Privacy policy

In the following, we inform you about the processing of your personal data in the context of the use of our online offer.

Responsible

Raidboxes GmbH
Harbour road 32
48153 Münster

Mail: [email protected]

Contact

If you have any questions about data protection, please contact:

Özlem Adaslik

Mail: [email protected]

Data Protection Officer

Nils Volmer
meibers.datenschutz GmbH
Haus Sentmaring 9
48151 Münster

Mail: [email protected]

1. Storage duration

In general, we delete your personal data when they are no longer necessary for the purposes for which they were collected or otherwise processed.

If we have asked for your consent and you have given it, we will delete your personal data if you withdraw your consent and there is no other legal basis for the processing.

We will erase your personal data if you object to the processing and there are no overriding legitimate grounds for the processing or if you object to the processing for the purposes of direct marketing or related profiling.

If deletion is not possible because processing is still necessary to comply with a legal obligation (statutory retention periods, etc.) to which we are subject or to assert, exercise or defend legal claims, we will restrict the processing of your personal data.

You can also find more information about the storage period in the following passages.

2. Your Rights

You have the following rights with regard to your personal data:

  • Right to information
  • Right to rectification
  • Right to erasure
  • Right to restriction of processing
  • Right to object to the processing
  • Right to data portability

You have the right to object, on grounds relating to your particular situation, at any time to processing of your personal data which is based on point (e) or (f) of Article 6(1) GDPR, including profiling based on those provisions. We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the establishment, exercise or defense of legal claims.

If we process your personal data for direct marketing purposes, you have the right to object at any time to the processing of your personal data for such marketing, which includes profiling to the extent that it is related to such direct marketing. We will then no longer process your personal data for these purposes.

You have the right to revoke consent to the processing of your personal data at any time, if you have given us such consent. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

You have the right to complain to a supervisory authority about our processing of your personal data.

3. Provision of your personal data

The provision of your personal data is generally not required by law or contract and is not necessary for the conclusion of a contract. You are generally not obliged to provide your personal data. If this should nevertheless be the case, we will point this out to you separately when collecting your personal data (for example by marking the mandatory fields in input forms).

Failure to provide your personal data regularly results in us not processing your personal data for one of the purposes described below and you not being able to take advantage of an offer related to the respective processing (i.e. without providing your email address, you will not receive our newsletter).

4. Web Hosting

We use external services for web hosting. These services may have access to personal data that is processed in the context of the use of our online offer. For more information about the services used, the scope of data processing and the technologies and processes involved in the use of the respective services, please refer to further information about the services we use at the end of this passage and the links provided there.

Amazon Web Services

Provider: Amazon Web Services EMEA SARL, Luxembourg.

Website: https://aws.amazon.com

Further information & data protection: https://aws.amazon.com/de/legal/

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.
The provider has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

DigitalOcean

Provider: DigitalOcean, LLC, United States of America.

Website: https://www.digitalocean.com

Further information & data protection: https://www.digitalocean.com/legal/

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.
The provider has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

5. Web server log files

We process your personal data in order to be able to display our online offer and to guarantee the stability and security of our online offer. Information (for example, requested element, accessed URL, operating system, date and time of request, browser type and version used, IP address, protocol used, amount of data transferred, user agent, referrer URL, time zone difference to Greenwich Mean Time (GMT) and/or HTTP status code) is stored in so-called log files (access log, error log, etc.).

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the proper display of our online offering and ensuring the stability and security of our online offering.

6. Security

For security reasons and to protect the transmission of your personal data and other confidential content, we use encryption on our domain. You can recognize this in the browser line by the string “https://” and the lock symbol.

We also use two-factor authentication to provide proof of a user’s identity using a combination of two different identifiers.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest here is your clear identification in order to prevent unauthorized access. If the processing is necessary to fulfill a contract with you or to carry out pre-contractual measures based on your request, the legal basis for the processing is also Art. 6 para. 1 lit. b GDPR.

We use external services for two-factor authentication. For more information about the services used, the scope of the data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place when using the respective services, and, if applicable, information about the logic involved and the scope and intended effects of such processing for you, please refer to the further information about the services we use at the end of this passage and the links provided there.

Authy

Provider: Twilio Ireland Limited, Ireland.

Website: https://www.twilio.com/de/authy-static

Further information & data protection: https://www.twilio.com/legal/tos and https://www.twilio.com/legal/privacy

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.
The provider has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov ), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

Sentry

Provider: Sentry Inc., United States of America

Website: https://sentry.io/welcome/

Further information & data protection: ttps://sentry.io/privacy/ and https://sentry.io/legal/Garantie:EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.
The provider has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

7. Contact

If you contact us, we will process your personal data to respond to your contact.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the processing of your contact. If the processing is necessary to fulfill a contract with you or to carry out pre-contractual measures based on your request, the legal basis for the processing is also Art. 6 para. 1 lit. b GDPR.

We use external services to provide and maintain our channels for contact and communication. These services may have access to personal data that is processed in the context of contacting us. For more information about the services used, the scope of data processing and the technologies and processes involved in the use of the respective services, please refer to the further information about the services we use and the links provided there:

Aircall

Provider: Aircall SAS, France.

Website: https://aircall.io/de/

Further information & data protection: https://aircall.io/privacy/ and https://aircall.io/security/

Gmail

Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.

Website: https://www.google.com/intl/de/gmail/about/

Further information & data protection: https://policies.google.com/?hl=de

The transfer of personal data to third countries depends on the respective Google service and is subject to the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google’s responsibility can be found at the following link: https://business.safety.google/gdpr/. You can view a copy of the EU standard contractual clauses there.
Google has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

To support the processing of your contact, we use support systems (appointment booking systems, live chats, ticket systems or help desks, etc.) and employ external services for this purpose. These services may have access to personal data that is processed when you contact us via a support system. Further information on the services used, the scope of data processing and the technologies and processes involved in the use of the respective services can be found below in the further information on the services used by us and under the links provided there:

Calendly

Provider: Calendly, LLC, United States of America. 

Website: https://calendly.com/de

Further information & data protection: https://calendly.com/de/pages/privacy, https://calendly.com/pages/security and https://help.calendly.com/hc/de/articles/360007032633

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

The provider has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

Intercom Business Messenger

Provider: Intercom, Inc, United States of America, and Intercom R&D Unlimited Company, Ireland.

Website: https://www.intercom.com

Further information & data protection: https://www.intercom.com/legal/privacy and https://www.intercom.com/legal/security-policy

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.
The provider has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

8. Cookies & similar technologies

Cookies are used. Cookies are text information stored on your terminal device. A distinction is made between session cookies, which are deleted immediately after you close your browser, and persistent cookies, which are only deleted after a certain time.

In addition to cookies, similar technologies (tracking pixels, web beacons, etc.) may also be used. The following statements on cookies also apply to similar technologies. Likewise, these statements apply to further processing in connection with cookies and similar technologies (analysis & marketing, etc.). This also applies in particular to any consent you may have given for the use of cookies. This also extends to other technologies and to further processing in connection with cookies and similar technologies.

Cookies can be used to enable the use of certain functions. Cookies can also be used to measure the reach of our online offer, to design it according to needs and interests and thus to optimize our online offer and our marketing. Cookies can be used by us and by external services.

We use a consent tool to manage the cookies used and the related consents. Details about the cookies used (purpose, storage period, external service, etc.) and the consent tool can be found in the following passages and the consent tool we use.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the management of the cookies used and the related consents. Depending on the purpose of the processing, our legitimate interests can be found in the following passages.

You can prevent the storage of cookies by selecting the appropriate settings in your browser. Below we provide you with typical browser links where you can find further information on managing cookie settings:

You can find further objection options at the following links: https://www.youronlinechoices.eu/, https://youradchoices.ca/en/tools, https://optout.aboutads.info and https://optout.networkadvertising.org/?c=1.

If you prevent cookies from being saved, this may impair the proper functioning of our online services. If you delete all cookies, the above settings will also be lost and you will have to make them again.

You can also activate the “Do-Not-Track” function of your browser to signal that you do not wish to be tracked. Below we provide you with typical browser links where you can find further information on the “Do-Not-Track” setting:

You can also revoke or manage your consent with regard to the cookies used in the consent tool we use here.

9. Registration and ordering

If you register for a free trial period or place an order, we process your personal data in order to process and handle your order and to fulfill the associated rights and obligations. As part of the registration or order process, it is necessary for you to create a customer account so that you can use our services. We provide you with our contract texts digitally and enable you to countersign them by electronic signature. 

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the processing and handling of your registration or your order. If the processing is necessary to fulfill a contract with you or to carry out pre-contractual measures based on your request, the legal basis for the processing is also Art. 6 para. 1 lit. b GDPR.

Recipients of your personal data may be third parties (shipping service providers, banks, tax advisors, lawyers, authorities, etc.), insofar as this is necessary for the processing and handling of your registration or your order and the associated rights and obligations.

We use external services for the digital provision of our contract texts and the possibility of countersigning them with an electronic signature. We transmit your personal data to these services insofar as this is necessary for the electronic signature. For more information about the services used, the scope of data processing, and the technologies and processes involved in the use of the respective services, please refer to the additional information about the services we use at the end of this passage and the links provided there.

We use external services to process payments. We transmit your personal data to these services insofar as this is necessary for the processing of payments. For more information about the services used, the scope of data processing and the technologies and processes involved in the use of the respective services, please refer to the additional information about the services we use at the end of this passage and the links provided there.

PAYONE

Provider: PAYONE GmbH, Germany.

Website: https://www.payone.com/

Further information & data protection: https://www.payone.com/datenschutz/, https://www.payone.com/dsgvo/ and https://www.payone.com/dsgvo-haendler/

Chargebee

Supplier: CHARGEBEE INC., United States of America.

Website: https://www.chargebee.com/

Further information & data protection: https://www.chargebee.com/privacy/

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

GoCardless

Provider GoCardless Ltd, United Kingdom.

Website: https://gocardless.com/de-de/

Further information & data protection: https://gocardless.cdn.prismic.io/gocardless/b020ae8f-a128-4f99-88e0-71865c01acfc_GoCardless+Privacy+Notice+draft+updates+2021.10+%282%29_EN.docx.pdf

Guarantee: Adequacy decision of the EU Commission.

DocuSign

Provider: DocuSign, Inc, United States of America.

Website: https://www.docusign.de/

Further information & data protection: https://www.docusign.de/unternehmen/datenschutzGarantie:EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us. In addition: Processing as a processor and controller is carried out on the basis of approved binding internal data protection regulations that ensure a level of data protection that meets the requirements of the GDPR (“Binding Corporate Rules”, Art. 47 GDPR): https://www.docusign.com/trust/privacy/bcrp-privacy-code

10. Email box

We use external services for the provision and maintenance of the email boxes that can be booked for a fee. These services may have access to personal data that is processed when contacting us. Further information on the services used, the scope of data processing and the technologies and processes involved in the use of the respective services can be found below in the further information on the services used by us and under the links provided there:

Mailbox.org

Provider: Heinlein Hosting GmbH, Germany

Website: https://mailbox.org/

Further information & data protection: https://mailbox.org/de/datenschutzerklaerung

11. Newsletter

If we have asked for your consent and you have given it, we will process your email address in order to carry out email marketing and, if necessary, other personal data in order to address you personally. The legal basis for the processing is Art. 6 para. 1 lit. a GDPR. The content of the email marketing is specifically described when your consent is obtained. In addition, the email marketing contains information about us, our goods and services.

We use the so-called double opt-in procedure to prevent possible misuse of your personal data. For this purpose, after collecting your email address, we send you an email to the email address you provided, in which we ask you to confirm that you actually want the email marketing. The legal basis for the processing is art. 6 par. 1 lit. f GDPR. Our legitimate interest is the legally compliant implementation of email marketing.

We log the time of your consent and the time of your confirmation as well as your IP address and the content of your declaration of consent in order to be able to prove that your consent was obtained in accordance with the law. The legal basis for the processing is art. 6 par. 1 lit. f GDPR. Our legitimate interest is the legally compliant implementation of email marketing.

We use external services for e-mail marketing. For more information about the services used, the scope of the data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place when using the respective services, and, if applicable, information about the logic involved and the scope and intended effects of such processing for you, please refer to the further information about the services we use at the end of this passage and the links provided there.

You can revoke your consent at any time. The revocation of your consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation. To revoke your consent, you can use the link provided for this purpose in the emails or contact us at the contact details provided above.

If you have revoked your consent, we reserve the right to process your personal data in a so-called blacklist/blocklist in order to be able to ensure in the future that no further email marketing takes place in connection with this personal data. The legal basis for the processing is art. 6 par. 1 lit. f GDPR. Our legitimate interest here is the prevention of unwanted email marketing.

We process your personal data in the context of tracking and performance measurement in order to measure the reach of our email marketing, to design it in line with your needs and interests and thus to optimize our email marketing. This may also involve profiling (for the purposes of advertising, personalized information, etc.). Profiling can also take place across services and devices. If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the optimization of our email marketing. A separate withdrawal of your consent or objection in relation to tracking or performance measurement is unfortunately not possible. You would have to use the above options to withdraw your consent or object to the processing of your personal data for the purpose of email marketing as a whole.

ActiveCampaign

Provider: ActiveCampaign, LLC, United States of America.

Website: https://www.activecampaign.com/de/

Further information & data protection: https://www.activecampaign.com/de/legal and https://www.activecampaign.com/d e/legal/privacy-policy

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.
The provider has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

Mailgun

Provider: Mailgun Technologies, Inc., United States of America.

Website: https://www.mailgun.com

Further information & data protection: https://www.mailgun.com/gdpr/ and https://www.mailgun.com/privacy-policy/

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

Woodpecker

Provider: Woodpecker.co S.A., Poland.

Website: https://woodpecker.co

Further information & data protection: https://woodpecker.co/gdpr-compliance/ and https://woodpecker.co/privacy-policy/

12. Marketing to existing customers – advertising by e-mail

If we have received your email address in the context of the sale of a good or service and you have not objected to this, we will process your email address in order to conduct email marketing for our own similar goods or services, and possibly other personal data in order to address you personally. The legal basis for the processing is art. 6 par. 1 lit. f GDPR. Our legitimate interest is direct advertising.

We use external services for e-mail marketing. For more information about the services used, the scope of the data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place when using the respective services, and, if applicable, information about the logic involved and the scope and intended effects of such processing for you, please refer to the further information about the services we use at the end of this passage and the links provided there.

You have the right to object to the processing of your personal data for the purpose of email marketing at any time without incurring any costs other than the transmission costs according to the prime rates. We will then no longer process your personal data for the purpose of email marketing. To object to the processing of your personal data for the purpose of email marketing, you can use the link provided for this purpose in the emails or contact us at the contact details provided above.

If you have objected to the processing of your personal data for the purpose of email marketing, we reserve the right to process your personal data in a so-called blacklist/blocklist in order to be able to ensure in the future that no further email marketing takes place in connection with this personal data. The legal basis for the processing is art. 6 par. 1 lit. f GDPR. Our legitimate interest here is the prevention of unwanted email marketing.

We process your personal data in the context of tracking or performance measurement in order to measure the reach of our email marketing, to design it in line with your needs and interests and thus to optimize our email marketing. This may also involve profiling (for the purposes of advertising, personalized information, etc.). Profiling can also take place across services and devices. If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the optimization of our email marketing. A separate withdrawal of your consent or objection in relation to tracking or performance measurement is unfortunately not possible. You would have to use the above options to withdraw your consent or object to the processing of your personal data for the purpose of email marketing as a whole.

ActiveCampaign

Provider: ActiveCampaign, LLC, United States of America.

Website: https://www.activecampaign.com/de/

Further information & data protection: https://www.activecampaign.com/de/legal and https://www.activecampaign.com/d e/legal/privacy-policy

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

The provider has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov) , which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

Intercom Business Messenger

Provider: Intercom, Inc., United States of America, and Intercom R&D Unlimited Company, Ireland.

Website: https://www.intercom.com/de

Further information & data protection: https://www.intercom.com/legal/privacy and https://www.intercom.com/legal/security-policy

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.
The provider has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

Mailgun

Provider: Mailgun Technologies, Inc., United States of America.

Website: https://www.mailgun.com

Further information & data protection: https://www.mailgun.com/gdpr/ and https://www.mailgun.com/privacy-policy/

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

13. Other marketing measures

Speedtest

If we have received your e-mail address in the context of carrying out a speed test and you have not objected to this, we will process your e-mail address in order to carry out e-mail marketing for our own similar goods or services and, if necessary, other personal data in order to address you personally. We process your email address for our own similar goods or services and, if necessary, other personal data in order to address you personally. The legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is direct advertising.

E-Books

If we have received your email address and telephone number in connection with the provision of our e-books and you have not objected to this, we will process your email address in order to conduct email marketing for our own similar goods or services and, if necessary, other personal data in order to address you personally. The legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is direct advertising.

14. Analysis & marketing

We process your personal data in order to measure the reach of our online offer, to design it according to needs and interests and thus to optimize our online offer and our marketing.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the optimization of our online offer and our marketing.

We use external services for analysis and marketing. This may also involve profiling (for purposes of advertising, personalized information, etc.). Profiling may also take place across services and devices. For more information about the services used, the scope of data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place when using the respective services, and, if applicable, information about the logic involved and the scope and intended effects of such processing for you, please refer to the further information about the services we use at the end of this passage and the links provided there.

You can prevent the storage of cookies by selecting the appropriate settings in your browser. Below we provide you with typical browser links where you can find further information on managing cookie settings:

You can find further objection options under the following links: https://www.youronlinechoices.eu/, https://youradchoices.ca/en/tools, https://optout.aboutads.info and https://optout.networkadvertising.org/?c=1.

If you prevent cookies from being saved, this may impair the proper functioning of our online offering. If you delete all cookies, the above settings will also be lost and you will have to make them again.

You can also activate the “Do-Not-Track” function of your browser to signal that you do not wish to be tracked. Below we provide you with typical browser links where you can find further information on the “Do-Not-Track” setting:

Albacross Nordic AB

Provider: Albacross Nordic AB, Sweden.

Website: https://albacross.com/

Further information & data protection: https://albacross.com/privacy-policy/ and https://albacross.com/cookie-policy/

Facebook pixel with custom audiences

Provider: Meta Platforms Ireland Limited, Ireland. Meta Platforms Ireland Limited is a subsidiary of Meta Platforms, Inc, United States of America.

Website: https://www.facebook.com/business/help/744354708981227?id=2469097953376494

Weitere Informationen & Datenschutz: https://www.facebook.com/business/help/742478679120153?id=1205376682832142&recommended_by=218844828315224, https://www.facebook.com/business/help/1474662202748341?id=2469097953376494&locale=de_DE, https://de-de.facebook.com/privacy/explanation, https://de-de.facebook.com/policies/cookies/, https://www.facebook.com/help/566994660333381?ref=dp und https://de-de.facebook.com/help/568137493302217

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

The provider has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

Google Ads conversion tracking

Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.

Website: https://support.google.com/google-ads/answer/1722022?hl=de

Further information & data protection: https://policies.google.com/?hl=de

The transfer of personal data to third countries depends on the respective Google service and is subject to the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google’s responsibility can be found at the following link https://business.safety.google/gdpr/. You can request a copy of the EU standard contractual clauses from us.

Google has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

Information on joint responsibility

Raidboxes uses Google Ads Remarketing in cooperation with other companies from the following organisations

team.blue Group. All companies in the group act as joint controllers for the processing. The

means that Raidboxes will process personal data collected through this service by other companies in the Group.

for its own remarketing purposes. Each company in the Group informs its own

users about the processing of personal data within the scope of joint responsibility. Users can inform their

Exercise data protection rights via @{this_application} or any other company in the group.

team.blue companies acting as joint controllers:

team.blue N.V., Skaldenstraat 121, 9042 Gent, Belgium – Privacy Policy.

iubenda s.r.l., via San Raffaele 1, 20121 Milan, Italy – Privacy Policy.

LeadInfo B.V., Rivium Quadrant 141, 2909 LC Capelle aan den IJssel, The Netherlands – Privacy Policy.

Hypernode B.V., Herenstraat 49 A, 3911JB Rhenen, The Netherlands – Privacy Policy.

Google AdSense

Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.

Website: https://www.google.com/intl/de_de/adsense/start/

Further information & data protection: https://policies.google.com/?hl=de

The transfer of personal data to third countries depends on the respective Google service and is subject to the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google’s responsibility can be found at the following link https://business.safety.google/gdpr/. You can request a copy of the EU standard contractual clauses from us.

Google has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

Google Analytics

Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.

Website: https://marketingplatform.google.com/intl/de/about/analytics/

Further information & data protection: https://support.google.com/analytics/answer/6004245?hl=de and https://policies.google.com/?hl=de

The transfer of personal data to third countries depends on the respective Google service and is subject to the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google’s responsibility can be found at the following link https://business.safety.google/gdpr/. You can request a copy of the EU standard contractual clauses from us.

Google has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

Google Optimise

Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.

Website: https://marketingplatform.google.com/intl/de/about/optimize/

Further information & data protection: https://support.google.com/analytics/answer/6004245?hl=de and https://policies.google.com/?hl=de

The transfer of personal data to third countries depends on the respective Google service and is subject to the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google’s responsibility can be found at the following link https://business.safety.google/gdpr/. You can request a copy of the EU standard contractual clauses from us.

Google has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

Google Remarketing

Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.

Website: https://support.google.com/google-ads/answer/2453998

Further information & data protection: https://policies.google.com/?hl=de

The transfer of personal data to third countries depends on the respective Google service and is subject to the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google’s responsibility can be found at the following link https://business.safety.google/gdpr/. You can request a copy of the EU standard contractual clauses from us.

Google has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

Google Tag Manager

Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.

Website: https://support.google.com/tagmanager/answer/6102821?hl=de

Further information & data protection: https://policies.google.com/?hl=de

The transfer of personal data to third countries depends on the respective Google service and is subject to the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google’s responsibility can be found at the following link: https://business.safety.google/gdpr/. You can view a copy of the EU standard contractual clauses there.

Google has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

Google Universal Analytics

Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.

Website: https://support.google.com/analytics/answer/2790010?hl=de

Further information & data protection: https://support.google.com/analytics/answer/6004245?hl=de and https://policies.google.com/?hl=de

The transfer of personal data to third countries depends on the respective Google service and is subject to the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google’s responsibility can be found at the following link https://business.safety.google/gdpr/. You can request a copy of the EU standard contractual clauses from us.

Google has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

FullStory

Provider: FullStory, Inc, United States of America.
Website: https://www.fullstory.com/
Further information & data protection: https://help.fullstory.com/hc/en-us/articles/360020624254-Security-Overview and https://www.fullstory.com/legal/privacy-policy/
Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.
The provider has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

uppr GmbH
Provider: uppr GmbH, Germany
Website: https://www.uppr.rocks/
Further information & data protection: https://netzwerk.uppr.de/privacy-policy.do and https://www.uppr.rocks/imprint-page-0

Optinmonster

Provider: Retyp, LLC, United States of America.

Website: https://optinmonster.com/

Further information & data protection: https://optinmonster.com/privacy/ and https://optinmonster.com/gdpr/

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

RUMvision

Provider: RUMvision B.V, Netherlands
Website: https://www.rumvision.com/
Further information & data protection: https://www.rumvision.com/statements/terms-and-conditions/ and https://www.rumvision.com/statements/privacy-policy/

Microsoft Advertising

Provider: Microsoft Corporation, United States of America.

Website: https://about.ads.microsoft.com/de-de

Further information & data protection: https://privacy.microsoft.com/de-de/ and https://www.microsoft.com/de-de/trust-center/privacy

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us. The provider has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

Rollbar

Provider: Rollbar Inc, United States of America.

Website: https: //rollbar.com/

Further information & data protection: https://docs.rollbar.com/docs/privacy-policy and https://rollbar.com/compliance/gd pr/#

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us. Guarantee: The provider has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

Leadinfo

Provider: Leadinfo B.V., Netherlands

Website: https://www.leadinfo.com/de/

Further information & data protection: https://www.leadinfo.com/de/datenschutz/ and https://help.leadinfo.com/d e/gdpr

15. social media presences

We maintain social media presences on external services in order to be able to communicate with users there and thus optimise our online offering and our marketing.

This privacy policy also applies to the following social media presences:

https://www.facebook.com/raidboxes
https://www.instagram.com/raidboxes/
https://www.linkedin.com/company/raidboxes/
https://www.xing.com/pages/raidboxes
https://www.kununu.com/de/raidboxes1

If we have asked you for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the optimisation of our online offering and our marketing.

Profiling (for the purposes of advertising, personalised information, etc.) may also occur as part of the use of external services. Profiling can also take place across services and devices. Further information on the services used, the scope of data processing and the technologies and procedures used when using the respective services, as well as whether profiling takes place when using the respective services and, if applicable, information on the logic involved and the scope and intended effects of such processing for you can be found in the further information on the services we use at the end of this passage and under the links provided there.

Facebook

Provider: Meta Platforms Ireland Limited, Ireland. Meta Platforms Ireland Limited is a subsidiary of Meta Platforms, Inc, United States of America.

Website: https://www.facebook.com

The provider and we are jointly responsible. We have concluded a corresponding agreement with the provider. You can request a copy of the agreement from us.

Further information & data protection: https://developers.facebook.com/docs/plugins/, https://www.facebook.com/legal/terms/information_about_page_insights_data, https://de-de.facebook.com/privacy/explanation, https://de-de.facebook.com/policies/cookies/, https://www.facebook.com/help/566994660333381?ref=dp and https://de-de.facebook.com/help/568137493302217

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

The provider has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission

Instagram

Provider: Meta Platforms Ireland Limited, Ireland. Meta Platforms Ireland Limited is a subsidiary of Meta Platforms, Inc, United States of America.

Website: https://www.instagram.com

Further information & data protection: https://help.instagram.com/581066165581870 and https://help.instagram.com/519522125107875

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

The provider has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission

LinkedIn

Provider: If you are located in the EU, the European Economic Area (EEA) or Switzerland, this service is provided by LinkedIn Ireland Unlimited Company, Ireland. If you are located outside the EU, the European Economic Area (EEA) or Switzerland, this service is provided by LinkedIn Corporation, United States of America.

Website: https://www.linkedin.com

Further information & data protection: https://de.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy and https://de.linkedin.com/legal/cookie-policy?trk=homepage-basic_footer-cookie-policy

Guarantee: EU standard contractual clauses You can request a copy of the EU standard contractual clauses from us.

Xing

Provider: New Work SE, Germany.

Website: https://www.xing.de

Further information & data protection: https://privacy.xing.com/de and https://privacy.xing.com/d e/datenschutzerklaerung

kununu

Kununu

Provider: New Work SE, Germany.

Website: https://www.kununu.com

Further information & data protection: https://privacy.xing.com/de/datenschutzerklaerung

16. Further tools/plug-ins

We use tools to integrate the web applications we use and to automate workflows in order to optimize our online offering.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the optimization of our online offer.

Further information about the services we use can be found at the end of this passage under the links provided there.

Zapier
Provider: Zapier, Inc., United States of America
Website: https://zapier.com
Further information & data protection: https://zapier.com/legal/terms-of-service and https://zapier.com/privacy
Guarantee: The provider has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

17. Scripts

We use scripts from external services in order to be able to display our online offer to you and to ensure that the scripts are always up-to-date.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the proper display of our online offer and the guarantee of current fonts and scripts.

Profiling (for purposes of advertising, personalized information, etc.) may also occur in the context of the use of external services. Profiling may also take place across services and devices. For more information about the services used, the scope of data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place when using the respective services, and, if applicable, information about the logic involved and the scope and intended effects of such processing for you, please refer to the further information about the services we use at the end of this passage and the links provided there.

jQuery

Provider: The OpenJS Foundation, United States of America.

Website: https://openjsf.org/WeitereInformation & data protection: https://images.prismic.io/openjsf/ba00b254-685f-4e54-b1ca-17984b0f3e55_OpenJS-Foundation-Privacy-Policy-2019-11-15.pdf

18. Cards

We use maps from external services to show you our location and to enable you to use the other features of these external services in the context of the maps.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the simplified use of maps.

Profiling (for purposes of advertising, personalized information, etc.) may also occur in the context of the use of external services. Profiling may also take place across services and devices. For more information about the services used, the scope of data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place when using the respective services, and, if applicable, information about the logic involved and the scope and intended effects of such processing for you, please refer to the further information about the services we use at the end of this passage and the links provided there.

Google Maps

Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.

Website: https://www.google.de/maps

Further information & data protection: https://policies.google.com/?hl=de

The transfer of personal data to third countries depends on the respective Google service and is subject to the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google’s responsibility can be found at the following link: https://business.safety.google/gdpr/. You can request a copy of the EU standard contractual clauses from us.

Google has signed up to the EU-US Data Privacy Framework (https://www.dataprivacyframework.gov), which guarantees compliance with an appropriate level of data protection on the basis of a decision by the European Commission.

19. Rating platforms

We use evaluation platforms and process your personal data in order to have our services evaluated and thus optimize our online offering and our marketing.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the optimization of our online offer and our marketing.

If we or the review platforms we use have asked you for your consent and you have given it, we or the review platforms we use will process your personal data in order to remind you to submit a review. The legal basis for the processing is Art. 6 para. 1 lit. a GDPR.

Further information on the rating platforms we use, the scope of data processing and the technologies and procedures for using the respective rating platforms can be found in the further information on the rating platforms we use at the end of this passage and under the links provided there.

Trusted Shops
Provider: Trusted Shops AG, Germany.
Website: https://www.trustedshops.de/bewertungen/
Further information & privacy policy: https://www.trustedshops.de/impressum/#datenschutz

20. Applications

If you apply for a job, we process your personal data in order to carry out the application procedure and to make a decision on the establishment of an employment relationship. After the end of the application process, we restrict the processing of your personal data and delete or destroy it no later than 6 months after you receive the rejection, or return the application documents to you and delete or destroy any copies, unless you have consented to our further use of your personal data.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the proper execution of the application procedure and, if necessary, the defense against claims due to the rejection of an application. If the processing is necessary for the decision on the establishment of an employment relationship, the legal basis for the processing is also Section 26 (1) sentence 1 BDSG.

21. Comments

If you leave comments via the functions provided for this purpose (on blog entries, products, etc.), we process your personal data in order to be able to display your comments and to prevent any abuse.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a GDPR. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f GDPR. Our legitimate interest is the proper display of your comments and the prevention of misuse.

22. Order processing contract

If you intend to transfer personal data to us when using our products, enable you to conclude a contract for order processing (AVV) online with us. With this agreement you can legally confirm to your customers the security of the data on our servers.