DATA PROTECTION
Thank you for your interest in our company and our services. The protection of privacy and the protection of the personal rights of our customers, business partners and respondents are essential principles for us, the operators of these pages, EARSandEYES GmbH. In order to guarantee you the highest possible degree of transparency and security, our data protection statement below informs you about what data we collect and for what purpose, how we protect this data and what rights and protection options you have.
1. BASIC INFORMATION ON THE PROTECTION OF YOUR DATA AT EARSANDEYES
We strictly adhere to the legal requirements for the protection of personal data and, as a market research institute, are committed to the quality standards of the professional associations (BVM, ADM, ESOMAR).
We apply current technical and diverse organisational security measures to protect your data.
TYPE AND SCOPE OF DATA PROCESSING
As a matter of principle, we only process personal data of our users to the extent that this is necessary to provide a functional website as well as our content and services. Personal data is any data with which you can be personally identified.
When you visit our website, technical data is automatically collected by our IT systems and data ("cookies") may be stored on your computer to make it easier for you to use our services. You can prevent the collection of cookies by making settings in your web browser (for more information, see "Use of cookies" and 7. "Cookies and third-party functions used").
Other data is collected when you voluntarily provide it to us. Individual offers on this website, e.g. contact forms, newsletter ordering, require the provision of certain personal data in order to make the respective function available to you.
All data collections are explained to you separately in detail below.
We will never knowingly collect personal data from anyone under the age of 16 without the consent of a parent or guardian. We ask persons under the age of 16 not to submit any personal data to us without the consent of their parent or guardian.
USE AND DISCLOSURE OF DATA
Personal data will only be stored and processed for the purposes stated and will not be passed on to third parties without your express consent, unless we are obliged to do so by law or by court order.
We reserve the right to disclose your personal data to authorities entitled to receive such information, even without your consent, if this should be necessary to defend ourselves against attacks that constitute criminal offences or that are likely to impair or suspend the functionality of our website.
DELETION OF DATA
We only store your personal data for as long as is necessary. If the purpose of the information collected no longer applies or at your request, we will delete the personal data relating to you from us or restrict the processing at any time.
If legal retention periods (e.g. obligations under commercial or tax law) prevent deletion, the data will be blocked as required and not processed for other purposes. After expiry of the period, the data will be deleted, unless there is a need for further storage of the data for the conclusion or fulfilment of a contract.
2. RESPONSIBLE PARTIES AND DATA PROTECTION OFFICERS
If you have any questions, please do not hesitate to contact us.
The responsible party for the collection and processing of your personal data on this website is EARSandEYES GmbH, represented by Frank Lüttschwager, Haus am Fleet, Steinhöft 5-7, 20459 Hamburg, Tel.: +49 40 / 822 240-0, e-mail: info@earsandeyes.com.
The controller is the natural or legal person who alone or jointly with others determines the purposes and means of the processing of personal data.
EXTERNAL DATA PROTECTION OFFICER
We have appointed a statutory data protection officer for our company.
Thilo Noack
Shared IT Professional GmbH & Co. KG
Saebystr. 17a
24576 Bad Bramstedt
thilo.noack@sharedit-pro.de
3. YOUR RIGHTS
If personal data of yours is processed, you are a data subject within the meaning of the GDPR and you have the following rights against the data controller.
To exercise your rights or if you have any questions, you can contact the data controller at any time. Simply write an email to datenschutz@earsandeyes.com. Or use our other contact channels; you can find them directly here above under 2. and in the imprint.
Right to information (Art. 15 GDPR.):
Within the framework of the applicable legal provisions, you have the right to free information about your stored personal data, its origin and recipient and the purpose of data processing at any time.
Right to rectification (Art. 16 GDPR.):
You have the right to have inaccurate personal data corrected.
Right to erasure (Art. 17 GDPR.):
In particular, you have the right to have your data deleted after the legally prescribed retention periods have expired.
Right to restriction of processing (Art. 18 GDPR.):
You have the right to request the restriction of the processing of your personal data if the data processing should be unlawful, you dispute the accuracy of the data collected or you have lodged an objection to the processing. Likewise, you may request restriction of processing if the data is subject to an obligation to delete due to the purpose having been achieved, but you need it to assert legal claims.
Right of revocation (Art. 7 GDPR.):
If you give us consent, you can revoke it at any time. An informal communication by e-mail to us is sufficient for this purpose. The lawfulness of the data processing carried out until the revocation remains unaffected by the revocation.
Right of objection (Art. 21 GDPR.):
You have the right to object to the future processing of your personal data, insofar as the processing is based on Art. 6 (1) lit. e or f GDPR.. If you object, we will no longer process your personal data concerned unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
Right to data portability (Art. 20 GDPR.):
You have the right to have data that we process automatically on the basis of your consent or in performance of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done insofar as it is technically feasible.
Right of complaint (Art. 77 GDPR.):
You have the right to have data that we process automatically on the basis of your consent or in fulfilment of a contract handed over to you or to a third party in a common, machine-readable format. If you request the direct transfer of the data to another controller, this will only be done insofar as it is technically feasible.
Right of complaint (Art. 77 GDPR.):
In the event of breaches of data protection law, data subjects have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, place of work or the place of the alleged breach. A list of data protection supervisory authorities can be found at: https://www.bfdi.bund.de/DE/Service/Anschriften/anschriften_table.html.
Right to an effective judicial remedy
Without prejudice to any available administrative or non-judicial remedy, you have the right to an effective judicial remedy.
remedy, including the right to lodge a complaint with a supervisory authority pursuant to
Article 77 of the GDPR, you have the right to an effective judicial remedy if you consider that the
that your rights under this Regulation have been infringed as a result of processing that is not in compliance with this Regulation.
processing of your personal data not in compliance with this Regulation.
processing of your personal data has been infringed.
4. COLLECTION AND USE OF DATA
AUTOMATIC DATA COLLECTION IN SERVER LOG FILES
When calling up this website, the provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits. These are:
IP address
Date and time of the request
Time zone difference to Greenwich Mean Time (GMT)
Content of the request (specific page)
Access status/HTTP status code
Amount of data transferred in each case
Website from which the request came
Browser
Operating system and its interface
Language and version of the browser software
The storage in log files is done to ensure the functionality of the website. In addition, we may use this data in aggregated form for general statistical analysis and optimisation of our website. The data is not linked to other data sources and can therefore not be assigned to specific persons.
The basis for data processing is Art. 6 para. 1 lit. f GDPR.. We have a legitimate interest in the technically error-free presentation and optimisation of our website - for this purpose, the server log files must be recorded. After a technical evaluation, this data is deleted immediately.
CONTACT VIA E-MAIL, TELEPHONE, POST
You have the option of contacting us via our contact data, e.g. by e-mail or telephone. Unless otherwise agreed, we store and use the data you send us in these ways (e.g. name, e-mail address) exclusively for processing your enquiry and in the event of follow-up questions. We do not pass on this data without your consent.
The data remains with us until you request us to delete it, revoke your consent to store it or the purpose for storing the data no longer applies. Mandatory legal provisions - in particular retention periods - remain unaffected. Contractual obligations also remain unaffected, insofar as the data is required for the fulfilment of a contract or for the implementation of pre-contractual measures.
The processing of data transmitted when you contact us is based on Art. 6 (1) lit. b GDPR., insofar as your enquiry is related to the fulfilment of a contract or is necessary for the implementation of pre-contractual measures. In all other cases, the processing is based on your consent (Art. 6 para. 1 lit. a DSGVO). Consent can be revoked at any time with effect for the future.
APPLICATIONS
If you send us an application, we will process your associated personal data (e.g. contact details, application documents, notes taken during interviews, etc.) insofar as this is necessary to decide on the establishment of an employment relationship.
The legal basis for this is § 26 BDSG-neu under German law (initiation of an employment relationship), Art. 6 para. 1 lit. b GDPR (general contract initiation) and - if you have given your consent - Art. 6 para. 1 lit. a DSGVO. The consent can be revoked at any time. Your personal data will only be passed on within our company to persons involved in processing your application.
If the application is successful, the data you submitted will be stored in our data processing systems on the basis of Section 26 BDSG-neu and Art. 6 (1) lit. b GDPR for the purpose of implementing the employment relationship.
If we are unable to make you a job offer, if you reject a job offer or withdraw your application, we reserve the right to store the data you have submitted with us on the basis of our legitimate interests (Art. 6 para. 1 lit. f GDPR) for up to 6 months from the end of the application process (rejection or withdrawal of the application). The data will then be deleted and the physical application documents destroyed. This storage serves in particular as evidence in the event of a legal dispute. If it is evident that the data will be required after the 6-month period has expired (e.g. due to an impending or pending legal dispute), the data will only be deleted when the purpose for further retention no longer applies.
Longer storage may also take place if you have given your consent (Art. 6 Para. 1 lit. a GDPR. or if legal storage obligations prevent deletion.
MARKETING/ NEWSLETTER DATA
On our website, you have the option of requesting documents (e.g. study results, white papers or guides) as downloads. A prerequisite for receiving these materials is usually a subscription to our e-mail newsletter. Our free newsletter informs you at least once a month about our activities, current studies and other topics related to market research. You also have the option of subscribing to the newsletter via the corresponding forms without obtaining a download.
Registration for the newsletter only takes place after successful confirmation of the e-mail address by the recipient. For this purpose, the recipient receives a so-called double opt-in mailing with a confirmation link immediately after sending the newsletter registration form. Only by calling up the confirmation link is registration to the newsletter effected. If you do not confirm the registration within 24 hours, your information will be blocked and automatically deleted after one month.
At the same time, we save your current IP address as well as the date and time of registration in case of misuse of data or access. No further data is collected or only on a voluntary basis. We use this data exclusively for the stated purpose, namely sending the newsletter and, if applicable, the requested download document, and do not pass it on to third parties without your consent.
The collected data will be automatically deleted after 24 months if you no longer respond to the newsletter, e.g. open (inactivity). If you no longer wish to receive the newsletter, you can cancel the receipt of the newsletter at any time and unsubscribe accordingly. To do so, click on the link contained in each newsletter, you will then be guided through the unsubscribe process, or send us your revocation by e-mail.
The legal basis for the processing of your data is Art. 6 para. 1 lit. a) GDPR..
The use of the dispatch service provider CleverReach, the performance of statistical surveys and analyses as well as the logging of the registration process are based on Art. 6 para. 1 lit. f DSGVO. Our legitimate interests are directed towards the use of a user-friendly and secure newsletter and email system that serves our business interests and meets the expectations of the users. Further information about CleverReach can be found below.
If you purchase services on our website, your email address may be used by us to send you a newsletter. In such a case, only direct advertising for our own similar services will be sent via the newsletter. The legal basis for sending the newsletter as a result of the sale of goods or services is Section 7 (3) UWG. You can object to the receipt of direct advertising at any time by sending an informal e-mail to us.
USE OF THE DISPATCH SERVICE PROVIDER CLEVERREACH
For the ordering and sending of newsletters and download offers, we use CleverReach, a service with which the newsletter dispatch can be organised and analysed. The provider is CleverReach GmbH & Co. KG, Mühlenstr. 43, 26180 Rastede.
The data you provide for the purpose of downloading and receiving the newsletter (e.g. e-mail address) is stored on CleverReach's servers in Germany or Ireland.
Your data will be stored by us until you unsubscribe from the newsletter and will be deleted from our servers as well as from the servers of CleverReach after you unsubscribe from the newsletter. For more details, please refer to the data protection provisions of CleverReach at https://www.cleverreach.com/de-de/datenschutz/.
Tracking / measurement of opening and click rates: Our newsletters contain so-called web beacons or "tracking pixels", which are retrieved from our server or from the server of our dispatch service provider when the newsletter is opened. In the course of this retrieval, technical information, such as information on the browser and your system, as well as your IP address and the time of the retrieval, are initially collected.
This information is used for the technical improvement of our newsletter on the basis of the technical data or the target groups and their reading behaviour on the basis of their retrieval locations (which can be determined with the help of the IP address) or the access times.
Furthermore, the use of web beacons enables us to collect and analyse certain data relating to your use of our newsletter service. These are:
Newsletter emails opened by you
Time of opening
e-mail client used
links clicked in newsletter e-mails
any actions taken on our website after the click (e.g. downloads).
This information is assigned to the individual newsletter recipients and stored in their profiles until they are deleted. The analyses help us to recognise the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users. The processing of this information is largely automated and aggregated across all newsletter recipients together; it is not passed on to third parties.
Unfortunately, a separate revocation of the performance measurement is not possible; in this case, the entire newsletter subscription must be cancelled, or it must be revoked. In this case, the stored profile information will be deleted.
There are cases in which we forward newsletter recipients to pages on the CleverReach website, e.g. when the newsletter is called up in the browser. In this context, we would like to point out that web analysis tools may be used on CleverReach websites, over whose data collection we have no influence.
Unsubscribe from the newsletter (revocation of consent): If you wish to completely prevent data analysis by CleverReach, you must unsubscribe from the email newsletter. For this purpose, we provide a corresponding link in every newsletter message. Alternatively, you can revoke your consent to receive the newsletter or to the collection of data for the optimisation of the newsletter at any time by sending us an informal e-mail free of charge for the future. You can also exercise your right to object in these ways if the processing takes place on the basis of our legitimate interests.
Order processing: We have concluded a contract with CleverReach for the order processing of personal data and fully implement the strict requirements of the German data protection authorities when using CleverReach.
TELECOMMUNICATIONS TELEMEDIA DATA PROTECTION ACT (TTDSG).
The legal basis for the storage and retrieval of information in the end user's terminal equipment is consent, according to § 25 para. 1 p. 1 TTDSG. This consent is requested when the website is called up.
According to Section 25 (2) no. 2 TTDSG, consent is not required if the storage of information in the end user's terminal equipment or access to information already stored in the end user's terminal equipment is absolutely necessary in order for the provider of a telemedia service to provide a telemedia service expressly requested by the user. You can see from the cookie settings which cookies are to be classified as absolutely necessary (often also referred to as "technically necessary cookies") and therefore fall under the exemption of Section 25 (2) TTDSG and thus do not require consent.
Please note that the legal basis for the downstream processing of personal data then results from the GDPR. You will find the relevant legal basis for the processing of personal data on this website in the further course of this data protection notice.
USE OF COOKIES
In addition to the previously mentioned data, cookies or similar technologies such as pixels (hereinafter generally referred to as "cookies") are used on your computer when you use and visit our website. Cookies are either small databases that are stored by your browser on your terminal device for the storage of certain information, or image files such as pixels. The next time you call up our website with the same terminal device, the information stored in cookies is subsequently sent back either to our website ("first party cookie") or to another website to which the cookie belongs ("third party cookie"). Through the stored and returned information, the respective website recognises that you have already called up and visited it with the browser of your end device. We use this information to optimally design and display the website according to your preferences. Only the cookie itself is identified on your end device. Any further storage of personal data will only take place with your express consent or if this is absolutely necessary in order to be able to use the service offered and accessed by you accordingly.
This website uses the following types of cookies, the scope and functionality of which are explained below:
- Absolutely necessary cookies (type a)
- Functional and performance cookies (type b)
- Cookies requiring consent (type c)
ABSOLUTELY NECESSARY COOKIES (TYPE A)
Essential cookies provide functionality without which you cannot use our websites as intended. These cookies are used exclusively by us and are therefore first party cookies. This means that all information stored in the cookies is returned to our website. Strictly necessary cookies are used, for example, to ensure that you, as a registered user, always remain logged in when accessing different sub-pages of our website, so that you do not have to re-enter your login details each time you access a new page. The use of strictly necessary cookies on our website is possible without your consent. For this reason, cookies that are absolutely necessary cannot be individually deactivated or activated. However, you have the option to generally deactivate cookies in your browser at any time (see below).
FUNCTIONAL AND PERFORMANCE COOKIES (TYPE B)
Functional cookies allow our website to remember information you have already provided (such as registered name or language selection) and provide you with improved and more personalised features based on that information. These cookies only collect and store anonymised information so they cannot track your movements on other websites. Performance cookies collect information about how our websites are used in order to improve their attractiveness, content and functionality. These cookies help us to determine, for example, whether and which subpages of our website are visited and which content users are particularly interested in. In particular, we record the number of times a page is accessed, the number of sub-pages accessed, the time spent on our website, the order of the pages visited, which search terms led you to us, the country, region and, if applicable, the city from which access is made, as well as the proportion of mobile devices accessing our websites. Furthermore, we record movements, "clicks" and scrolling with the computer mouse in order to understand which areas of our website are of particular interest to users. As a result, we can tailor the content of our website more specifically to the needs of our users and optimise our offering. The IP address of your computer transmitted for technical reasons is automatically anonymised and does not allow us to draw any conclusions about the individual user.
You can object to the use of functional and performance cookies at any time by adjusting your cookie settings accordingly.
Legal basis: Art. 6 para. 1 lit. f) GDPR.
COOKIES REQUIRING CONSENT (TYPE C)
Cookies that are neither absolutely necessary (type a) nor functional or performance cookies (type b) are only used after your consent. We reserve the right to also use information obtained by means of cookies from an anonymised analysis of the usage behaviour of visitors to our websites in order to display specific advertising for certain of our products to you on our own websites. We believe that this benefits you as a user because we display advertising or content that we believe, based on your browsing behaviour, matches your interests, so you are less likely to be shown randomly scattered advertising or specific content that may be of less interest to you. Marketing cookies come from external advertising companies (third party cookies) and are used to collect information about the websites visited by the user in order to create targeted advertising for the user.
Legal basis: Art. 6 para. 1 lit. a) GDPR.
OPT-OUT FOR MARKETING COOKIES
You can also manage cookies used for online advertising via tools developed in many countries as part of self-regulatory programmes, such as the US-based https://www.aboutads.info/choices/ or the EU-based http://www.youronlinechoices.com/uk/your-ad-choices.
Legal basis: Art. 6 para. 1 lit. a) GDPR.
MANAGEMENT AND DELETION OF ALL COOKIES
In addition, you can set your Internet browser in such a way that the storage of cookies on your end device is generally prevented or you are asked each time whether you agree to the setting of cookies. Once cookies have been set, you can also delete them at any time. You can find out how all this works in detail in the help function of your browser. We use the following of the cookies described here for the following purposes: see 7.
5. ORGANISATIONAL AND TECHNICAL SECURITY PRECAUTIONS
We treat your personal data strictly confidentially and in accordance with the statutory data protection regulations and this data protection declaration. All our employees have been sworn to confidentiality. Access authorisations to internal applications are restricted to the immediate needs of the individual functional areas; access requires individual authentication.
Our security measures are state of the art and meet high, recognised industry standards. Our servers are located in Germany and are subject to strict German standards for data protection and security.
To ensure that the data you wish to transmit to us (e.g. via the contact form) cannot be read by third parties, we have activated TLS encryption on our site. You can recognise an encrypted connection by the "https://" and the lock symbol in your browser line. However, we would like to point out that complete protection against access by third parties is not possible with internet-based data transmission.
EXTERNAL HOSTING
This website is hosted by an external service provider (hoster). Personal data collected on this website is stored on the hoster's servers. This may include IP addresses, contact requests, meta and communication data, contract data, contact data, names, website accesses and other data generated via a website.
To ensure data protection-compliant processing, we have concluded an order processing contract with our hoster. Our hoster will only process your data to the extent that this is necessary for the fulfilment of its service obligations and will follow our instructions with regard to this data.
6. LINKS TO OTHER WEBSITES
Our website contains links to other websites which are not covered by this privacy statement. The linked external sites each have their own privacy policies and procedures over which we have no control.
SOCIAL MEDIA
Our website links to services of the social networks LinkedIn, Twitter, Xing. We have not integrated any social plugins from the service providers, so no data is transmitted to the social media providers when you visit our website. Only when you click on one of the links or linked graphics will data be transmitted to the respective service provider and stored by them. If you do not want social media providers with whom you are registered to collect data about you and link it to your membership data, please log out of your social media membership account before clicking on the social media link. For further information on the collection, processing, use and your rights and protection options, please refer to the data protection declarations of the individual social media providers under 9. "Online presences in social media".
7. COOKIES AND FUNCTIONS USED BY THIRD PARTY PROVIDERS
WEB ANALYSIS BY GOOGLE ANALYTICS
This website uses functions of the web analysis service Google Analytics. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.
Google Analytics enables the website operator to analyse the behaviour of website visitors. In doing so, the website operator receives various usage data, such as page views, length of stay, operating systems used and the origin of the user. This data may be summarised by Google in a profile that is assigned to the respective user or their end device.
Google Analytics uses technologies that enable the recognition of the user for the purpose of analysing user behaviour (e.g. cookies or device fingerprinting). The information collected by Google about the use of this website is usually transferred anonymously to a Google server in the USA and stored there.
Google Analytics uses technologies that enable the recognition of the user for the purpose of analysing user behaviour (e.g. cookies or device fingerprinting). The information collected by Google about the use of this website is usually transferred anonymously to a Google server in the USA and stored there.
For the purpose of providing these functions, Google Analytics stores three cookies on the user's terminal device:
_ga (duration: 2 years): This cookie is used to distinguish individual website users.
_gid (duration: 24 hours): This cookie is also used to distinguish individual website users.
_gat (runtime: 1 minute): This cookie is used to throttle the request rate.
IP ANONYMISATION
We have activated the IP anonymisation function on this website. This means that your IP address will be shortened by Google within member states of the European Union or in other states party to the Agreement on the European Economic Area before being transmitted to the USA. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator. According to Google, the IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.
PREVENT/OBJECT TO DATA COLLECTION BY GOOGLE ANALYTICS
In principle, you can prevent the storage of cookies by setting your browser software accordingly.
You can prevent the collection and processing of your data by Google by downloading and installing the browser plugin available at the following link: http://tools.google.com/dlpage/gaoptout?hl=de
You can prevent the collection by Google Analytics by flipping the following switch. An opt-out cookie will be set, which will prevent the collection of your data on future visits to this website.
More information on how Google Analytics handles user data can be found at https://support.google.com/analytics/answer/6004245?hl=de and at https://policies.google.com/privacy?hl=de.
Data stored by Google at user and event level that is linked to cookies, user IDs (e.g. UserID) or advertising IDs (e.g. DoubleClick cookies, Android advertising ID) will be anonymised or deleted after 14 months. Details can be found under the following link: https://support.google.com/analytics/answer/7667196?hl=de
Google Analytics cookies are stored on the basis of your consent in accordance with Art. 6 Para. 1 lit. a GDPR. You can revoke your consent for the future at any time. Here under "Prevent web analysis by Google Analytics" you can make the appropriate settings, i.e. deactivate the tracking cookies.
COMMISSIONED PROCESSING
We have concluded an order processing contract with Google and, as appropriate safeguards, EU standard contractual clauses (https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_en) and fully implement the strict requirements of the German data protection authorities when using Google Analytics.
GOOGLE ADS
We use the Google Ads Conversion service to draw attention to our attractive offers on external websites with the help of advertising media (so-called Google Ads). We can determine how successful the individual advertising measures are in relation to the data of the advertising campaigns. In this way, we pursue the interest of showing you advertising that is of interest to you, making our website more interesting for you and achieving a fair calculation of advertising costs.
These advertisements are delivered by Google via so-called "ad servers". For this purpose, we use ad server cookies, which can be used to measure certain parameters for measuring success, such as the display of the ads or clicks by users. If you access our website via a Google ad, Google Ads will store a cookie on your end device. These cookies usually lose their validity after 30 days and are not intended to identify you personally. The unique cookie ID, number of ad impressions per placement (frequency), last impression (relevant for post-view conversions) and opt-out information (marking that the user no longer wishes to be addressed) are usually stored as analysis values for this cookie.
These cookies enable Google to recognise your internet browser. If a user visits certain pages of an Ads customer's website and the cookie stored on their computer has not yet expired, Google and the customer will be able to recognise that the user clicked on the ad and was redirected to that page. A different cookie is assigned to each Ads customer. Cookies can therefore not be tracked via the websites of Ads customers. We ourselves do not collect or process any personal data in the aforementioned advertising measures. We only receive statistical evaluations from Google. These evaluations enable us to recognise which of the advertising measures used are particularly effective. We do not receive any further data from the use of the advertising tools; in particular, we cannot identify users on the basis of this information.
Due to the marketing tools used, your browser automatically establishes a direct connection with the Google server. We have no influence on the scope and further use of the data collected by Google through the use of this tool and therefore inform you according to our state of knowledge: Through the integration of Ads Conversion, Google receives the information that you have called up the corresponding part of our website or clicked on an advertisement from us. If you are registered with a Google service, Google can assign the visit to your account. Even if you are not registered with Google or have not logged in, it is possible that the provider will obtain and store your IP address.
Information of the third party provider: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001.
Legal basis: Art. 6 para. 1 lit. a) GDPR.
GOOGLE TAG MANAGER
Google Tag Manager allows marketers to manage website tags through one interface. The Tag Manager only provides for the triggering of tags. For these respective third-party providers, corresponding explanations can be found in this privacy notice. However, the Google Tag Manager does not use this data. If you have set or otherwise made a deactivation of cookies, this will be observed for all tracking tags that were used with the Google Tag Manager, so the tool does not change your cookie settings.
The legal basis is Art. 6 para.1 lit. a) GDPR.
VIDEO OFFERS FROM YOUTUBE
We have integrated videos from the provider YouTube, Google Ireland Limited Gordon House, Barrow Street Dublin 4. Ireland, into our online offer, which are stored on http://www.YouTube.com and can be played directly from our website. These are all integrated in "extended data protection mode", i.e. no data about you as a user is transmitted to YouTube if you do not play the videos. Only when you play the videos will the data mentioned in the next paragraph be transferred. We have no influence on this data transmission. The purpose of the processing is marketing background.
By visiting the website, YouTube receives the information that you have called up the corresponding sub-page of our website. This occurs regardless of whether YouTube provides a user account via which you are logged in or whether no user account exists. If you are logged in to Google, your data will be directly assigned to your account. If you do not want your data to be associated with your YouTube profile, you must log out before activating the button. YouTube stores your data as usage profiles and uses them for the purposes of advertising, market research and/or designing its website in line with requirements. Such an evaluation is carried out in particular (even for users who are not logged in) to provide needs-based advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, and you must contact YouTube to exercise this right.
For more information on the purpose and scope of data collection and its processing by YouTube, please refer to YouTube's privacy policy. There you will also find further information on your rights and setting options to protect your privacy: https://policies.google.com/privacy.
In order to establish an adequate level of security, your consent pursuant to Art. 49 (1) a) GDPR.may serve as the legal basis for the transfer to third countries.
In order to protect your rights and personal data, we have integrated Youtube with a so-called two-click solution, which only transmits data to Google after you have explicitly activated the video function.
Furthermore, Google offers a number of options to object to the collection of personal data by Google: https://policies.google.com/privacy#infochoices.
The legal basis for the processing of your data is Art. 6 para. 1 lit. a) GDPR.
8. DATA PROTECTION INFORMATION FOR ONLINE VIDEO TOOLS, VIDEO CONFERENCES AND WEBINARS
We would like to inform you below about the processing of personal data in connection with the use of "Zoom, Teams, GotoMeeting, Join Me and Skype".
Purpose of processing: we use the above tools to conduct surveys, group discussions, online meetings, video conferences and/or interviews (hereinafter: "online meetings").
EARSandEYES GmbH continues to be the data controller for data processing directly related to the conduct of "online meetings".
Where we use online video tools, we have concluded order processing contracts with the providers and - where the providers are located outside the EU or the EEA (European Economic Area) - standard EU contracts, including additional measures to ensure compliance with the level of data protection in the third country after reviewing the legal situation there.
Note: If you access the website of the providers to set up a customer account or access via user ID of the video tools, the respective provider is responsible for the data processing of the provision. EARSandEYES is responsible for the processing of the data processed by the "OnlineMeetings". If you have any questions, please contact our data protection officer (for contact details, see 2. Responsible parties and data protection officers).
Links to the providers:
https://privacy.microsoft.com/de-de/privacystatement (Microsoft)
https://zoom.us/de-de/privacy.html (Zoom)
https://www.logmein.com/de/legal/privacy (GoTo Meeting)
https://www.logmein.com/de/legal/privacy (JoinMe)
WHAT DATA IS PROCESSED?
Various types of data are processed during use. The scope of the data also depends on the data you provide before or during participation in an "online meeting".
The following personal data are processed:
User details: first name, last name, telephone (optional), e-mail address, password (if "single sign-on" is not used), profile picture (optional), department (optional).
Meeting metadata: Topic, description (optional), participant IP addresses, device/hardware information.
For recordings (optional): MP4 file of all video, audio and presentation recordings, M4A file of all audio recordings, text file of online meeting chat.
For dial-in with the telephone: information on the incoming and outgoing call number, country name, start and end time. If necessary, further connection data such as the IP address of the device can be stored.
Text, audio and video data: You may have the opportunity to use the chat, question or survey functions in an "online meeting". In this respect, the text entries you make are processed in order to display them in the "online meeting" and, if necessary, to record them. In order to enable the display of video and the playback of audio, the data from the microphone of your terminal device and from any video camera of the terminal device are processed accordingly during the meeting. You can switch off or mute the camera or microphone yourself at any time via the applications.
In order to participate in an "online meeting" or to enter the "meeting room", you must at least enter your name.
SCOPE OF PROCESSING
We use the above video tools to conduct "online meetings". If we want to record "online meetings", we will inform you transparently in advance and - if necessary - ask for your consent. The fact of the recording will also be displayed to you in the respective app.
If it is necessary for the purpose of recording the results of an "online meeting", we will record the chat contents. However, this will not usually be the case.
If you are registered as a user with the respective tools, reports on "online meetings" (meeting metadata, data on telephone dial-in, questions and answers in webinars, survey function in webinars) may be stored by the provider for up to one month.
Automated decision-making within the meaning of Art. 22 GDPR. is not used.
LEGAL BASIS FOR DATA PROCESSING
Furthermore, the legal basis for data processing when conducting "online meetings" is Art. 6 para. 1 lit. b) GDPR. insofar as the "meetings" are conducted within the framework of contractual relationships.
Should no contractual relationship exist, the legal basis is Art. 6 para. 1 lit. a) GDPR.. Your consent.
RECIPIENTS / DISCLOSURE OF DATA
Personal data processed in connection with participation in "online meetings" will not be passed on to third parties as a matter of principle, unless they are specifically intended to be passed on. Please note that the content of "online meetings", as well as personal meetings, is often used to communicate information with customers, interested parties or third parties and is therefore intended to be passed on.
Other recipients: The provider of the video tools necessarily receives knowledge of the above-mentioned data, insofar as this is provided for in the context of our order processing contract with the service provider.
10. ONLINE PRESENCES IN SOCIAL MEDIA
We maintain publicly accessible profiles on social networks. The individual social networks used by us can be found below.
Social networks such as Facebook, Twitter, LinkedIn etc. can generally comprehensively analyse your user behaviour when you visit their website or a website with integrated social media content (e.g. like buttons or advertising banners). By visiting our social media presences, numerous data protection-relevant processing operations are triggered. In detail:
If you are logged into your social media account and visit our social media presence, the operator of the social media portal can assign this visit to your user account. However, your personal data may also be collected under certain circumstances if you are not logged in or do not have an account with the respective social media portal. In this case, this data collection takes place, for example, via cookies that are stored on your end device or by recording your IP address.
With the help of the data collected in this way, the operators of the social media portals can create user profiles in which your preferences and interests are stored. In this way, you can be shown interest-based advertising inside and outside the respective social media presence. Provided you have an account with the respective social network, the interest-based advertising may be displayed on all devices on which you are or were logged in.
Please also note that we are not able to track all processing procedures on the social media portals. Depending on the provider, further processing procedures may therefore be carried out by the operators of the social media portals. For details, please refer to the terms of use and data protection provisions of the respective social media portals.
Our social media presences are intended to ensure the most comprehensive possible presence on the Internet. This is a legitimate interest within the meaning of Art. 6 (1) lit. f GDPR. The analysis processes initiated by the social networks are based, where applicable, on deviating legal bases to be indicated by the operators of the social networks (e.g. consent within the meaning of Art. 6 para. 1 lit. a GDPR.).
STORAGE PERIOD
The data collected directly by us via the social media presence is deleted from our systems as soon as the purpose for storing it no longer applies, you request us to delete it, revoke your consent to store it or the purpose for storing the data no longer applies. Stored cookies remain on your end device until you delete them. Mandatory legal provisions - in particular retention periods - remain unaffected.
We have no influence on the storage period of your data, which is stored by the operators of the social networks for their own purposes. For details, please contact the operators of the social networks directly (e.g. in their privacy policy, see below).
SOCIAL NETWORKS IN DETAIL
We use the short message service Twitter. The provider is Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland.
You can independently adjust your Twitter data protection settings in your user account. To do so, click on the following link and log in:
https://twitter.com/personalization
For details, please refer to Twitter's privacy policy:
https://twitter.com/de/privacy
We have a profile on XING. The provider is XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany. For details on how they handle your personal data, please refer to XING's privacy policy:
https://privacy.xing.com/de/datenschutzerklaerung
We have a profile on LinkedIn. The provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland.
LinkedIn uses advertising cookies. If you would like to disable LinkedIn advertising cookies, please use the following link:
https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
For details on how they handle your personal data, please refer to LinkedIn's privacy policy:
https://www.linkedin.com/legal/privacy-policy
We have entered into a shared responsibility agreement with LinkedIn. You can view this here: https://legal.linkedin.com/pages-joint-controller-addendum. In it, LinkedIn has taken over the processing of requests based on data subject rights. If data subject rights are asserted against us, we will forward them to LinkedIn in accordance with the agreement.
YOUTUBE
We have a profile on YouTube. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland.
For details on how they handle your personal data, please refer to YouTube's privacy policy: https://policies.google.com/privacy?hl=de.
We have a profile on Facebook. The provider of this service is Facebook Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. According to Facebook, the data collected is also transferred to the USA and other third countries.
We have entered into a data sharing responsibility agreement (Controller Addendum) with Facebook. This agreement specifies the data processing operations for which we or Facebook are responsible when you visit our Facebook fan page. You can view this agreement under the following link: https://www.facebook.com/legal/terms/page_controller_addendum.
You can adjust your advertising settings yourself in your user account. To do so, click on the following link and log in: https://www.facebook.com/settings?tab=ads. For further details, please refer to Facebook's privacy policy: https://www.facebook.com/about/privacy/.