Privacy Policy
Privacy Policy
We respect and protect your privacy. With the following data privacy policy we would like to give you an overview of which data is collected and processed for which purpose. We also inform you about your rights.
Name and Address of the controller
Controller for the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in Member states of the European Union and other provisions related to data protection is:
Unisphere GmbH
Turmstrasse 5
78467 Konstanz
Germany
Email: info@unisphere.de
Definitions
“Personal data”
means any information relating to an identified or identifiable natural person (“data subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
“Data subject”
is any identified or identifiable natural person, whose personal data is processed by the controller responsible for the processing.
“Processing”
is any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
“Profiling”
means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or movements.
“Pseudonymisation”
is the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.
“Controller”
or controller responsible for the processing is the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
“Processor”
is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
“Recipient”
is a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients; the processing of those data by those public authorities shall be in compliance with the applicable data protection rules according to the purposes of the processing.
“Third party”
is a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorized to process personal data.
Applicable legal basis
The data protection declaration of the Unisphere GmbH is based on the EU General Data Privacy Regulation (GDPR). In the following the German abbreviation DSGVO is also used. Please note that in addition to the regulations of the GDPR, national data protection regulations may apply in your or our country of residence and domicile. Should more specific legal regulations apply in individual cases, we will inform you of these in the data protection declaration.
Transmission and disclosure of personal data
In the course of our processing of personal data, it may happen that the data is transferred to or disclosed to other bodies, companies, legally independent organizational units or persons. The recipients of this data may include, for example, payment institutions in the context of payment transactions, service providers commissioned with IT tasks or providers of services and content that are integrated into a website. In such cases, we observe the legal requirements and, in particular, conclude appropriate contracts or agreements with the recipients of your data that serve to protect your data.
Data processing in third countries
If we process data in a third country (i.e., outside the European Union (EU), the European Economic Area (EEA)) or if the processing takes place in the context of the use of services of third parties or the disclosure or transfer of data to other persons, bodies or companies, this is only done in accordance with the legal requirements.
Subject to express consent or contractually or legally required transfer, we process or have the data processed only in third countries with a recognized level of data protection, contractual obligation through so-called standard protection clauses of the EU Commission, in the presence of certifications or binding internal data protection regulations (Art. 44 to 49 DSGVO, information page of the EU Commission: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection_de).
Deletion of data
The data processed by us will be deleted in accordance with the legal requirements as soon as their consent permitted for processing is revoked or other permissions cease to apply (e.g. if the purpose for which the data were processed ceases to apply or if they are not necessary for the purpose).
Unless the data are deleted because they are required for other and legally permissible purposes, their processing is limited to these purposes. This means that the data is blocked and not processed for other purposes. This applies, for example, to data that must be retained for reasons of commercial or tax law or that must be stored for the purpose of asserting, exercising or defending legal claims or protecting the rights of another natural or legal person.
Further information on the deletion of personal data may also be provided in the individual data protection notes of this privacy policy.
Rights
As a data subject, you are entitled to various rights under the DSGVO, which result in particular from Art. 15 to 21 DSGVO:
- Right of objection: You have the right to object at any time, for reasons arising from your particular situation, to the processing of personal data relating to you which is carried out pursuant to Art. 6, paragraph 1, letters e or f of the DPA; this also applies to profiling based on these provisions. If the personal data concerning you are processed for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing, including profiling, insofar as it is linked to such direct marketing.
- Right to withdraw consent: You have the right to revoke consents at any time.
- Right to information: You have the right to request confirmation as to whether or not data in question is being processed and to receive information about this data and further information and a copy of the data in accordance with the legal requirements.
- Right of rectification: You have the right to request the completion of the data concerning you or the rectification of incorrect data concerning you, in accordance with the law.
- Right to erasure and limitation of processing: You have the right to request, in accordance with the law, the immediate erasure of data concerning you or, alternatively, in accordance with the law, the limitation of processing of the data.
- Right to data transferability: You have the right, in accordance with the legal requirements, to receive data concerning you that you have provided to us in a structured, common and machine-readable format or to demand that it be transferred to another person responsible for data transfer.
- Complaints to supervisory authorities: You also have the right, in accordance with the statutory provisions, to lodge a complaint with a supervisory authority, in particular in the Member State in which you are normally resident, your place of work or the place where the alleged infringement is committed, if you believe that the processing of personal data relating to you is in breach of the DSGVO.
The Use of Cookies
Cookies are text files that contain data from visited websites or domains and are stored by a browser on the user’s computer. A cookie is primarily used to store information about a user during or after his visit within an online offer. The stored information can include, for example, the language settings on a website, the login status, a shopping cart or the location where a video was viewed. The term “cookies” also includes other technologies that perform the same functions as cookies (e.g., when user information is stored using pseudonymous online identifiers, also referred to as “user IDs”)
Information on legal bases
The legal basis on which we process your personal data using cookies depends on whether we ask you for your consent. If this is the case and you consent to the use of cookies, the legal basis for processing your data is the declared consent. Otherwise, the data processed with the help of cookies will be processed on the basis of our legitimate interests (e.g. in a business operation of our online offer and its improvement) or, if the use of cookies is necessary to fulfil our contractual obligations.
Storage duration
Unless we provide you with explicit information on the storage duration of permanent cookies (e.g. within the scope of a so-called cookie opt-in), please assume that the storage duration can be up to two years.
General information on revocation and opposition (opt-out)
Depending on whether the processing is based on consent or legal permission, you may at any time revoke any consent you have given or object to the processing of your data by cookie technologies (collectively referred to as “opt-out”). You can initially declare your objection by means of the settings of your browser, e.g. by deactivating the use of cookies (although this may also restrict the functionality of our online service). An objection to the use of cookies for online marketing purposes can also be declared by means of a variety of services, especially in the case of tracking, via the websites https://optout.aboutads.info and https://www.youronlinechoices.com/. In addition, you can receive further notices of objection in the context of the information on the service providers and cookies used.
Processing of cookie data based on consent
Before we process or allow data to be processed in the context of the use of cookies, we ask users for their consent, which can be revoked at any time. Before consent is not given, cookies are used if necessary, which are absolutely necessary for the operation of our online offer.
- processed data types: Usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
- Data subjects: Users (e.g. website visitors, users of online services).
- Legal basis: Consent (Art. 6 para. 1 p. 1 lit. a. DSGVO), legitimate interests (Art. 6 para. 1 p. 1 lit. f. DSGVO).
Newsletter and electronic notifications
On the website of the Unisphere GmbH, users are given the opportunity to subscribe to our newsletter. The input mask used for this purpose determines what personal data are transmitted, as well as when the newsletter is ordered from the controller. We send newsletter, emails, and other electronic notifications only with the consent of the recipients or a legal permission.
To subscribe to our newsletter, it is generally sufficient to provide your e-mail address. However, we may ask you to provide a name for the purpose of personal contact in the newsletter, or other information if this is necessary for the purposes of the newsletter.
Double opt-in procedure
The registration for our newsletter is always carried out in a so-called Double-Opt-In-Procedure. This means that after registration you will receive an e-mail asking you to confirm your registration. This confirmation is necessary so that no one can register with foreign e-mail addresses. The newsletter registrations are logged in order to be able to prove the registration process according to the legal requirements. This includes the storage of the registration and confirmation time as well as the IP address. Changes to your data stored by the shipping service provider are also logged.
Deletion and restriction of processing
We may store the deleted e-mail addresses for up to three years on the basis of our legitimate interests before we delete them in order to be able to prove a previously given consent. The processing of this data is limited to the purpose of a possible defense against claims. An individual request for deletion is possible at any time, provided that the former existence of a consent is confirmed at the same time. In the event of obligations to permanently observe objections, we reserve the right to store the e-mail address in a block list for this purpose alone (so-called “block list”).
The logging of the registration procedure is based on our legitimate interests for the purpose of proving that it has been carried out properly. If we commission a service provider to send e-mails, this is done on the basis of our legitimate interests in an efficient and secure sending system.
Notes on legal basis
The dispatch of the newsletters is based on the consent of the recipients or, if consent is not required, on our legitimate interests in direct marketing, if and to the extent that this is permitted by law, e.g. in the case of advertising to existing customers. If we commission a service provider to send e-mails, this is done on the basis of our legitimate interests. The registration process will be recorded on the basis of our legitimate interests in order to prove that it was carried out in accordance with the law.
Used services and service providers
- MailChimp: We offer you the opportunity to register for our free newsletter via our website. We use MailChimp, a service of The Rocket Science Group, LLC, 512 Means Street, Suite 404, Atlanta, GA 30318, USA, hereinafter referred to as „The Rocket Science Group“. In addition, the Rocket Science Group offers further information about its data protection practices at http://mailchimp.com/legal/privacy/. If you register for our free newsletter, the data requested from you for this purpose, i.e. your email address and, optionally, your name and address, will be processed by The Rocket Science Group. In addition, your IP address and the date and time of your registration will be saved. During the registration process, your consent to receive this newsletter will be obtained together with a concrete description of the type of content it will offer and reference made to this privacy policy. The newsletter then sent out by The Rocket Science Group will also contain a tracking pixel called a web beacon. This pixel helps us evaluate whether and when you have read our newsletter and whether you have clicked any links contained therein. In addition to further technical data, such as data about your computer hardware and your IP address, the data processed will be stored so that we can optimize our newsletter and respond to the wishes of our readers. The data will therefore increase the quality and attractiveness of our newsletter. The legal basis for sending the newsletter and the analysis is Art. 6 Para. 1 lit. a) GDPR. You may revoke your prior consent to receive this newsletter under Art. 7 Para. 3 GDPR with future effect. All you have to do is inform us that you are revoking your consent or click on the unsubscribe link contained in each newsletter.
Content
Information about us, our services, actions and offers.
Analysis and performance measurement: The newsletters contain a so-called “web beacon”, i.e. a pixel-sized file that is retrieved from our server when the newsletter is opened or, if we use a mailing service provider, from their server. Within the scope of this retrieval, technical information such as information on the browser and your system, as well as your IP address and the time of retrieval, is initially collected.
This information is used for the technical improvement of our newsletter based on the technical data or the target groups and their reading behavior based on their retrieval locations (which can be determined by means of the IP address) or the access times. This analysis also includes determining whether the newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to individual newsletter recipients. However, it is neither our intention nor, if used, that of the mailing service provider to observe individual users. Rather, the evaluations serve to recognize the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.
The evaluation of the newsletter and the measurement of success are carried out, subject to the express consent of the users, on the basis of our legitimate interests for the purpose of using a user-friendly and secure newsletter system that serves our business interests and meets the expectations of the users.
Unfortunately, a separate revocation of the performance measurement is not possible. In this case, the entire newsletter subscription must be cancelled or objected to.
Condition for the use of free services
Consent to the sending of mailings can be made dependent on the user’s consent as a prerequisite for the use of free services (e.g. access to certain contents or participation in certain campaigns). If users wish to take advantage of the free services without registering for the newsletter, please contact us.
Web analysis, monitoring and optimization
Web analysis is used to evaluate the streams of visitors to our online offering and may include behavior, interests or demographic information about visitors, such as age or gender, as pseudonymous values. With the help of the range analysis we can, for example, identify at what time our online offer or its functions or contents are most frequently used or invite reuse. We can also understand which areas require optimization.
In addition to web analysis, we can also use test procedures, e.g. to test and optimize different versions of our online offer or its components.
For these purposes, so-called user profiles can be created and stored in a file (so-called “cookie”) or similar procedures with the same purpose can be used. This information may include, for example, content viewed, web pages visited and elements used there, and technical details such as the browser used, the computer system used and information on usage times. If users have consented to the collection of their location data, this data may also be processed, depending on the provider.
The IP addresses of users are also stored. However, we use an IP masking procedure (i.e., pseudonymization by shortening the IP address) to protect the users. In general, in the context of web analysis, A/B testing and optimization, no clear user data (such as e-mail addresses or names) are stored, but pseudonyms. This means that we as well as the providers of the software used do not know the actual identity of the users, but only the information stored in their profiles for the purposes of the respective procedures.
Notes on legal basis
If we ask the users for their consent to the use of the third-party providers, the legal basis for the processing of data is the consent. Otherwise, the users’ data will be processed on the basis of our legitimate interests (i.e. interest in efficient, economic and recipient-friendly services). In this context, we would also like to draw your attention to the information on the use of cookies in this privacy policy.
- Processed data types: Usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
- Data subjects: Users (e.g. website visitors, users of online services).
- Purposes of processing: Reach measurement (e.g. access statistics, recognition of returning visitors), tracking (e.g. interest/behavioral profiling, use of cookies), conversion measurement (measuring the effectiveness of marketing measures), profiling (creating user profiles), interest-based and behavioral marketing.
- security measures: IP-Masking (pseudonymization of the IP address).
- Legal basis: Consent (Art. 6 para. 1 p. 1 lit. a. DSGVO), legitimate interests (Art. 6 para. 1 p. 1 lit. f. DSGVO).
Used services and service providers
- Google Analytics: reach measurement and web analytics; service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; Website: https://marketingplatform.google.com/intl/de/about/analytics/ ; Privacy Policy: https://policies.google.com/privacy .
- Google Optimize: Use of Google Analytics data for the purpose of improving areas of our online offering and better aligning our marketing activities with the potential interests of users; service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; Website: https://optimize.google.com ; Privacy Policy: https://policies.google.com/privacy ; Opt-Out: Opt-Out Plugin: https://tools.google.com/dlpage/gaoptout?hl=de , Settings for the display of advertising: https://adssettings.google.com/authenticated .
- Google Tag Manager: Google Tag Manager is a solution that allows us to manage so-called website tags via an interface and thus integrate other services into our online offering (for more information on this, please refer to this privacy statement). The Tag Manager itself (which implements the tags) does not yet create user profiles or store cookies. Google only learns the IP address of the user, which is necessary to run the Google Tag Manager. Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; website: https://marketingplatform.google.com ; privacy policy: https://policies.google.com/privacy.
- Microsoft Clarity: Microsoft Clarity has a cookie on every page of our site. Clarity captures the interactions on our website such as how the page has rendered and what interactions users undertake such as mouse movements, clicks, scrolls, etc. By default, any sensitive content such as passwords, usernames, etc. are masked before sending to Clarity. Clarity is GDPR complaint as a data controller. Service provider: Microsoft Corporation, One Microsoft Way Redmond, WA 98052-6399, USA; website: https://clarity.microsoft.com ; privacy policy: https://clarity.microsoft.com/terms .
- Google reCAPTCHA: Our website uses Google reCAPTCHA to check and prevent automated servers („bots“) from accessing and interacting with our website. This is a service provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland (hereinafter: Google). This service allows Google to determine from which website your request has been sent and from which IP address the reCAPTCHA input box has been used. In addition to your IP address, Google may collect other information necessary to provide and guarantee this service. The legal basis is Art. 6 Para. 1 lit. f) GDPR. Our legitimate interest lies in the security of our website and in the prevention of unwanted, automated access in the form of spam or similar. Google offers detailed information at https://policies.google.com/privacy concerning the general handling of your user data.
Onlinemarketing
We process personal data for online marketing purposes, which may include, in particular, the marketing of advertising space or the display of advertising and other content (collectively referred to as “Content”) based on the potential interests of users and the measurement of its effectiveness.
For these purposes, so-called user profiles are created and stored in a file (a so-called “cookie”) or similar procedures are used, by means of which user data relevant to the presentation of the aforementioned content is stored. This information may include, for example, the content viewed, web pages visited, online networks used, but also communication partners and technical details such as the browser used, the computer system used and information on usage times. If users have consented to the collection of their location data, this data may also be processed.
The IP addresses of users are also stored. However, we use available IP masking procedures (i.e., pseudonymization by shortening the IP address) to protect the users. In general, no clear user data (such as e-mail addresses or names) are stored in the context of the online marketing process, but pseudonyms. This means that we as well as the providers of the online marketing procedures do not know the actual identity of the users, but only the information stored in their profiles.
As a rule, the information in the profiles is stored in the cookies or by means of similar procedures. These cookies can later be read out and analyzed for the purpose of presenting content on other websites that use the same online marketing procedure, and can also be supplemented with additional data and stored on the server of the online marketing procedure provider.
As an exception, clear data can be assigned to the profiles. This is the case, for example, if the users are members of a social network whose online marketing procedure we use and the network links the user profiles with the aforementioned data. Please note that users can make additional agreements with the providers, e.g. by giving their consent during registration.
As a matter of principle, we only receive access to summarized information about the success of our advertisements. However, we can check in the context of so-called conversion measurements which of our online marketing procedures have led to a so-called conversion, i.e., for example, to the conclusion of a contract with us. The conversion measurement is used solely to analyze the success of our marketing measures.
Unless otherwise stated, we ask you to assume that used cookies are stored for a period of two years.
Notes on legal basis
If we ask the users for their consent to the use of the third-party providers, the legal basis for the processing of data is the consent. Otherwise, the users’ data will be processed on the basis of our legitimate interests (i.e. interest in efficient, economic and recipient-friendly services). In this context, we would also like to draw your attention to the information on the use of cookies in this privacy policy.
- Processed data types: Usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
- Data subjects: Users (e.g. website visitors, users of online services), interested parties.
- Purposes of processing: Tracking (e.g. interest/behavioral profiling, use of cookies), remarketing, conversion measurement (measurement of the effectiveness of marketing measures), interest-based and behavioral marketing, profiling (creation of user profiles), reach measurement (e.g. access statistics, recognition of returning visitors).
- Security measures: IP-Masking (pseudonymization of the IP address).
- Legal basis: Consent (Art. 6 para. 1 p. 1 lit. a. DSGVO), legitimate interests (Art. 6 para. 1 p. 1 lit. f. DSGVO).
- Possibility of objection (Opt-Out): We refer to the data protection information of the respective providers and the possibilities of objection (so-called “Opt-Out”) indicated for the providers. If no explicit opt-out option has been specified, it is possible to deactivate cookies in the settings of your browser. However, this may restrict the functions of our online offer. We therefore recommend the following additional opt-out options, which are offered in summary form for the respective areas: a) Europe: https://www.youronlinechoices.eu . b) Canada: https://www.youradchoices.ca/choices . c) USA: https://www.aboutads.info/choices . d) Transnational: https://optout.aboutads.info .
Used services and service providers
- Google Tag Manager: Google Tag Manager is a solution with which we can manage so-called website tags via an interface and thus integrate other services into our online offering (for more information, please refer to this privacy policy). With the Tag Manager itself (which implements the tags), no user profiles are created or cookies are stored. Google only learns the IP address of the user, which is necessary to run the Google Tag Manager. Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; website: https://marketingplatform.google.com ; privacy policy: https://policies.google.com/privacy .
- Google Analytics: online marketing and web analytics; service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; Website: https://marketingplatform.google.com/intl/de/about/analytics/ ; Privacy Policy: https://policies.google.com/privacy ; Opt-Out: Opt-Out Plugin: https://tools.google.com/dlpage/gaoptout?hl=de , Settings for the display of advertisements: https://adssettings.google.com/authenticated .
Social networks
We maintain online presences within social networks and in this context, we process user data in order to communicate with the users active there or to offer information about us.
Please note that user data may be processed outside the European Union. This can result in risks for the users, because the enforcement of the users’ rights could be made more difficult.
Furthermore, user data within social networks are usually processed for market research and advertising purposes. For example, user profiles can be created on the basis of user behavior and the resulting interests of the users. The user profiles can in turn be used, for example, to place advertisements within and outside the networks that presumably correspond to the interests of the users. For these purposes, cookies are usually stored on the users’ computers, in which the usage behaviour and interests of the users are stored. Furthermore, data may also be stored in the user profiles independently of the devices used by the users (especially if the users are members of the respective platforms and are logged in to them).
For a detailed description of the respective forms of processing and the possibilities of objection (opt-out), we refer to the data protection declarations and information provided by the operators of the respective networks.
Also, in the case of requests for information and the assertion of data subject rights, we would like to point out that these can most effectively be asserted with the providers. Only the providers have access to the data of the users in each case and can directly take appropriate measures and provide information. Should you nevertheless require assistance, you can contact us.
- Processed data types: inventory data (e.g. names, addresses), contact data (e.g. e-mail, telephone numbers), content data (e.g. entries in online forms), usage data (e.g. websites visited, interest in content, access times), meta/communication data (e.g. device information, IP addresses).
- Data subjects: Users (e.g. website visitors, users of online services).
- Purposes of processing: contact requests and communication, tracking (e.g. interest/behavioural profiling, use of cookies), remarketing, reach measurement (e.g. access statistics, recognition of returning visitors).
- Legal basis: Legitimate interests (Art. 6 para. 1 p. 1 lit. f. DSGVO).
Used services and service providers
- LinkedIn: Social network; service provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland; Website: https://www.linkedin.com ; Privacy Policy: https://www.linkedin.com/legal/privacy-policy ; Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out .
- Instagram: Meta Platforms Ireland Limited, 4 Grand Canal Square, Dublin 2, Ireland; Website: https://www.instagram.com; Privacy Policy: https://help.instagram.com/519522125107875
Amendments
By using our website, you agree to be aware of this privacy statement. This Privacy Policy is currently valid and dated November 11, 2020.
We reserve the right to change this Privacy Policy from time to time with effect for the future. However, we will not subsequently use data once collected for other purposes without your consent if our privacy policy has changed in the meantime.