Privacy policy.

Who we are

The controller within the meaning of the General Data Protection Regulation (GDPR) and other data protection regulations is

Global Side GmbH
Englschalkinger Str. 14
81925 Munich
Germany
089 26 20 29 100
Email senden
Website

Contacting the data protection officer

The data protection officer of the controller is

DataCo GmbH
Nymphenburger Str. 86
80636 Munich
Germany
+49 89 7400 45840
Website

On this page we inform you about the processing of your personal data on the website.

How we collect and use your personal data depends on how you interact with us or which services you use. We will only collect, use or share your personal data where we have a legitimate purpose and legal basis for doing so.

What do we mean by legal basis?

Consent (Art. 6 para. 1 sentence 1 lit. a GDPR)-You have given us your consent to process your personal data for the specific purpose we have explained to you. You have the right to withdraw your consent at any time. For more information on how you can withdraw your consent, please refer to the subsections "Exercising your rights" in the following sections of this Privacy Policy.

Contract (Art. 6 para. 1 sentence 1 lit. b GDPR) -We need to use your data to fulfill a contract you have with us. Alternatively, it is necessary to use your data because we have asked you to do so or you have taken certain steps yourself before entering into this contract.

Legal Obligation (Art. 6 para. 1 sentence 1 lit. c GDPR) -We must use your data to comply with the law.

Vital Interests (Art. 6 para. 1 sentence 1 lit. d GDPR) - The processing of your data is necessary to protect your vital interests or those of another person. For example, to protect you from serious physical harm.

Public Task (Art. 6 para. 1 sentence 1 lit. e GDPR) - The processing of your data is necessary for the performance of a task carried out in the public interest or because it is covered by a task defined by law, e.g. for a statutory function.

Legitimate Interests (Art. 6 para.1 p.1 lit. f GDPR) -The processing of your data is necessary to support a legitimate interest that we or another party have, only if your own interests do not prevail.

Please note that we may not be able to provide you with our website services if your data is processed to fulfill a contract or a legal obligation and you do not provide the requested data.

Data Sharing and International Transfers

As explained in this Privacy Policy, we use various service providers to help us provide our services and keep your data secure. When we use these service providers, it is necessary for us to share your personal data with them.

We have entered into agreements with all service providers to whom we transfer your data that require them to protect your data.

If your personal data is transferred outside the EU, we ensure that your personal data receives an equivalent level of protection, either because the country to which your data is transferred has an "adequate" standard of data protection according to the European Commission, or by using another safeguard, such as an enhanced contractual arrangement, i.e. the Standard Contractual Clauses (SCCs) adopted by the European Commission.

For example, when we use US service providers, we rely on either the SCCs or the EU-US Data Privacy Framework, depending on the provider. You can request a copy of the SCCs we have in place with our service providers by sending an email to the email address provided in this Privacy Policy.

Your Rights

If your personal data is processed, you are a data subject within the meaning of the GDPR and you have the following rights vis-à-vis the controller:

1. The Right of Access (Art. 15 GDPR)

You have the right to obtain from us confirmation as to whether or not personal data concerning you are being processed, and, where that is the case, access to the personal data and the following information:

• Processing purposes

• Categories of personal data

• Recipients or categories of recipients

• Planned storage duration or the criteria for determining this duration

• the existence of the rights to rectification, erasure, restriction or objection

• Right to lodge a complaint with the competent supervisory authority

• If applicable, origin of the data (if collected from a third party)

• If applicable, existence of automated decision-making including profiling with meaningful information about the logic involved, the scope and the expected effects

• If applicable, transfer of personal data to a third country or international organization

2. Right to Rectification (Art. 16 GDPR)

If your personal data is incorrect or incomplete, you have the right to request immediate correction or completion of the personal data.

3. Right to Restriction of Processing (Art. 18 GDPR)

If one of the following conditions is met, you have the right to request that the processing of your personal data be restricted

• You contest the accuracy of your personal data, for a period enabling us to verify the accuracy of the personal data.

• In the case of unlawful processing, you oppose the erasure of the personal data and request the restriction of their use instead.

• We no longer need your personal data for the purposes of the processing, but you need your personal data for the establishment, exercise or defense of legal claims, or

• after you have lodged an objection to the processing, for the duration of the examination as to whether our legitimate reasons outweigh your reasons.

4. Right to Erasure ("Right to be forgotten") (Art. 17 GDPR)

If one of the following reasons applies, you have the right to demand that your personal data be erased without undue delay

• Your data is no longer necessary for the processing purposes for which it was originally collected.

• You withdraw your consent and there is no other legal basis for the processing.

• You object to the processing and there are no overriding legitimate grounds for the processing or you object pursuant to Art. 21 (2) GDPR.

• Your personal data is being processed unlawfully.

• The deletion is necessary to fulfill a legal obligation under Union law or the law of the Member State to which we are subject.

• The personal data have been collected in relation to the offer of information society services referred to in Article 8(1) GDPR.

Please note that the above-mentioned grounds do not apply insofar as the processing is necessary

• For exercising the right of freedom of expression and information;

• For compliance with a legal obligation or for the performance of a task carried out in the public interest to which we are subject.

• For reasons of public interest in the area of public health.

• For archiving purposes in the public interest, scientific or historical research purposes or statistical purposes.

• for the establishment, exercise or defense of legal claims.

5. Right to Data Portability (Art. 20 GDPR)

You have the right to receive your personal data in a structured, commonly used and machine-readable format or to request that it be transmitted to another controller.

6. Right to Object to Certain Data Processing (Art. 21 GDPR)

You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you which is based on point (e) or (f) of Article 6(1) GDPR. This also applies to profiling based on these provisions.

If your personal data is processed for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such marketing, which includes profiling to the extent that it is related to such direct marketing.

7. Right to Lodge a Complaint With a Supervisory Authority

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority if you consider that the processing of personal data relating to you infringes the GDPR.

The supervisory authority with which the complaint has been lodged shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.

A list of the locally responsible supervisory authorities in Germany can be found on the website of the Federal Commissioner for Data Protection at the following link https://www.bfdi.bund.de/DE/Service/Anschriften/Laender/Laender-node.html

Provision of the website and creation of log files

1. Description and scope of data processing

Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer.

The following data is collected:

• Information about the browser type and version used

• The user's operating system

• The user's internet service provider

• Date and time of access

• Websites from which the user's system accesses our website

This data is stored in the log files of our system.

This data is not stored together with other personal data of the user.

2. Purpose of data processing

The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user's computer. For this purpose, the user's IP address must remain stored for the duration of the session.

The data is stored in log files to ensure the functionality of the website. We also use the data to optimize the website and to ensure the security of our information technology systems. The data is not analyzed for marketing purposes in this context.

3. Legal Basis for Data Processing

The legal basis for the temporary storage of data and log files is Art. 6 para. 1 sentence 1 lit. f GDPR.

4. Duration of Storage

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.

If the data is stored in log files, this is the case after seven days at the latest. Storage beyond this period is possible. In this case, the IP addresses of the users are deleted or anonymized so that it is no longer possible to identify the calling client.

5. Exercising your Rights

The collection of data for the provision of the website and the storage of data in log files is absolutely necessary for the operation of the website. The user can object to this. Whether the objection is successful must be determined as part of a balancing of interests.

Use of Cookies

1. Description and Scope of Data Processing

When you visit our website, we use technical aids for various functions, in particular cookies, which can be stored on your end device. When you access our website and at any time thereafter, you have the choice of whether you generally allow cookies to be set or which individual additional functions you would like to select. You can make changes in your browser settings or via our Consent Manager.

Cookies are text files or information in a database that are stored on your hard disk and assigned to the browser you are using so that certain information can flow to the place that sets the cookie. Below we describe the type of cookies we use:

We use technically necessary cookies, which are required for the technical structure of the website. Without these cookies, our website cannot be displayed (completely correctly) or the support functions are not possible.

The following data is stored and transmitted by the technically necessary cookies:

• Language settings

• Frequency of page views

• Use of website functions

We use cookies on our website that are not technically necessary. Cookies that are not technically necessary are text files that are not only used for the functionality of the website, but also collect other data.

The following data is processed when technically unnecessary cookies are set

• IP address

• Location of the Internet user

• Date and time the website was accessed

• Adaptation of advertisements to the user

• Linking the website visit with other social media platforms

2. Purpose of Data Processing

The purpose of using technically necessary cookies is to ensure the functionality of our website. Some functions of our website cannot be offered without the use of cookies. For these it is necessary that the browser is recognized even after a page change.

We require the technically necessary cookies for the following applications:

• Adoption of language settings

• Functionality of the website

Cookies that are not technically necessary are used for the purpose of improving the quality of our website, its content and thus our reach and efficiency. By setting these cookies, we learn how the website is used and can thus constantly optimize our offer. In particular, these cookies serve the following purposes:

We use a number of optional cookies that are not essential for the website to function properly. These are usually only placed when providing information on the website to personalize and optimize your user experience and to save your chat history.

3. Legal Basis for Data Processing

The provisions of the Telecommunications Digital Services Data Protection Act (TDDDG) apply to the storage of information in the end user's terminal equipment and/or access to information already stored in the end user's terminal equipment. If the setting and reading of cookies is technically necessary, this is done to ensure the functionality of our website. In this case, the storage of and access to cookies on your terminal equipment takes place on the basis of Section 25 (2) No. 2 TDDDG. The purpose of storing and accessing the information in your terminal equipment is to make it easier for you to use our website and to be able to offer you our services as you have requested. Some functions of our website do not work without the use of these cookies and could therefore not be offered. The cookies are generally deleted after the end of the session (e.g. logging out or closing the browser) or after a specified period of time. Information on different storage periods for cookies can be found in the following sections of this privacy policy.

Insofar as cookies are used that are not technically necessary, this is done on the basis of your express consent, which you can give via the cookie banner. In this case, the basis for storing and accessing information is Section 25 (1) TDDDG in conjunction with Art. 6 para. 1 lit. a), Art. 7 GDPR. You can revoke your consent at any time with effect for the future or subsequently grant it again by configuring your cookie settings accordingly. Alternatively, you can prevent the storage of cookies by making the appropriate settings in your browser software. Please note that the browser settings you make only apply to the browser you are using. If personal data is processed following the storage of and access to the information on your end device, the provisions of the GDPR apply.

You can find information on this in the following sections of this privacy policy.

4. Exercise your Rights

You can withdraw your consent to the use of cookies at any time and manage your consent preferences at the following link:

Newsletter

1. Description and Scope of Data Processing

You can subscribe to a free newsletter on our website. When you register for the newsletter, the data from the input screen is transmitted to us.

In order to provide this service, we collect the following data from you:

• Email address

• Last name

• First name

• Phone/mobile number

• Your address

• Date and time of registration

During the registration process, your consent is obtained for the processing of the data and reference is made to this privacy policy.

No data will be passed on to third parties in connection with the data processing for sending newsletters. The data is used exclusively for sending the newsletter.

2. Purpose of Data Processing

The purpose of collecting the user's email address is to deliver the newsletter.

The collection of other personal data as part of the registration process serves to prevent misuse of the services or the e-mail address used.

3. Legal basis for Data Processing

The legal basis for the processing of data after registration for the newsletter by the user is Art. 6 para. 1 sentence 1 lit. a GDPR if the user has given consent.

4. Duration of Storage

The data will be deleted as soon as it is no longer required for the purpose for which it was collected. The user's e-mail address is therefore stored for as long as the subscription to the newsletter is active.

The other personal data collected during the registration process is generally deleted after a period of seven days.

5. Exercising your Rights

The subscription to the newsletter can be canceled by the user concerned at any time. For this purpose, there is a corresponding link in every newsletter.

This also enables you to withdraw your consent to the storage of the personal data collected during the registration process.

E-mail contact

1. Description and Scope of Data Processing

It is possible to contact us via the email address provided on our website. In this case, the user's personal data transmitted with the email will be stored.

Die Daten werden ausschließlich für die Verarbeitung der Konversation verwendet.

2. Purpose of Data Processing

Im Falle einer Kontaktaufnahme per E-Mail liegt hieran auch das erforderliche berechtigte Interesse an der Verarbeitung der Daten.

3. Legal Basis for Data Processing

The legal basis for the processing of data transmitted in the course of sending an e-mail is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is to respond to your request sent by email in the best possible way.

If the e-mail contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR.

4. Duration of Storage

The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. For personal data sent by email, this is the case when the respective conversation with the user has ended. The conversation is ended when it can be inferred from the circumstances that the matter in question has been conclusively clarified.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

5. Exercising your Rights

If the user contacts us by email, they can object to the storage of their personal data at any time. In such a case, the conversation cannot be continued.

All personal data stored in the course of contacting us will be deleted in this case.

Contact form

1. Description and Scope of Data Processing

There is a contact form on our website that can be used to contact us electronically. If a user makes use of this option, the data entered in the input mask will be transmitted to us and stored.

The following data is stored when the message is sent:

• Email address

• Last name

• First name

• Phone/mobile number

• message

• IP address of the accessing computer

• Date and time

2. Purpose of the Data Processing

The processing of personal data from the input mask of the contact form or via the e-mail address provided serves us solely to process the contact.

The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.

3. Legal Basis for Data Processing

The legal basis for the processing of data transmitted in the course of sending an email is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest is to respond to your inquiry that you send to us via the contact form in the best possible way. If the e-mail contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 sentence 1 lit. b GDPR.

4. Duration of Storage

The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected. For the personal data from the input screen of the contact form and those sent by email, this is the case when the respective conversation with the user has ended. The conversation is ended when it can be inferred from the circumstances that the matter in question has been conclusively clarified.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

5. Exercising your Rights

If the user contacts us via the input mask in the contact form, they can object to the storage of their personal data at any time in the following manner:

A revocation can be made in writing at any time.

All personal data stored in the course of making contact will be deleted in this case.

Application by e-mail and Application Form

1. There is an application form on our website that can be used for electronic applications. If an applicant makes use of this option, the data entered in the input mask will be transmitted to us and stored.

These data are

• Salutation

• Last name

• First name

• Phone/mobile number

• e-mail address

• Salary expectations

• Curriculum vitae

• certificates

• Possible starting date

Alternatively, you can also send us your application by e-mail. In this case, we will record your e-mail address and the data you provide in the e-mail.

After sending your application, you will receive confirmation of receipt of your application documents by e-mail from us.

We also offer an applicant/talent pool.

Your data will not be passed on to third parties. The data will be used exclusively for processing your application.

2. Purpose of Data Processing

We process the personal data from the application form solely for the purpose of processing your application. If you contact us by email, this also constitutes the necessary legitimate interest in processing the data.

The other personal data processed during the sending process serve to prevent misuse of the application form and to ensure the security of our information technology systems.

3. Legal Basis for Data Processing

The legal basis for the processing of your data is the initiation of a contract at the request of the data subject, Art. 6 para. 1 sentence 1 lit. b Alt. 1 GDPR and § 26 para. 1 sentence 1 BDSG.

The legal basis for the processing of data as part of the applicant pool is the applicant's express declaration of consent, Art. 6 para. 1 sentence 1 lit. a, Art. 7 GDPR. You can revoke your consent at any time with effect for the future.

4. Duration of Storage

After completion of the application process, the data will be stored for up to 6 months. Your data will be deleted after 6 months at the latest. In the event of a legal obligation, the data will be stored in accordance with the applicable provisions.

The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.

Company Appearances

YouTube:

YouTube LLC, 901 Cherry Ave, San Bruno, CA 94066, United States

On our company page, we provide information and offer YouTube users the opportunity to communicate.

If you carry out an action on our YouTube company page (e.g. comments, contributions, likes, etc.), you may make personal data (e.g. your real name or photo of your user profile) public.

However, as we generally or largely have no influence on the processing of your personal data by YouTube, we cannot make any binding statements about the purpose and scope of the processing of your data.

We use our corporate presence in social networks for communication and information exchange with (potential) customers. In particular, we use the company presence for:Interaction with potential and existing partners and employees

Publications on the company website may contain the following content:

• Information about products

• Information about services

• Customer contact

• Job advertisements

Every user is free to publish personal data through activities.

Insofar as we process your personal data in order to evaluate your online behavior, offer you competitions or carry out lead campaigns, this is done on the basis of your express declaration of consent, Art. 6 para. 1 sentence 1 lit. a, Art. 7 GDPR.

The legal basis for the processing of personal data for the purpose of communicating with customers and interested parties is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest here is to answer your inquiry in the best possible way or to be able to provide the requested information.

If the contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR.

We store your activities and personal data published via our corporate YouTube presence until you withdraw your consent. In addition, we comply with the statutory retention periods and continue to process data from our corporate presence in our systems. This data is stored there for the following period: The personal data is stored for a period of 6 months.

The data generated by the company website is not stored in our own systems.

For the processing of your personal data in third countries, we have provided suitable guarantees in the form of standard data protection clauses in accordance with Art. 46 para. 2 lit. c GDPR. A copy of the standard data protection clauses can be requested from us.

You can object to the processing of your personal data that we collect in the context of your use of our corporate presence at any time and assert your rights as a data subject as set out in the "Your rights" section of this Privacy Policy. To do so, please send us an informal email to info@globalside.com. You can find more information on the processing of your personal data by YouTube and the corresponding objection options here:

YouTube: https://policies.google.com/privacy?gl=DE&hl=en

Use of Company Presences in Professional Networks

1. Scope of Data Processing

The company website is used for applications, information/PR and active sourcing. We have no information on the processing of your personal data by the companies jointly responsible for the company website. Further information can be found in the privacy policy of

• LinkedIn

On our site we provide information and offer users the opportunity to communicate.

The company website is used for applications, information/PR and active sourcing.

We have no information on the processing of your personal data by the companies jointly responsible for the company website. Further information can be found in the privacy policy of:

LinkedIn:

https://www.linkedin.com/legal/privacy-policy

If you carry out an action on our company website (e.g. comments, posts, likes, etc.), you may make personal data (e.g. clear name or photo of your user profile) public.

2. Legal Basis for Data Processing

The legal basis for the processing of personal data for the purpose of communicating with customers and interested parties is Art. 6 para. 1 sentence 1 lit. f GDPR. Our legitimate interest here is to respond to your inquiry in the best possible way or to be able to provide the requested information.

If the contact is aimed at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR.

3. Purpose of the data processing

The purpose of our company website is to inform users about our services. Every user is free to publish personal data through activities.

4. Duration of Storage

We store your activities and personal data published via our company website until you withdraw your consent. In addition, we comply with the statutory retention periods.

5. Exercising your Rights

You can object to the processing of your personal data that we collect in the context of your use of our corporate presence at any time and assert your rights as a data subject as set out in the "Your rights" section of this privacy policy. To do so, please send us an informal email to the email address stated in this privacy policy.

Further information on exercising your rights can be found here:

LinkedIn:

https://www.linkedin.com/legal/privacy-policy

Hosting

The website is hosted on servers of a service provider commissioned by us.

Our service provider is:

HubSpot of the provider HubSpot, Inc. 25 First Street, Cambridge, MA 02141 USA. Further information can be found in the provider's privacy policy: https://legal.hubspot.com/de/dpa

The servers automatically collect and store information in so-called server log files, which your browser automatically transmits when you visit the website. The information stored is

• Information about the browser type and version used

• The user's operating system

• The user's internet service provider

• Date and time of access

• Websites from which the user's system accesses our website

This data is not merged with other data sources. This data is collected on the basis of Art. 6 para. 1 lit. f GDPR. Our legitimate interest in processing this data is to display our website without errors and to optimize its functions.

The location of the website server is geographically located in the European Union (EU) or the European Economic Area (EEA).

Geotargeting

We use the IP address and other information provided by the user (in particular the zip code during registration or ordering) to address regional target groups (so-called "geotargeting").

Regional targeting is used, for example, to automatically display regional offers or advertising that are often more relevant to users. The legal basis for the use of the IP address and any other information provided by the user (in particular the zip code) is Article 6(1)(f) GDPR, based on our interest in ensuring a more precise target group approach and thus providing offers and advertising that are more relevant to users.

Part of the IP address and the additional information provided by the user (in particular the zip code) is only read out and not stored separately.

You can prevent geotargeting by using a VPN or proxy server, for example, which prevent precise localization. In addition, depending on the browser used, you can also deactivate location localization in the corresponding browser settings (if supported by the respective browser).

We use geotargeting on our website for the following purposes

• Customer approach

• advertising purposes

Registration

1. Description and Scope of Data Processing

On our website, we offer users the opportunity to register by providing personal data. The data is entered into an input mask and transmitted to us and stored. The data will not be passed on to third parties. The following data is collected as part of the registration process:

• Email address

• Last name

• First name

• Your address

• Telephone/mobile phone number

• Date and time of registration

As part of the registration process, the user's consent to the processing of this data is obtained.

2. Purpose of the Data Processing

User registration is required for the provision of certain content and services on our website. User registration is required in particular for the following purpose:

Requesting information about the company, product groups, products, services and support requests for existing customers. In addition, inquiries about career opportunities/vacant positions. In addition, inquiries about possible partnerships/cooperations. In addition, registration for events or cancellations of events. In addition, registration for newsletters and the company blog.

3. Legal Basis for Data Processing

The legal basis for the processing of the data is Art. 6 para. 1 sentence 1 lit. a GDPR if the user has given consent.

4. Duration of Storage

The data will be deleted as soon as it is no longer required to achieve the purpose for which it was collected.

With regard to registration data, your data will therefore be stored for as long as your account is active.

5. Exercising your Rights

As a user, you have the option of canceling your registration at any time. You can have the data stored about you amended at any time.

Specifically, you can request deletion in the following ways:

If the user contacts us via the input mask in the contact form or by e-mail, they can object to the storage of their personal data at any time. A revocation can be made in writing at any time. All personal data stored in the course of making contact will be deleted in this case.

If the data is required to fulfill a contract or to carry out pre-contractual measures, premature deletion of the data is only possible insofar as contractual or legal obligations do not prevent deletion.

Plugins and Tools used

Use of HubSpot

1. Scope and Purpose of the Processing of Personal Data

We use a content management system (CMS) provided by HubSpot, Inc, 25 First Street, Cambridge, MA 02141, USA. A CMS is a software platform that enables us to create and manage the content and functions of our website without in-depth programming knowledge. The CMS is used to control key aspects of our website, including the display of page content, the integration of media and the optimization of the user experience.

As part of the use of a CMS, personal data of website visitors may be processed that is required for the operation, security and optimization of the website. This includes

2. Which Data is processed within the Use of HubSpot

• Log data: Information such as IP address, date and time of access, pages accessed, browser type and operating system, which is automatically collected each time you visit the website. This data is used to keep the website secure and functional.

• Usage data: Data about user behavior on the website, such as the time spent on individual pages, interactions with content or navigation behavior. This information helps us to improve the content of our website and better adapt it to the interests of our users.

• Technical data: Information to optimize the display and functionality of the website, such as screen resolution and device information (e.g. desktop, tablet or mobile device).

• Input data: When website visitors fill out a form (e.g. to contact us or register for a newsletter), the personal data entered (such as name, e-mail address and message text) is processed in order to process the respective request.

3. Legal Basis for the Processing of Personal Data

The processing of personal data by the CMS is based on our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR, as this is necessary to ensure a reliable, secure and optimized website operating environment.

4. Duration of Storage

The personal data collected by HubSpot will be stored for as long as necessary for the above-mentioned purposes and until our legitimate interest in storage ceases to apply. After the purpose or legitimate interest ceases to apply, the data will be deleted or anonymized, unless there are statutory retention obligations.

5. Exercising your Rights
You can prevent HubSpot from processing your personal data by deactivating the storage of third-party cookies in your browser or by using script blockers.

Use of AWS (Amazon Web Services)

1. Scope of the Processing of Personal Data
We use AWS (Amazon Web Services), a hosting and infrastructure platform provided by Amazon Web Services, Inc, 410 Terry Avenue North, Seattle, WA 98109, USA, to ensure the technical infrastructure and delivery of our website. AWS ensures that our website is stable, secure and available at all times.

2. Which Data is processed within the Use of AWS
The following personal data is usually processed when using AWS:

• Log data: AWS automatically collects certain data necessary to use and secure the website, including the user's IP address, date and time of access, pages visited, browser type and operating system used. This log data is crucial for monitoring and improving website performance and for detecting and preventing potential security risks.

• Location data: AWS may process information about the approximate location of users in order to deliver our website content faster, for example by accessing the nearest server.

• Technical data: AWS processes technical information about the devices that access our website, such as the type of device (e.g. mobile device, tablet or desktop) and technical characteristics such as screen resolution. This data helps to optimize the presentation of the website for different devices.

3. Purpose of Data Processing
The data processed by AWS is used for the provision, security and performance of our website. AWS helps us to avoid downtime and to operate the website reliably and securely.

4. Legal Basis for the Processing of Personal Data
The processing of personal data by AWS is based on our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. This legitimate interest lies in the secure and efficient provision of our website and its functions.

5. Duration of Storage
The personal data processed by AWS will only be stored for as long as is necessary to fulfill the stated purposes and until our legitimate interest ceases to apply. Once the purpose or legitimate interest no longer applies, the data will be deleted or anonymized, provided there are no statutory retention obligations.

6. Exercising your Rights
You can prevent the collection and processing of your personal data by AWS by preventing the storage of third-party cookies in your browser or by activating the "Do Not Track" function. Alternatively, you can also use script blockers such as NoScript or Ghostery.

Use of Google Analytics

 1. Scope of the Processing of Personal Data

We use Google Analytics, a web analytics service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. The information generated by Google Analytics about your use of this website is usually transferred to a Google server in the USA or other third countries and stored there. Google Analytics anonymizes the IP addresses by default so that the IP address is shortened within the EU or EEA before transmission and no conclusions can be drawn about the identity of the users.

We have activated user ID tracking, which enables us to identify users across different devices and sessions. This helps us to analyze the use of our website on a cross-device basis and improve the user experience. In addition, we use customizable event tracking to record user-defined interactions such as video views or downloads to better understand specific activities on our website.

2. Purpose of the Data Processing

The processing of data by Google Analytics serves to analyze user behavior and optimize our website. By evaluating the data collected, we gain insights into how the website is used and can use these findings to improve our online offering and adapt it to the needs of our users.

3. Legal basis for the processing of personal data

The processing of personal data by Google Analytics is based on your consent in accordance with Art. 6 para. 1 lit. a GDPR. Your consent is voluntary and can be revoked at any time.

4. Duration of Storage

The personal data collected by Google Analytics will only be stored for as long as is necessary for the respective purpose and as long as your consent exists. As soon as the purpose of data collection is fulfilled or consent is withdrawn, the data is securely deleted or anonymized, unless there are legal obligations to retain it.

5. Exercising your Rights

You have the right to withdraw your declaration of consent under data protection law at any time. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

For more information about your rights and how Google Analytics processes personal data, please refer to the Google Analytics Privacy Policy.

Use of Cloudflare

1. Scope of the Processing of Personal Data
We use Cloudflare, Inc, 101 Townsend Street, San Francisco, CA 94107, USA, to improve the performance and security of our website. Cloudflare provides a content delivery network (CDN) and various security features that protect our website's traffic and optimize its loading times.

2. Which Data is processed within the Framework of Cloudflare
The following personal data is generally processed when Cloudflare is used

• IP addresses: To ensure security and optimize website performance, Cloudflare stores the IP addresses of website visitors. These IP addresses help to ward off malicious traffic, e.g. through protective measures against DDoS (Distributed Denial of Service) attacks.

• Log data: Cloudflare automatically collects and stores log data, including information such as the date and time of access, pages accessed, the amount of data transferred and technical details about the browser and operating system used. This log data is necessary to ensure the stability and security of the website.

• Location data: Cloudflare uses location data (based on the IP address) to provide content as close as possible to the user's location and thus enable faster loading times.

3. Purpose of data processing

The processing of data by Cloudflare is carried out to optimize the loading times of our website, to provide secure and reliable website operation and to protect against potential security threats.

• Legal basis for the processing of personal dataThe
  processing of personal data by Cloudflare is based on our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. This legitimate interest lies in the secure, high-performance and trouble-free provision of our website.

• Duration of storage
  The personal data processed by Cloudflare will only be stored for as long as is necessary for the purposes stated. As soon as the data is no longer required to maintain website security and performance, it is deleted or anonymized, unless there are legal obligations to retain it.

• Exercising your rights
  You can prevent the collection and processing of your personal data by Cloudflare by blocking the storage of third-party cookies, activating the "Do Not Track" function or using script blockers such as NoScript or Ghostery in your browser.

Use of Google Fonts

1. Scope of the Processing of Personal Data
We use Google Fonts, a service of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, to display fonts on our website in a uniform and appealing way. Google Fonts enables us to load fonts directly from Google's servers, which optimizes the loading speed of our website and ensures a consistent display.

2. Which Data is processed in the Context of Google Fonts
The following personal data is generally processed in the context of the integration of Google Fonts

• IP address: Each time a page that uses Google Fonts is accessed, the user's IP address is transmitted to Google. This IP address is required so that the user's browser can load the fonts directly from the Google servers.

• Technical browser data: Google may also process technical data such as the type of browser used, the operating system and other device characteristics to ensure that the fonts are displayed correctly.

3. Purpose of Data Processing
The processing of data by Google Fonts is carried out for the uniform and visually appealing design of our website and for the fast provision of the fonts.

4. Legal Basis for the processing of Personal Data
The processing of personal data by Google Fonts is based on our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in making our website visually appealing and user-friendly.

5. Duration of Storage
Google stores the transmitted data only temporarily and processes it to ensure the functionality of Google Fonts. Further details on data storage by Google can be found in Google's privacy policy.

6. Exercising your Rights
You can prevent the collection and processing of your personal data by Google Fonts by blocking the storage of third-party cookies, activating the "Do Not Track" function or using script blockers such as NoScript or Ghostery in your browser.

Use of Google Maps

1. Scope of the Processing of Personal Data
We use Google Maps, a service of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, to provide geographical information on our website. Google Maps enables the display of interactive maps and offers visitors an easy way to find our location on the map.

2. Which Data is processed in the Context of Google Maps
The following personal data can generally be processed in the context of the integration of Google Maps:

• IP address: When loading the Google Maps map, the user's IP address is transmitted to Google in order to display the map data correctly.

• Location data: If the user activates the location function, Google can record the user's approximate location in order to adjust the map accordingly and facilitate navigation.

• Technical browser data: Google may additionally process technical information such as browser type, operating system and other device characteristics in order to display the map correctly.

3. Purpose of Data Processing
The processing of data by Google Maps is carried out to provide a user-friendly and interactive location display to make it easier for visitors to find our location on a map and plan routes.

4. Legal Basis for the Processing of Personal Data
The processing of personal data by Google Maps is based on our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in the user-friendly design and improvement of the user experience on our website.

5. Duration of Storage
The data collected by Google Maps is temporarily stored and processed by Google to ensure the functionality of the map display. Further information on the storage period can be found in Google's privacy policy.

6. Exercising your Rights
You can prevent the collection and processing of your personal data by Google Maps by blocking the storage of third-party cookies, activating the "Do Not Track" function or using script blockers such as NoScript or Ghostery in your browser.

Use of jQuery

1. Scope of the Processing of Personal Data
We use the JavaScript library jQuery, which is provided via the Content Delivery Network (CDN) jsDelivr, to ensure interactive functions and smooth operation of the website. The service is operated by Prospect One, Kraków, Poland.

2. Which Data is Processed in the Context of jQuery
In the context of using jQuery, the following personal data is processed, if necessary:

• IP address: To deliver the jQuery library to the user's browser to ensure the functionality of the website.

3. Purpose of Data Processing
The data is processed to provide stable and user-friendly website functionality.

4. Legal Basis for the Processing of Personal Data
The processing of personal data is based on our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR to ensure smooth and user-friendly website operation.

5. Duration of Storage
The data collected by jsDelivr is only processed temporarily to ensure the functions of the website. Further information can be found in the privacy policy of jsDelivr.

6. Exercising your Rights
You can prevent the collection and processing of your personal data by jQuery by blocking the storage of third-party cookies, activating the "Do Not Track" function or using script blockers such as NoScript or Ghostery in your browser.

Use of LinkedIn Widgets

1. Scope of the Processing of Personal Data
We use LinkedIn widgets provided by LinkedIn Corporation, 1000 W Maude Ave, Sunnyvale, CA 94085, USA, to link content on our website to social networks.

2. Which Data is Processed in the Context of the LinkedIn Widgets
The following personal data is processed as necessary when using the LinkedIn widgets

• IP address and browser data: To display the widgets and to link to LinkedIn content.

• Usage data: Data about interactions if the user has a LinkedIn account and is logged in.

3. Purpose of Data Processing
Data processing is carried out to provide and display LinkedIn content and to link our website to the LinkedIn social network.

4. Legal Basis for the Processing of Personal Data
The processing is based on our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR to provide a simple link to LinkedIn and to increase the visibility of our content.

5. Duration of Storage
The data is stored by LinkedIn in accordance with its own guidelines. Further information can be found in the LinkedIn privacy policy.

6. Exercising your Rights
You can prevent the processing of your personal data by LinkedIn Widgets by blocking the storage of third-party cookies or activating the use of script blockers in your browser.

Use of Matomo

1. Scope of the Processing of Personal Data
We use Matomo, an open source web analysis software hosted locally on our servers, to analyze the behavior of our website visitors anonymously and to improve the website.

2. Which Data is Processed within the Use of Matomo
The following personal data is processed as part of the use of Matomo, where necessary:

• IP address: Is anonymized before storage.

• Usage data: Visits, clicks, length of stay and technical data such as browser and device type, which are collected to improve our website.

3. Purpose of Data Processing
The processing of the data serves to analyze user behavior on our website in order to improve user-friendliness and functionality.

4. Legal Basis for the Processing of Personal Data
The processing is based on our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR to optimize the user-friendliness and functionality of our website.

5. Duration of Storage
The data is only stored for as long as is necessary to analyze and optimize the website. Further information can be found in Matomo's privacy policy.

6. Exercising your Rights
You can object to processing by Matomo by activating the "Do Not Track" function or using script blockers in your browser.

Use of New Relic

1. Scope of the Processing of Personal Data
We use New Relic, provided by New Relic, Inc, 188 Spear Street, Suite 1200, San Francisco, CA 94105, USA, to monitor the performance and stability of our website.

2. Which Data is Processed within the Use of New Relic
The following personal data is processed as part of the use of New Relic, where necessary:

• IP address and technical data: This data is used to analyze server performance and diagnose errors in order to ensure the stability of the website.

3. Purpose of Data Processing
The processing is carried out to monitor and optimize the technical stability of our website.

4. Legal Basis for the Processing of Personal Data
The processing of personal data is based on our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR, as it contributes to the stability and performance of the website.

5. Duration of Storage
The data is stored by New Relic in accordance with its own guidelines. Further information can be found in the privacy policy of New Relic.

6. Exercising your Rights
You can prevent the collection and processing of your personal data by New Relic by making the appropriate data protection settings in your browser.

Use of FontAwesome

1. Scope of the Processing of Personal Data
We use FontAwesome, provided by Fonticons, Inc, 307 S. Main St., Suite L, Bentonville, AR 72712, USA, to display icons on our website in a uniform and visually appealing way.

2. Which Data is processed in the Context of FontAwesome
When FontAwesome is used, the user's IP address is processed in order to deliver the icons to the browser.

3. Purpose of Data Processing
The data processing is carried out to provide a consistent and visually appealing design of the website.

4. Legal Basis for the Processing of Personal Data
The processing is based on our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR to ensure an appealing and consistent design of our website.

5. Duration of Storage
FontAwesome stores the data only temporarily to ensure the function of the icon display. Further information can be found in the Privacy policy of FontAwesome.

6. Exercising your Rights
You can prevent FontAwesome from processing your personal data by installing script blockers in your browser or blocking the storage of third-party cookies.

Use of jsDelivr

1. Scope of Processing of Personal Data
We use jsDelivr, a content delivery network provided by Prospect One, Kraków, Poland, to deliver JavaScript libraries and other files to users quickly and securely.

2. What Data is Processed in the Context of jsDelivr
When using jsDelivr, the user's IP address is processed in order to deliver the required files to the browser and improve loading times.

3. Purpose of Data Processing
The data is processed to optimize loading times and to ensure the availability of website content.

4. Legal Basis for the Processing of Personal Data
The processing of personal data is based on our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR to improve the performance and user-friendliness of the website.

5. Duration of Storage
The data is only processed temporarily by jsDelivr. Further information can be found in the privacy policy of jsDelivr.

6. Exercising your Rights
You can prevent the processing of your personal data by jsDelivr by blocking the storage of third-party cookies or activating the use of script blockers.

This privacy policy was created with the support of DataGuard.

Munich, 8 November 2024
Global Side GmbH