State: January 2020
This data protection information explains how we process personal data in order to offer HUMANOO services. It applies to the HUMANOO website and its content under www.humanoo.com, to the HUMANOO app (app.humanoo.com as well as the Android and iOS apps) as well as to telephone consultation and contact with our health experts. It does not apply to websites or third-party apps, to whom we merely refer.
We have tried to make the data protection policy as simple and transparent as possible. You should be able to understand it without any prior legal or technical knowledge. If you need further clarification, please contact us at firstname.lastname@example.org.
2. Responsible authority in terms of data protection laws
The party responsible for data processing by us in accordance with Art. 4 Para. 7 EU Data Protection Basic Regulation (DS-GVO) is eTherapists GmbH, Oppelner Str. 26/27, 10997 Berlin, Germany.
You can reach our data protection officer at Datenschutz@humanoo.com
The responsible supervisory authority is:
Berliner Beauftragte für Datenschutz und Informationsfreiheit
Friedrichstr. 219 Visitor entrance: Puttkamerstr. 16 – 18 (5th floor)
Phone: 030 13889-0
fax: 030 2155050
3. The data it concerns:
3.1 General information about the types of data we collect
Data that you make available to us
The information we collect includes any information that you voluntarily provide to us, such as when you subscribe to our newsletter or contact us via the contact form provided on the website, send us an email or call us, register with us or open a user account and provide us with information about you.
Data that is automatically collected by us
We may also automatically collect information from you (functional information or cookies), such as when you visit our website or use our app. We may collect information such as the type of device from which you access our website, the operating system and version, your IP address, the type of browser you use, the pages you view on our website or app, and whether and how you interact with content on our website or app.
Data we receive from other sources
We may also receive information about you from other sources, such as when you interact with us via social media platforms, like Facebook. As long as we receive information from third parties, this Data Protection Policy and any additional restrictions imposed on us by the respective data sources will also apply.
Data from children
The content of our entire range of services and websites can be used by children and young people. However, participation is only possible with parental consent. Even if young people and children under the age of 18 use our website or app, we do not knowingly or intentionally collect data about them without their parents’ consent. Should we become aware that our services of are being used by a minor without parental consent, we will immediately delete all data collected in this context, unless we are legally required to store it.
3.2 What is personal data?
Personal data is all information that relates to an identified or identifiable person. This includes information with which you can be directly identified, such as your name or photo. In addition, there is information that can indirectly reveal information about you, such as information about your body, impairments or complaints, as well as information about your leisure activities or data that you provide during use to improve the services.
Personal data also includes information that is disclosed under a pseudonym, i.e. without mentioning your name.
3.3 What is health data?
Health data is personal details which directly or indirectly conveys information about the health of a person. This includes information on physical well-being/complaints and information on mental/psychological health. Health data belongs to a so-called special type of personal data, and is subject to a particularly high level of protection.
4. What personal data is collected, processed and used, and to what end?
4.1. General guidelines of use and purpose
You can visit the HUMANOO website without having to register, but the HUMANOO services can only be used after registering.
As a general rule, we do not transfer your personal data to third parties. The only exceptions are the service partners and contracting parties involved in handling the contractual relationship and companies that eTherapists GmbH cooperates with.
4.2 Use of our website
If you only use our website for information purposes (without contacting us), we only collect the personal data that your browser transmits to our server. If you want to surf on our website, we collect the data that is technically necessary for us to display our website to you and to ensure its stability and security.
IP address, date and time of the request, time zone difference to Greenwich Mean Time (GMT), content of the request (specific page), access status/HTTP status code, amount of data transferred, website from which the request came, browser, operating system and its interface, language and version of the browser software. Legal basis: Art. 6 para. 1 p. 1 lit. f) DS-GVO.
We delete the requests if they are no longer needed. We review this every two years; statutory archiving obligations also apply.
4.3 Use of the HUMANOO services
Our business model consists of a variety of services to support you in a healthy lifestyle. Within this framework, you can either register online with us and open a user account, or download our HUMANOO app, which helps you to stay fit and healthy, or buy individual fitness equipment or exercise courses from us. In the context of the initiation, fulfilment and processing of the existing contractual relationships with us, data will be collected from you that is necessary for the respective contract processing or for the use of our services.
Note: We work together with companies, insurers and health insurance companies who wish to make the HUMANOO app available to their employees or members in order to improve their health. The employees or members are free to register with us. Our business model is based on the most anonymous possible collection of user data. We therefore recommend that you do not enter your real name when registering for our HUMANOO App.
4.4. Registering and setting up a HUMANOO user account
To use our HUMANOO services, you must register on the HUMANOO portal and set up a HUMANOO user account. It is possible to set up a user account and use the services of the HUMANOO website using a pseudonym, meaning that you can pick any name you want, without it corresponding to your official name. The registration data that you enter for the use of the HUMANOO services are stored on German servers by the service provider commissioned by eTherapists GmbH.
We offer the opportunity to register in the app through your current Facebook or Google account. If you chose to register with Facebook, the name and email address attached to your Facebook account will be transmitted to us. This data will only be used by us for the purposes of registration and logging in. In turn, Facebook can see when and how you login into HUMANOO through the Log In service. Your use of the content or services provided is not, however, disclosed to any third parties.
The purpose and scope of the data collection and the further processing and use of the data by Facebook (Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA), as well as the related rights and setting options for the protection of the privacy of users, can be found in Facebook’s data protection information: https://www.facebook.com/about/privacy/.
If you choose to sign in through Google, your email address and first name will be transferred from your Google account to us. This data will only be used by us for the purposes of registration. In return, Google can use the log-in service to identify when and how you registered with HUMANOO. Your use of the content or services provided will not be passed on to third parties.
Data collected during registration on our website or when purchasing our products:
Data we usually collect for registration purposes: User name, optional e-mail address (no email address required for anonymous registration), IP address, password.
Your information in the user profile, such as weight, activity data or meal data (only if you voluntarily provide it to us), IP address, operating system, browser type, browser version, browser configuration, name of the Internet provider and other relevant information about your computer and connection to identify your device type, connect to the website, exchange data with your (mobile) device and ensure proper use of the website. As part of a product purchase through our web shop: Name, address, telephone number, email address, payment information (bank details).
Date collected during the use of the HUMANOO app:
User name, optional email address (no email address required for anonymous registration), password, and your additional information in the user profile and through use of the app, such as weight, activity data or dietary preferences, usage behaviour, access rights to your smartphone if you want to upload a profile photo, videos or receive push messages from us. Access rights can only be granted to us by you. Legal basis: Art. 6 Para. 1 S. 1 lit. a), lit. b) lit. f) DS-GVO
You do not have to provide us with any health data in order to use our services. If you provide us with health data, you hereby consent to your data being used by us for the purposes described here. We will use health data strictly in accordance with legal requirements to improve our services for you, and will use this data only for anonymous evaluation and, if applicable, to produce a completely anonymous health report for your HUMANOO ID provider, insofar as this enables you to make use of our services and you make use of this opportunity. In this instance, anonymity is ensured, as we only generate reports if more than 15 people within a company or department use our app. It is not possible to draw conclusions about your personal state of health from the use of our app and services.
Your payment information will only be saved by us if you chose to purchase our fee-based services. Personal data, which are requested in this section, will only be stored for as long as is necessary for the execution of the contract and any subsequent correspondence related to the contract or, in the case of documents relevant under commercial and/or tax law containing personal data, for as long as the statutory periods of the Commercial Code and the Tax Code provide for the storage of these documents.
The following payment systems and service providers are used by us, and you can find their relevant data protection declarations with the links below:
– PayPal (Europe) S.à. r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (“Paypal”). Information regarding data security here: https://www.paypal.com/de/webapps/mpp/ua/privacy-full
– easybill GmbH, Düsselstr. 21, D-41564 Kaarst (“easybill”). Information regarding data security here: https://www.easybill.de/privacy
– Shopify International Limited, Victoria Buildings, 2. Floor, 1-2 Haddington Road, Dublin, DO4 XN32, Ireland (“shopify”). Information regarding data security here: https://www.shopify.de/legal/datenschutz
– byrd technologies Germany GmbH, Lobeckstraße 36-40, 10969 Berlin, Deutschland. Information regarding data security here: https://getbyrd.com/privacy/
– DHL Paket GmbH, Sträßchensweg 10, 53113 Bonn, Deutschland (“DHL”). Information regarding data security here: https://www.dhl.de/de/toolbar/footer/datenschutz.html
– SendGrid, Inc., 1801 California Street, Suite 500, Denver, Colorado 80202, USA. Information regarding data security here: https://sendgrid.com/policies/security/
4.5 Advice from health experts
The HUMANOO services offer you the opportunity to contact one of our health experts by email or telephone. The use of health expert’s advice is voluntary and takes place only with your express consent.
If you accept the offer of individual advice from a health expert, the health expert could potentially be able to see your saved health data in the HUMANOO services.
For communication with our experts, we use the tool Zendesk, Inc. 1019 Market St, San Francisco, CA94103. You can find information on data usage at: https://www.zendesk.de/company/customers-partners/privacy-policy/.
4.6 Use of tracking functions and activity data from connected accounts and third parties
You can import activity data from other platforms into the HUMANOO app. You must expressly agree on the platforms that you wish to link to your account in order to import such data. You can choose which data to import.
We use the following platforms:
Apple HealthKit from Apple Inc, 1 Infinite Loop, Cupertino, CA 95014, USA. For information on data usage, visit https://www.apple.com/legal/privacy/de-ww/
Google Fit by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Google LLC, headquartered in the United States, is certified under the U.S. Privacy Shield Agreement, which ensures compliance with EU privacy standards.
More privacy information can be found at https://policies.google.com/privacy
Thryve Health SDK allows you to connect and import activity data from a number of sources including mobile phones, smartwatches and fitness trackers.
4.7 How to contact us
Name, e-mail address (optional), IP address, information collected via cookies Legal basis: Art. 6 Abs. 1 S. 1 lit. f) DS-GVO
4.8 Communication via email etc.
When you contact us (e.g. via contact form, email, telephone or social media), your user details e.g. your first name, surname, address, telephone number, email address and the content of your message or message, will be processed in accordance with Art. 6 para. 1 lit. b) DSGVO to process the contact request and its processing. This is done in order to be able to communicate with you if you have contacted us, e.g. by answering your questions, processing orders or providing you with requested information.
For our internal communication, we are using Gmail from Google Inc, Inc, 600 Amphitheatre Parkway, Mountain View, CA 94043, USA. We have integrated Gmail in compliance with data protection.
For our communications with our contract partners like companies or insurances we use close.io from elastic Inc., 800 West El Camino Real, Suite 350 Mountain View California, 94040 USA. Their GDPR guideline is filed here https://close.io/gdpr/
To arrange appointments we use the embedded Cloud-Computing website, termin-direkt.de from booked4.us Kft based in Hungary (2600 Vác, Zichy H. utca 12.) Information regarding data security here: https://termin-direkt.de/content/termin-direkt.de/privacyhtml/Privacy-de.html
We delete the requests if they are no longer necessary. We check the necessity continuously; furthermore, the legal archiving obligations apply.
5. How we use your data/legal basis
We use your data exclusively in order:
– to provide you with our services,
– to execute contracts with you,
– to answer your questions,
– for our compliance with legal obligations and for the attractive and needs-based design and development of our services for you,
– to manage awards, surveys, sweepstakes, raffles, or other promotional activities or events,
– for other purposes to which you have agreed in individual cases.
You have provided us with all data collected in this way either voluntarily (e.g. newsletter subscription, entries in your user profile, use of our services), or because we need them for the establishment, content design or modification of the contractual relationship (inventory data), or because we are legally obliged to collect them, or we have a legitimate interest in collecting them (e.g. for marketing purposes: to analyse and improve our services and our content on our website or our app or to avert dangers).
Note on the right of objection: If we process your personal data on the basis of our legitimate interest and there is no exit option, e.g. due to a corresponding default setting, you can exercise your right of objection at any time by sending us an email to email@example.com You can find more information on this under your rights.
6. How we pass on your data to third parties
Your data will never be offered for sale by us to third parties.
We only transfer personal data to third parties if this is necessary for the execution of the contract, e.g. to the bank entrusted with the handling of payments, if we are legally obliged to do so.
The basis for data processing is Art. 6 para. 1 lit. b) DS-GVO, which permits the processing of data for the fulfilment of a contract or pre-contractual measures, Art. 6 lit. c) DS-GVO.
Our app is offered as Software as a Service. For this purpose, we use the cloud computing service, Amazon Web Services EMEA SARL (Branch Office Germany Marcel-Breuer-Str. 12, 80807 Munich) with servers in Germany.
We will disclose your personal information to law enforcement agencies, investigating authorities or in legal proceedings if we are required to do so by law or if it is reasonably necessary to perform the services or to protect our or users’ rights.
Sale or Merger
We may disclose your personal information in the event of a merger, acquisition or sale of all or any part of our assets. We will, of course, notify you by email and/or a prominent notice on our website and inform you of your rights.
Sharing and Disclosure of Aggregated Information
We share information in aggregated form and/or in a form that does not allow the recipient to identify you from that information – for example, with third parties for industry analysis or contractors.
7. How we ensure the security of the information we collect
The protection of your personal information is very important to us. Although we take reasonable precautions to protect the personal information we collect, we would like to point out that no security system is infallible.
We use several appropriate technical and organisational measures and industry standards to protect your personal information from loss, theft, misuse, unauthorised access and disclosure, alteration, and destruction. The personal information we collect from you is stored on computer systems with limited access. In addition, we require third parties we hire to maintain appropriate security measures for the information we transmit. When you visit our website or send us information through the website, your information is protected by encryption technologies such as transport layer security (https encryption).
8. How long we keep your data
9. Your rights
You have the following rights towards us as far as the use of your personal data is concerned:
Right to information according to art. 15 DS-GVO
You can ask us to send you a copy of the personal data that we have collected about you.
Right to correction or deletion pursuant to Art. 16, 17 DS-GVO
You can notify us if your personal information has changed or if you want us to change the personal information we collect about you.
In certain cases, you may ask us to delete the personal information we collect about you.
Right to limitation of processing Art. 18 DS-GVO
In certain cases, you have the right to request the limitation of the processing of your data.
Right to revoke consent given and objection to processing pursuant to Art. 7 para. 3, Art. 21 DS-GVO
If you have given consent to the processing of your data, you can withdraw consent for future data processing at any time. This withdrawal of consent influences the permissibility of the processing of your personal data after you have given it to us.
If we base the processing of your personal data on a weighing of interests, you can object to the processing. This is the case if the processing of the data is not necessary to the fulfilment of your contract. In the event of such an objection, we ask you to explain the reasons why we should not process your personal data as we have done. In the event of your justified objection, we will examine the situation and either discontinue or adapt the data processing or highlight and justify our reasons, on the basis of which we will continue the processing.
Right of appeal pursuant to Art. 77 DS-GVO
If you have a problem with us using your data, we will always be more than happy to discuss how we can solve this issue. If, however, you feel that we were unable to help you solve the problem, you also have the right to complain to a data protection supervisory authority about the processing of your personal data by us.
We rely on you to ensure that your personal data is complete, accurate and up to date. Please inform us immediately of any changes or inaccuracies in your personal data by sending an email to firstname.lastname@example.org
10. Data protection for applications and in the application procedure
We collect and process applicants’ personal data for the application process. The processing can also be carried out electronically. This is particularly the case if an applicant submits application documents electronically, for example by e-mail or via a web form on the website, to the data controller. If the data controller concludes an employment contract with an applicant, the data transmitted will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If the data controller does not conclude an employment contract with the applicant, the application documents shall be automatically deleted two months after they are notified of their rejection, provided that no other legitimate interests from the data controller conflict them being deleted. Other legitimate interests in this sense include, for example, the duty to provide evidence in proceedings under the General Equal Treatment Act (Allgemeines Gleichbehandlungsgesetz – AGG). The application process is supported by the online HR-management software, HeavenHR. (HeavenHR GmbH, Mittenwalder Straße 6, D-10961 Berlin). Information regarding their data protection can be found here: https://www.heavenhr.com/web/DE/de/datenschutz
In order to make visiting our website more attractive, so-called cookies are stored on your computer, in addition to the above-mentioned data, when you use our website. Cookies are small text files that are stored on your hard drive and assigned to the browser you are using. This means that certain information flows to the location that sets the cookie (here to us). Cookies cannot execute programs or transmit viruses to your computer. The following types of cookies can be set by us:
Transient cookies are automatically deleted when you close your browser. This includes the session cookies. They store a so-called session ID, which can be used to assign various requests from your browser to the shared session. This enables your computer to be recognised when you return to our website. The session cookies are deleted when you log out or close your browser.
Persistent cookies are automatically deleted after a certain period of time, which you can set yourself. You can delete cookies in your browser security settings at any time.
When personal data is collected or stored by the implemented cookies, the processing is carried out in accordance with Art. 6 lit. b) DS-GVO for the fulfilment of a contract, or for the implementation of pre-contractual measures, which are carried out at the request of the person concerned, or in accordance with Art. 6 lit. f) in pursuit of our legitimate interests for the maintenance of the functionality of our website, as well as its user-friendly and effective design.
You can set your browser to inform you about cookies being used, and you can choose whether you want to accept them, and in what cases you want them to be used. Every browser decides how cookies will be implemented. In your browser’s help menu, you will find information on how to change your cookie settings.
Direct Marketing (Newsletter)
Data protection for applications and in the application process
We collect and process personal data from applicants for the purpose of handling the application process. Processing may also be carried out electronically, especially if an applicant sends their application by electronic means, for example by email or through a form on the website. If an employment contract is signed with an applicant, the data transmitted will be stored for the purpose of processing the employment relationship in compliance with the statutory provisions. If an employment contract is not signed with the applicant, the application documents will be automatically deleted two months after the letter of refusal, provided that no other legitimate interests stand in the way of deletion. A legitimate interest in this sense is, for example, a burden of proof in proceedings under the General Act on Equal Treatment (AGG).
With your consent, you can subscribe to our newsletter, with which we can inform you about our latest offers. The advertised goods and services are named in the declaration of consent.
We use the so-called double opt-in procedure to register for our newsletter. This means that after your registration, we will send you an email to the given email address, in which we will ask you to confirm that you wish to receive the newsletter. If you do not confirm your registration within 24 hours, your information will be blocked and automatically deleted after one month. In addition, we save the IP addresses you use and the dates of registration and confirmation. The purpose of the procedure is to prove your registration and, if necessary, to clarify any possible misuse of your personal data.
Your email address is the only mandatory information for sending the newsletter. The indication of further, separately marked data is voluntary and will be used to address you personally. After your confirmation, we save your email address for the purpose of sending you the newsletter. The legal basis for this is Art. 6 Para. 1 S. 1 lit. a) DS-GVO.
You can revoke your consent to the sending of the newsletter at any time and cancel the newsletter. You can declare your revocation by clicking on the link provided in every newsletter email, by sending an email to email@example.com or by sending a message to the contact details given in the imprint.
We would like to point out that we evaluate your user behaviour when sending the newsletter.
You can object to this tracking at any time by clicking on the separate link provided in each email or by informing us of another contact method. The information is stored as long as you have subscribed to the newsletter. After you have unsubscribed, we store the data purely statistically and anonymously.
You can object to this tracking at any time by clicking on the separate link provided in each email or by informing us of another contact method. The information is stored as long as you have subscribed to the newsletter. After you have unsubscribed, we store the data purely statistically and anonymously.
The newsletters are sent by the dispatch service “MailChimp”, a newsletter dispatch platform of the US provider Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA.
The dispatch service provider can use the recipient’s data in pseudonymous form, i.e. without allocation to a user, to optimise or improve its own services, e.g. for technical optimisation of dispatch and the presentation of the newsletter or for statistical purposes. However, the dispatch service provider does not use the data of our newsletter recipients to write to them itself or to pass the data on to third parties.
Use by Google Analytics
Google will use this information on our behalf to evaluate the use of our website by users, to compile reports on activities within this website and to provide us with other services associated with the use of this website and the Internet. Anonymous user profiles can be created from the processed data.
We use Google Analytics exclusively with the extension “anonymizeIp()”, which ensures an anonymization of the IP address by shortening and excluding a direct personal reference. This means that the IP address of the user is shortened by Google within member states of the European Union or states in the European Economic Area. Only in exceptional cases is the full IP address transmitted to a Google server in the USA and shortened there. In these cases, the processing, in accordance with Art. 6 f) DS-GVO, is carried out in the exercise of our legitimate interests for marketing purposes and to maintain the attractiveness of our offer. The IP address transmitted by the user’s browser is not merged with other Google data.
You, the user, can prevent the storage of cookies using the appropriate settings in your browser software. You also have the option of preventing Google from collecting the data generated by cookies and related to your use of the online service, and to prevent Google from processing this data by downloading and installing the browser plugin, available at the following link: http://tools.google.com/dlpage/gaoptout?hl=en.
If you do not wish Google Analytics to analyse your website usage anonymously, you can object here at any time with effect for the future. When you click on the link, an opt-out cookie is stored on your end device. When you visit our website again, this cookie prevents your data from being collected again. To prevent Universal Analytics from collecting your data across multiple devices, you must opt-out of all systems in use.
Google LLC, based in the United States, is certified under the U.S. Privacy Shield Agreement, which ensures compliance with the level of data protection applicable in the EU.
Use by Google AdWords Conversion Tracking
We use the online application programme ‘Google AdWords’ and in the context of Google AdWords, the conversion tracking on our website. Google Conversion Tracking is an analysis service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”). When you click on an ad placed by Google, a conversion tracking cookie is placed on your computer. These cookies lose their validity after 30 days, do not contain any personal data and are therefore not used for personal identification.
If you visit certain pages on our website and the cookie has not expired, Google and we may recognize that you clicked on the ad and were directed to that page. Each Google AdWords customer receives a different cookie. As a result, there is no way that cookies can be tracked through the AdWords customer’s website.
The information gathered from the Conversion cookie is used to generate conversion statistics for AdWords customers who have opted for Conversion Tracking. This tells customers the total number of users who clicked on their ad and were directed to a page tagged with a conversion tracking tag. However, they will not receive any information that personally identifies users.
If you do not wish to participate in tracking, you can object to this use by preventing the installation of cookies, by making the appropriate settings in your browser software (deactivation option). You will then not be included in the conversion tracking statistics.
Google Adsense with personalised ads
We use the services of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94040 on the basis of our legitimate interests (i.e. interest in the analysis, optimisation and economic operation of our online offer within the meaning of Art. 6 Para. 1 lit. f. of the German Data Protection Act). DSGVO) the services of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, (“Google”).
We use the AdSense service to display advertisements on our website and to reward us for displaying or otherwise using them. For these purposes, usage data such as the click on an advertisement and the IP address of the user are processed, whereby the IP address is shortened by the last two digits. Therefore, the processing of user data is pseudonymised.
We use Adsense with personalised ads. Google draws conclusions about the interests of users based on the websites or apps they visit and the user profiles they create. Advertisers use this information to tailor their campaigns to these interests, which is beneficial to both users and advertisers. For Google, ads are personalised when data that is collected or known determines or influences the selection of ads. This includes, but is not limited to, past searches, activities, website visits, app usage, demographics, and location information. Specifically, this includes demographic targeting, targeting of interest categories, remarketing, and targeting of customer match lists and target audience lists, uploaded to DoubleClick Bid Manager or Campaign Manager.
Google LLC, based in the United States, is certified under the U.S. Privacy Shield Agreement, which ensures compliance with the privacy standards applicable in the EU.
Use of Crashlytics
For quality improvement and troubleshooting of our app, we use the service of Crashlytics from Crashlytics Inc, a company from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (“Google”).
Google is certified under the Privacy Shield Agreement, which ensures compliance with EU data protection standards.
You can find out more about data use by Crashlytics at: https://try.crashlytics.com/terms/privacy-policy.pdf
12. Involvement of social networks/ “Social Plugins” on the HUMANOO website
For our web presence (not for our HUMANOO app), we use Social Plugins (“Plugins”) from different social networks. With the help of these plugins, you can, for example, share content or recommend products. The plugins are usually deactivated, and therefore do not send any data. You can reactivate the plugins with just a click, should you choose to do so.
If these plugins are activated, your browser establishes a direct connection with the respective social network’s servers as soon as you access a page of our website. The content of the plugin is transmitted directly from the social network to your browser, which then integrates it into the website.
By integrating the plugins, the social network receives the information that you accessed the corresponding page of our website. If you are logged in to the social network, it can connect the visit to your account. If you interact with the plugins, for example by clicking on the Facebook “Like” button, or by submitting a comment, the corresponding information is transmitted directly from your browser to the social network, and stored there.
The purpose and scope of the data collection and the further processing and use of the data by social networks, as well as your rights in this respect and setting options for the protection of your privacy, can be found in the data protection information of the respective networks or websites. You can find the relevant links below.
Even if you are not registered with the social networks, websites with active social plugins can send data to the networks. An active plugin sets a cookie with an identifier each time the website is accessed. Since your browser sends this cookie every time you connect to a network server without being asked, the network could in principle use it to create a profile, consisting of which web pages the user belonging to the identifier has visited. And it would then also be quite possible to assign this identifier to a person again later – for example when logging on to the social network later.
If you don’t want social networks to collect data about you via active plugins, you can select the “Block third-party cookies” function in your browser settings. In this case, the browser will not send cookies to the server for embedded content from other providers. With this setting, however, other functions than the plugins may no longer work under certain circumstances.
We use the following plugins on our website:
We use plugins of the social network Twitter, which is operated by Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA (“Twitter”). The purpose and scope of the data collection and the further processing and use of the data by Twitter as well as the related rights and setting options to protect the privacy of users, you can read Twitter’s privacy notice: https://twitter.com/de/privacy
We use plugins of the social network Pinterest, which is operated by Pinterest Inc., 635 High Street, Palo Alto, CA, USA (“Pinterest”). Information on data usage can be found at: https://about.pinterest.com/de/privacy-policy.
Our website uses social plugins (“plugins”) from Instagram, which is operated by Instagram LLC, 1601 Willow Road, Menlo Park, CA 94025, USA (“Instagram”). You can find information on data usage at: https://help.instagram.com/155833707900388/
We incorporate LinkedIn, the LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland, into our online service. You can find out more about LinkedIn’s use of data at: https://www.linkedin.com/legal/privacy-policy.
On our website we use components (videos) of the company YouTube LLC 901 Cherry Ave, 94066 San Bruno, CA, USA (“YouTube”), a company of Google LLC (“Google”), Amphitheatre Parkway, Mountain View, CA 94043, USA. More information about YouTube’s privacy practices is provided by Google at the following link: https://www.google.de/intl/de/policies/privacy/
Functions and contents of the Xing service offered by XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany, can be integrated into our online offering. Information on data usage can be found at: https://www.xing.com/app/share?op=data_protection.
13. Changes to the Data Protection Policy
It can occur that we have to change this data protection policy, for example, when we add new functions and services to the app. We will inform you about every change, and request that you read through all the proposed changes, and accept them, before we implement them.
Please note that the data protection policy has been translated and in the case of disputes, the original German version will overrule the translated version.