Privacy Policy

The protection of your data is very important to us! Therefore we follow the legal regulations for data protection (GDPR) and do everything possible to protect your data. The person responsible within the meaning of the Basic Data Protection Regulation and other national data protection laws of the member states of the European Union (EU) and other data protection regulations is the:

RAIDBOXES

Friedrich-Ebert-Straße 7

48153 Münster

The internal data protection officer of the company is:

Mr Jan Hornung

Email: datenschutz@raidboxes.io

Phone: 0251 1498 2005

I. Introduction

The protection of your data is very important to us! Therefore we follow the legal regulations for data protection and do everything possible to protect your data.

This data protection declaration is intended to give you as a customer or interested party a detailed overview of how and to what extent your data is collected, stored, processed, passed on and transmitted by us when you sites visit us or use our services. In addition, we want you to get an overview of the data protection measures we have in place and the options available to you when you site visit us and use our services.

In order to ensure the protection of your data in the future as well, in particular in accordance with new legal requirements and technical developments, it is essential that this data protection declaration be adapted from time to time. We therefore recommend that you read our information and notes on data processing at regular intervals.

We have tried to distance ourselves as much as possible from legal phrases in the preparation of this privacy statement to ensure that non-lawyers understand everything. If references to the legal text appear in some places, this is solely due to completeness. If sections are not understandable, please let us know so that we can revise the relevant section.

However, it has proven to be very difficult to draft a privacy statement that is on the one hand site transparent, comprehensible and complete and on the other hand site does not overwhelm the reader because of its length. We have therefore decided to give you an overview in a general part first, which you can deepen in the further part of the privacy policy. Please take a moment to read this privacy policy at your leisure. Should you have any further questions regarding data protection, please do not hesitate to contact our data protection officer MrJan Hornung.

1. what data is at issue?

If we talk about data processing, we always mean your personal data. In the art. 4 no. 1, these GDPR are defined as information relating to an identified or identifiable person. This means all data that is directly or indirectly related to you, e.g. first name, last name, addresses, e-mail addresses, user behaviour, etc. Information collected in connection with online sites or services that we do not own or control is not covered by this privacy statement. Websites or services of other RAIDBOXES customers are also excluded.

2. why do we process personal data?

For one thing, there's no getting around it: In order to conclude a contract with us it is absolutely necessary to know your master data. On the other hand, we want to provide you as a customer with the best possible user experience and are therefore always striving to optimize our services. We process personal data only in compliance with the statutory provisions. This means that the data will only be processed if a legal permission is available. In particular, if the data processing is necessary for the provision of our contractual services or for the use or online services or is required by law. In addition, we process data if we have your consent or if we have a legitimate interest in processing it (e.g. interest in the analysis, optimization, economic operation, security of our online offer, especially in measuring the range, creation of profiles for advertising and marketing purposes as well as the collection of access data and the use of the services of third parties. In the second section, "In depth: cookies and other technologies", we give you a comprehensive overview of the use and application of these.

3 When and to what extent do we process personal data?

In the following you will find an overview of all processes in which your personal data are processed. You can find a more detailed description here.

3.1 For the provision of contractual services/ registration

We process inventory data and contract data in order to be able to fulfil our contractual obligations and services. (Article 6 lit. 1 b GDPR)

3.2 Making contact

If you contact us by e-mail, the information will be processed to the extent necessary to answer your questions. The contact via our live chat is made via the services of Intercom. You can find further information on this under the point "In depth: Cookies and other technologies".

3.3 Visiting our website

If you use our website, services or messaging features, we or our authorized service providers may use cookies or similar technologies. The information collected in this way helps us to better adapt our services to the needs of our customers, to make them better and faster and, above all, even more secure. They also serve advertising purposes. You can find further information here.

4. the legal basis for the processing of personal data

Where we obtain the consent of the data subject for the processing of personal data, Article 6(1)(a) of the Basic Data Protection Regulation (GDPR) serves as the legal basis. For the processing of personal data necessary for the performance of a contract to which the data subject is party, Article 6 lit. 1 b GDPR serves as the legal basis. This also applies to processing operations necessary for the implementation of pre-contractual measures. Insofar as the processing of personal data is necessary to fulfil a legal obligation to which our company is subject, Art. 6 Par. 1 lit. c GDPR serves as the legal basis. In cases where vital interests of the data subject or another natural person require the processing of personal data, Article 6 lit. 1 f GDPR serves as the legal basis. If the processing is necessary to protect a legitimate interest of our company or of a third party and if the interests, fundamental rights and freedoms of the data subject do not outweigh the former interest, Article 6 lit. 1 f GDPR serves as the legal basis for the processing.

5. data erasure and storage duration

The data stored with us will be deleted as soon as they are no longer required for their intended purpose and the deletion does not conflict with any legal storage obligations. Unless user data is deleted because it is required for other and legally permissible purposes, its processing will be restricted. This means that the data is blocked and not processed for other purposes. This applies, for example, to user data that must be stored for reasons of commercial or tax law. According to legal requirements, the storage is for 6 years according to § 257 para. 1 HGB (commercial books, inventories, opening balance sheets, annual financial statements, commercial letters, accounting vouchers, etc.) and for 10 years according to § 147 para. 1 AO (books, records, management reports, accounting vouchers, commercial and business letters, documents relevant for taxation, etc.).

6. can minors use our services?

In short: No. Our website and services may not be used by persons who are not yet of legal age. We do not knowingly collect information from minors or other persons who are legally unable to use our services. If we become aware that we have collected personal data from minors, we will delete it immediately, unless we are required by law to retain the data. Please contact us if you suspect that we have inadvertently or mistakenly collected information from a minor.

7. how do we protect your personal data?

We implement physical, technical and administrative security measures to adequately protect your personal information from loss, misuse, unauthorized access, disclosure or alteration. These security measures include firewalls, data encryption, authorization controls for access to data, and we select our server locations very carefully. We are committed to securing our systems and services.

However, you are responsible for the security and confidentiality of your passwords and your account profile or registration information. In addition, it is your responsibility to verify that the personal information we hold about you is accurate and up to date. We are not liable for the protection of personal data that we pass on to third parties on the basis of an account link authorised by you.

8. where is your data stored?

8.1 Frankfurt

An older part of the servers on which the hosting service is based are located in Interxion's data centres in Frankfurt. The parking spaces in the data center were rented from Digital Ocean LLC, New York. Digital Ocean operates a cloud platform for virtual servers there, which we use as a platform for hosting. An order processing agreement was concluded with Digital Ocean. Digital Ocean is also subject to the EU-US Privacy Shield Agreement. This data center is potentially only relevant for customers whose data center was created sites before January 1, 2019. All web pages created or to be created after this date will be hosted exclusively at the data centres mentioned in 8.2 and 8.3.

8.2 Falkenstein / Nuremberg

Another part, the server on which the hosting service is based and also the servers for our own infrastructure and data processing (dashboard, monitoring, configuration management, backups etc.) are located in the data centers of Hetzner, Hetzner Online GmbH, in Falkenstein and Nuremberg. Hetzner offers dedicated servers for rent at these locations, which we use as a platform for hosting. We also use these for our own infrastructure and the automatic backups of the websites hosted by us. An order data processing contract was concluded with Hetzner. Hetzner is also subject to the regulations of the basic data protection ordinance. Hetzner Online GmbH is associated with the ISO certificate 27001 excellent. You can find more information about the server location here.

8.3 Düsseldorf and Taucha

In addition to the data centers described in 8.1 and 8.2, two data centers of the company dogado GmbH are also used for the provision of the web servers. One of the computer centers, the computer center in Düsseldorf, is operated by dogado itself. The second computer center is located in Taucha, Germany, and is operated by envia TEL GmbH on behalf of dogado GmbH.

Both data center operators and data centers are certified according to ISO 27001, among other things; a contract processing agreement was concluded with dogado. In addition, both dogado and envia TEL GmbH are also subject to the regulations of the basic data protection ordinance.

8.4 Amsterdam

From our early days, few Web sites are still located in the Equinix Amsterdam Data Centers data centers. The server location is certified ISO 27001 among other things. You can find further information about the data center here. The parking spaces in the data center were rented from Digital Ocean LLC, New York.

8.5 Backups

Our backups are stored in the data centers of Amazon Web Services, Inc. 410 Terry Avenue North, Seattle WA 98109, United States, or AWS for short. We chose Frankfurt as server location. AWS participates in the EU-US Privacy Shield Programme. The server location is according to ISO 27001 certified. Further information on data protection can be found at here.

8.6 SMTP relay (e-mail transmission)

For sending transactional emails we work together with the service provider Mailgun (Mailgun Technologies, Inc., 548 Market St. #43099, San Francisco, CA 94104). The following data is stored:

- E-mail address "from

- E-mail address "to

- Content of the e-mail

- Domain of the BOX, which sends the mail

The purpose of processing is the fulfilment of contractual obligations. The legal basis is Article 6 lit. 1 b GDPR.
The data will be stored by Mailgun for 15 days. The mails themselves are BOXstored for 7 days on the.

9. when do we share your information?

First of all, we would like to assure you that we do not sell, lend or rent out your personal data. Data will only be passed on if, for example, this is indispensable for the fulfilment of our contractual obligations, if we have a legitimate interest or if we have your consent. Each contractual partner of ours is conscientiously and carefully selected and we oblige them to protect all data in accordance with the legal regulations. For this reason, we also conclude a commissioned data processing agreement with the processor in accordance with Art. 28 GDPR.

10. left

Our website may contain links to websites of other providers for whose content we, the RAIDBOXES Gmbh, are not responsible and to which this data protection declaration does not extend.

11. your rights

As soon as personal data are processed by you, you are a data subject in the sense of GDPR and you are entitled to the following rights against the person responsible (i.e. against us):

  • Right to information,
  • Right of correction or deletion,
  • Right to restrict processing,
  • Right to object to the processing,
  • Right to data portability.

You also have the right to complain to a data protection authority about the processing of your personal data by us. Further information can be found here.

II. in more detail: cookies, tracking and other technologies

The following section is designed to give you a better understanding of the various technologies we use and how they are used. If you use our website, services or messaging features, we or our authorized service providers may use cookies or similar technologies. The information collected in this way helps us to better adapt our services to the needs of our customers, to make them better and faster and, above all, even more secure. They also serve advertising purposes.

1. provision of the website and creation of log files

1.1 Description and scope of data processing

When you visit our website, our system automatically collects data and information from the computer system of the calling computer. The following data is collected:

  • Information about the browser type and version used
  • The user's operating system
  • The IP address of the user
  • Date and time of access
  • Websites from which the user's system accesses our website

The data is also stored in the log files of our system. This data is not stored together with other personal data of the user.

1.2 Legal basis

The legal basis for the temporary storage of data and log files is Article 6 lit. 1 b GDPR.

1.3 Purpose of data processing

The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user's computer. For this purpose, your IP address must remain stored for the duration of the session. The storage in log files is done to ensure the functionality of the website. In addition, the data is used to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context. These purposes also include our legitimate interest in data processing in accordance with Art. 6 Par. 1 lit. f GDPR .

1.4 Duration of storage

The data will be deleted as soon as they are no longer necessary for the purpose of their collection. In the case of the collection of data for the provision of the website, this is the case when the respective session is ended. In the case of data storage in log files, this is the case after seven days at the latest. A storage beyond this is possible. In this case, the IP addresses of the users are deleted or alienated, so that an assignment of the calling client is no longer possible.

1.5 Possibility of objection and removal

The collection of data for the provision of the website and the storage of the data in log files is mandatory for the operation of the website. There is therefore no possibility of objection on the part of the user.  

2. cookies

2.1 Description and scope of data processing

Our website uses cookies. Cookies are text files that are stored in the Internet browser or by the Internet browser on the user's computer system. This cookie contains a characteristic string of characters that allows the browser to be uniquely identified when you return to the website. Most of the cookies we use are so-called "session cookies". They are automatically deleted at the end of your visit. These allow us to link your actions during that particular browser session. Other cookies (so-called permanent cookies) remain stored on your end device until you delete them. Cookies cannot run programs or deliver viruses to your computer.

We use cookies to make our website more user-friendly. Some elements of our website require that the calling browser can be identified even after a page change. The following data is stored and transmitted in these technically necessary cookies:

  • Language settings
  • Log-in information

We also use cookies on our website, which enable us to analyse the surfing behaviour of the users. These are used to monitor anonymous user behaviour on the website, for example to record the number of visits per site . The data collected is used exclusively to optimise the performance and design of this website. These cookies are in most cases third-party cookies (e.g. Google Analytics). However, the data is collected in anonymous form and used exclusively by us. If you call up a website as a user, a cookie can be stored on your operating system. In this way the following data can be transmitted:

  • Use of website functions (Intercom, OneSignal)
  • User behaviour (Crazy Egg, Google Analytics)
  • Assignment of the source of the website calls (own cookie)
  • Assignment to an affiliate / advertising partner (own cookie)
  • Frequency of page views (Google Analytics)
  • Entered search terms (Google Analytics)

When you visit our website, we will inform you about the use of cookies for analysis purposes and your consent to the processing of the personal data used in this context will be obtained. In this context, reference is also made to this data protection declaration. You will find more information about cookies in the next sections.

2.2 Legal basis for data processing

The legal basis for the processing of personal data using technically necessary cookies is Art. 6 para. 1 lit. f GDPR. The legal basis for the processing of personal data using cookies for analysis purposes is Article 6 paragraph 1 letter a GDPR.

2.3 Purpose of data processing

The purpose of using technically necessary cookies is to simplify the use of websites for users. Some functions of our website cannot be offered without the use of cookies. For these it is necessary that the browser is recognized even after a page change. We require cookies for the following applications:

  • Transfer of language settings
  • Memorizing search terms

The analysis cookies are used for the purpose of improving the quality of our website and its contents. Through the analysis cookies we learn how the website is used and can thus constantly optimise our offer.

2.4 Duration of storage, possibility of objection and removal

Cookies are stored on your computer and transmitted from there to ourssite . Therefore you as a user have full control over the use of cookies. By changing the settings in your internet browser, you can deactivate or restrict the transmission of cookies. Already stored cookies can be deleted at any time. This can also be done automatically. If cookies are deactivated for our website, it is possible that not all functions of the website can be used to their full extent. If you wish to object to the cookies that we, the RAIDBOXES GmbH, set, simply write to us, or change your Change privacy settings.

3rd registration  

3.1 Description and scope of data processing

On our website we offer you the possibility to register by entering personal data. The data is entered into an input mask, transmitted to us and stored. The data will not be passed on to third parties. The following data is collected during the registration process:

  • First name
  • Last name
  • E-mail address

3.2 Legal basis for data processing

The legal basis for the processing of the data is Art. 6 para. 1 lit. a GDPR, if the user has given his consent. If the purpose of the registration is the performance of a contract to which the user is a party or the implementation of pre-contractual measures, the additional legal basis for the processing of data is Article 6 lit. 1 b GDPR.

3.3 Purpose of data processing

A registration of the user is required for the fulfilment of a contract with the user or for the implementation of pre-contractual measures.  

3.4 Duration of storage

The data will be deleted as soon as they are no longer necessary for the purpose of their collection. This is the case for data collected during the registration process for the purpose of fulfilling a contract or for the implementation of pre-contractual measures if the data is no longer required for the execution of the contract. Even after conclusion of the contract, it may still be necessary to store personal data of the contractual partner in order to comply with contractual or legal obligations. Continuing obligations require the storage of personal data during the contract period. In addition, warranty periods must be observed and the storage of data for tax purposes. Which storage periods are to be observed in this context cannot be determined on a flat-rate basis, but must be determined for the respective contracts concluded and contracting parties in each individual case.

3.5 Possibility of objection and removal

As a user you have the possibility to cancel the registration at any time. You can change or delete the stored data yourself at any time via the user RAIDBOXES interface. If the data is required for the fulfilment of a contract or for the implementation of pre-contractual measures, an early deletion of the data is only possible if there are no contractual or legal obligations that prevent deletion.

4. use of an e-mail account

We offer you the possibility to add paid e-mail accounts within your contract. To be able to offer you this service, we work together with mailbox.org (Heinlein Support GmbH, Schwedter Straße 8/9A, 10119 Berlin) within a reseller contract. You can find the privacy policy of mailbox.org here: https://mailbox.org/de/datenschutzerklaerung.

4.1 Scope of data processing

When you create an e-mail box, the following data is requested and stored: first name, last name, RAIDBOXES customer number, e-mail addresses belonging to the box and the corresponding domain names.

4.2 Purpose of the data processing, legal basis

The input of data is necessary for the fulfilment of a contract with the user or for the implementation of pre-contractual measures. In this respect, Article 6 lit. 1 b GDPR serves as a legal basis.

4.3 Duration of storage

When your mailbox contract with RAIDBOXES mailbox.org ends, your link to mailbox.org will be deleted, provided that it was the last mailbox contract. This also includes the links to the domains you have deposited with mailbox.org. DNS settings remain unaffected after termination. 60 days after deleting the mailbox, mailbox.org will delete all data.

5. newsletter, e-mail marketing and product information

We offer you the possibility to be informed about all news around WordPress and our products by us. For example, we offer you our free newsletter. We would like to explain here how, when and where we store data:

5.1 Newsletter

On our website you have the possibility to subscribe to a free newsletter. When registering for the newsletter, the data from the input mask is transmitted to us. To subscribe to the newsletter, it is sufficient to enter your e-mail address. In addition, the following data is collected during registration:

  • Your e-mail address
  • IP address of the calling computer
  • Date and time of registration
  • geographical data (longitude and latitude)

For the processing of the data, your consent will be obtained during the registration process. This will be recorded by us. The registration for our newsletter is done in a so-called double opt-in procedure. This means that you will receive an e-mail after registration asking you to confirm your registration. This confirmation is necessary so that no one can register with foreign e-mail addresses. Newsletter registrations are logged in order to be able to prove the registration process according to the legal requirements. This includes the storage of the login and confirmation time as well as the IP address. Likewise, changes to your data stored with the shipping service provider are logged.

To send our newsletter we use the service of ActiveCampaign, LLC.

5.2 E-mails mit Product information

For the sending of messages by e-mail to inform you about our product but also about possible malfunctions, we use the services Intercom of the company of Intercom Inc. 98 Battery Street, Suite 402, San Francisco, CA 94111 USA. In these purposes we have a legitimate interest in the processing of data in accordance with art. 6, paragraph 1, letter f GDPR . Further information can be found here.

5.3 E-mail marketing to existing customers

If you purchase services on our website and enter your e-mail address, we may subsequently use it to send you product information. In such a case, mailings will only be used to send out direct advertising for its own similar products or services.

In connection with the data processing, the data will not be passed on to third parties.

5.4 Legal basis for data processing

The legal basis for the processing of data after registration for the newsletter by the user is, if the user has given his consent, Art. 6 para. 1 lit. a GDPR . The legal basis for the sending of direct marketing mails as a result of the sale of goods or services is § 7 para. 3 UWG. The use of the service providers HubSpot and Intercom is based on our legitimate interest in accordance with Art. 6 para. 1 lit. f GDPR.

5.5 Purpose of data processing

The collection of the user's e-mail address is used to send the newsletter or direct mails. We are interested in using a user-friendly and secure mailing system that serves our business interests and meets the expectations of the users.

5.6 Duration of storage

The data will be deleted as soon as they are no longer necessary for the purpose of their collection. Your e-mail address will be stored as long as the subscription to the newsletter is active. Your mail address for direct marketing measures will be stored as long as you are one of our existing customers.

5.7 Possibility of objection and removal

You can cancel, revoke the receipt of our newsletter or our direct marketing measures at any time. You will find a link for cancellation at the end of each newsletter. After the cancellation your data will be deleted except for the e-mail address. The e-mail address is stored in a blacklist and is only used to ensure that we do not send any further e-mails to your e-mail address.

6. contact forms, contact e-mail, live chat

6.1 Description and scope of data processing

There are forms on our website which can be used for electronic contact. If a user takes advantage of this option, the data entered in the input mask will be transmitted to us and stored. At the time the message is sent, the following data is also stored:

  • E-mail address of the user
  • The IP address of the user
  • Date and time of registration

For the processing of the data, your consent will be obtained during the sending process and reference will be made to this privacy policy. Alternatively, it is possible to contact us via our provided e-mail address. In this case the personal data of the user transmitted with the e-mail will be stored. You can also contact us via the live chat function. For this we use the services of Intercom. In this context, the data will not be passed on to third parties. The data will be used exclusively for processing the conversation.

6.2 Legal basis of the data processing

The legal basis for the processing of data with the consent of the user is Art. 6 para. 1 letter a GDPR. The legal basis for the processing of data transmitted in the course of sending an e-mail is Art. 6 para. 1 letter f GDPR . If the e-mail contact aims at the conclusion of a contract, an additional legal basis for the processing is Article 6 1 lit.  b GDPR.

The use of the service provider Intercom is based on our legitimate interest in accordance with Art. 6 Par. 1 lit. f GDPR .

6.3 Use of Intercom

For the purpose of customer management and, most importantly, to provide the fastest possible support for the best possible user experience, we use the Intercom service of Intercom Inc. 98 Battery Street, Suite 402, San Francisco, CA 94111 USA for sending email messages and for live chats. These purposes also include our legitimate interest in data processing in accordance with Art. 6 Par. 1 lit. f GDPR. You can find further information here.

6.4 Purpose of data processing

The processing of the personal data from the input mask serves us only for the processing of the establishment of contact. In the case of contacting us by e-mail, this is also the necessary legitimate interest in the processing of the data. The other personal data processed during the sending process serves to prevent misuse of the contact form and to ensure the security of our information technology systems.

6.5 Duration of storage

The data will be deleted as soon as they are no longer necessary for the purpose of their collection. For the personal data from the input mask of the contact form and those sent by e-mail, this is the case when the respective conversation with the user has ended. The conversation ends when it is clear from the circumstances that the matter in question has been conclusively clarified. Any additional personal data collected during the transmission process will be deleted after a period of seven days at the latest.

6.6 Possibility of objection and removal

The user has the possibility to revoke his consent to the processing of personal data at any time. If the user contacts us by e-mail, he can object to the storage of his personal data at any time. In such a case the conversation cannot be continued. The following is a description of how the revocation of the consent and the objection of the storage is made possible. All personal data stored in the course of the contact will be deleted in this case.

7. RAIDBOXES magazine "wp unboxed" comment function

Under https://raidboxes.*/blog/ you can find our magazine "wp unboxed". In this magazine we want to WordPress inform you about topics all around.

7.1 Scope of data processing/purpose of the processing

Our magazine "wp unboxed" contains a commentary function, with which you can comment on articles from us. To use this comment function, you need to enter your e-mail address and your name. All other details, such as your website, are optional. The entry of an e-mail address is necessary so that if your comment is objectionable, it can be forwarded to you and you also have the opportunity to comment. If you give your surname and/or first name when your comment is published, it will be published. Your e-mail address and all other voluntary information as well as the time of the comment will be WordPress saved, not passed on to unauthorized third parties and only processed for the purpose of the comment function. We reserve the right to delete comments with insulting, threatening or racist content.

7.2 Legal basis of the processing

If your personal data is communicated to us through the comment function, the disclosure of this data is always on an expressly voluntary basis. The legal basis for the processing is Article 6 1 lit. a GDPR.

7.3 Duration of storage/ revocation and removal

The data will be stored until you revoke the processing. You have the possibility to revoke your consent to the processing of your data at any time. All personal data that has been saved by you in the course of the comment function will be deleted immediately upon revocation. This means that all comments from you on our magazine will be deleted as well.

8. google analytics

8.1 Scope of data processing

We use Google Analytics on our website to analyse the surfing behaviour of our users. The software sets a cookie on the user's computer (for cookies see above). If individual pages of our website are called up, the following data is stored:

  • Two bytes of the IP address of the user's calling system
  • The accessed website
  • The website from which the user accessed the accessed website (referrer)
  • The subpages that are called from the called web page
  • The time spent on the website
  • The frequency of visiting the website

Google uses cookies. The information generated by the cookie about the use of the website by the user is usually transferred to a Google server in the USA and stored there. Google is certified under the Privacy Shield Agreement, and thus offers a guarantee that European data protection law to be observed. We only use Google Analytics with activated IP anonymisation. This means that the IP address of users is shortened by Google within member states of the European Union or in other states which are parties to the Agreement on the European Economic Area. Only in exceptional cases is the full IP address transferred to a Google server in the USA and shortened there. The IP address transmitted by the user's browser is not merged with other data from Google. Users can prevent the storage of cookies by adjusting their browser software settings accordingly; users can also prevent the collection of data generated by the cookie and related to their use of the online offer to Google and the processing of this data by Google by doing the following following link download and install available browsersPlugin. You can find further information on data use by Google, setting and opposition possibilities on the web pages of Google ".Data usage by Google when you use websites or apps of our partners"“, „Use of data for advertising purposes"“, „Manage information that Google uses to serve ads to you“. Google will use this information on our behalf to evaluate the use of our online offer by users, to compile reports on the activities within this online offer and to provide us with further services associated with the use of this online offer and the use of the Internet. Pseudonymous user profiles of the users can be created from the processed data.

8.2 Legal basis of the data processing

On the basis of our legitimate interests (i.e. interest in the analysis, optimisation and economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. GDPR ) Google Analytics, a web analysis service of Google Inc. ("Google").

8.3 Purpose of data processing

We use Google Analytics in order to display the advertisements placed within Google's advertising services and those of its partners only to those users who have also shown an interest in our online offer or who show certain characteristics (e.g. interests in certain topics or products determined by the websites visited) which we transmit to Google (so-called "remarketing" or "Google Analytics Audiences"). With the help of Remarketing Audiences, we also want to ensure that our ads are in line with the potential interest of the users and are not annoying.

8.4 Duration of storage

Sessions and campaigns are terminated after a certain period of time. By default, sessions will end after 30 minutes of inactivity and campaigns will end after six months. The time limit for campaigns can be a maximum of two years. For more information on terms of use and privacy, please visit https://www.google.com/analytics/terms/de.html. Or at https://policies.google.com/

8.5 Cancellation and removal options

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by this browser add-on and install it.

Opt-out cookies prevent future collection of your information when you visit this site. To prevent Universal Analytics from collecting data across different devices, you must Perform opt-out on all systems in use.

9. Google marketing and remarketing services

9.1 Scope of data processing

We use the marketing and remarketing services (collectively "Google Marketing Services") of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, ("Google"). Google is certified under the Privacy Shield Agreement, and thus offers a guarantee that European data protection law to be observed. Google's marketing services allow us to better target ads for and on our website to show users only ads that potentially match their interests. For example, if a user is shown ads for products that he or she has been interested in on other websites, this is called "remarketing". For these purposes, when you visit our website and other websites where Google marketing services are active, Google will execute code directly from Google and (re)marketing tags (invisible graphics or code, also known as "web beacons") will be embedded in the website. With their help, an individual cookie, i.e. a small file, is stored on the user's device (comparable technologies can also be used instead of cookies). The cookies can be set by various domains, including google.com, doubleclick.net, invitemedia.com, admeld.com, googlesyndication.com or googleadservices.com. This file records which websites the user has visited, what content he is interested in and which offers he has clicked on, as well as technical information on the browser and operating system, referring websites, visiting time and other information on the use of the online offer. The IP address of the user is also recorded, whereby we inform within the framework of Google Analytics that the IP address is shortened within member states of the European Union or in other contracting states of the Agreement on the European Economic Area and only in exceptional cases is it transferred in full to a Google server in the USA and shortened there. The IP address will not be merged with data of the user within other offers of Google. Google may also combine the above-mentioned information with information from other sources. If the user subsequently visits other websites, advertisements tailored to the user's interests may be displayed. User data is processed pseudonymously as part of Google's marketing services. This means, for example, that Google does not store and process the name or e-mail address of the user, but processes the relevant data in a cookie-based manner within pseudonymous user profiles. This means that from Google's point of view, the ads are not managed and displayed for a specifically identified person, but for the cookie holder, regardless of who that cookie holder is. This does not apply if a user has expressly permitted Google to process the data without this pseudonymisation. The information collected by Google marketing services about users is transmitted to Google and stored on Google's servers in the USA. The Google marketing services used by us include the online advertising program "Google AdWords". In the case of Google AdWords, each AdWords customer receives a different "conversion cookie". Cookies can therefore not be tracked on the websites of AdWords customers. The information collected using the cookie is used to compile conversion statistics for AdWords customers who have opted-in to conversion tracking. AdWords customers are told the total number of users who have clicked on their ad and been site redirected to a site tagged with a conversion tracking tag. However, they do not receive information that can be used to identify users personally. We may include third-party ads based on Google's "DoubleClick" marketing service. DoubleClick uses cookies to enable Google and its partner sites to serve ads based on users' visits to this site or other sites on the Internet. We may include third-party ads based on Google's "AdSense" marketing service. AdSense uses cookies to enable Google and its partner websites to serve ads based on user visits to this website and other websites on the internet. We may also use the "Google Optimizer" service. Google Optimizer allows us in the context of so-called "A/B-Testings" to understand how various changes to a website affect (eg changes to input fields, design, etc.). For these test purposes, cookies are stored on the users' devices. We may also use the "Google Tag Manager" to integrate and manage the Google analysis and marketing services in our website. Further information on the use of data for marketing purposes by Google can be found on the Overview pagethe privacy policy of Google is here available.

9.2 Legal basis of the data processing

We use these services on the basis of our legitimate interests (i.e. interest in the analysis, optimisation and economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. GDPR.

9.3 Purpose of the processing

Google's marketing services give us the ability to better target advertisements on our behalf and on our website to show users only ads that potentially match their interests.

9.4 Duration of storage

According to its own information, the log data collected by Google is anonymised by deleting part of the IP address and cookie information after 9 and 18 months respectively. You can find further information here.

9.5 Possibility of revocation and removal

If you wish to opt-out of interest-based advertising through Google marketing services, you may use the Google Privacy Policy to opt-out of interest-based advertising provided by Google. Opt-out possibilities instead.

10. bing marketing and remarketing services

10.1 Scope of data processing

We use the Microsoft marketing and remarketing services (referred to as "Microsoft Advertising") of Microsoft Online, Inc., 6100 Neil Road, Reno, NV 89511 USA (referred to as "Microsoft").

Microsoft and its subsidiaries are listed under the Privacy Shield Agreement certified and thus offer a guarantee that the European data protection law to be observed. 

Microsoft Advertising allows us to display ads for our website in the Bing search results and in the Microsoft search network in such a way as to best meet the potential interests of users. 

For example, a user can be shown advertisements for products that he has previously viewed on one of our websites - this is known as "remarketing".

For these purposes, when you visit our Web site and other Web sites on which Microsoft Advertising Services is active, code is executed directly by Microsoft and marketing tags or remarketing tags (invisible graphics or code, also known as "Web beacons") are embedded in the Web site. 

With their help, an individual cookie, i.e. a small file is stored on the user's device (instead of cookies, comparable technologies can also be used). 

The cookies can be set from different domains that belong to the Microsoft Search network include bing.com, aol.com and yahoo.com and the so-called consortium search partners of Microsoft and Yahoo, which include MSN.

This file records which websites the user has visited, what content he is interested in and which offers he has clicked on, as well as technical information on the browser and operating system, referring websites, visiting time and other information on the use of the online offer. 

The IP address of the user is also recorded. 

Microsoft may merge this information with other information about the user. Especially if the user was logged in to his Microsoft account at the time of visiting the site. 

According to Microsoft, if the user is not logged in, no data consolidation takes place. 

Microsoft may also combine the above information with information from other sources. 

If the user subsequently visits other websites, the ads tailored to his interests can be displayed to him. 

User data is processed pseudonymously within the framework of Microsoft Marketing Services. 

This means, for example, that Microsoft does not store and process the name or e-mail address of the user, but processes the relevant data in a cookie-based manner within pseudonymous user profiles. 

This means that from Microsoft's point of view, the ads are not managed and displayed for a specifically identified person, but for the cookie owner, regardless of who that cookie owner is. 

This does not apply if a user has expressly permitted Microsoft to process the data without this pseudonymisation. 

The information Microsoft Advertising collects about users is transmitted to Microsoft and stored on Microsoft servers in the region where the user data is collected. 

For a user from Germany, this means that the data is very likely to be stored in a German computer centre. 

It cannot be excluded that this data may also be transferred to servers in the USA or to servers in other parts of the world where Microsoft operates data centres.

The Microsoft Advertising Services we use include the "Target Group Targeting" and "Universal Event Tracking (UET)" functions.

In the case of search engine advertising in the Microsoft search network, each user receives a different "conversion cookie". 

As a result, cookies cannot be tracked through Microsoft Advertising's Web sites. 

The information collected using the cookie is used to compile conversion statistics for Microsoft advertising campaigns where conversion tracking is active.

The Microsoft Advertising customer learns the total number of users who have clicked on his ad and been site redirected to a conversion tracking tag. 

In addition, it can be recorded whether a user has carried out a specific action, e.g. a purchase, on the website provided site with a conversion tracking tag.

However, we do not receive any information that can be used to identify users personally. 

For more information about Microsoft Advertising's use of data for marketing purposes, visit the Overview page from Microsoft. The Microsoft Privacy Policy is here callable.

10.2 Legal basis of the data processing

We use Microsoft Advertising on the basis of our legitimate interests for the analysis, optimisation and economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. GDPR.

10.3 Purpose of the processing

Microsoft Advertising gives us the ability to target ads in the search results of the Bing search network more accurately, allowing users to see only ads that potentially match their interests.

10.4 Duration of storage

According to its own statements, the log data collected by Microsoft Advertising is made anonymous by deleting part of the IP address and cookie information after 9 and 18 months respectively. You can find further information here.

10.5 Possibility of revocation and removal

If you would like to opt-out of interest-based advertising through Microsoft Advertising, you may use the opt-out and opt-in options provided by Microsoft. 

If you have a Microsoft account, you can use your Microsoft profile settings Define exactly how Microsoft should handle your information, whether cookies should be set, and whether or not you consent to data aggregation for promotional purposes. The settings are platform-independent, i.e. they are applied to all devices, such as desktop computers or mobile devices.

Even without a Microsoft account, you can of course object to the processing of your personal data and the use of cookies, which are used for range measurement and advertising purposes. You can use the Disabling page of the network advertising initiative file (NAI). You can also do this via the US-American site of the so-called Digital Advertising Aliance (DAA) or the European website of the NAI do.

11. Facebook social plugins

We use the social "Shariff PluginWrapper". You can find further information here.

11.1 Scope of data processing

We use Social plugins (“plugins") of the social network facebook.com, which is operated by Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Facebook"). The plugins can represent interaction elements or content (e.g. videos, graphics or text contributions) and can be recognized by one of the Facebook logos (white "f" on blue tile, the terms "Like", "Like" or a "thumbs up" sign) or are marked with the addition "Facebook Social Plugin". The list and appearance of the Facebook Social plugins can seen here will be. The plugins are only activated when you click on the corresponding button. If they are greyed out, the plugins inactive. You have the option plugins once or permanently. Facebook is certified under the Privacy Shield Agreement and thus offers a guarantee that European data protection law to be observed. When a user calls up a function of this online offer that Plugincontains such a function, his or her device establishes a direct connection with the Facebook servers. The content of the plugins is transmitted by Facebook directly to the user's device and integrated by the user into the online offer. User profiles can be created from the processed data. We therefore have no influence on the extent of the data that Facebook can create with the help of this plugins therefore collects and informs the users according to our state of knowledge. Through the integration of the plugins Facebook receives the information that a user has accessed the corresponding site online offer. If the user is logged in to Facebook, Facebook can assign the visit to his or her Facebook account. If users are logged in with the plugins If you interact with your device, for example by clicking the Like button or posting a comment, the corresponding information is transmitted directly from your device to Facebook and stored there. If a user is not a member of Facebook, it is still possible for Facebook to find out his or her IP address and store it. According to Facebook, only an anonymized IP address is stored in Germany. The purpose and scope of the data collection and the further processing and use of the data by Facebook, as well as the relevant rights and setting options for protecting the privacy of users, can be communicated to Privacy policy from Facebook from the container.

11.2 Legal basis of the data processing

Data processing is carried out on the basis of our legitimate interests (i.e. interest in the analysis, optimisation and economic operation of our online offer within the meaning of Art. 6 Par. 1 lit. f. GDPR)  

11.3 Purpose of data processing

The Facebook Social plugins shows us the interests of visitors to display them more specifically on our website, in order to present users only with posts that potentially correspond to their interests.

11.4 Duration of storage

To website Facebook stores for a period of 90 days the date and time of your visit, the specific internet address where the social Pluginis located, and other technical data such as the IP address, browser type, operating system, in order to further optimize the services of Facebook. After the 90 days have expired, the data will be anonymized so that it can no longer be associated with you.

11.5 Possibility of revocation and removal

If a user is a Facebook member and does not want Facebook to collect data about him/her via this online offer and link it with his/her membership data stored on Facebook, he/she must log out of Facebook before using our online offer and delete his/her cookies. Further settings and contradictions to the use of data for advertising purposes, are within the Facebook profile settings possible or via the US-American site or the EUsite. The settings are platform-independent, i.e. they are applied to all devices, such as desktop computers or mobile devices.

12. facebook, custom audiences and facebook marketing services

12.1 Scope of data processing

Within our online offer, the so-called "Facebook pixel" of the social network Facebook, which is operated by Facebook Inc, 1 Hacker Way, Menlo Park, CA 94025, USA, or if you are resident in the EU, Facebook Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland ("Facebook"), is used. Facebook is certified under the Privacy Shield Agreement and thus offers a guarantee that European data protection law to be observed. With the help of the Facebook pixel, on the one hand, Facebook is able to determine the visitors of our online offer as a target group for the presentation of ads (so-called "Facebook ads"). The Facebook pixel is directly integrated by Facebook when you call up our websites and can save a so-called cookie, i.e. a small file, on your device. If you then log in to Facebook or visit Facebook while logged in, the visit to our online offer will be noted in your profile. The data collected about you is anonymous to us, so we cannot draw any conclusions about the identity of the user. However, the data is stored and processed by Facebook so that a connection to the respective user profile is possible and can be used by Facebook as well as for its own market research and advertising purposes. If we transmit data to Facebook for comparison purposes, this data is encrypted locally in the browser and only then sent to Facebook via a secure https connection. This is done solely for the purpose of comparison with the data that is also encrypted by Facebook. The processing of data by Facebook is carried out within the framework of Facebook's data use policy. Accordingly, general notes on the display of Facebook ads, in which Facebook privacy policy. You can find special information and details about the Facebook pixel and how it works in the Help area of Facebook.

12.2 Legal basis of the data processing

Due to our legitimate interests in analysis, optimization and economic operation of our online offer and for these purposes.

12.3 Purpose of data processing

We use the Facebook pixel in order to display the Facebook ads placed by us only to those Facebook users who have also shown an interest in our online offering or who have certain characteristics (e.g. interests in certain topics or products determined on the basis of the websites visited) that we transmit to Facebook (so-called "custom audiences"). With the help of the Facebook pixel, we also want to ensure that our Facebook ads match the potential interest of the users and are not annoying. The Facebook pixel also allows us to track the effectiveness of Facebook Ads for statistical and market research purposes by seeing whether users have been redirected to our website after clicking on a Facebook ad (so-called "conversion").  

12.4 Duration of storage

To website Facebook stores for a period of 90 days the date and time of your visit, the specific internet address where the social Pluginis located, and other technical data such as the IP address, browser type, operating system, in order to further optimize the services of Facebook. After the 90 days have expired, the data will be anonymized so that it can no longer be associated with you.

12.5 Revocation and disposal options

You may object to the collection by the Facebook pixel and use of your information to display Facebook ads. To control what types of ads are displayed to you within Facebook, you can go to the Facebook-launchedsite Settings for usage-based advertising obey. The settings are platform-independent, i.e. they are applied to all devices, such as desktop computers or mobile devices. You can also opt out of the use of cookies, which are used for audience measurement and advertising purposes, by visiting the opt-out page of the Network Advertising Initiative and additionally the US website or the European website contradict.

13. twitter conversion tracking, re-marketing and twitter marketing services

13.1 scope of data processing

Within our online offering we use Twitter conversion tracking (via the so-called Twitter website tag) and the marketing services of the social network Twitter, which is operated by Twitter Inc, 1355 Market Street, Suite 900, San Francisco, CA 49103, USA, or if you are based in the EU, by Twitter International Company, One Cumberland Place, Fenian Street Dublin 2, D02 AX07, Ireland ("Twitter"). Twitter and its affiliates are certified under the Privacy Shield Agreement and thus offer a guarantee of compliance with European data protection law. With the help of Twitter Conversion Tracking, Twitter is able to measure the success of our Twitter advertisements ("Twitter Ads") and to determine the visitors of our online offer as a target group for the display of ads. The Twitter conversion tracking is integrated directly by Twitter when you visit our websites and can save a so-called cookie, i.e. a small file, on your device. If you then log in to Twitter or visit Twitter while logged in, the visit to our online offer will be noted in your profile. The data collected about you is anonymous to us, so we cannot draw any conclusions about the identity of the user. However, the data is stored and processed by Twitter so that a connection to the respective user profile is possible and can be used by Twitter and its affiliated companies for their own market research and advertising purposes. If we should transmit data to Twitter for matching purposes, this data is encrypted locally and only then sent to Twitter via a secure https connection. This is done solely with the aim of comparing the data with the data that is also encrypted by Twitter. The processing of data by Twitter is carried out within the framework of Twitter Data Use Directive. Accordingly, the general notes on the display of Twitter ads from the Data Use Directive from Twitter. Special information and details about Twitter conversion tracking and how it works can be found in the Help section of Twitter.

13.2 the legal basis of the data processing

We use these services on the basis of our legitimate interests, specifically our interest in the analysis, optimisation and economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. GDPR.

13.3 Purpose of data processing

We use Twitter conversion tracking and Twitter marketing services to ensure that the ads we place on Twitter are only displayed to Twitter users who have also shown an interest in our online offering or who have certain characteristics (e.g. interest in certain topics or products determined by the websites visited) that we submit to Twitter (so-called "tailored target groups"). With the help of the Twitter website tag, we also want to ensure that our Twitter ads match the potential interests of users and are not harassing. The Twitter Website Tag also allows us to track the effectiveness of Twitter ads for statistical and market research purposes by showing whether users have been redirected to our website after clicking on a Twitter ad and what actions they have performed there (so-called "conversion").

13.4 Duration of storage

To own declaration. Twitter stores for a period of 30 days the date and time of your visit, the specific Internet address you visited us on and other technical data such as the IP address, browser type or operating system. Twitter uses this data to optimise its own service. After 30 days, the data will be anonymized so that it cannot be further associated with you.

13.5 Revocation and disposal options

You may object to the collection by the Twitter website tag and the use of your information to display Twitter advertisements. To control what types of ads are shown to you within Twitter, you can go site to the Twitter site tag and read the notes on the Settings for usage-based advertising obey. The settings are platform-independent, i.e. they are applied to all devices, such as desktop computers or mobile devices. You can also opt out of the use of cookies, which are used for audience measurement and advertising purposes, by visiting the opt-out page of the Network Advertising Initiative (NAI). You can also do this via the US-American site of the so-called Digital Advertising Aliance (DAA) or the European website of the NAI do.

14. online presence in social media

We operate internet presences within social networks and platforms in order to get in contact with the customers, interested parties and users active there and to be able to inform them about our services. The use of Facebook, Instagram and Twitter is your own responsibility. This applies in particular to the functions comment, share, evaluate, etc. The information that we publish within our online presence in social media can also be accessed via our own website.

14.1 extent of processing

When you visit our Facebook / Instagram / Twitter / XING or LinkedIn-site your IP address and information that is stored as cookies are recorded. The user behaviour derived from this and your interests can then be used to create a user profile in order to create advertisements visible to you within and outside the respective platform. Furthermore, user profiles can also store data independent of the devices used by the users (especially if the users are members of the respective platforms and are logged in to them).

It cannot be ruled out that the data collected from you may also be processed outside the European Union. Among other things, this can make it more difficult to enforce your rights.13.2 Legal basis of the processing/purpose of the processing

The processing of users' personal data is based on our legitimate interests in effective information of users and communication with users in accordance with Art. 6, Paragraph 1, Letter f. GDPR . If the Users are asked by the respective platform providers to give their consent to the aforementioned data processing, the legal basis of the processing is Art. 6 para. 1 lit. a., Art. 7 GDPR .

14.3 requests for information

If you wish to obtain information about the data stored about you within the online services or to assert your user rights there, we recommend that you assert this directly with the respective provider. Only the providers have access to the data of the users and can directly take appropriate measures and provide information. If you need help, you can of course contact us.

14.4 Revocation and disposal options

For further and detailed information and the possibilities of objection (opt-out) we refer to the information of the respective platform. In the following you will find links to further information:

14.4.1 Facebook, -sites , - Groups

When you visit our Facebooksite site, the IP address assigned to your device is transmitted to Facebook. Whether and how Facebook uses the data from your visit to Facebook-sites for its own purposes, to what extent activities on Facebook- are assigned tosite you, how long Facebook stores this data and whether data from your visit to Facebook-site is passed on to third parties, is not conclusively and clearly named by Facebook and is not known to us. We also draw your attention to the fact that Facebook stores information beyond the end devices of its users; if necessary, Facebook is thus able to assign IP addresses to individual users. If you are currently logged into Facebook, a cookie containing your Facebook ID is stored on your device. This enables Facebook to track that you have visited ours site and how you have used it. Facebook buttons integrated into our website enable Facebook to record your visits and assign them to your Facebook profile. Using this data, content or advertising can be tailored to you.

If you wish to avoid this, you must log out of Facebook or disable the "stay signed in" feature, delete the cookies present on your devices, and exit and restart your browser. This will delete Facebook information that can be used to identify you immediately. This allows you to use our Facebook services in asite limited way without revealing your Facebook ID. However, if you wish to access interactive features of the site site (Like, Comment, Share, Messages, etc.), a Facebook login screen will appear. Once you log in, Facebook will recognize you as a specific user. For information on how to manage or delete information about yourself, please visit the following Facebook Supportsite page: https://de-de.facebook.com/about/privacy and here: https://www.facebook.com/settings?tab=ads. For more information about how Facebook uses your information to provide statistical information about your use of Facebooksite , you can also click here: http://de-de.facebook.com/help/pages/insights. Facebook is certified according to the Privacy Shield.

14.4.2 Instagram

Within our web presence functions of Instagram are integrated. On Instagram you will also find an online presence via RAIDBOXES . These functions are offered by Instagram Inc, 1601 Willow Road, Menlo Park, CA, 94025, USA. If you are logged into your Instagram account, you can link the content of our sites site to your Instagram profile by clicking the Instagram button. This allows Instagram to associate the visit to ours with sites your account. We would like to point out that we, as the provider of this service, have sites no knowledge of the content of the transmitted data or its use by Instagram. Privacy Policy and opt-out: http://instagram.com/about/legal/privacy/.

14.4.3 Twitter

Within our website, functions of the Twitter service can be integrated. These functions are offered by Twitter Inc, 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. By using Twitter and the "Re-Tweet" function, the websites you visit will be linked to your Twitter account and thereby made known to other users and transferred to Twitter. We would like to point out that we, as a provider, have sites no knowledge of the content of the transmitted data or its use by Twitter. The same applies to our online presence on Twitter. Privacy Policy from Twitter. You can change your privacy settings on Twitter in the Account settings change.

Opt-out: https://twitter.com/personalization. Twitter is certified according to the Privacy Shield.

15th intercom

15.1 Scope of data processing

We use the Intercom service of Intercom Inc. 98 Battery Street, Suite 402, San Francisco, CA 94111 USA for sending messages by e-mail and for live chats but also for customer administration. We transmit the following personal data:

  • Your e-mail address
  • Your first and last name
  • Your phone number
  • Contract master data
  • Contact details of the technical contact

Intercom, Inc. holds the Privacy-Shield certificate, which is intended to achieve a higher level of data protection for non-EU based companies. Further information about data protection at Intercom can be found at here. Intercom also uses cookies. The information generated by the cookie about your last accessed subpage of this online platform is transmitted to a server of Intercom in the USA and stored there. On our behalf, Intercom will use the above mentioned information to provide related services to the website operator. The IP address transmitted by your browser within Intercom is not merged with other data.

15.2 Legal basis of the data processing

Data processing is carried out on the basis of our legitimate interests (Art. 6 para. 1 lit. f GDPR).

15.3 Purpose of data processing

We use the service of Intercom to be able to react as quickly as possible to customer requests in LIVE Chat, but also to manage our customer contact. These purposes also include our legitimate interest in data processing in accordance with Art. 6 Par. 1 lit. f GDPR.

15.4 Duration of storage

The data on interested parties who have contacted us via live chat will be completely deleted after 9 months at the latest. Any interested party who contacts us afterwards will be treated as a new interested party.

15.5 Possibility of revocation and removal

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website (e.g. live chat).

16th Feedback Forum: Uservoice

16.1 Scope of processing

Through the Ideas Forum in our Dashboard, we offer you the opportunity to rate our product, make suggestions for improvement and present suggestions for new features. For this purpose, we use the Uservoice software, which is provided and operated by Uservoice Inc. 121 2nd St, Fl 4, San Francisco, CA 94105, USA ("Uservoice"). In order to provide feedback, you will be asked to enter your e-mail address. Other information, such as your name, is optional, so you can decide for yourself what personal data you wish to send to Uservoice via the feedback function. By giving us feedback via Uservoice, you agree to the use and processing by Uservoice of the data collected via the software and provided by you.

According to Uservoice DPA are stored:

  • Name (first and last name)
  • E-mail address
  • IP address
  • (Invoice) address (if indicated)
  • Company name (if specified)
  • Role in said company (if any; in English referred to as Affiliation) (if specified).

However, an idea will only be published once we have checked and approved it.

16.2 Legal basis

We use this service on the basis of our legitimate interests. I.e. interest in the analysis, optimisation and economic operation of our online offer in the sense of Art. 6 Para. 1 lit. f. GDPR.

16.3 Purpose of the processing

By using Uservoice, we want to give our customers and users the opportunity to actively participate in our product development by sharing your ideas for product optimization and development with us and other participants. We use this information to develop new product features and to make our company as a whole more target group-oriented.

16.4 Revocation and disposal options

Uservoice offers the possibility to download your data directly via Uservoice and, if desired, to delete them directly. The associated process runs as follows:

Go to hRAIDBOXES ttps:// .uservoice.com/. After you have entered the corresponding e-mail address and password under "Login", with which you have also submitted your feedback request, you can click on "Settings" in the upper right corner under your name. A sidebar appears on the right side of the screen, with the setting options. If you now scroll down to the bottom, you will find the two options for deleting the account and the data, and for exporting the records.

17. one signal

17.1 Scope of data processing

When you visit our web pages, we ask you with a screen message whether we may inform you about news in the future with messages that are sent by your browser (push notifications). The consent is given for the browser in which you have registered. If you agree, you will receive push notifications from our website at regular intervals. For the implementation we use the technology of the provider OneSignal, 201 San Antonio Circle Suite #140, Mountain View, CA, USA. The data protection information of the provider can be found here: https://onesignal.com/privacy_policy. In order to be able to send you push notifications, it is necessary that non-personal data, such as a message, is transmitted to the OneSignal server. This service stores the state of the subscription, the first and last activity on our sites , the device, the platform (browser), the number of sessions, the IP address and the country of origin.

17.2 Legal basis of the processing

The processing of data via OneSignal is based on your consent in accordance with article 6 paragraph 1 lit. a GDPR.

17.3 Purpose of data processing

We use OneSignal's service to provide up-to-date information about us and our products only to customers who are interested.

17.4 Duration of storage

One Signal stores personal data for 30 days.

17.5 Right of revocation and removal

You can delete the one-signal cookie under Cookies in your browser settings.

18. hub spot

On this website we use HubSpot for our Online Marketing activities. HubSpot is a software company from the USA with a subsidiary in Ireland. Contact: HubSpot, 2nd Floor 30 North Wall Quay, Dublin 1, Ireland, telephone: +353 1 5187500.

We use HubSpot for:

  • for the evaluation of the use of our websites (e.g. accesses, visitedsites , duration of stay, etc.)

We trust in the reliability and IT and data security of HubSpot. HubSpot is certified under the Privacy Shield Agreement and therefore offers the guarantee that European data protection level to be observed. In addition, we have concluded a "data processing agreement" with HubSpot. This is a contract in which HubSpot undertakes to protect the data of our users, to process it in accordance with their privacy policy on our behalf and in particular not to disclose it to third parties. More information about the Privacy policy of HubSpot. More information from HubSpot with regard to the EU data protection regulations. More information about the cookies used by HubSpot you can find here and here.

18.1 Scope of data processing

Through the use of the service, so-called "web beacons" are used and cookies are also set, which are stored on your computer and thus enable an analysis of your use of our website by us.

The following information is recorded:

  • IP address
  • the geographical location
  • Type of browser
  • Duration of the visit
  • and the called site

If you have subscribed to our newsletter, your e-mail address, your newsletter "Opt-In" and optionally your name will also be stored here. As soon as you have registered with us, the following data will also be saved:

  • Name, first name
  • Address
  • Phone number
  • Contract data
  • specified expectations

The legal basis for the use of Hubspot's services is Art. 6 I f DS-GVO - legitimate interest. Our legitimate interest in using this service is to optimise our marketing efforts and improve the quality of our service on the website.

18.2 Legal basis of the processing

Data processing is carried out on the basis of our legitimate interests (Art. 6 Par. 1 lit. f GDPR). Our legitimate interest in using this service is to optimize our marketing efforts and improve the quality of service on our website. The purpose of the processing is also to be seen in this legitimate interest.

18.3 Possibilities of objection and removal:

If you wish to object to the general collection, you can prevent the storage of cookies at any time by changing your browser settings.

18.4 Hub spot log files

Every time you visit a website/landing page created with Hubspot, so-called log files are automatically created at Hubspot. The log files can contain the following information, among others: IP address, browser, operating system, Internet provider, visitedsites , etc. The purpose of collecting data is to optimize sites and ensure the security of the site and to compile general statistics on the use of Hubspotsites . The automatically collected data is linked to personal data stored in the hub spot. The legal basis for the storage of data in the log files is Art. 6 para. 1 f GDPR. The data is deleted after 180 days and during this time only authenticated IT staff from Hubspot has access to the log files.

19. rolling bar

19.1 Scope of data processing

On our website and dashboard we use the error analysis service of Rollbar Inc. (Rollbar, 51 Federal Street, San Francisco, CA 94107, USA). Only in case of an error your IP address, the user agent and the called one will be transmitted site to Rollbar. Rollbar, Inc. is certified according to the EU/Swiss-US Privacy Shield. You can find more information about Rollbar's privacy policy at https://rollbar.com/privacy. In addition, we have entered into a "Data Processing Agreement" with Rollbar.

19.2 Legal basis of the processing

We use the service on the basis of our legitimate interests in accordance with Art. 6 (1) lit. f DS-GVO.

19.3 Purpose of the processing

The Rollbar Tracking Tool helps us to improve the technical stabilityof our services by monitoring system stability and detecting code errors from our log files. Rollbar serves these purposes alone and does not evaluate data for advertising purposes.

19.4 Duration of storage

Personal data such as IP address will be anonymized either after 30 days or after a problem has been solved.

20. application process at RAIDBOXES

When you apply for a job at RAIDBOXES, we store and process a whole range of personal data. This includes, of course, your contact details and the data from your CV, but also internal notes that are created during the application process.

20.1 Description and scope of data processing

If you apply for one of our advertised positions, you can do so via a fully encrypted, secure online form. All the information you enter in the application form will be stored in an applicant table in our cloud. This cloud is only RAIDBOXES accessible to employees.

The applicant information will be used exclusively for processing your application and for the decision on the establishment of an employment relationship. Initially, only the personnel managers have access to your data when RAIDBOXES you apply, but in the course of the application process, the respective department heads can also access this data.

Insofar as an employment relationship is established between you and the RAIDBOXES GmbH, we can, in accordance § Section 26 (1) BDSG (new) process the personal data already received from you for the purposes of the employment relationship. However, this further processing only takes place if it is necessary for the employment relationship.

Please note that e-mails sent unencrypted cannot be transmitted completely protected against access. If you would like to apply for one of our advertised positions, please use the respective forms. Of course, it also applies to applications by e-mail that your data will only be used for the application process.

20.2 Purpose of the processing and legal basis

The data processing in the case of an application to RAIDBOXES us serves to establish an employment relationship. The legal basis in this case is § 26 Para. 1 in conjunction with para. 8 sentence 2 BDSG (new). 

Furthermore, it may be necessary to process personal data within the scope of an application in the event of defence against legal claims asserted against us in this application procedure. The legal basis for this case is Article 6 lit. 1 f GDPR. In this case, our legitimate interest results from the defence of legal claims arising from the application procedure, if necessary. 

20.3 Duration of storage

Your personal data will be deleted at the latest after 6 months after completion of the application process. 

20.4 Your rights

You can also object to the processing of your personal data in the application process. Furthermore, as a data subject you have GDPR the right to:

  • Information,
  • Correction or deletion,
  • Restriction of processing,
  • Opposition to processing,
  • Data transferability

21st ComX IVS

For an external e-mail address we use the software ComX IVS. ComX IVS is a software company from Denmark. Contact: ComX IVS, Danneskiold-Samsøes allé 41, 1434 Copenhagen, Denmark. We use ComX IVS to address potential customers in order to find the right contact partners. We trust in the reliability and IT and data security of ComX IVS. ComX IVS is located in the European Union and places the highest value on data security and data protection. In addition, we have concluded a "Data Processing Agreement" with ComX IVS. This is a contract, in which ComX IVS commits itself to protect the data of our users, to process them according to its data protection regulations on our behalf and especially not to pass them on to third parties. More information about the Privacy policy of ComX IVS.

21.1 Description and scope of data processing

On our website we offer you the possibility to register by entering personal data. The data is entered in several steps in input masks and transmitted to us and stored. The data will only be saved by RAIDBOXES us after confirmation of the data protection regulations. The data will not be passed on to third parties. The following data is collected during the registration process:

  • First name
  • Last name
  • E-mail address
  • Job title (optional specification)

21.2 Purpose of the processing and legal basis

Data processing is carried out on the basis of our legitimate interests (Art. 6 Par. 1 lit. f GDPR). Our legitimate interest in using this service is to optimise our marketing activities and improve our service quality. In particular we want to avoid that existing users are addressed twice.

The purpose of the processing is also to be seen in this legitimate interest.

21.3 Duration of storage / possibilities for objection and removal:

The data is stored until you either object to the processing or delete your RAIDBOXES account.

If you wish to object to the general collection of data, you can contact us at any time via chat or at support@raidboxes.io on the website and we will delete your data at ComX IVS.

22nd ActiveCampaign

On this website we use ActiveCampaign for our Online Marketing activities. ActiveCampaign is a software company from the USA with a subsidiary in Ireland. Contact: ActiveCampaign, Block D, Iveagh Court Harcourt Road, Dublin 2, Ireland. Phone: +1 (800) 357-0402.

We trust in the reliability and IT and data security of ActiveCampaign. ActiveCampaign is certified under the Privacy Shield Agreement and thus offers the guarantee of respecting the European level of data protection. We have also concluded a "Data Processing Agreement" with ActiveCampaign. This is a contract in which ActiveCampaign undertakes to protect the data of our users, to process it on our behalf in accordance with their privacy policy and, in particular, not to pass it on to third parties. More information about the ActiveCampaign Privacy Policy. More information from ActiveCampaign regarding EU data protection regulations.

22.1 Scope of data processing

Through the use of the service, so-called "web beacons" are used and cookies are also set, which are stored on your computer and thus enable an analysis of your use of our website by us.

The following information is recorded:

  • IP address
  • the geographical location
  • Type of browser
  • Internet provider
  • Duration of the visit
  • the URLs you have called on our site

If you have registered for our newsletter, your e-mail address, your newsletter "Opt-In", the time of the Opt-In and, optionally, your name will also be stored here. As soon as you have registered with us, the following data will also be saved:

  • Name, first name
  • Address
  • Phone number
  • Contract data
  • specified expectations

22.2 Legal basis of the processing

Data processing is carried out on the basis of our legitimate interests (Art. 6 Para. 1 lit. f DS-GVO). Our legitimate interest in using this service is to optimise our marketing measures. The purpose of the processing is also to be seen in this legitimate interest.

22.3 Purpose of data processing

We use ActiveCampaign to control and send our newsletters and to optimise our marketing measures. In particular, ActiveCampaign allows us to ensure that the advertisements we display are only shown to those users who have an interest in our services or who are potentially interested in our services. ActiveCampaign also allows us to measure the effectiveness of our ads.

22.4 Duration of storage

ActiveCampaign claims that it will delete your data after 12 months at the latest. If you have registered for our newsletter and cancel your free subscription to the newsletter, your data will be deleted immediately after the cancellation of the newsletter subscription.

22.5 Possibility of objection and removal

The above-mentioned data is only collected after explicit consent to the use of our marketing cookies (Cookie Consent). Even after agreeing to the storage of your data, you can still object to tracking by ActiveCampaign at any time. To do this, you can delete the ActiveCampaign cookie from your browser and generally refuse to accept cookies from your browser. How this works in detail, please refer to the instructions of your browser manufacturer.

If you also wish to delete all data stored in ActiveCampaign, please send an e-mail directly to datenschutz@raidboxes.io.

23. integration of third party services and content

Within our online offer, we set the following priorities on the basis of our legitimate interests (i.e. interest in the analysis, optimisation and economic operation of our online offer within the meaning of Art. 6 para. 1 lit. f. GDPR) content or service offerings of third party providers in order to incorporate their content and services, such as videos or fonts (hereinafter collectively referred to as "Content"). This always assumes that the third party providers of this content are aware of the IP address of the users, as without the IP address they would not be able to send the content to their browsers. The IP address is therefore required for the display of this content. We make every effort to use only such content whose respective providers use the IP address only to deliver the content. Third parties may also use so-called pixel tags (invisible graphics, also known as "web beacons") for statistical or marketing purposes. Pixel tags" can be used to evaluate information such as visitor traffic on sites this website. The pseudonymous information may also be stored in cookies on the user's device and may contain, among other things, technical information on the browser and operating system, referring web pages, visiting time and other information on the use of our online offer, as well as being able to be linked to such information from other sources. The following presentation offers an overview of third party providers and their contents, together with links to their data protection declarations, which contain further information on the processing of data and, in some cases already mentioned here, the possibility of objection (so-called opt-out):

  • External fonts from Google, Inc., https://www.google.com/fonts ("Google Fonts"). The integration of Google Fonts is done by a server call at Google (usually in the USA). Privacy Policy, Opt-Out.
  • Maps provided by the "Google Maps" service of the third party provider Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Privacy Policy, Opt-Out.
  • Within our online offer functions of the service Google+ are integrated. These functions are offered by the third party provider Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. If you are logged in to your Google+ account, you can link the contents of our sites website to your Google+ profile by clicking on the Google+ button. This allows Google to associate the visit to our sites website with your user account. We would like to point out that we, as a provider, have sites no knowledge of the content of the transmitted data or its use by Google+. Privacy Policy, Opt-Out.
  • Our online offer uses functions of the network LinkedIn. Provider is the LinkedIn Corporation, 2029 Stierlin Court, Mountain View, CA 94043, USA. Every time you call up one of our sites , the functions of LinkedIn contains, a connection to servers of LinkedIn is building up. LinkedIn is informed that you have visited our website with your IP address. If you click the "Recommend-Button" of LinkedIn and click on it in your account at LinkedIn are logged in, it is LinkedIn to assign your visit to our website to you and your user account. We would like to point out that we, as the provider of this website, have sites no knowledge of the content of the transmitted data or its use by LinkedIn have. Privacy Policy, Opt-Out.
  • We use functions of the XING network. The provider is XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany. Each time one of our sites , which contains functions from Xing, is accessed, a connection is established to Xing servers. To our knowledge, no personal data is stored. In particular, no IP addresses are stored or the usage behaviour is evaluated. Privacy Policy, Opt-Out.
  • External code of the JavaScript framework "jQuery", provided by the third party jQuery Foundation.
  • Our website uses the tracking tool "Crazy Egg" from Crazy Egg Inc. USA to collect statistical data on the use of our website. Using Crazy Egg Inc. technologies, visitor information is collected randomly and transmitted to Crazy Egg Inc. servers. The technology enables us to collect, analyze and visualize the activities of the user during the visit to our website. For example, we have the possibility to use a "heat map" to see which areas of our website are most visited and clicked on. Cookies are also used for this purpose. You may at any time object to the collection, processing and recording of data generated by CrazyEgg.com by notifying the Instructions follow. The purpose and scope of the data collection and the further processing and use of the data by Crazy Egg, as well as your rights and setting options for the protection of your privacy, can be found in the Privacy policy from Crazy Inc.
  • This site uses so-called web fonts, which are offered by Fonticons, Inc. for the uniform representation of fonts. When you access our site site, your browser loads the necessary web fonts into your browser cache to display text and fonts correctly, and the fonts used are hosted directly with us so that the browser you are using does not need to connect to third party providers. Web fonts are used in the interest of a uniform and attractive presentation of our online offer. This constitutes a legitimate interest within the meaning of Article 6 lit. 1 f GDPR. If your browser does not support web fonts, a default font is used by your computer. For more information about Font Awesome, please visit https://fontawesome.com/help and read the Fonticons, Inc: https://fontawesome.com/privacy.
  • We use a Net Promoter Score to measure customer satisfaction using the service provided by Wootric, Inc. Wootric is a software platform based in the USA. The Wootric privacy policy can be viewed here: https://www.wootric.com/company/privacy/

III. Your rights

1. right of information

You can request confirmation at any time as to whether personal data concerning you is being processed by us. This information is of course free of charge, as long as it is not requested above average. In order to be able to give you this information, it is necessary to make a further verification. Therefore, as soon as you submit your application, a randomly generated verification code will be sent to your email address on file with us, which you must confirm.

2. right of rectification

If the personal data we have stored is incorrect or incomplete, you can request correction at any time. The correction must be made by us without delay.

3. the right to restrict processing

Under the following conditions, you may request the restriction of the processing of personal data concerning you:

  1. If you dispute the accuracy of the personal information concerning you for a period of time that allows us to verify the accuracy of the personal information;
  2. The processing is unlawful and you object to the deletion of the personal data and instead demand the restriction of the use of the personal data;
  3. we no longer need the personal data for the purposes of the processing, but you need it to assert, exercise or defend legal claims, or
  4. If you have lodged an objection to the processing pursuant to Article 21 1 GDPR and it is not yet clear whether the legitimate reasons given by us outweigh your reasons.

Where the processing of personal data relating to you has been restricted, such data may be processed, with the exception of storage, only with your consent or for the purpose of pursuing, exercising or defending legal claims or protecting the rights of another natural or legal person or on grounds of an important public interest of the Union or of a Member State. If the restriction of processing has been restricted in accordance with the above-mentioned conditions, you will be informed by us, the RAIDBOXES GmbH, before the restriction is lifted.

4. right of cancellation

Unless there is a legitimate interest to the contrary, you can assert your right to deletion at any time.

5. revocation of consents

Any data processing that takes place on the basis of your consent can be stopped as soon as you revoke your consent. The revocation can be made at any time and with effect for the future. As we are obliged to store the consent given due to our accountability, the revocation must be in writing, whereby a revocation by e-mail is sufficient.