit. f DSGVO. The web­site oper­a­tor has a legit­i­mate inter­est in the tech­ni­cal­ly error-free pre­sen­ta­tion and opti­mi­sa­tion of its web­site — for this pur­pose, the serv­er log files must be collected.

The loca­tion of the web­site’s serv­er is geo­graph­i­cal­ly in Germany.

Usage of Plugins

We use plu­g­ins for var­i­ous pur­pos­es. The plu­g­ins used are list­ed below.

Use of Google Analytics

Scope of processing of personal data

We use Google Ana­lyt­ics, a web ana­lyt­ics ser­vice pro­vid­ed by Google Ire­land Ltd, Gor­don House, Bar­row Street, D04 E5W5, Dublin, Ire­land (here­inafter: Google). Google Ana­lyt­ics exam­ines, among oth­er things, the ori­gin of vis­i­tors, the length of time they spend on indi­vid­ual pages and the use of search engines, thus allow­ing bet­ter mon­i­tor­ing of the suc­cess of adver­tis­ing cam­paigns. Google sets a cook­ie on your com­put­er. This allows per­son­al data to be stored and analysed, in par­tic­u­lar the user’s activ­i­ty (espe­cial­ly which pages have been vis­it­ed and which ele­ments have been clicked on), device and brows­er infor­ma­tion (espe­cial­ly the IP address and oper­at­ing sys­tem), data about the adver­tise­ments dis­played (espe­cial­ly which adver­tise­ments were dis­played and whether the user clicked on them) and also data from adver­tis­ing part­ners (espe­cial­ly pseu­do­nymised user IDs). The infor­ma­tion gen­er­at­ed by the cook­ie about your use of this online pres­ence will be trans­mit­ted to and stored by Google on servers in the Unit­ed States. In the event that IP anonymi­sa­tion is acti­vat­ed on this online pres­ence, how­ev­er, your IP address will be trun­cat­ed before­hand by Google with­in mem­ber states of the Euro­pean Union or in oth­er con­tract­ing states to the Agree­ment on the Euro­pean Eco­nom­ic Area. Only in excep­tion­al cas­es will the full IP address be trans­mit­ted to a Google serv­er in the USA and short­ened there.

On behalf of the oper­a­tor of this web­site, Google will use this infor­ma­tion for the pur­pose of eval­u­at­ing your use of the web­site, com­pil­ing reports on web­site activ­i­ty and pro­vid­ing oth­er ser­vices relat­ing to web­site activ­i­ty and inter­net usage to the web­site oper­a­tor. The IP address trans­mit­ted by your brows­er as part of Google Ana­lyt­ics will not be merged with oth­er Google data. You may refuse the use of cook­ies by select­ing the appro­pri­ate set­tings on your brows­er, how­ev­er please note that if you do this you may not be able to use the full func­tion­al­i­ty of this website.

You can obtain fur­ther infor­ma­tion on the pro­cess­ing of data by Google here:

https://​poli​cies​.google​.com/​p​r​i​v​a​c​y​?​g​l​=​D​E​&​h​l​=de.

Purpose of data processing

The pur­pose of pro­cess­ing per­son­al data is to specif­i­cal­ly address a tar­get group that has already expressed an ini­tial inter­est by vis­it­ing the site.

Legal basis for the processing of personal data

The legal basis for the pro­cess­ing of per­son­al data is the user’s giv­en con­sent in accor­dance with Art. 6 (1) (1) (a) GDPR.

Duration of storage

Your per­son­al infor­ma­tion will be retained for as long as is nec­es­sary to ful­fil the pur­pos­es described in this pri­va­cy pol­i­cy or as required by law. Adver­tis­ing data in serv­er logs will be anonymised by Google’s own dele­tion of parts of the IP address and cook­ie infor­ma­tion after 9 and 18 months respectively.

Possibility of revocation of consent and removal

You have the right to revoke your dec­la­ra­tion of con­sent under data pro­tec­tion law at any time. The revo­ca­tion of con­sent does not affect the law­ful­ness of the pro­cess­ing car­ried out on the basis of the con­sent until the revo­ca­tion.
You can pre­vent the col­lec­tion as well as the pro­cess­ing of your per­son­al data by Google by pre­vent­ing third-par­ty cook­ies from being stored on your com­put­er, by using the “Do Not Track” func­tion of a sup­port­ing brows­er, by dis­abling the exe­cu­tion of script code in your brows­er
or by installing
a script block­er such as NoScript (https://​noscript​.net/) or Ghostery (https://​www​.ghostery​.com) in your brows­er.
You can also pre­vent the col­lec­tion of data gen­er­at­ed by the cook­ie and relat­ed to your use of the online pres­ence (includ­ing your IP address) to Google and the pro­cess­ing of this data by Google by down­load­ing and installing the brows­er plug-in
avail­able under the fol­low­ing link:

https://​tools​.google​.com/​d​l​p​a​g​e​/​g​a​o​p​t​o​u​t​?​h​l​=​d​e​Mit the fol­low­ing link to deac­ti­vate the use of your per­son­al data by Google:

https://adssettings.google.deWeitere For infor­ma­tion on how to object to and remove Google, please vis­it:
https://​poli​cies​.google​.com/​p​r​i​v​a​c​y​?​g​l​=​D​E​&​h​l​=de

Use of Google Tag Manager

Scope of processing of personal data

We use the Google Tag Man­ag­er (https://​www​.google​.com/​i​n​t​l​/​d​e​/​t​a​g​m​a​n​a​g​er/) of Google LLC, 1600 Amphithe­atre Park­way, Moun­tain View, CA 94043, USA and the rep­re­sen­ta­tive in the Union Google Ire­land Ltd, Gor­don House, Bar­row Street, D04 E5W5, Dublin, Ire­land (here­inafter referred to as: Google). With the Google Tag Man­ag­er, tags of Google’s ser­vices and of third-par­ty providers can be man­aged and embed­ded in a bun­dled form on an online pres­ence. Tags are small code ele­ments on an online pres­ence that are used, among oth­er things, to mea­sure vis­i­tor num­bers and behav­iour, to record the impact of online adver­tis­ing and social chan­nels, to use remar­ket­ing and tar­get­ing and to test and opti­mise online pres­ences. When a user vis­its the online pres­ence, the cur­rent tag con­fig­u­ra­tion is sent to the user’s brows­er. It con­tains instruc­tions on which tags should be trig­gered. Google Tag Man­ag­er ensures that oth­er tags are trig­gered, which in turn may col­lect data. Infor­ma­tion on this can be found in the pas­sages on the use of the cor­re­spond­ing ser­vices in this data pro­tec­tion dec­la­ra­tion. Google Tag Man­ag­er does not access this data.

Part of the terms of use of Google Tag Man­ag­er are so-called stan­dard data pro­tec­tion claus­es (Art. 46 para. 2 p. 1 lit. c DSGVO). These are to be clas­si­fied as an appro­pri­ate guar­an­tee for the pro­tec­tion of the trans­fer and pro­cess­ing of per­son­al data out­side the EU.

You can find more infor­ma­tion on Google Tag Man­ag­er at https://​www​.google​.com/​i​n​t​l​/​d​e​/​t​a​g​m​a​n​a​g​e​r​/​f​a​q​.​h​tml and in Google’s pri­va­cy pol­i­cy: https://​poli​cies​.google​.com/​p​r​i​v​a​c​y​?​h​l​=de

Purpose of data processing

The pur­pose of the pro­cess­ing of per­son­al data lies in the col­lect­ed and clear admin­is­tra­tion as well as an effi­cient inte­gra­tion of the ser­vices of third parties.

Legal basis for the processing of personal data

The legal basis for the pro­cess­ing of per­son­al data is the user’s giv­en con­sent in accor­dance with Art. 6 (1) (1) (a) GDPR.

Duration of storage

Your per­son­al infor­ma­tion will be retained for as long as is nec­es­sary to ful­fil the pur­pos­es described in this pri­va­cy pol­i­cy or as required by law. Adver­tis­ing data in serv­er logs will be anonymised by Google’s own dele­tion of parts of the IP address and cook­ie infor­ma­tion after 9 and 18 months respectively.

Possibility of revocation of consent and removal

You have the right to revoke your dec­la­ra­tion of con­sent under data pro­tec­tion law at any time. The revo­ca­tion of con­sent does not affect the law­ful­ness of the pro­cess­ing car­ried out on the basis of the con­sent until the revo­ca­tion.
You can pre­vent the col­lec­tion as well as the pro­cess­ing of your per­son­al data by Google by pre­vent­ing third-par­ty cook­ies from being stored on your com­put­er, by using the “Do Not Track” func­tion of a sup­port­ing brows­er, by dis­abling the exe­cu­tion of script code in your brows­er
or by installing
a script block­er such as NoScript (https://​noscript​.net/) or Ghostery (https://​www​.ghostery​.com) in your brows­er.
You can also pre­vent the col­lec­tion of data gen­er­at­ed by the cook­ie and relat­ed to your use of the online pres­ence (includ­ing your IP address) to Google and the pro­cess­ing of this data by Google by down­load­ing and installing the brows­er plug-in
avail­able under the fol­low­ing link:

https://​tools​.google​.com/​d​l​p​a​g​e​/​g​a​o​p​t​o​u​t​?​h​l​=​d​e​Mit the fol­low­ing link to deac­ti­vate the use of your per­son­al data by Google:

https://adssettings.google.deWeitere For infor­ma­tion on how to object to and remove Google, please vis­it:
https://​poli​cies​.google​.com/​p​r​i​v​a​c​y​?​g​l​=​D​E​&​h​l​=de

Use of Font Awesome

Scope of processing of personal data

We use fonts from Font Awe­some, a ser­vice of Fonti­cons, Inc., 6 Porter Road, Apart­ment 3R, Cam­bridge, MA 02140, USA (Here­inafter referred to as Font Awe­some). The fonts are trans­ferred to the browser’s cache when the page is called up in order to be able to use them for the visu­al­ly improved dis­play of var­i­ous infor­ma­tion. Per­son­al data may be stored, trans­mit­ted and eval­u­at­ed, in par­tic­u­lar device and brows­er infor­ma­tion (in par­tic­u­lar the IP address and oper­at­ing sys­tem).
If the brows­er does not sup­port or pre­vent access to Font Awe­some, the text will be dis­played in a stan­dard font.
When you vis­it the site, Font Awe­some will not accept cookies.

For fur­ther infor­ma­tion on the col­lec­tion and stor­age of data by Font Awe­some, please vis­it:
https://​ori​gin​.fontawe​some​.com/​p​r​i​v​acy.

Purpose of data processing

The use of Font Awe­some serves an appeal­ing rep­re­sen­ta­tion of our texts.

Legal basis for the processing of personal data

The legal basis for the pro­cess­ing of per­son­al data is the user’s giv­en con­sent in accor­dance with Art. 6 (1) (1) (a) GDPR.

Duration of storage

Your per­son­al infor­ma­tion will be stored for as long as is nec­es­sary to ful­fill the pur­pos­es described in this Pri­va­cy Pol­i­cy or as required by law.

Possibility of revocation of consent and removal

You have the right to revoke your dec­la­ra­tion of con­sent under data pro­tec­tion law at any time. The revo­ca­tion of the con­sent does not affect the law­ful­ness of the pro­cess­ing car­ried out on the basis of the con­sent up to the revocation.

You can pre­vent Font Awe­some from col­lect­ing and pro­cess­ing your per­son­al data by pre­vent­ing the stor­age of cook­ies from third par­ties on your com­put­er, by using the “Do Not Track” func­tion of a sup­port­ing brows­er, by deac­ti­vat­ing the exe­cu­tion of script code in your brows­er or by installing a script block­er such as NoScript (https://​noscript​.net/) or Ghostery (https://​www​.ghostery​.com) in your browser.

You can also find infor­ma­tion on how Font Awe­some can be chal­lenged vis­it: https://​ori​gin​.fontawe​some​.com/​p​r​i​v​acy.

Use of Google Maps

Scope of processing of personal data

We use the online map ser­vice Google Maps of Google LLC, 1600 Amphithe­atre Park­way, Moun­tain View, CA 94043, USA and the rep­re­sen­ta­tive in the Union Google Ire­land Ltd., Gor­don House, Bar­row Street, D04 E5W5, Dublin, Ire­land (Here­inafter referred to as Google). We use the Google Maps plu­g­in to visu­al­ly dis­play geo­graph­i­cal data and embed it on our online pres­ence. Through the use of Google Maps on our online pres­ence, infor­ma­tion about the use of our online pres­ence, your IP address and address­es entered with the route plan func­tion are trans­mit­ted to a Google serv­er and stored there.
Fur­ther infor­ma­tion on the col­lec­tion and stor­age of data by Google can be found here:
https://​poli​cies​.google​.com/​p​r​i​v​a​c​y​?​g​l​=​D​E​&​h​l​=de.

Purpose of data processing

The use of the Google Maps plug-in serves to improve user friend­li­ness and an appeal­ing pre­sen­ta­tion of our online presence.

Legal basis for the processing of personal data

The legal basis for the pro­cess­ing of per­son­al data is the user’s giv­en con­sent in accor­dance with Art. 6 (1) (1) (a) GDPR.

Duration of storage

Your per­son­al infor­ma­tion will be stored for as long as is nec­es­sary to ful­fill the pur­pos­es described in this Pri­va­cy Pol­i­cy or as required by law.

Possibility of revocation of consent and removal

You have the right to revoke your dec­la­ra­tion of con­sent under data pro­tec­tion law at any time. The revo­ca­tion of the con­sent does not affect the law­ful­ness of the pro­cess­ing car­ried out on the basis of the con­sent up to the revocation.

You can pre­vent the col­lec­tion and pro­cess­ing of your per­son­al data by Google by pre­vent­ing the stor­age of cook­ies from third par­ties on your com­put­er, by using the “Do Not Track” func­tion of a sup­port­ing brows­er, by deac­ti­vat­ing the exe­cu­tion of script code in your brows­er or by using a script block­er such as NoScript (https://​noscript​.net/) or Ghostery (https://​www​.ghostery​.com) in your brows­er.
With the fol­low­ing link you can deac­ti­vate the use of your per­son­al data by Google:
https://​ads​set​tings​.google​.de.

Fur­ther infor­ma­tion on objec­tion and removal options against Google can be found at:
https://​poli​cies​.google​.com/​p​r​i​v​a​c​y​?​g​l​=​E​N​&​h​l​=en.

Use of MyFonts Webfonts

Scope of processing of personal data

We use the MyFonts web fonts of Mono­type Imag­ing Hold­ings Inc., 600 Uni­corn Park Dri­ve, Woburn, Mass­a­chu­setts, 01801, USA (here­inafter referred to as Mono­type). The web fonts are trans­ferred from our servers to the browser’s cache when the page is accessed in order to be able to use them for the visu­al­ly improved dis­play of var­i­ous infor­ma­tion. If the brows­er does not sup­port the web fonts or pre­vents access, the text is dis­played in a stan­dard font. No cook­ies are stored when the vis­i­tor access­es the page. Only licens­ing data, which must be trans­mit­ted in con­nec­tion with the page view, is sent to resource-spe­cif­ic domains such as hel​lo​.myfonts​.net, in par­tic­u­lar the iden­ti­fi­ca­tion num­ber of the web font project (anonymized), the URL of the licensed web­site linked to our cus­tomer num­ber to iden­ti­fy the licensee and the licensed web fonts and the refer­rer URL.

Fur­ther infor­ma­tion on the col­lec­tion and stor­age of data by Mono­type can be found here:
https://​www​.mono​type​.com/​l​e​g​a​l​/​p​r​i​v​a​c​y​-​p​o​l​i​c​y​/​w​e​b​-​f​o​n​t​-​t​r​a​c​k​i​n​g​-​p​r​i​v​a​c​y​-​p​o​l​i​cy/.

Purpose of data processing

The use of MyFonts Web­fonts pro­vides an appeal­ing pre­sen­ta­tion of our texts. If your brows­er does not sup­port this fea­ture, a stan­dard font will be used by your com­put­er to dis­play it.

Legal basis for the processing of personal data

The legal basis for the pro­cess­ing of per­son­al data is the user’s giv­en con­sent in accor­dance with Art. 6 (1) (1) (a) GDPR.

Duration of storage

The anony­mous web font project iden­ti­fi­ca­tion num­ber is stored in encrypt­ed log files for 30 days to deter­mine the month­ly num­ber of page views. After such extrac­tion and stor­age of the num­ber of page views, the log files are deleted.

Possibility of revocation of consent and removal

You have the right to revoke your dec­la­ra­tion of con­sent under data pro­tec­tion law at any time. The revo­ca­tion of the con­sent does not affect the law­ful­ness of the pro­cess­ing car­ried out on the basis of the con­sent up to the revo­ca­tion.
For more infor­ma­tion on Mono­type­’s pri­va­cy pol­i­cy please vis­it:
https://​www​.mono​type​.com/​l​e​g​a​l​/​p​r​i​v​a​c​y​-​p​o​l​i​c​y​/​w​e​b​-​f​o​n​t​-​t​r​a​c​k​i​n​g​-​p​r​i​v​a​c​y​-​p​o​l​i​cy/.

Use of WPML

Scope of processing of personal data

We use WPML of OnTheGoSys­tems Lim­it­ed, 22/​F 3 Lock­hart Road, Wan­chai, Hong Kong (Here­inafter referred to as WPML). WPML is a mul­ti­lin­gual plu­g­in for Word­Press. We use WPML to present our online pres­ence in dif­fer­ent lan­guages. When you vis­it our online pres­ence, WPML stores a cook­ie on your device to store the lan­guage set­ting you have select­ed. This allows per­son­al data to be stored and eval­u­at­ed, in par­tic­u­lar the user’s activ­i­ty (in par­tic­u­lar which pages have been vis­it­ed and which ele­ments have been clicked on) as well as device and brows­er infor­ma­tion (in par­tic­u­lar the IP address and the oper­at­ing system).

Fur­ther infor­ma­tion on the col­lec­tion and stor­age of data by WPML can be found here:
https://​wpml​.org/​d​o​c​u​m​e​n​t​a​t​i​o​n​/​p​r​i​v​a​c​y​-​p​o​l​i​c​y​-​a​n​d​-​G​D​P​R​-​c​o​m​p​l​i​a​nce.

Purpose of the data processing of personal data

The use of WPML serves to be able to rep­re­sent our online pres­ence multilingually.

Legal basis for the processing of personal data

The legal basis for data pro­cess­ing is Art. 6 (1) (1) (f) GDPR. Our legit­i­mate inter­est lies in address­ing vis­i­tors to our online pres­ence in their native language.

Duration of storage
Possibility of objection and removal

You can pre­vent WPML from col­lect­ing and pro­cess­ing your per­son­al data by pre­vent­ing the stor­age of third-par­ty cook­ies on your com­put­er, by using the “Do Not Track” func­tion of a sup­port­ing brows­er, by deac­ti­vat­ing the exe­cu­tion of script code in your brows­er, or by installing a script block­er such as NoScript (https://​noscript​.net/) or Ghostery (https://​www​.ghostery​.com) in your browser.

You can find fur­ther infor­ma­tion on objec­tion and removal options against WPML at:
https://​wpml​.org/​d​o​c​u​m​e​n​t​a​t​i​o​n​/​p​r​i​v​a​c​y​-​p​o​l​i​c​y​-​a​n​d​-​G​D​P​R​-​c​o​m​p​l​i​a​nce.

Use of Google My Business

Scope of processing of personal data

We use the Google My Busi­ness mar­ket­ing plat­form of Google LLC, Gor­don House, Bar­row Street, 4, Dublin, Ire­land (here­inafter referred to as Google).

We use Google My Busi­ness for cus­tomer acqui­si­tion with opti­mized com­pa­ny pro­files includ­ing the pos­si­bil­i­ty of sta­tis­ti­cal analy­sis and con­tact­ing users.

Cook­ies from Google are stored on your device.

The fol­low­ing per­son­al data is processed by Google My Business:

  • Con­tact data /​Com­pa­ny data
  • Address data
  • E‑mail
  • address­es
  • Phone num­ber
  • Open­ing hours
  • Loca­tion data
  • Cred­it card data
  • Reviews
  • IP address

Fur­ther infor­ma­tion on the col­lec­tion and stor­age of data by Google My Busi­ness can be found at:
https://​poli​cies​.google​.com/​p​r​i​v​acy

Purpose of data processing

We use Google My Busi­ness to devel­op sta­tis­ti­cal meth­ods and to improve user behavior.

Legal basis for the processing of personal data

The legal basis for data pro­cess­ing is Art. 6 (1) (1) (f) GDPR. Our legit­i­mate inter­est lies in the pur­pos­es of data pro­cess­ing men­tioned under 2.

Duration of storage

Your per­son­al infor­ma­tion will be stored for as long as is nec­es­sary to ful­fill the pur­pos­es described in this Pri­va­cy Pol­i­cy or as required by law, e.g. for tax and account­ing purposes.

Possibility of revocation of consent and removal

You have the right to revoke your dec­la­ra­tion of con­sent under data pro­tec­tion law at any time. The revo­ca­tion of the con­sent does not affect the law­ful­ness of the pro­cess­ing car­ried out on the basis of the con­sent up to the revocation.

Integration of plugins via external service providers

Description and scope of data processing

We inte­grate cer­tain plu­g­ins on our web­site via exter­nal ser­vice providers in the form of con­tent deliv­ery net­works. When you access our web­site, a con­nec­tion is estab­lished to the servers of the providers used by us to retrieve con­tent and store it in the cache of the user’s brows­er. This allows per­son­al data to be stored and eval­u­at­ed in serv­er log files, in par­tic­u­lar device and brows­er infor­ma­tion (e.g. IP address and oper­at­ing sys­tem). We use the fol­low­ing services:

  • Google Host­ed Libraries des Anbi­eters Google Ire­land Lim­it­ed, Gor­don House, Bar­row Street, Dublin 4, Irland

Purpose of data processing

The use of the func­tions of these ser­vices serves the deliv­ery and accel­er­a­tion of online appli­ca­tions and content.

Legal basis for data processing

This data is col­lect­ed on the basis of Art. 6 (1) (1) (f) GDPR. The web­site oper­a­tor has a jus­ti­fied inter­est in the tech­ni­cal­ly cor­rect pre­sen­ta­tion and opti­miza­tion of the website.

Duration of storage

Your per­son­al infor­ma­tion will be retained for as long as nec­es­sary to ful­fil the pur­pos­es described in this Pri­va­cy Pol­i­cy or as required by law.

Objection and removal

This pri­va­cy pol­i­cy has been cre­at­ed with the assis­tance of Data­Guard.