Privacy Policy

Privacy Policy

Thank you for visiting our website and for your interest in our company. Protecting your personal data is very important to us, and we want you to feel secure during your visits to our web pages.

This Policy outlines which information we collect when you visit our website and how this data is used.

Our Contact Information

FRAMOS GmbH

Mehlbeerenstr. 2
82024 Taufkirchen
Germany

Phone: +49.(0).89.710667-0
Fax: +49.(0).89.710667-66
Email: info@framos.com

Data Protection Officer Contact Information

PROLIANCE GmbH

Leopoldstraße 21
80802 München
Deutschland

datenschutzbeauftragter@datenschutzexperte.de 

1.  Processing of personal data when using our website

1.1        Webhosting

This website is hosted by an external service provider, Profihost AG (hoster). This website is hosted in Germany. Personal data collected on this website is stored on the hoster’s servers. This may include, but is not limited to, IP addresses, contact requests, meta and communication data, web page accesses and other data generated by a website.

We have concluded a Data Processing Agreement with the provider in accordance with the requirements of Art. 28 GDPR, in which we commit him to protect the data of our customers and not to pass them on to third parties.

1.2      Access to and storage of information in terminal equipment

By using our website, access to information (e.g. IP address) or storage of information (e.g. cookies) in your terminal equipment may occur. This access or storage may involve further processing of personal data pursuant to the GDPR.
In cases where such access to information or such storage of information is strictly necessary for the technically error-free delivery of our services, this is done on the basis of § 25 para. 1 s. 1, para. 2 no. 2 TTDSG.

In cases where such a process serves other purposes (e.g. the needs-based design of our website), this will only be carried out on the basis of § 25 para. 1 TTDSG with your consent pursuant to Art. 6 para. 1 lit. a GDPR. The consent can be revoked at any time with effect for the future.

For more information on the processing of your personal data and the relevant legal basis in this context, please refer to the following sections on the specific processing activities on our website.

1.3        Server-Logfiles

To ensure proper functioning of our website, when you visit the site we process personal data that is transmitted to us by your browser.

This information is your IP address, the date and time of the request, the difference between your time zone and Greenwich Mean Time (GMT), the content of the request (specific page visited), the access status/HTTP status code, the volume of data transferred in each case, the website that is the source of the request, your browser, operating system and its interface as well as the language and version of the browser software.

We collect the listed data to ensure a proper connection to the website and an error-free delivery of our services. The processing of this data is strictly necessary to make the website available to you. The log files are processed for the purpose of evaluating system security and stability as well as for administrative purposes. The log files serve to evaluate system security and stability as well as administrative purposes. The legal basis for the processing of the data is our legitimate interest in the protection and functionality of our website in accordance with Art. 6 para. 1 lit. f GDPR.

We collect the listed data in order to guarantee a frictionless connection establishment and to enable a comfortable use of our website by the users. The log file also serves for evaluating system security and stability as well as administrative purposes. The legal basis for the temporary storage of data or log files is Art. 6 para. 1 lit. f GDPR.

For reasons of technical security, in particular to prevent attempts to attack our web server, we may temporarily store this data. It is not possible for us to draw conclusions about individual persons on the basis of this data. After 60 days  at the latest, the data is made anonymous by shortening the IP address at domain level, so that it is no longer possible to establish a reference to the individual user. This data is not evaluated in anonymous form except for statistical purposes. This data is not combined with data from other data sources. 

1.4        Cookies and Plugins

We use what are known as “cookies” to make our website more user friendly. Cookies are small text files that are saved on your hard drive by your browser. They enable certain information to be provided to the entity (in this case, us) sending the cookie.

Cookies are used to make our website easier to use and to make possible the functions that you use. If we also use cookies for other purposes, we explain in this Privacy Policy what we use them for.

In your browser, you can change various settings relating to cookies as well as prohibit cookies from being accepted and delete already accepted cookies. However, please note that without cookies, you may not be able to use all of the services on our website.

Insofar as cookies are used by third parties on this site, additional information is provided through the services implemented here.

Technically necessary cookies are stored on the basis of Art. 6 para. 1 lit. f GDPR. We have a legitimate interest in the storage of cookies for the technically error-free and optimised presentation of our services. Other cookies are only stored with your consent on the basis of Art. 6 para. 1 lit. a GDPR. This consent can be withdrawn at any time for the future. The legal basis may also result from Art. 6 para. 1 lit. b GDPR if the processing is necessary for the performance of a contract to which the data subject is a party or for the implementation of pre-contractual measures taken at the request of the data subject.

Insofar as cookies are used for analysis purposes, we will inform you of this separately within the framework of this privacy policy and obtain your consent.

You can set your browser to

  • be informed about the setting of cookies,
  • only allow cookies in individual cases,
  • exclude the acceptance of cookies for certain cases or generally,
  • activate the automatic deletion of cookies when the browser is closed.

The cookie settings can be managed under the following links for each browser:

You can also manage cookies of many companies and functions used for advertising individually. To do this, use the appropriate user tools, available at https://www.aboutads.info/choices/ or  http://www.youronlinechoices.com/uk/your-ad-choices.

Most browsers also offer a so-called “do-not-track function”. When this feature is enabled, the browser tells ad networks, websites, and applications that you do not want to be “tracked” for behavioral advertising and the like.

For information and instructions on how to edit this feature, please refer to the links below, depending on your browser provider:

Additionally, you can prevent the loading of so-called scripts by default. “NoScript” allows the execution of JavaScripts, Java and other plug-ins only at trusted domains of your choice. Information and instructions on how to edit this function can be obtained from the provider of your browser (e.g. for Mozilla Firefox at: https://addons.mozilla.org/en-US/firefox/addon/noscript/ ).

Please note that if you disable cookies, the functionality of our website may be limited.

1.4.1 Change cookie settings

You can revoke or change your cookie settings at any time. To do so, access the cookie settings again via this link: https://www.framos.com/en/privacy-policy

1.5 Our service providers

1.5.1 Unbounce

For certain promotions and advertising campaigns (certain landing pages), we use the services of unbounce Marketing Solutions Inc. 400-401 West Georgia Street Vancouver, BC, Canada.

These landing pages are hosted by unbounce and the user’s browser communicates directly with unbounce in the process, so that the user’s IP address is transmitted and cookies can be set. All information entered by the user on these pages is stored by unbounce. The activities of landing page visitors can be evaluated via unbounce. We receive an evaluation of these activities from unbounce. The legal basis for this processing is your consent pursuant to Art. 6 (1) a) GDPR.

The EU Commission has classified Canada as a safe third country, with an adequate level of data protection, and we have concluded a data processing agreement with unbounce.

Information about data protection at unbounce can be found here:

https://unbounce.com/privacy/

https://unbounce.com/de/dsgvo/

1.5.2 Google services

i) Google Analytics

Our website uses Google Analytics, an internet analysis service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google Analytics uses so-called “cookies” and web beacons.

Google will use this information on behalf of the operator of this website to evaluate your use of the website and to create reports on website activity. Google will also use this information to provide the website operator with further services related to the use of the website and the internet. The IP address sent by your browser in the context of Google Analytics is not combined with other data from Google. Processing is carried out in accordance with Art. 6 para. 1 lit. a GDPR on the legal basis of your given consent.

We use Google Analytics only with activated IP anonymisation. This means that your IP address will only be further processed by Google in abbreviated form.

We have concluded a Data Processing Agreement with the service provider in which we oblige him to protect the data of our customers and not to pass them on to third parties.

The terms of use of Google Analytics and information on data protection can be accessed via the following links:

http://www.google.com/analytics/terms/

https://policies.google.com/privacy

The data will be deleted as soon as it is no longer necessary for the purpose for which it was collected. User and event-level data associated with cookies, user IDs (e.g., User ID), and advertising IDs (e.g., DoubleClick cookies, Android Advertising ID, IDFA) will be deleted no later than 14 months after collection. 

You can prevent cookies from being saved by adjusting the settings of your browser software accordingly. Please note, however, that if you do so you may not be able to use all the functions of this website without restriction. You can also prevent Google from collecting the data generated by the cookie and analysing your use of the website (including your IP address) and processing this data by Google by downloading and installing the browser plugin available at https://tools.google.com/dlpage/gaoptout.

ii) Google Ads

We use “Google Ads” on our website, a service provided by Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland (hereinafter referred to as “Google”). Google Ads is used by us for marketing and optimisation purposes, in particular to display ads that are relevant and interesting to you.

If you have given us your consent to do so in accordance with Art. 6 para. 1 sentence 1 lit. a GDPR, we can use Google Ads to draw attention to our attractive offers by using advertising material on external websites. This enables us to determine how successful individual advertising measures are.

These advertising media is delivered by Google via so-called “AdServers”. We use AdServer cookies for this purpose, through which certain parameters for measuring success, such as the display of the ads or clicks by users, can be measured.

If you reach our website via a Google ad, Google Ads will store a cookie on your PC. These cookies usually expire after 30 days. They are not intended to identify you personally. The following information is usually stored as analysis values for this cookie: Unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions), opt-out information (marking that the user no longer wishes to be contacted). These cookies enable Google to recognize your web browser. If a user visits certain pages of an ad client’s website and the cookie stored on their computer has not expired, Google and the client will be able to tell that the user clicked on the ad and was redirected to that page. A different cookie is associated with each ad client. As a result, cookies cannot be tracked through the websites of ad clients. We ourselves do not collect and process any personal data in the advertising measures mentioned above. We only receive statistical evaluations from Google. By means of these evaluations we can recognize which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising material, in particular we cannot identify the users on the basis of this information.

Due to the marketing tools used, your browser automatically establishes a direct connection with the Google server. We have no influence on the scope and further use of the data collected by Google through the use of Google Ads. To the best of our knowledge, Google receives the information that you have called up the relevant part of our website or clicked on an advertisement from us. If you have a user account with Google and are registered, Google can assign the visit to your user account. Even if you are not registered with Google or have not logged in, there is a possibility that Google will find out and save your IP address.

Further information on data use by Google, on setting and objection options as well as on data protection can be found on the following Google websites:

– Privacy policy: https://policies.google.com/privacy

– Google website statistics: https://services.google.com/sitestats/en.html

You can prevent the installation of cookies by deleting existing cookies and deactivating the storage of cookies in the settings of your web browser. Please note that in this case you may not be able to use all functions of our website to their full extent. You can also prevent the storage of cookies by setting your web browser to block cookies from the domain “www.googleadservices.com” (https://www.google.de/settings/ads). We would like to point out that this setting will be deleted if you delete your cookies. In addition, you can deactivate interest-related advertisements by clicking on the link http://optout.aboutads.info. Please note that this setting will also be deleted if you delete your cookies.

iii) Google Ads Remarketing

Our website uses the functions of Google Ads Remarketing. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.

Provided that you have given us your consent, this function makes it possible to link the advertising target groups created with Google Ads Remarketing with the cross-device functions of Google AdWords and Google DoubleClick. The legal basis is your given consent according to Art. 6 (1) para. 1 lit. a) GDPR. In this way, interest-related, personalized advertising messages that have been adapted to you depending on your previous usage and surfing behavior on one end device (e.g. cell phone) can also be displayed on another of your end devices (e.g. tablet or PC).

If you have given your consent, Google will link your web and app browsing history with your Google account for this purpose. In this way, the same personalized advertising messages can be served on every end device on which you log in with your Google account.

To support this feature, Google Analytics-authenticated IDs of users are collected and temporarily linked to our Google Analytics data to define and create audiences for cross-device ad targeting.

You can permanently opt-out of cross-device remarketing/targeting by disabling personalized advertising in your Google account; follow this link: https://adssettings.google.com/

iv) Google Maps

Our homepage uses the online map service provider Google Maps via an interface. This allows us to display interactive maps directly on the website and enables you to use the map function conveniently. The provider of the map service is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. To use the functionalities of Google Maps, it is necessary to store your IP address.

Google uses cookies to collect information about user behavior. The legal basis for the processing of your personal data is your consent granted for this purpose in accordance with Art. 6 (1) para. 1 lit. a) GDPR.

Appropriate safeguards during the data transfer to Google

Since a transfer of personal data to the U.S. takes place, further appropriate safeguards are required to ensure the level of data protection under the GDPR. To guarantee this, we have concluded standard contractual clauses with the provider in accordance with Art. 46 Para. 2 lit. c GDPR. These oblige the recipient of the data in the U.S. to process the data according to the level of protection in Europe. In cases in which this cannot be guaranteed even by this contractual extension, we endeavour to obtain additional regulations and commitments from the recipient in the U.S.

1.5.3 Hotjar

Our website uses the web analysis service Hotjar of Hotjar Ltd. Hotjar Ltd. is a European company based in Malta (Hotjar Ltd, Level 2, St Julians Business Centre, 3, Elia Zammit Street, St Julians STJ 1000, Malta, Europe).

This tool allows us to track movements on the websites where Hotjar is used (so-called heat maps). For example, we can see how far users scroll and which buttons users click on how often. The tool also allows us to get feedback directly from the users of the website. Most importantly, Hotjar’s services can improve the functionality of the Hotjar-based website by making it more user-friendly, more valuable and easier for end users to use.

When using this tool, we take special care to protect your personal data. For example, we can only track which buttons are clicked, the mouse history, how far it scrolls, the screen size of the device, device type and browser information, geographic location (country only) and the preferred language to display our website. Areas of the websites where personal information about you or third parties is displayed are automatically hidden by Hotjar and therefore cannot be traced at any time. In order to exclude the possibility of direct personal references, IP addresses are only stored and processed anonymously. However, Hotjar uses various third-party services such as Google Analytics and Optimizely. It may therefore be the case that these services collect data that are transmitted by your browser as part of web page requests. These would be, for example, cookies or your IP address. In these exceptional cases, this processing is carried out in accordance with Art. 6 para. 1 letter a GDPR on the basis of your consent for the purpose of statistical analysis of user behaviour for optimisation and marketing purposes.

Hotjar stores the customer data in the European Union. In a few cases, customer data may be accessed from the USA or other countries whose data protection laws differ from the data protection laws at your place of residence, or other data (e.g. e-mail) may be transferred to such countries. Hotjar has taken reasonable precautions to ensure that your personal data remains protected and requires that Hotjar’s third party service providers and partners also take reasonable precautions.

Hotjar offers each user the option of using a “Do Not Track” header to prevent the use of the Hotjar tool, so that no data about the visit to the respective website is recorded. This is a setting that is supported by all common browsers in current versions. To do this, your browser sends a request to Hotjar to deactivate the tracking of the respective user. If you use our websites with different browsers/computers, you must set up the “Do Not Track” header separately for each of these browsers/computers.

When you visit a Hotjar-based website, you can prevent Hotjar from collecting your data at any time by going to our opt-out page https://www.hotjar.com/legal/compliance/opt-out and clicking deactivate Hotjar.

For more information about Hotjar Ltd. and about the Hotjar tool, please visit

https://www.hotjar.com

You can find the privacy policy of Hotjar Ltd:

https://www.hotjar.com/privacy

1.5.4 Youtube Video Plugins

On our website we embed videos from “YouTube”, a social media platform of Google Ireland Limited, Google Building Gordon House, Barrow St, Dublin 4, Ireland (hereinafter referred to as “Google”). The legal basis for the processing of your personal data is your given consent according to Art. 6 para. 1 s. 1 lit. a GDPR.

Since a transfer of personal data to the U.S. takes place, further appropriate safeguards are required to ensure the level of data protection under the GDPR. To guarantee this, Google uses standard contractual clauses in accordance with Art. 46 Para. 2 lit. c GDPR. These oblige the recipient of the data in the U.S. to process the data according to the level of protection in Europe. In cases in which this cannot be guaranteed even by this contractual extension, we endeavour to obtain additional regulations and commitments from the recipient in the U.S.

Further information on data protection and data use by Google can be found on the following Google website: https://policies.google.com/privacy

1.5.5 Zapier

This site uses the integration service Zapier to link tools together. Zapier is a service of Zapier Inc. 243 Buena Vista Ave #508, Sunnyvale, CA 94086, USA.

Zapier is used in the interest of integrating the tools used by us as effectively as possible. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f) GDPR.

We have concluded a contract on commissioned data processing with Zapier, in which we oblige Zapier to protect our customers’ data and not to pass it on to third parties.

Since a transfer of personal data to the USA takes place, further safeguards are required to ensure the level of data protection of the GDPR. To ensure this, we have agreed standard contractual clauses with the provider in accordance with Art. 46 (2) lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even by this contractual extension, we endeavor to obtain additional regulations and commitments from the recipient in the USA.

You can find more information about Zapier at https://zapier.com and in Zapier’s privacy policy: https://zapier.com/privacy.

1.6        Contact & registration

1.6.1 Contact form

If you send us requests via one of our contact forms or email, your details from the contact form or email, including the contact data you have provided there, will be stored for the purpose of processing your request and in the event of follow-up questions. You are required to provide an email address to contact us. Under no circumstances will we pass on this data without your consent. The legal basis for processing the data is our legitimate interest in responding to your request pursuant to Art. 6 para. 1 lit. f GDPR and, if applicable, Art. 6 para. 1 lit. b GDPR, provided that your request is aimed at concluding a contract. Your data will be deleted after final processing of your request, provided that there are no legal storage obligations to the contrary. You can object to the processing of your personal data at any time in the case of Art. 6 para. 1 lit. f GDPR.

1.6.2 Newsletter (Salesforce & Pardot)

If you would like to receive the newsletter offered on our website with regular information about our offers and products, we need your email address as mandatory information.

Additional data is provided in order to address you personally in the newsletter and/or to identify you if you wish to exercise your rights as a data subject.

For the dispatch of the newsletter we use the so-called double opt-in. This means that we will only send you our newsletter via email, if you have expressly confirmed that you agree to receive newsletters. In the first step, you will receive an email with a link to confirm that you, as the owner of the corresponding email address, wish to receive newsletters in the future. With the confirmation you give us your consent in accordance with Art. 6 para. 1 lit. a GDPR that we may use your personal data for the purpose of the desired newsletter dispatch.

When you register for the newsletter, in addition to the email address required for sending the newsletter, we store the IP address by which you registered for the newsletter as well as the date and time of registration and confirmation in order to be able to trace possible misuse at a later point in time.

You can unsubscribe from the newsletter at any time by clicking on the link included in each newsletter or by sending an email to the controller as described above. Once you have cancelled your subscription, your email address will be deleted from our newsletter list immediately, unless you have expressly consented to the continued use of the data collected.

Our email newsletters are sent via a technical service provider to whom we pass on the data you provide when you register for the newsletter. We have concluded a data processing agreement with our e-mail service provider in which we bind him to protect the data of our customers and not to pass them on to third parties.

Service provider: Pardot (by Salesforce)

Address: salesforce.com, Inc., Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, CA 94105, USA

Privacy policy: https://www.salesforce.com/de/company/privacy/

We have concluded a data processing agreement with the provider. Since a transfer of personal data to the USA takes place, further protection mechanisms are required to ensure the level of data protection of the GDPR. To ensure this, we have agreed standard contractual clauses with the provider in accordance with Art. 46 (2) lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even by this contractual extension, we endeavor to obtain additional regulations and commitments from the recipient in the USA.

The service provider uses the information from the newsletter registration to send and statistically evaluate the newsletters on our behalf. For the evaluation, the sent e-mails contain so-called web beacons or tracking pixels, which are single-pixel image files that are stored on our website. This makes it possible to determine whether a newsletter message has been opened and which links, if any, have been clicked on. With the help of so-called conversion tracking, it can also be analyzed whether a predefined action (e.g. purchase of a product on our website) has taken place after clicking on the link in the newsletter. In addition, technical information is collected (e.g. time of retrieval, IP address, browser type and operating system). The data is collected exclusively pseudonymously and is not linked to your other personal data, a direct personal reference is excluded. This data is used exclusively for the statistical analysis of newsletter campaigns. The results of these analyses can be used to better adapt future newsletters to the interests of the recipients.

If you wish to object to the data analysis for statistical evaluation purposes, you must unsubscribe from the newsletter.

1.6.3 Whitepapers

If you are interested in a whitepaper, you can request it by providing your e-mail address. After you have requested the whitepaper, we will send it to the e-mail address you provided. Our whitepapers are sent via the platform of the same provider as for our newsletter (Pardot by Salesforce).

After you request a whitepaper, we use your email address to send our newsletter. The legal basis for this is your consent pursuant to Art. 6 (1) para. 1 lit a) GDPR. If you do not want to receive the newsletter or no longer want to receive it, you can object to the sending at any time.

1.6.4 Chat (Tawk.to)

On our website we use the provider Tawk.to for a live chat by the US company tawk.to inc, 187 East Warm Springs Rd, SB298, Las Vegas, NV, 89119.

Through Tawk.io, messages and data received via live chat are processed and documented. Chat serves the purpose of direct, real-time communication (known as live chat) with visitors on our own website.

When you use our live chat system, the data you provide is stored to answer your questions. The data collected includes:

– Chat history

– IP address at the time of the chat

– Country of origin

– Other personal information, depending on the information provided (e.g. email address, phone number).

It is possible to collect contact information through Tawk.to such as name, phone number and email address to facilitate contact. This data will not be disclosed to third parties and will only be used to process and document requests.

The processing is based on Art. 6 (1) para.1 lit. f) GDPR in accordance with our legitimate interest in direct and customer-friendly communication. Insofar as the chat messages are aimed at concluding a contract, the processing is based on the initiation of a contract pursuant to Art. 6 (1) para. 1 lit. b) GDPR.

We have concluded a data processing agreement with the provider. Since a transfer of personal data to the USA takes place, further protection mechanisms are required to ensure the level of data protection of the GDPR. To ensure this, we have agreed standard contractual clauses with the provider in accordance with Art. 46 (2) lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even by this contractual extension, we endeavor to obtain additional regulations and commitments from the recipient in the USA.

For more information on data processing by Tawk.io, please see Tawk.io’s privacy policy at https://www.tawk.to/privacy-policy

1.6.5 Eventbrite

For the organization of events we use the technical solution “Eventbrite”, which is operated by Eventbrite, Inc., 155 5th Street, Floor 7, San Francisco, CA 94103, USA.

If you want to register for an event, you will be redirected to the Eventbrite website for this purpose. Eventbrite usually collects your first and last name, e-mail address, ticket type and the event ID when you provide this information as part of a registration and then transmits this data to us as the event organizer. 

We, as the event organizer, receive access from Eventbrite to the above data of the participants of the booked event.

We have concluded a data processing contract with Eventbrite, in which we oblige the provider to protect our customers’ data and not to pass it on to third parties.

Since a transfer of personal data to the USA takes place, further protection mechanisms are required to ensure the level of data protection of the GDPR. To ensure this, we have agreed standard contractual clauses with the provider in accordance with Art. 46 (2) lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even by this contractual extension, we endeavor to obtain additional regulations and commitments from the recipient in the USA.

For the purpose and scope of the data collection and the further processing and use of the data by the provider, as well as your rights in this regard and setting options for protecting your privacy, please refer to the Eventbrite privacy policy.

1.6.6 Calendly

In connection with Eventbrite, we use the tool “Calendly”, a service of Calendly LLC based in the USA, to arrange appointments.

For inquiries and bookings via Calendly, we process the personal data that you provide during the inquiry or booking. This data is first processed by “Calendly” and then transmitted to us.

Insofar as appointments are made in the context of contractual relationships, the legal basis for the processing of your personal data is the performance of the contract, Art. 6 (1) para. 1 lit. b) GDPR. If there is no contractual relationship, the legal basis is our legitimate interest in finding appointments quickly and easily according to Art. 6 (1) para. 1 lit. f) GDPR.

We have concluded a data processing contract with Eventbrite, in which we oblige the provider to protect our customers’ data and not to pass it on to third parties.

Since a transfer of personal data to the USA takes place, further protection mechanisms are required to ensure the level of data protection of the GDPR. To ensure this, we have agreed standard contractual clauses with the provider in accordance with Art. 46 (2) lit. c GDPR. These oblige the recipient of the data in the USA to process the data in accordance with the level of protection in Europe. In cases where this cannot be ensured even by this contractual extension, we endeavor to obtain additional regulations and commitments from the recipient in the USA.

For more information about privacy at Calendly, please refer to the privacy policy of Calendly.

1.6.7 Participation in webinars or online meetings over Zoom

We use the tool “Zoom” to conduct telephone conferences, online meetings, video conferences and/or webinars (hereinafter: “Online Meetings”). “Zoom” is a service of Zoom Video Communications, Inc. which has its registered office in the USA.

Note: Insofar as you call up the Internet page of “Zoom”, the provider of “Zoom” is responsible for data processing. However, calling up the Internet page is only necessary to use “Zoom” in order to download the software for using “Zoom”.

You can also use “Zoom” if you enter the respective meeting ID and, if applicable, further access data for the meeting directly in the “Zoom” app.

If you do not want to or cannot use the “Zoom” app, the basic functions can also be used via a browser version, which you can also find on the “Zoom” website.

Which data is being processed?

Various types of data are processed when using “Zoom”. In this context, the scope of the data also depends on the information on data you provide before or when participating in an “online meeting”.

The following personal data are subject to processing:

·         User details: first name, last name, phone number (optional), e-mail address, password (if “single sign-on” is not used), profile picture (optional),

·         Department (optional)

·         Meeting metadata: Topic, description (optional), attendee IP addresses, device/hardware information.

·         If recording (optional): MP4 file of all video, audio and presentation recordings, M4A file of all audio recordings, text file of online meeting chat.

·         For dial-in with the telephone: information on the incoming and outgoing call number, country name, start and end time. If necessary, further connection data such as the IP address of the device can be stored.

·         Text, audio and video data: You may have the opportunity to use the chat, question or survey functions in an “online meeting”. To this extent, the text entries you make are processed to display them in the “online meeting” and, if necessary, to log them. To enable the display of video and the playback of audio, the data from the microphone of your terminal device and from any video camera of the terminal device will be processed accordingly for the duration of the meeting. You can turn off or mute the camera or microphone yourself at any time via the “Zoom” applications.

To participate in an “online meeting” or to enter the “meeting room”, you must at least provide information about your name.

Scope of the processing

We use “zoom” to conduct “online meetings”. If we want to record “online meetings”, we will inform you transparently in advance and – if necessary – ask for your consent. The fact of the recording will also be displayed in the “Zoom” app.

If it is necessary for the purpose of recording the results of an online meeting, we will log the chat content. However, this will usually not be the case.

In the case of webinars, we may also process questions asked by webinar participants for the purposes of recording and follow-up webinars.

If you are registered as a user at “Zoom”, reports on “online meetings” (meeting metadata, telephone dial-in data, questions and answers in webinars, survey function in webinars) can be stored for up to one month at “Zoom”.

Automated decision-making within the meaning of Art. 22 GDPR is not used.

Legal basis of data processing

The legal basis for data processing in connection with “online meetings” is Art. 6 para. 1 s. 1 lit. b GDPR, insofar as the meetings are held within the framework of contractual relationships.

If no contractual relationship exists, the legal basis is Art. 6 para. 1 s. 1 lit. f GDPR. Here too, we are interested in the effective implementation of “online meetings”.

In addition, your personal data may be processed on the legal basis of your given consent in accordance with Art. 6 para. 1 s. 1 lit. a GDPR (e.g. when recording webinars).

Recipients / transfer of data

Personal data processed in connection with participation in “online meetings” is generally not passed on to third parties unless they are specifically intended to be passed on. Please note that content from “online meetings”, as well as in personal meetings, often serves precisely to communicate information with customers, interested parties or third parties and is therefore intended for disclosure.

Other recipients: The provider of “Zoom” necessarily obtains knowledge of the above-mentioned data, insofar as this is provided for in our contract processing agreement with “Zoom”. We have concluded a data processing agreement with the provider of “Zoom” which meets the requirements of Art. 28 GDPR.

Further information on data privacy can be found in Microsoft’s Privacy Policy via the following link: https://zoom.us/privacy

Data processing outside of the EU

“Zoom” is a service provided by a provider from the USA. Processing of personal data therefore also takes place in a third country.

Since a transfer of personal data to the U.S. takes place, further appropriate safeguards are required to ensure the level of data protection under the GDPR. To guarantee this, we have concluded standard contractual clauses with the provider in accordance with Art. 46 Para. 2 lit. c GDPR. These oblige the recipient of the data in the U.S. to process the data according to the level of protection in Europe. In cases in which this cannot be guaranteed even by this contractual extension, we endeavour to obtain additional regulations and commitments from the recipient in the U.S.

2 Data protection information for clients, contracting parties and other interested parties

2.1 Purpose and legal basis of processing

We process your personal data in accordance with the provisions of the GDPR and the German Federal Data Protection Act (BDSG), insofar as this is necessary for the establishment, implementation or performance of a contract or for the implementation of pre-contractual measures. Insofar as personal data is required for the initiation or implementation of a contractual relationship or in the context of the implementation of pre-contractual measures, processing is lawful pursuant to Art. 6 (1) para. 1 lit b) GDPR.

If you give us express consent to process personal data for specific purposes (e.g., disclosure to third parties, evaluation for marketing purposes, or addressing you by e-mail for advertising purposes), the lawfulness of this processing is based on your consent pursuant to Art. 6 (1) para. 1 lit. a) GDPR. Consent given can be revoked at any time with effect for the future (see section 9 of this data protection information).

If necessary and legally permissible, we process your data beyond the actual contractual purposes for the fulfillment of legal obligations pursuant to Art. 6 para. 1 lit. c GDPR. In addition, processing may be carried out to protect the legitimate interests of us or third parties and to defend and assert legal claims pursuant to Art. 6 para. 1 lit. f GDPR. If necessary, we will inform you separately, stating the legitimate interest, insofar as this is required by law.

2.2 Categories of personal data

We only process data that is related to the establishment of the contract or the pre-contractual measures. This can be general data about you or persons in your company (name, address, contact details, etc.) as well as any other data that you provide to us in the context of the establishment of the contract.

2.3 Sources of data

We process personal data that we receive from you in the course of contacting you or establishing a contractual relationship or in the course of pre-contractual measures.

2.4 Recipients of data

We disclose your personal data within our company exclusively to those areas and persons who need this data to fulfill contractual and legal obligations or to implement our legitimate interests.

We may transfer your personal data to companies affiliated with us, insofar as this is permissible within the framework of the purposes and legal bases set out in section 3 of this data protection information sheet.

Your personal data is processed on our behalf based on data processing agreements pursuant to Art. 28 GDPR. In these cases, we ensure that the processing of personal data is carried out in accordance with the provisions of the GDPR. The categories of recipients are providers of customer management systems and -software.

More information on providers used in the area of communication tools can be found in point 1.5 of this privacy policy.

Otherwise, data is only passed on to recipients outside the company if this is permitted or required by law, if the transfer is necessary for processing and thus fulfilling the contract or, at your request, for carrying out pre-contractual measures, if we have your consent or if we are authorized to provide information. Under these conditions, recipients of personal data may be, for example:

– External tax advisor

– Public bodies and institutions (e.g. public prosecutor’s office, police, supervisory authorities, tax office) if there is a legal or official obligation,

– Recipients to whom the disclosure is directly necessary for the purpose of establishing or fulfilling a contract, e.g. payment service providers, trading partners.

2.4.1 Transfer of data to Sony

As we are a Sony distributor, you can buch from us products, such as Sony sensors. In this case, we act as a distributor for Sony. In case of inquiries about the product or if we want to request more information for you, Sony needs your data such as name, first name and address in order to be able to provide information. In this case, we will pass on your personal data to Sony. The legal basis is Art. 6 para. 1 lit. b) GDPR, as the information is required in the context of your purchase contract and the services to be provided. This data will only be used by Sony for this purpose.

2.5 Transfer to a third country (outside the EU)

A transfer to a third country is not intended.

A transfer of personal data to countries outside the EEA (European Economic Area) or to an international organization will only take place if this is necessary for the processing and thus the fulfillment of the contract or, at your request, for the implementation of pre-contractual measures, the transfer is required by law or you have given us consent. In these cases, recipients may include, among others, payment providers.

2.6 Storage period

As far as necessary, we process and store your personal data for the duration of our business relationship or for the fulfillment of contractual purposes. This includes, among other things, the initiation and execution of a contract.

In addition, we are subject to various storage and documentation obligations, which result, among other things, from the German Commercial Code (HGB) and the German Fiscal Code (AO). The periods prescribed there for storage or documentation are two to ten years.

Finally, the storage period also depends on the statutory periods of limitation, which, for example, according to §§ 195 et seq. of the German Civil Code (BGB), are generally three years, but in certain cases can be up to thirty years.

.2.7 Your rights

For detailed information about your rights, please refer to Art. 5.3 of this privacy policy.

2.8 Necessity of providing personal data

The provision of personal data for the decision on the conclusion of a contract, the performance of a contract or for the implementation of pre-contractual measures is voluntary. However, we can only make a decision in the context of contractual measures if you provide such personal data that is required for the conclusion of the contract, the performance of the contract or pre-contractual measures.

2.9 Online shop

We also offer an online store on our website. We collect personal data if you provide it voluntarily in the context of your order or when opening a customer account. Mandatory fields are marked as such, because in these cases we need the data to process the contract or to open the customer account and you can not complete the order and / or the account opening without this information. Which data is collected can be seen in the respective input forms. We use the data you provide to process the contract and to handle your inquiries. The legal basis for this is Art. 6 para. 1 lit. b) and Art. 6 para. 1 lit. f) GDPR.

After complete processing of the contract or deletion of your customer account, your data will be restricted for further processing and deleted after expiry of the retention periods under tax and commercial law, unless you have expressly consented to further use of your data or we reserve the right to use data beyond this, which is permitted by law and about which we inform you in this statement. The deletion of your customer account is possible at any time and can be done either by a message to us or via a function provided for this purpose in the customer account.

To operate our online store, we use the service provider Ecwid Inc, 144 West D Street, Suite 103, Encinitas, CA 92024 USA on some pages.

If you have activated Java Script in your browser and have not installed a Java Script blocker, your browser will transmit personal data (your IP address and, in the context of the purchase transaction, the data listed above) to servers of Ecwid including servers in the USA. This data will later be transferred to us for the purchase transaction.

Since a transfer of personal data to the U.S. takes place, further appropriate safeguards are required to ensure the level of data protection under the GDPR. To guarantee this, we have concluded standard contractual clauses with the provider in accordance with Art. 46 Para. 2 lit. c GDPR. These oblige the recipient of the data in the U.S. to process the data according to the level of protection in Europe. In cases in which this cannot be guaranteed even by this contractual extension, we endeavour to obtain additional regulations and commitments from the recipient in the U.S.

For more information, please see the ecwid privacy policy. To prevent the execution of Java Script code from ecwid altogether, you can install a Java Script blocker. However, you will then not be able to use the online store.

In case of an order in our online store, we use your e-mail address to send you our newsletter. The legal basis for this is Art. 6 para. 1 sentence 1 lit f. GDPR in conjunction with. § 7 (3) UWG. If you do not want to receive the newsletter or no longer want to receive it, you can object to the sending at any time.

For the fulfillment of the contract, we pass on your data to companies commissioned with the delivery, insofar as this is necessary for the delivery of ordered goods.

2.9.1 Payment providers

Depending on which payment service provider you select in the ordering process, we pass on the payment data collected for this purpose to the credit institution commissioned with the payment and, if applicable, to payment service providers commissioned by us or to the selected payment service.

If you choose the corresponding payment option, your payment data will be transmitted directly – without detour via us – to the corresponding company. In return, we receive a payment confirmation from the respective company and the option to (partially) return the payment if there are adjustments – e.g. due to refunds.

The payment service provider has an independent right or obligation to process your personal data. The applicable data protection provisions can be found in the privacy policy of the payment service provider.

https://stripe.com/de/privacy 

https://www.paypal.com/de/webapps/mpp/ua/privacy-full

3.  Data protection information for applicants

3.1. Purpose and legal basis of processing

If you apply for a job via our careers page or by e-mail, we collect personal data. This particularly includes your contact data (such as first and last name, telephone number, and e-mail address) as well as other data you provide about your background (e.g., resume, qualifications, degrees, and work experience) and yourself (e.g., cover letter, personal interests). This may also include special categories of personal data (e.g. information about a severe disability).

As a rule, your personal data is collected directly from you as part of the application process and encrypted during electronic transmission. The primary legal basis for this is Article 6 (1) lit. b GDPR in conjunction with Section 26 (1) BDSG. In addition, consent pursuant to Art. 6  (1) lit. a GDPR in conjunction with § 26 Para. 2 BDSG can be used as a data protection permission provision. If the processing of your data is based on consent, you have the right to revoke your consent at any time with effect for the future.

3.2. Sources of data

We use a so-called “iFrame” of Personio GmbH (“Personio”), Rundfunkplatz 4, 80335 Munich, Germany for our career page. Here, content from Personio is displayed on our website (job ads). You can send us applications via the online application form created there. The data is then transferred to our applicant tool, which is provided to us by Personio.

 3.3. Recipients of data

Personio uses cookies to ensure functionality. For more information on cookies, please refer to the data protection information on our website (see point 1 of this privacy policy). We have concluded a Data Processing Agreement with Personio, in which we oblige Personio to protect our customers’ data and not to pass it on to third parties. You can find more information on Personio’s data protection here.

Within our company, only those persons and departments (e.g. Human Resources) that absolutely need your personal data to carry out the application process or to fulfill our legal obligations have access to it. If necessary, your applications will be forwarded to the relevant responsible persons for examination. Under no circumstances will your personal data be passed on to third parties without authorization.

3.4 Storage period

Your data relating to an application for a specific job posting will be stored and processed by us during the ongoing application process. After completion of the application process (e.g. in the form of an acceptance or rejection), the application process, including all personal data, will be deleted from the system no later than six months after completion of the application process. The data of selected applicants will be stored securely for up to 2 years, provided that the applicants have given their consent to this in accordance with Art. 6 (1) lit. a GDPR. You can revoke your consent at any time with effect for the future. An informal e-mail using the contact details of the responsible person listed above is sufficient for this purpose. If you will get accepted, your application documents will be transferred to the personnel file.

3.5. Your rights

For further information on data protection, in particular your rights under the GDPR, please also refer to point 5.3. of this privacy policy.

4 Social Media

4.1 Facebook Fan Page

4.1.1 Controller

In case you provide us with data, which is also or exclusively processed by Facebook, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland, is the controller for data processing, in accordance with the GDPR, in addition to or instead of us. For this purpose, we have concluded an agreement with Facebook pursuant to Art. 26 GDPR on joint controllership for data processing (Controller Addendum). This agreement specifies which data processing operations we or Facebook are responsible for when you visit our Facebook fan page. See the following link to consult this agreement: https://www.facebook.com/legal/terms/page_controller_addendum.

Since a transfer of personal data by Facebook Ltd. to the U.S. is made to Facebook Inc. among others, further appropriate safeguards are required to ensure the level of data protection under the GDPR. To ensure this, the provider uses standard contractual clauses in accordance with Art. 46 Para. 2 lit. c GDPR. These oblige the recipient of the data in the U.S. to process the data according to the level of protection in Europe.

If you, as a visitor to the site, wish to exercise your rights (access, rectification, erasure, restriction, data portability, complaint with a supervisory authority, objection or withdrawal), you can contact both, Facebook and us.

You can edit your advertising preferences in your account settings. Click on the following link and log in to your account to change your settings:

https://www.facebook.com/settings?tab=ads or http://www.youronlinechoices.com

For further details, please see Facebook’s privacy policy: https://www.facebook.com/about/privacy/

4.1.2 Data protection officer

You can use Facebook’s online form to contact Facebook’s data protection officer. To access it, please use of the following link: https://www.facebook.com/help/contact/540977946302970.

4.1.3 Data processing for statistical purposes using page insights

Facebook provides Page Insights Data for our Facebook fan page: https://www.facebook.com/business/a/page/page-insights. This aggregated data gives us an insight into how people interact with our page. Page Insights data may be based on personal data gathered from visits and interactions on, or with our page, and from connections with provided content. Please consider which personal data you share with us via Facebook. Your data may be processed for market research and promotional purposes, even if you are not logged into Facebook or do not have a Facebook account. User profiles can be created on the basis of user behaviour and the resulting interests of users. User profiles may be used for targeted advertisements within or outside the platform. Data recording is done using cookies, which are stored on your terminal device. In addition, user profiles may contain data, that is gathered from memberships on other platforms. Legal basis of the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in the optimised presentation of our proposition, the effective information and communication with customers and interested parties as well as in the targeted placement of advertisements. Please note that we have no influence on the data gathering and further processing by Facebook. As a result, we cannot provide any access about where, for how long and to which extent Facebook retains the data. Furthermore, we cannot make any statements about the extent to which Facebook complies with existing erasure deadlines, what evaluations and translations are made and to whom the data is transferred by Facebook. If you want to prevent your personal data being processed by Facebook, please contact us by other means.

4.2 Other social media providers

If your personal data is processed by one of the providers listed below, this provider is responsible for data processing within the meaning of the GDPR. For the assertion of your rights, please contact the respective provider. Only they have access to the data collected from you. However, if you need any assistance, please contact us any time.

We are present on social media platforms of the following providers:

  • Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07 Ireland
  • Instagram Inc., Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland
  • YouTube, Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
  • LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland
  • XING SE, Dammtorstr. 29-32, 20354 Hamburg, Germany

4.2.1 Data protection officers

Hinweise zur Kontaktaufnahme mit dem Datenschutzbeauftragten der übrigen Social Media-Anbieter finden Sie hier:

Information on how to contact the Data Protection Officer of the respective social media providers can be found here:

4.2.2 General information on social media platforms

Controller

The controller for data processing within the meaning of the GDPR is the company named at the beginning of this Privacy Policy, insofar as data transmitted by you via one of the social media platforms is processed by us.

Our data protection officer

If you have any concerns regarding data processing that is carried out by us as the responsible party, you can reach our Data Protection Officer at the contact details given at the beginning of this Privacy Policy.

4.2.3 General data processing on social media platforms

Data processing for market research and advertising

Organisations generally process data for market research and promotional purposes. Therefore, website providers use cookies, which load on to your browser and detect your return to the same URL. The recorded data is used to create user profiles. User profiles may be used for targeted advertisements within or outside the platform. In addition, user profiles may contain data, that is gathered from memberships on other platforms.

Data processing when contacting us through social media

We collect data when you contact us, for example via contact form or messenger services such as Facebook Messenger. The data collected depends on the details you provide and the contact details you specify. It will be stored for the purpose of processing the inquiry and in the event of follow-up questions. Under no circumstances we will pass on the data to third parties without your consent. The legal basis for the data processing is our legitimate interest in responding to your request pursuant to Art. 6 para. 1 lit. f GDPR and, if applicable, Art. 6 para. 1 lit. b GDPR if your request aimed at the conclusion of a contract. Unless there are compelling reasons, your data will be erased after final processing. We assume the processing is finalized, when the regarding circumstances are clarified.

Data processing for contract performance or entering into a contract

If your request via social media or other platforms is aimed at the conclusion of a contract, regarding the delivery of goods or the provision of services, we process your data in order to perform the contract and the requested services, or pre-contractual measures. In this case, the legal basis for the processing of your data is Art. 6 para. 1 lit. b GDPR. Your data will be erased if they are no longer necessary for the fulfilment of the contract or if it is certain, that pre-contractual measures will not lead to the conclusion of a contract corresponding to the purpose of establishing the contact. Please take into account, that it may be necessary to store personal data of our contractual partners in order to comply with contractual or legal obligations even after the conclusion of contract.

Data processing on the legal basis of consent

If the respective platform providers request you to give consent to the processing for a particular purpose, the legal basis for the processing is Art. 6 para. 1 lit. a, Art. 7 GDPR. You have the right to withdraw such consent with effect for the future at any time.

4.2.4 Data transfer and recipients

When visiting and using the above-mentioned platforms, personal data may be transferred to the U.S. or other third countries outside the EU, therefore further appropriate safeguards are required to ensure the level of data protection under the GDPR. Further information on whether and what suitable guarantees the providers can provide in this regard can be found in the list below.

We have no influence on the processing and handling of your personal data by the respective providers as well as we have no information on this matter. Please consider the privacy policy of the providers for further information:

https://www.linkedin.com/legal/privacy-policy and https://www.linkedin.com/help/linkedin/answer/62533?trk=microsites-frontend_legal_privacy-policy&lang=en

  • XING
    • Privacy policy: https://privacy.xing.com/en/privacy-policy
    • Opt-Out: https://nats.xing.com/optout.html?locale=en_US
    • According to the privacy policy, XING uses standard contractual clauses to ensure an adequate level of data protection in accordance with the provisions of the GDPR for data transfers to the U.S. or other third countries outside the EU: https://privacy.xing.com/en/privacy-policy/who-may-receive-information-about-you/third-countries

5 Further provisions

5.1 Data security

We take appropriate technical and organizational measures to ensure a level of protection appropriate to the risk in accordance with Article 32 of the GDPR, taking into account the state of the art, the cost of implementation and the nature, scope, circumstances and purposes of the processing, as well as the varying probability and severity of the risk to the rights and freedoms of natural persons. This website uses SSL encryption for security reasons and to protect the transmission of confidential content.

5.2 Storage period

The period for which the personal data will be stored is determined by the relevant statutory storage periods (e.g. from commercial law and tax law). The corresponding data is deleted routinely upon expiry of the respective period. If data is required for the fulfilment of a contract or contract initiation, or if we have a legitimate interest in further storage, the data will be deleted if they are no longer required for these purposes or if you make use of your right of withdrawal or objection.

5.3 Your rights

In the following, you will find information about your data subject rights, which the current data protection law grants you against the controller concerning the processing of personal data:

The right, pursuant to Art. 15 GDPR, to obtain information about your personal data processed by us. In particular, you may request information about the purposes of processing, the categories of personal data concerned, the categories of recipients to whom your data has been or will be disclosed, the envisaged period for which the data will be stored, the existence of the right to request from the controller rectification or erasure or personal data or restriction of processing of personal data concerning you or to object such processing, the existence of a right to lodge a complaint with a supervisory authority, the origin of your data, if these have not been collected by us, and the existence of automated decision-making including profiling and, if applicable, meaningful information about the logic involved, as well as the significance and the envisaged consequences.

The right to obtain without undue delay the rectification of inaccurate personal data concerning you. in accordance with Art. 16 GDPR.

The right to request the erasure of your personal data stored by us in accordance with Art. 17 GDPR, unless the processing is necessary to exercise the right of freedom of expression and information, to fulfil a legal obligation, for reasons of public interest or to assert, exercise or defend legal claims.

The right, pursuant to Art. 18 GDPR, to demand the restriction of the processing of your personal data if the accuracy of the data is contested by you, the processing is unlawful, but you oppose the erasure and we no longer need the data for the purposes of processing, but they are required by you for the establishment, exercise or defence of legal claims or you have filed an objection against the processing pursuant to Art. 21 GDPR.

The right, in accordance with Art. 20 GDPR, to receive the personal data concerning you, which you have provided to us in in a commonly used and machine-readable format and the right to transmit those data to another controller.

The right to withdraw your given consent pursuant to Art. 7 para. 3 GDPR with effect in the future at any time.

The right to lodge a complaint with a supervisory authority pursuant to Art. 77 GDPR, in particular in the Member State of your habitual residence, place of work.

The right to withdraw your given consent pursuant to Art. 7 para. 3 GDPR: You have the right to withdraw your given consent concerning the processing of your personal data with effect for the future at any time. In the event of withdrawal, we will delete the data concerned without delay, unless further processing can be based on a legal basis for processing without consent. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal

5.3.1 Right to object

If your personal data is processed by us based on legitimate interests pursuant to Art. 6 para. 1 lit. f GDPR, you have the right, pursuant to Art. 21 GDPR, to object at any time to the processing of your personal data on grounds relating to your particular situation. If the objection is directed against the processing of personal data for the purpose of direct marketing, you have a general right of objection without the requirement of stating a particular situation.

If you wish to exercise your right of withdrawal, objection or any of your other rights, simply send an e-mail to  legal@framos.com

5.4 Legal obligations to provide data

The provision of personal data for the decision on the conclusion of a contract, the fulfillment of the contract or for the implementation of pre-contractual measures is voluntary. However, we can only make the decision in the context of contractual measures if you provide such personal data that is required for the conclusion of the contract, the fulfillment of the contract or pre-contractual measures.

5.5 Automated decision making

Automated decision making or profiling according to Art. 22 GDPR does not take place.

5.6 Subject to change

We reserve the right to adapt or update this privacy policy, if necessary, in compliance with the applicable data protection regulations. In this way, we can adapt it to the current legal requirements and take account of changes to our services, e.g. the introduction of new services. The most current version applies to your visit.

Status of this privacy policy: 14.07.2021