Privacy Policy

The protection of your data is very important to us! Therefore we follow the legal regulations for data protection (GDPR) and do everything possible to protect your data. The person responsible within the meaning of the Basic Data Protection Regulation and other national data protection laws of the member states of the European Union (EU) and other data protection regulations is the:

In the following, we inform you about the processing of your personal data in the context of the use of our online offer.


Responsible

Raidboxes GmbH

Hafenstraße 32

48153 Münster

Phone: +49 251 1498 2000

Mail: datenschutz@raidboxes.de


Contact

If you have any questions about data protection, please contact:

Özlem Adaslik

Mail: datenschutz@raidboxes.de


Data Protection Officer

Nils Volmer

meibers.datenschutz GmbH

Haus Sentmaring 9

48151 Münster

Mail: datenschutz@raidboxes.de

1. storage period

We generally delete your personal data when it is no longer necessary for the purposes for which it was collected or otherwise processed.

If we have asked for your consent and you have given it, we will delete your personal data if you withdraw your consent and there is no other legal basis for the processing.

We will delete your personal data if you object to the processing and there are no overriding legitimate grounds for the processing or if you object to the processing for the purposes of direct marketing or related profiling.

If deletion is not possible because processing is still necessary to comply with a legal obligation (statutory retention periods, etc.) to which we are subject or to assert, exercise or defend legal claims, we will restrict the processing of your personal data.

Further information on the storage period can also be found in the following passages.

2. your rights

You have the following rights with regard to your personal data:
- Right of access
- Right of rectification
- Right of erasure
- Right to restrict processing
- Right to object to processing
- Right of data portability

You have the right to object at any time to the processing of your personal data on the basis of Article 6(1)(e) or (f) DS-GVO for reasons arising from your particular situation; this also applies to profiling based on these provisions. We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.
If we process your personal data for the purpose of direct marketing, you have the right to object at any time to the processing of your personal data for the purpose of such marketing; this also applies to profiling, insofar as it is related to such direct marketing. We will then no longer process your personal data for these purposes.

You have the right to revoke your consent to the processing of your personal data at any time if you have given us such consent. The revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation.

You have the right to complain to a supervisory authority about our processing of your personal data.

3. provision of your personal data

The provision of your personal data is generally not required by law or contract and is not necessary for the conclusion of a contract. You are generally not obliged to provide your personal data. If this should nevertheless be the case, we will point this out to you separately when collecting your personal data (for example by marking the mandatory fields in input forms).

Failure to provide your personal data regularly results in us not processing your personal data for one of the purposes described below and you not being able to take advantage of an offer related to the respective processing (example: without providing your email address, you will not receive our newsletter).

We use external services for web hosting. These services may have access to personal data that is processed in the course of using our online services. For more information on the services used, the scope of data processing and the technologies and processes involved in the use of the respective services, please refer to the further information on the services we use at the end of this passage and the links provided there.

Amazon Web Services
Provider: Amazon Web Services EMEA SARL, Luxembourg.
Website: https://aws.amazon.com
Further information & data protection: https://aws.amazon.com/de/legal/
Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

4. web hosting

DigitalOcean
Provider: DigitalOcean, LLC, United States of America.
Website: https://www.digitalocean.com
Further Information & Privacy Policy: https://www.digitalocean.com/legal/
Warranty: EU Standard Contractual Clauses. You can request a copy of the EU standard contractual clauses from us.

5. Web server log files

We process your personal data in order to be able to display our online offer and to guarantee the stability and security of our online offer. Information (e.g. requested element, URL called up, operating system, date and time of the request, browser type and version used, IP address, protocol used, amount of data transferred, user agent, referrer URL, time zone difference to Greenwich Mean Time (GMT) and/or HTTP status code) is stored in so-called log files (access log, error log, etc.).

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is the proper display of our online offer and ensuring the stability and security of our online offer.

6. safety

For security reasons and to protect the transmission of your personal data and other confidential content, we use encryption on our domain. You can recognise this in the browser line by the character string "https://" and the lock symbol.

We also use two-factor authentication to provide proof of a user's identity using a combination of two different identifiers.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is your unique identification in order to prevent unauthorised access. If the processing is necessary for the fulfilment of a contract with you or for the implementation of pre-contractual measures based on your request, the legal basis for the processing is also Art. 6 para. 1 lit. b DS-GVO.

We use external services for two-factor authentication. For more information about the services used, the scope of data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place in the use of the respective services, and, if applicable, information about the logic involved and the scope and intended effects of such processing for you, please refer to the further information about the services we use at the end of this passage and the links provided there.

Authy
Provider: Twilio Ireland Limited, Ireland.
Website: https://www.twilio.com/de/authy-static
Further information & privacy: https://www.twilio.com/legal/tos and https://www.twilio.com/legal/privacy
Warranty: EU Standard Contractual Clauses. You can request a copy of the EU Standard Contractual Clauses from us.

7. contacting

If you contact us, we process your personal data in order to process your contact.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is the processing of your contact. If the processing is necessary for the fulfilment of a contract with you or for the implementation of pre-contractual measures based on your request, the legal basis for the processing is also Art. 6 (1) lit. b DS-GVO.

We use external services to provide and maintain our channels for contact and communication. These services may have access to personal data that is processed in the context of contacting us. Further information on the services used, the scope of data processing and the technologies and processes involved in the use of the respective services can be found below in the further information on the services used by us and under the links provided there:

Aircall
Provider: Aircall SAS, France.
Website: https://aircall.io/de/
Further information & privacy: https://aircall.io/privacy/ and https://aircall.io/security/
Warranty: EU Standard Contractual Clauses. You can request a copy of the EU Standard Contractual Clauses from us.

Gmail
Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: https://www.google.com/intl/de/gmail/about/
Further information & data protection: https://policies.google.com/?hl=de

The transfer of personal data to third countries depends on the respective Google service and is subject to the various EU standard contractual clauses, insofar as these are offered by Google. You can find more information about this and Google's responsibility at the following link: https://business.safety.google/gdpr/. You can view a copy of the EU standard contractual clauses there.

To support the processing of your contact, we use support systems (appointment booking systems, live chats, ticket systems or helpdesks, etc.) and employ external services for this purpose. These services may have access to personal data that is processed in the course of contacting us via a support system. Further information on the services used, the scope of data processing and the technologies and processes involved in the use of the respective services can be found below in the further information on the services used by us and under the links provided there:

Calendly

Provider: Calendly, LLC, United States of America. Website: https://calendly.com/de

Further information & data protection: https://calendly.com/de/pages/privacy, https://calendly.com/pages/security and https://help.calendly.com/hc/de/articles/360007032633 Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

Intercom Business Messenger 

Provider: Intercom, Inc, United States of America, and Intercom R&D Unlimited Company, Ireland.

Website: https://www.intercom.com/de

Further information & data protection: https://www.intercom.com/legal/privacy and https://www.intercom.com/legal/security-policy

Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

8. cookies & similar technologies

Cookies are used. Cookies are text information that is stored on your terminal device. A distinction is made between session cookies, which are deleted immediately after you close your browser, and permanent cookies, which are only deleted after a certain time.

In addition to cookies, similar technologies (tracking pixels, web beacons, etc.) may also be used. The following statements on cookies also apply to similar technologies. These explanations also apply to further processing in connection with cookies and similar technologies (analysis & marketing etc.). This also applies in particular to any consent you may have given for the use of cookies. This also extends to other technologies and to further processing in connection with cookies and similar technologies.

Cookies can be used to enable the use of certain functions. Cookies can also be used to measure the reach of our online offer, to design it according to needs and interests and thus to optimise our online offer and our marketing. Cookies can be used by us and by external services.

We use a consent tool to manage the cookies used and the relevant consents. Details on the cookies used (purpose, storage period, external service, etc.) and the consent tool can be found in the following passages and in the consent tool we use.

If we have asked you for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked you for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is the management of the cookies used and the related consents. Depending on the purpose of the processing, our legitimate interests can be taken from the following passages.

You can prevent cookies from being stored by setting your browser accordingly. Below we provide you with typical browser links where you can find more detailed information on managing cookie settings:
- Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen
- Chrome: https://support.google.com/chrome/bin/answer.py?hl=de&hlrm=en&answer=95647
- Internet Explorer / Edge: https://windows.microsoft.com/de-DE/windows-vista/Block-or-allow-cookies

- Safari: https://support.apple.com/de-de/guide/safari/sfri11471/mac

- Opera: https://help.opera.com/de/latest/web-preferences/#cookies

- Yandex: https:
//browser.yandex.com/help/personal-data-protection/cookies.html

You can find further objection options under the following links: https://www.youronlinechoices.eu/, https://youradchoices.ca/en/tools, https://optout.aboutads.info and https://optout.networkadvertising.org/?c=1.

If you prevent cookies from being saved, this may impair the proper functioning of our online services. If you delete all cookies, the above settings will also be lost and you would have to make them again.

Furthermore, you can activate the "Do-Not-Track" function of your browser to signal that you do not want to be tracked. Below we provide you with typical browser links where you can find further information on the "Do-Not-Track" setting:
- Firefox: https://support.mozilla.org/de/kb/wie-verhindere-ich-dass-websites-mich-verfolgen
- Chrome: https://support.google.com/chrome/answer/2790761?co=GENIE.Platform%3DDesktop&hl=de
- Internet Explorer / Edge:
https://support.microsoft.com/de-de/help/17288/windows-internet-explorer-11-use-do-not-track
- Opera: https://help.opera.com/de/latest/security-and-privacy/
- Safari no longer supports the "Do-Not-Track" function as of February 2019. The following link can be used to prevent cross-site tracking in Safari:
https://support.apple.com/de-de/guide/safari/sfri40732/12.0/mac
- Yandex: https://browser.yandex.com/help/personal-data-protection/do-not-follow.html

You can also revoke or manage your consent with regard to the cookies used in the Consent Tool we use.

9. registration and ordering

If you register for a free trial period or place an order, we process your personal data in order to process and handle your order and to comply with the associated rights and obligations. Within the scope of registration or ordering, it is necessary for you to create a customer account so that you can use our services. We provide you with our contract texts digitally and offer you the option of countersigning them with an electronic signature. 

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is the processing and handling of your registration or your order. If the processing is necessary for the fulfilment of a contract with you or for the implementation of pre-contractual measures based on your request, the legal basis for the processing is also Art. 6 (1) lit. b DS-GVO.

Recipients of your personal data may be third parties (shipping service providers, banks, tax advisors, lawyers, authorities, etc.), insofar as this is necessary for the processing and handling of your registration or your order and the associated rights and obligations.

We use external services for the digital provision of our contract texts and the possibility of countersigning them with an electronic signature. We transmit your personal data to these services insofar as this is necessary for the electronic signature. For more information on the services used, the scope of data processing and the technologies and processes involved in the use of the respective services, please refer to the further information on the services we use at the end of this passage and the links provided there.

We use external services to process payments. We transmit your personal data to these services insofar as this is necessary for the processing of payments. For more information on the services used, the scope of data processing and the technologies and processes involved in the use of the respective services, please refer to the further information on the services we use at the end of this passage and the links provided there.

PAYONE
Provider: PAYONE GmbH, Germany.
Website: https://www.payone.com/
Further information & data protection: https://www.payone.com/datenschutz/, https://www.payone.com/GDPR/ and https://www.payone.com/GDPR-haendler/

Chargebee
Supplier: CHARGEBEE INC, United States of America.
Website: https://www.chargebee.com/
Further Information & Privacy: https://www.chargebee.com/privacy/
Warranty: EU Standard Contractual Clauses. You can request a copy of the EU Standard Contractual Clauses from us.

GoCardless
Provider GoCardless Ltd, United Kingdom.
Website: https://gocardless.com/de-de/
Further information & data protection: https://gocardless.cdn.prismic.io/gocardless/b020ae8f-a128-4f99-88e0-71865c01acfc_GoCardless+Privacy+Notice+draft+updates+2021.10+%282%29_EN.docx.pdf
Adequate level of data protection for transfers of personal data to the United Kingdom: EU Commission adequacy decision.

DocuSign
Provider: DocuSign, Inc, United States of America.
Website: https://www.docusign.de/
Further information & data protection: https://www.docusign.de/unternehmen/datenschutz
Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

10. e-mail box

We use external services for the provision and maintenance of the e-mail boxes that can be booked for a fee. These services may have access to personal data that is processed when contacting us. Further information on the services used, the scope of data processing and the technologies and processes involved in the use of the respective services can be found below in the further information on the services used by us and under the links provided there:

Mailbox.org
Provider: Heinlein Hosting GmbH, Germany
Website: https://mailbox.org/
Further information & data protection: https://mailbox.org/de/datenschutzerklaerung

11 Newsletter

If we have asked for your consent and you have given it, we will process your email address in order to conduct email marketing and, if applicable, other personal data in order to address you personally in the process. The legal basis for the processing is Art. 6 para. 1 lit. a DS-GVO. The contents of the email marketing are specifically described when obtaining your consent. Apart from that, the email marketing contains information about us, our goods and services.

We use the so-called double opt-in procedure to prevent possible misuse of your personal data. For this purpose, after collecting your email address, we send you an email to the email address you provided in which we ask you to confirm that you actually want the email marketing. The legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is the legally compliant implementation of email marketing.

We log the time of your consent and the time of your confirmation as well as your IP address and the content of your declaration of consent in order to be able to prove that your consent was obtained in accordance with the law. The legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is the legally compliant implementation of email marketing.

We use external services for email marketing. For more information about the services used, the scope of data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place when using the respective services, and, if applicable, information about the logic involved and the scope and intended effects of such processing for you, please refer to the further information about the services we use at the end of this passage and the links provided there.

You can revoke your consent at any time. The revocation of your consent does not affect the lawfulness of the processing carried out on the basis of the consent until the revocation. To revoke your consent, you can use the link provided for this purpose in the emails or contact us at the contact details provided above.

If you have revoked your consent, we reserve the right to process your personal data in a so-called blacklist/blocklist in order to be able to ensure in the future that no further email marketing takes place in connection with this personal data. The legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is the prevention of unwanted email marketing.

We process your personal data in the context of tracking and performance measurement in order to measure the reach of our email marketing, to design it according to needs and interests and thus to optimise our email marketing. This may also involve profiling (for the purposes of advertising, personalised information, etc.). Profiling may also take place across services and devices. If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a DS-GVO. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is the optimisation of our email marketing. A separate revocation of your consent or objection with regard to tracking or performance measurement is unfortunately not possible. You would have to use the above options to revoke your consent or object to the processing of your personal data for the purpose of email marketing altogether.

ActiveCampaign
Provider: ActiveCampaign, LLC, United States of America.
Website: https://www.activecampaign.com/de/
Further information & data protection: https://www.activecampaign.com/de/legal and https://www.activecampaign.com/de/legal/privacy-policy
Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

Mailgun
Provider: Mailgun Technologies, Inc, United States of America.
Website: https://www.mailgun.com
Further information & privacy: https://www.mailgun.com/gdpr/ and https://www.mailgun.com/privacy-policy/
Warranty: EU Standard Contractual Clauses. You can request a copy of the EU Standard Contractual Clauses from us.

Woodpecker
Supplier: Woodpecker.co S.A., Poland.
Website: https://woodpecker.co
Further information & data protection: https://woodpecker.co/gdpr-compliance/ and https://woodpecker.co/privacy-policy/

12. existing customer marketing - advertising by e-mail

If we have received your email address in connection with the sale of a product or service and you have not objected to this, we will process your email address in order to carry out email marketing for our own similar products or services and, if necessary, other personal data in order to address you personally. The legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is direct advertising.

We use external services for email marketing. For more information about the services used, the scope of data processing and the technologies and procedures involved in the use of the respective services, as well as whether profiling takes place when using the respective services, and, if applicable, information about the logic involved and the scope and intended effects of such processing for you, please refer to the further information about the services we use at the end of this passage and the links provided there.

You have the right to object to the processing of your personal data for the purpose of email marketing at any time, without incurring any costs other than the transmission costs according to the basic rates. We will then no longer process your personal data for the purpose of email marketing. To object to the processing of your personal data for the purpose of email marketing, you can use the link provided for this purpose in the emails or contact us at the contact details given above.

If you have objected to the processing of your personal data for the purpose of email marketing, we reserve the right to process your personal data in a so-called blacklist/blocklist in order to be able to ensure in the future that no further email marketing takes place in connection with this personal data. The legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is the prevention of unwanted email marketing.

We process your personal data in the context of tracking or success measurements in order to measure the reach of our email marketing, to design it according to needs and based on interests, and thus to optimise our email marketing. This may also involve profiling (for the purposes of advertising, personalised information, etc.). Profiling may also take place across services and devices. If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 para. 1 lit. a DS-GVO. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is the optimisation of our email marketing. A separate revocation of your consent or objection with regard to tracking or performance measurement is unfortunately not possible. You would have to use the above options to revoke your consent or object to the processing of your personal data for the purpose of email marketing altogether.

ActiveCampaign
Provider: ActiveCampaign, LLC, United States of America.
Website: https://www.activecampaign.com/de/
Further information & data protection: https://www.activecampaign.com/de/legal and https://www.activecampaign.com/de/legal/privacy-policy
Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

Mailgun
Provider: Mailgun Technologies, Inc, United States of America.
Website: https://www.mailgun.com
Further information & privacy: https://www.mailgun.com/gdpr/ and https://www.mailgun.com/privacy-policy/
Warranty: EU Standard Contractual Clauses. You can request a copy of the EU Standard Contractual Clauses from us.

Woodpecker
Supplier: Woodpecker.co S.A., Poland.
Website: https://woodpecker.co
Further information & data protection: https://woodpecker.co/gdpr-compliance/ and https://woodpecker.co/privacy-policy/

13. analysis & marketing

We process your personal data in order to measure the reach of our online offer, to design it according to needs and interests and thus to optimise our online offer and our marketing.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is the optimisation of our online offer and our marketing.

We use external services for analysis and marketing. This may also involve profiling (for the purposes of advertising, personalised information, etc.). Profiling can also take place across services and devices. Further information on the services used, the scope of data processing and the technologies and processes involved in the use of the respective services, as well as whether profiling takes place when using the respective services, and, if applicable, information on the logic involved as well as the scope and intended effects of such processing for you, can be found in the further information on the services we use at the end of this passage and under the links provided there.

You can prevent cookies from being stored by setting your browser accordingly. Below we provide you with typical browser links where you can find further information on managing cookie settings:
- Firefox: https://support.mozilla.org/de/kb/cookies-erlauben-und-ablehnen
- Chrome: https://support.google.com/chrome/bin/answer.py?hl=de&hlrm=en&answer=95647
- Internet Explorer / Edge: https://windows.microsoft.com/de-DE/windows-vista/Block-or-allow-cookies

- Safari: https://support.apple.com/de-de/guide/safari/sfri11471/mac

- Opera: https://help.opera.com/de/latest/web-preferences/#cookies

- Yandex: https:
//browser.yandex.com/help/personal-data-protection/cookies.html

You can find further objection options under the following links: https://www.youronlinechoices.eu/, https://youradchoices.ca/en/tools, https://optout.aboutads.info and https://optout.networkadvertising.org/?c=1.

If you prevent cookies from being saved, this may impair the proper functioning of our online services. If you delete all cookies, the above settings will also be lost and you will have to make them again.

Furthermore, you can activate the "Do-Not-Track" function of your browser to signal that you do not want to be tracked. Below we provide you with typical browser links where you can find further information on the "Do-Not-Track" setting:
- Firefox: https://support.mozilla.org/de/kb/wie-verhindere-ich-dass-websites-mich-verfolgen
- Chrome: https://support.google.com/chrome/answer/2790761?co=GENIE.Platform%3DDesktop&hl=de
- Internet Explorer / Edge:
https://support.microsoft.com/de-de/help/17288/windows-internet-explorer-11-use-do-not-track
- Opera: https://help.opera.com/de/latest/security-and-privacy/
- Safari no longer supports the "Do-Not-Track" function as of February 2019. The following link can be used to prevent cross-site tracking in Safari:
https://support.apple.com/de-de/guide/safari/sfri40732/12.0/mac
- Yandex: https://browser.yandex.com/help/personal-data-protection/do-not-follow.html

Albacross Nordic AB
Provider: Albacross Nordic AB, Sweden.
Website: https://albacross.com/
Further information & data protection: https://albacross.com/privacy-policy/ and https://albacross.com/cookie-policy/

Amplitude
Provider: Amplitude Inc., USA.
Website: https://amplitude.com
Further information & data protection: https://amplitude.com/privacy Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

Facebook Pixel with Custom Audiences
Provider: Facebook Ireland Limited, Ireland. Facebook Ireland Limited is a subsidiary of Facebook, Inc, United States of America.
Website: https://www.facebook.com/business/help/744354708981227?id=2469097953376494
Further Information & Privacy: https://www.facebook.com/business/help/742478679120153?id=1205376682832142&recommended_by=218844828315224, https://www.facebook.com/business/help/1474662202748341?id=2469097953376494&locale=de_DE, https://de-de.facebook.com/privacy/explanation, https://de-de.facebook.com/policies/cookies/, https://www.facebook.com/help/566994660333381?ref=dp and https://de-de.facebook.com/help/568137493302217
Guarantee: EU Standard Contractual Clauses. You can request a copy of the EU standard contractual clauses from us.

Google Ads Conversion Tracking
Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: https://ads.google.com/intl/de_de/home/
Further information & data protection: https://policies.google.com/?hl=de
The transfer of personal data to third countries takes place depending on the respective Google service and under the application of the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google's responsibility can be found at the following link: https://business.safety.google/gdpr/. You can request a copy of the EU standard contractual clauses from us.

Google AdSense
Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: https://www.google.com/intl/de_de/adsense/start/
Further information & data protection: https://policies.google.com/?hl=de
The transfer of personal data to third countries takes place depending on the respective Google service and under the application of the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google's responsibility can be found at the following link: https://business.safety.google/gdpr/. You can request a copy of the EU standard contractual clauses from us.

Google Analytics
Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: https://marketingplatform.google.com/intl/de/about/analytics/
Further information & data protection: https://support.google.com/analytics/answer/6004245?hl=de and https://policies.google.com/?hl=de
The transfer of personal data to third countries takes place depending on the respective Google service and under the application of the various EU standard contractual clauses, insofar as these are offered by Google. You can find more information about this and Google's responsibility at the following link: https://business.safety.google/gdpr/. You can request a copy of the EU standard contractual clauses from us.

Google Optimize
Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: https://marketingplatform.google.com/intl/de/about/optimize/
Further information & data protection: https://support.google.com/analytics/answer/6004245?hl=de and https://policies.google.com/?hl=de
The transfer of personal data to third countries takes place depending on the respective Google service and under the application of the various EU standard contractual clauses, insofar as these are offered by Google. You can find more information about this and Google's responsibility at the following link: https://business.safety.google/gdpr/. You can request a copy of the EU standard contractual clauses from us.

Google Remarketing
Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: https://support.google.com/google-ads/answer/2453998
Further information & data protection: https://policies.google.com/?hl=de
The transfer of personal data to third countries takes place depending on the respective Google service and under the application of the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google's responsibility can be found at the following link: https://business.safety.google/gdpr/. You can request a copy of the EU standard contractual clauses from us.

Google Tag Manager

Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.

Website: https://support.google.com/tagmanager/answer/6102821?hl=de

Further information & data protection: https://policies.google.com/?hl=de

The transfer of personal data to third countries takes place depending on the respective Google service and under the application of the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google's responsibility can be found at the following link: https://business.safety.google/gdpr/. You can view a copy of the EU standard contractual clauses there.

Google Universal Analytics
Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: https://support.google.com/analytics/answer/2790010?hl=de
Further information & data protection: https://support.google.com/analytics/answer/6004245?hl=de and https://policies.google.com/?hl=de
The transfer of personal data to third countries takes place depending on the respective Google service and under the application of the various EU standard contractual clauses, insofar as these are offered by Google. You can find more information about this and Google's responsibility at the following link: https://business.safety.google/gdpr/. You can request a copy of the EU standard contractual clauses from us.

Hotjar

Provider: Hotjar Limited, Malta.

Website: https://www.hotjar.com/

Further information & data protection: https://www.hotjar.com/legal/policies/privacy/

Microsoft Advertising
Provider: Microsoft Corporation, United States of America.
Website: https://about.ads.microsoft.com/de-de
Further information & data protection: https://privacy.microsoft.com/de-de/ and https://www.microsoft.com/de-de/trust-center/privacy

Rollbar
Supplier: Rollbar Inc, United States of America.
Website: https://rollbar.com/#
Further information & privacy: https://docs.rollbar.com/docs/privacy-policy and https://rollbar.com/compliance/gdpr/#
Warranty: EU Standard Contractual Clauses. You can request a copy of the EU standard contractual clauses from us.

Twitter Analytics
Provider: If you live within the European Union, EFTA countries or the United Kingdom, the controller is Twitter International Company, Ireland. If you live in the United States of America or in another country outside the European Union, EFTA countries or the United Kingdom, the controller is Twitter, Inc, United States of America.
Website: https://analytics.twitter.com/about
Further Information & Privacy: https://twitter.com/de/privacy
Warranty: EU Standard Contractual Clauses. You can request a copy of the EU Standard Contractual Clauses from us.

Userfeed.io
Provider: Ad Reform LLC, United States of America.
Website: https://www.userfeed.io/
Further information & data protection: http://help.userfeed.io/en/articles/2013903-privacy-policy
Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

UserVoice
Provider: UserVoice Inc, United States of America.
Website: https://uservoice.com/
Further information & privacy: https://uservoice.com/privacy and https://uservoice.com/gdpr-compliance2
Warranty: EU Standard Contractual Clauses. You can request a copy of the EU standard contractual clauses from us.

Wootric
Provider: InMoment, Inc, United States of America.
Website: https://inmoment.com/wootric/
Further information & privacy: https://inmoment.com/privacy-policy/ and https://inmoment.com/gdpr/
Warranty: EU Standard Contractual Clauses. You can request a copy of the EU standard contractual clauses from us.

14. social media presences

We maintain social media presences with external services in order to be able to communicate with users there and thus optimise our online offering and our marketing.

This privacy policy also applies to the following social media presences:
https://www.facebook.com/raidboxes
https://www.instagram.com/raidboxes/
https://www.linkedin.com/company/raidboxes/
https://twitter.com/Raidboxes
https://www.xing.com/pages/raidboxes
https://www.kununu.com/de/raidboxes1

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is the optimisation of our online offer and our marketing.

Profiling (for the purposes of advertising, personalised information, etc.) may also occur within the framework of the use of external services. Profiling can also take place across services and devices. Further information on the services used, the scope of the data processing and the technologies and processes involved in the use of the respective services, as well as whether profiling takes place when using the respective services and, if applicable, information on the logic involved as well as the scope and intended effects of such processing for you can be found in the further information on the services we use at the end of this passage and under the links provided there.

Facebook
Provider: Facebook Ireland Limited, Ireland. Facebook Ireland Limited is a subsidiary of Facebook, Inc., United States of America.
Website: https://www.facebook.com
The provider and we are jointly responsible. We have concluded a corresponding agreement with the provider. You can request a copy of the agreement from us.
Further Information & Privacy: https://developers.facebook.com/docs/plugins/, https://www.facebook.com/legal/terms/information_about_page_insights_data, https://de-de.facebook.com/privacy/explanation, https://de-de.facebook.com/policies/cookies/, https://www.facebook.com/help/566994660333381?ref=dp and https://de-de.facebook.com/help/568137493302217
Warranty: EU Standard Contractual Clauses. You can request a copy of the EU standard contractual clauses from us.

Instagram
Provider: Facebook Ireland Limited, Ireland. Facebook Ireland Limited is a subsidiary of Facebook, Inc, United States of America.
Website: https://www.instagram.com
Further information & data protection: https://help.instagram.com/581066165581870 and https://help.instagram.com/519522125107875
Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

LinkedIn
Provider: If you are in the EU, the European Economic Area (EEA) or Switzerland, this service is provided by LinkedIn Ireland Unlimited Company, Ireland. If you are outside the EU, the European Economic Area (EEA) or Switzerland, this service is provided by LinkedIn Corporation, United States of America.
Website: https://www.linkedin.com
Further information & data protection: https://de.linkedin.com/legal/privacy-policy?trk=homepage-basic_footer-privacy-policy and https://de.linkedin.com/legal/cookie-policy?trk=homepage-basic_footer-cookie-policy
Guarantee: EU standard contractual clauses.You can request a copy of the EU standard contractual clauses from us.

Twitter
Provider: If you live within the European Union, EFTA countries or the United Kingdom, the controller is Twitter International Company, Ireland. If you live in the United States of America or in another country outside the European Union, EFTA countries or the United Kingdom, the controller is Twitter, Inc, United States of America.
Website: https://www.twitter.com
Further Information & Privacy: https://twitter.com/de/privacy, https://help.twitter.com/de/rules-and-policies and https://help.twitter.com/de/safety-and-security
Warranty: EU Standard Contractual Clauses. You can request a copy of the EU standard contractual clauses from us.

Xing
Provider: New Work SE, Germany.
Website: https://www.xing.de
Further information & data protection: https://privacy.xing.com/de and https://privacy.xing.com/d e/datenschutzerklaerung

kununu
Provider: New Work SE, Germany.
Website: https://www.kununu.com
Further information & data protection: https://privacy.xing.com/de/datenschutzerklaerung

15. social media content/plugins

We use social media content/plugins from external services in order to be able to display content and functions of the external services to you and thus optimise our online offer and our marketing.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is the optimisation of our online offer and our marketing.

Profiling (for the purposes of advertising, personalised information, etc.) may also occur within the framework of the use of external services. Profiling can also take place across services and devices. Further information on the services used, the scope of the data processing and the technologies and processes involved in the use of the respective services, as well as whether profiling takes place when using the respective services and, if applicable, information on the logic involved as well as the scope and intended effects of such processing for you can be found in the further information on the services we use at the end of this passage and under the links provided there.

We use Shariff to protect your personal data.

You can find more information about Shariff at https://www.heise.de/ct/artikel/Shariff-Social-Media-Buttons-mit-Datenschutz-2467514.html.

Facebook
Provider: Facebook Ireland Limited, Ireland. Facebook Ireland Limited is a subsidiary of Facebook, Inc, United States of America.
Website: https://www.facebook.com
Further information & data protection: https://developers.facebook.com/docs/plugins/, https://de-de.facebook.com/privacy/explanation, https://de-de.facebook.com/policies/cookies/, https://www.facebook.com/help/566994660333381?ref=dp and https://de-de.facebook.com/help/568137493302217
Guarantee: EU standard contractual clauses. You can request a copy of the EU standard contractual clauses from us.

16. fonts & scripts

We use fonts and scripts from external services in order to be able to display our online offer to you and to always guarantee up-to-date fonts and scripts.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is the proper display of our online offer and the guarantee of up-to-date fonts and scripts.

Profiling (for the purposes of advertising, personalised information, etc.) may also occur within the framework of the use of external services. Profiling can also take place across services and devices. Further information on the services used, the scope of the data processing and the technologies and processes involved in the use of the respective services, as well as whether profiling takes place when using the respective services and, if applicable, information on the logic involved as well as the scope and intended effects of such processing for you can be found in the further information on the services we use at the end of this passage and under the links provided there.

Font Awesome
Provider: Fonticons, Inc, United States of America.
Website: https://www.fontawesome.com
Further information & data protection: https://fontawesome.com/privacy

Google Fonts
Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: https://fonts.google.com/
Further information & data protection: https://policies.google.com/?hl=de
The transfer of personal data to third countries takes place depending on the respective Google service and under the application of the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google's responsibility can be found at the following link: https://business.safety.google/gdpr/. You can request a copy of the EU standard contractual clauses from us.

jQuery
Provider: The OpenJS Foundation, United States of America.
Website: https://openjsf.org/
Further information & data protection: https://openjsf.org/wp-content/uploads/sites/84/2019/11/OpenJS-Foundation-Privacy-Policy-2019-11-15.pdf

17. cards

We use maps from external services to show you our location and to enable you to use the other features of these external services in connection with the maps.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is the simplified use of maps.

Profiling (for the purposes of advertising, personalised information, etc.) may also occur within the framework of the use of external services. Profiling can also take place across services and devices. Further information on the services used, the scope of the data processing and the technologies and processes involved in the use of the respective services, as well as whether profiling takes place when using the respective services and, if applicable, information on the logic involved as well as the scope and intended effects of such processing for you can be found in the further information on the services we use at the end of this passage and under the links provided there.

Google Maps
Provider: In the European Economic Area (EEA) and Switzerland, Google services are provided by Google Ireland Limited, Ireland. Google Ireland Limited is a subsidiary of Google LLC, United States of America.
Website: https://www.google.de/maps
Further information & data protection: https://policies.google.com/?hl=de
The transfer of personal data to third countries takes place depending on the respective Google service and under the application of the various EU standard contractual clauses, insofar as these are offered by Google. Further information on this and Google's responsibility can be found at the following link: https://business.safety.google/gdpr/. You can request a copy of the EU standard contractual clauses from us.

18. applications

If you apply to us, we process your personal data in order to carry out the application procedure and to make a decision on the establishment of an employment relationship. After the end of the application process, we restrict the processing of your personal data and delete or destroy it no later than 6 months after you receive the rejection, or return the application documents to you and delete or destroy any copies, unless you have consented to us continuing to use your personal data.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest here is the proper implementation of the application process and, if necessary, the defence against claims based on the rejection of an application. If the processing is necessary to decide on the establishment of an employment relationship, the legal basis for the processing is also Section 26 (1) sentence 1 BDSG.

19. comments

If you leave comments via the functions provided for this purpose (on blog entries, products, etc.), we process your personal data in order to be able to display your comments and to prevent any misuse.

If we have asked for your consent and you have given it, the legal basis for the processing is Art. 6 (1) lit. a DS-GVO. If we have not asked for your consent, the legal basis for the processing is Art. 6 para. 1 lit. f DS-GVO. Our legitimate interest is the proper display of your comments and the prevention of abuse.