We are well aware of how sensitive your personal data is and place great importance on your privacy. Therefore, we are glad to meet with your interest in our data privacy statement, which shall serve as a means of your information. If the awkward wording which is due to the legal provisions should, however, leave questions unanswered or even raise questions, please refer to our Help Centreor gladly contact our Support.
mojoreads is offered by log.os GmbH & Co. KG (in the following referred to as “mojoreads” or also briefly as “we”). The data privacy statement shall apply to our online presence under www.mojoreads.com and/or www.mojoreads.de as well as our other digital products (e.g. our apps), summarized as “Service(s)“ or “Online Services”.
The use of our website is possible – with the exception of general data compiled in general (compare No. 7) – without stating any of your own personal data. But if you want to make use of our services, it is necessary to process personal data. If processing personal data is necessary and there is no legal basis for such processing, we in general request your approval.
The processing of personal data, for example your name, your address or email address, shall always be in compliance with the German general data protection regulations (GDPR) and in accordance with the country-related data protection provisions valid for log.os GmbH & Co. KG. With this data privacy statement we would like to inform you and the public of the kind, scope and purpose of the personal data compiled, used and processed by us. Moreover, the concerned persons – i.e.: you and other users of mojoreads – are advised of the rights to which you are entitled by means of this data privacy statement.
As the party responsible, we have implemented numerous technical and organizational measures to safeguard the best possible protection of the personally related date processed by mojoreads. However, the internet-based data transmission may have essential security flaws so that absolute protection cannot be ensured. For this reason each person concerned shall also be free to transmit personal data through alternative channels, for example by telephone (this is stated, because we must state this).
1. Responsible Party
Responsible analogous to the German data protection regulations is:
log.os GmbH & Co. KG Dudenstrasse 10 10965 Berlin
as operator of mojoreads (in the following referred to as “mojoreads” or in brief “we”).
2. Data Protection Officer
Based on the size of our enterprise we are not (yet) obligated to appoint a data protection officer; however, will of course be glad to meet our obligation of providing information at any time. For all questions concerning data security please contact:
3. Definition of Terminology
Our data privacy statement must nolens volens refer to the terminology which was introduced by the adoption of the German general data protection regulations (GDPR), Datenschutz-Grundverordnung (DSGVO).
In this data privacy statement we, therefore, also use the terms as defined below:
Personal data: Personal data is all information which refers to an identified or identifiable natural person (in the following referred to as “concerned person“ or – if you as user of mojoreads are concerned – “you”). Identifiable natural persons are persons who can directly or indirectly be identified, in particular by recognition of an identifier, like a name or a code number, location data, online code word or one or several features express physical, physiological, genetic, psychic, economic, cultural or social identity of this natural person.
Concerned person: A concerned person is any identified or identifiable natural person, whose personal data is processed by the party responsible for processing.
Processing: Processing is any process carried out with or without the aid of automatic procedures or any such series of procedures in connection with personal data like compiling, collecting, organization, arranging, storing, adjustment or modification, reading, inquiring, using, disclosure by transmission, distribution or another form of providing supply, comparing or linking, restriction, deletion or destruction.
Restriction in processing: A restriction in processing is marking stored personal data with the objective of restricting your future processing.
Profiling: Profiling is any kind of automated processing of personal data which comprises the use of this personal data to refer to a natural person, evaluate same, in particular to analyse or predict aspects regarding efficiency, economic situation, health, personal preferences, interests, reliability, conduct, residence or change of location of this natural person.
Pseudonymization: Pseudonymization is the processing of personal data in a manner in which the personal data can no longer be allocated to a specific concerned person without referring to additional information, if this additional information was stored separately and is subject to technical and organizational measures that ensure that the personal data cannot be allocated to an identified or identifiable natural person.
Responsible party/parties or party/parties responsible for processing: The responsible party or party responsible for processing is the natural person or legal entity, authority, institution or other party which all or together with others decide on the purpose and means of processing of personal data. If the purposes and means of this processing are prescribed by the union law or the law of the member states, the responsible party/parties may subject certain criteria of its / their designation based on union law or the law of the member states
Order processor: The order processor is a natural person or legal entity, authority, institution or other party which processes the personal data on behalf of the responsible party.
Recipient: A recipient is a natural person or legal entity, authority, institution or other party to which the personal data is disclosed, regardless of whether or not it is a third party. Authorities, which in the scope of a certain examination assignment based on union law or the law of a member state may perhaps receive personal data, are, however, not considered a recipient.
Third party: A third party is a natural person or legal entity, authority, institution or other party with the exception of the concerned person, the responsible party, the party / parties processing the order and the persons which are under the direct responsibility of the party responsible or the party processing the order authorized to process the personal data.
Consent: Consent is any unmistakable and informed consent on an intension submitted voluntarily by the concerned person for the specific case in the form of a declaration or another clearly confirming action, whereby the concerned person states his/her understanding that he/she agrees to the processing of the data personally related to him/her.
4. Purpose of Compiling Personal Data
The data you give us is exclusively used and exchanged for the following purposes:
for compiling your customer account / accounts.
for providing our community services.
for processing you orders in the shop.
for answering questions.
for remedying problems.
for participating in competitions.
for personalization, synchronization and improvement of our services on multiple devices.
for the purpose of handling payments of purchases in our shop we are entitled to transfer your data to our payment service provider (Braintree). A written agreement on processing order data has been entered with same. Further information can be found under No. 5.
for the purpose of supplying the products you ordered we are entitled to transfer your data to our logistic partner (Libri). A written agreement on processing order data has been entered with same.
for ensuring and promoting protection, integrity and security of our platform.
for development of new services.
when subscribing the newsletter your email address is used for your own advertising purposes until you unsubscribe from the newsletter. We shall thus inform you on new products, campaigns and competitions. Further information can be found under No. 9. Unsubscribing is possible at any time under firstname.lastname@example.org
The legal basis for processing is, pursuant to the German general data protection regulations, Article 6 Section 1 lit. a GDPR, the consent to processing for the purposes determined here as well as our authorized interest on the basis of balancing interests pursuant to the German general data protection regulations, Article 6 Section 1 lit. f GDPR.
5. Processing Data by the Payment Service Provider
The payment service provider, Braintree, is assigned to process payment. Braintree is an enterprise of PayPal, Inc. which handles credit card payments. Your personal data is exclusively processed for the purpose of handling your online orders by Braintree. Details on data privacy of Braintree can be found here: https://www.braintreepayments.com/en-de/legal
Many cookies contain a so-called cookie ID. A cookie ID is a clear characteristic of the cookies. It consists of a string of characters which can determine what websites and servers can be allocated to the concrete browser in which the cookie was stored. This makes it possible to differentiate between the visited websites and servers, the individual browser of the concerned person and other browsers containing other cookies. A certain browser can be recognized and identified via the distinct cookie ID.
By means of cookies the information and services of mojoreads can be optimized in favour of our users. Cookies enable us, for example, to recognize your browser. The purpose of this recognition is to facilitate the application of mojoreads. In this way, for example you do not have to enter your access data every time you visit, because this is carried out by the cookie placed by mojoreads and that on your computer system. Another example is the cookie of a shopping cart in the online shop. The online shop memorizes the articles which a customer has placed in the virtual shopping cart due to a cookie.
learn more about your interests and to understand how you interact with our services;
personalize our services and contents;
allocate commission from our mojoreads partner programme (affiliate);
improve security of your account;
prevent attempts of fraud;
carry out research and diagnoses on improving our contents, products and services.
You can prevent mojoreads from placing cookies at any time by means of a corresponding setting on your browsers and thus permanently reject setting cookies. Moreover, you can at any time delete already set cookies by means of your browser or other programmes. This is possible in all conventional browsers. If you deactivate setting cookies in your browser, not all functions and services of mojoreads can be used to the full extent. For example without cookies it is not possible to participate in our affiliate and/or commission programme.
7. Compiling General Data
Every time our website or our other digital products are opened by a concerned person or an automated system we store a series of general data and information. This general data and information is stored in the log files of the servers. The following may be collected:
(1.) applied browser types and versions,
(2.) the operating system used by the accessing system,
(3.) the website from which an accessing system reached our website (so-called referrer),
(4.) the subordinate websites, which are controlled via an accessing system on our website,
(5.) the date and time of access to the website,
(6.) an internet protocol address (IP address),
(7.) the internet service provider of the accessing system and
(8.) other similar data and information, which serve to avoid unauthorized access in case of attacks to our information technology systems.
When using this general data and information we do not draw any conclusions on the concerned person. This information is, moreover, necessary to:
(1.) supply the contents of our website and products correctly,
(2.) optimize the contents of our website and productsas well as the advertisement for them,
(3.) safeguard the permanent functionality of our information technology systems and the technology of our services as well as
(4.) support law enforcement authorities in the event of a cyberattack with the information necessary for prosecution.
This anonymously obtained data and information thus on one hand evaluates statistics and on the other has the objective of increasing data protection and data safety in our company by ultimately safeguarding an optimum level of protection for the personal data processed by us. The anonymous data of the server log files are stored separately from all personal data specified by a concerned person.
8. Customer Information by means of Email
Distribution of our electronic customer information is carried out by means of the distribution service company “MailChimp“, a newsletter distribution platform of the US provider. Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA. The data protection regulations of the delivery service provider can be found here: https://mailchimp.com/legal/privacy/. The Rocket Science Group LLC d/b/a MailChimp is certified by the privacy shield agreement and in this manner offers a guarantee that the level of European data privacy is complied with (https://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAG&status=Active).
The distribution service provider shall be used on the basis of our legitimate interest pursuant to German general data protection regulations, Art. 6 Abs. 1 lit. f GDPR, and an order processing agreement pursuant to German general data protection regulations, Art. 28 Abs. 3 S. 1 GDPR. The distribution service provider can use the data of the recipient using a pseudonym, i.e. without reference to a user, for optimizing or using own services, e.g. for technical optimization of distribution and illustration of the notices or for statistical purposes. However, the distribution service provider does not use the data of our news recipient to write to him/her itself or to pass the data on to a third party.
Our newsletter is sent by means of the distribution service provider Newsletter2Go GmbH, Köpenicker Str. 126, 10179 Berlin, Germany. The data protection regulations of the distribution service provider can be seen here: https://www.newsletter2go.de/datenschutz/. The distribution service provider shall be used on the basis of our legitimate interest pursuant to German general data protection regulations, Art. 6 Abs. 1 lit. f GDPR, and an order processing agreement pursuant to German general data protection regulations, Art. 28 Abs. 3 S. 1 GDPR.
The distribution service provider can use the data of the recipient using a pseudonym, i.e. without reference to a user, for optimizing or using own services, e.g. for technical optimization of distribution and illustration of the notices or for statistical purposes. However, the distribution service provider does not use the data of our news recipient to write to him/her itself or to pass the data on to a third party.
10. Google Tag Manager
Google Tag Manager is a solution used by us to manage the so-called website tags via an interface (and thereby incorporating for example Google Analytics as well as other Google Marketing Services in our online business). The tag manager itself (which implements the tags) does not process any personal data of the user. Regarding the processing of personal data of the user reference to the following information is made.
Usage guielines: https://www.google.com/intl/de/tagmanager/use-policy.html.
11. Contact Opportunities via the Internet site
Based on legal regulations our website contains information which enables quick electronic contact to be made to our company as well as direct communication with us, comprising an email address. If you contact us by email or by a contact form, your transmitted personal data is automatically stored. Such personal data voluntarily transmitted by a concerned person to the party responsible for processing is stored for the purpose of handling or contacting the concerned person. This personal data is not passed on to a third party.
12. Date Privacy in Job Applications and Application Procedures
We collect and process the personal data of applicants for the purpose of handing the job application procedure. Processing can also be carried out by electronic means. This is especially the case if an applicant transmits corresponding application files by electronic means, for example by email, to the party responsible for processing. In the event that the party responsible for processing stores an employment agreement with an applicant, the transmitted data is stored for the purpose of handling the employment contract and with due consideration to the legal provisions. If an employment agreement is not entered between the party responsible for processing and the applicant, the application files shall be automatically deleted six months after notification of the decision not to accept, if no other justifiable interests of the party responsible for processing oppose a deletion. Other justifiable interests analogous thereto shall be for example a verification obligation in proceedings pursuant to the German law on equal treatment, Allgemeine Gleichbehandlungsgesetz (AGG).
13. Regular Routine Deletion and Blocking of Personal Data
We process and store your personal data only for the period necessary to achieve the purpose of storage or if this is provided by the European guideline and regulation authorities or other law makers in laws or regulations which mojoreads is subject to. If the purpose for storing or a period for storing prescribed by a European guideline and regulation authority or another law maker in charge expires, your personal data is blocked or deleted on a regular basis and according to the legal regulations.
14. Your Rights
Each person concerned has the right
to information pursuant to German general data protection regulations Article 15 GDPR
to correction pursuant to German general data protection regulations Article 16 GDPR
to deletion pursuant to German general data protection regulations Article 17 GDPR
to restriction of processing pursuant to German general data protection regulations Article 18 GDPR
to objection pursuant to German general data protection regulations Article 21 GDPR as well as
to data transferability pursuant to German general data protection regulations Article 20 GDPR.
The restrictions pursuant to German data privacy law §§ 34 and 35 BDSG, shall apply to the right to information and the right to deletion. Moreover the right to object to a data protection supervisory authority in charge shall be granted (Article 77 GDPR in connection with § 19 BDSG). You may revoke consent granted to us for processing personal data at any time. This also applies to the revocation of declarations of consent which were granted to us based on the general data protection regulations, i.e. prior to 25 May 2018.
Please note that the revocation is effective only for the future. Processing which was carried out prior to revocation shall not be affected thereby.
15. Inclusion of Services and Contents of a Third Party
In our online service we use content or service business from third parties based on our legitimate interests (i.e. interest in analysis, optimization and economic operation of our online service analogous to the German general data protection regulations, Art. 6 Abs. 1 lit. f. GDPR), to include their contents and services, like for example videos or fonts types (in the following consistently referred to as “Contents”). This is always based on the assumption that third parties providing these contents use the IP address of our users, because without the IP address they cannot send the contents to their browser. The IP address is thus necessary for illustrating these contents. We try to only use such contents from the corresponding provider that only uses the IP address to supply the contents. Third parties can, moreover, use so-called pixel tags (invisible graphics, also called "web beacons") for statistical or marketing purposes. By means of the "pixel tags" information like the visitors to the sites of mojoreads can be evaluated. The pseudonym information can, moreover, be stored in cookies on the user’s device and also contain technical information on the browser and operating system, linked websites, visiting time as well as other information on use of our online service, and also be connected to such information from other sources.
Within our online service functions and contents of the Intercom service, a web analysis and live chat service of Intercom Inc., 98 Battery Street, Suite 402, San Francisco, CA 94111, USA (“Intercom”), are applied.
Intercom is certified under the privacy shield agreement and thus offers a guarantee that European data protection law is complied with (https://www.privacyshield.gov/participant?id=a2zt0000000TNQvAAO&satus=active).
We use Intercom to communicate with you and to be able to quickly reply to your questions on our platform as soon as you have registered for mojoreads and have logged in. Thereby a limited part of your data (including your name, your email address and the time of registration) is transmitted to Intercom.
If you want to object to the storage and transmission of your data by Intercom, please contact our support. However, we point out that in the event of an objection you may not be able to use all functions of mojoreads in the full scope.
Further information and the valid data protection regulations of Intercom can be found under https://www.intercom.com/security, https://www.intercom.com/terms-and-policies#privacy and https://docs.intercom.com/pricing-privacy-and-terms/data-protection/how-were-preparing-for-gdpr.
17. Social Media/Networks
We maintain websites within social networks and platforms (Facebook, Twitter, Instagram, LinkedIn, XING) to communicate with the customers, interested parties and users active there and you can inform yourself on the services there.
The business terms and conditions and the data processing guidelines of the corresponding operator shall apply when selecting the corresponding networks and platforms.
Data of the users is processed for the party responsible for processing only if they communicate in the social networks and platforms, e.g. write contributions on the online presences or send messages. Please note that the data user can be processed outside of the European Union territory. This may result in risks to the user, because in this manner for example the enforcement of the rights of the user may be made difficult. With regard to US providers certified under the privacy shield we point out that they are obligated to comply with the data protection. So that you can use the interactive opportunities of the social networks you use on mojoreads as well, we also provide so-called “social plugins” of the companies listed below to allow interaction with the websites of the specified companies. By means of a “Social Media Button”– marked with the globally well-known logo or lettering – you can interact from mojoreads to the social networks familiar to you, for example by sharing contents of mojoreads on your Facebook or Twitter account.
Since ready-made social media buttons – the best known “Facebook Like Button” for example – do not allow you to check the type, scope and use of the collected data and as a rule just by loading the website integrating the button transmit user data to aggregate them, we use no pre-programmed social media plugins, but only self-programmed interfaces instead. In this way we want to safeguard that when using the plugins as little data as possible is transferred. Moreover, we use the so-called two-click solution which ensures that the plugin is inactive in the standard condition. Only if you activate the plugin yourself by clicking the corresponding button and thus giving your approval to communication with the corresponding network, a connection to the external server is made. With a second click you can then transmit your post — for example a book recommendation — to the social network of your choice. You thus can decide yourself whether or not you want to start transferring data to the corresponding social network.
We would like to expressly indicate that we have no influence on what data is compiled by the activated plugin on the part of the company and they treat the compiled information.
For a detailed description of each processing and the possibilities of objection (Opt-Out), we refer to the following remarks:
We have integrated component of the company Facebook on our website. Facebook is a social network.
The operating company of Facebook is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, USA. If a concerned person lives outside of the USA or Canada, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland, is responsible for processing personal data.
Every time one of the individual pages of this internet website which is operated by the party responsible for processing and on which a Facebook component (Facebook plug-in) was integrated is loaded, the internet browser on the information technology system of the concerned person automatically causes the corresponding Facebook component to download a version of the corresponding Facebook component from Facebook. A general overview of all Facebook plug-ins can be found under https://developers.facebook.com/docs/plugins/?locale=de_DE . Within the scope of this technical process Facebook gains knowledge on what concrete subsite of our website is visited by the concerned person.
If the concerned person is logged into Facebook at the same time, every time the Facebook button is activated by the concerned person Facebook recognizes what concrete subsite of our website the concerned person is visiting. This information is collected by Facebook and if applicable allocated to the corresponding Facebook account of the concerned person. If the concerned person activates one of the Facebook buttons integrated on our website, Facebook allocates this information to the personal Facebook user account of the person concerned and stores this personal data.
Facebook always receives information on the fact that the concerned person has visited our website when the concerned person is at the same time logged in on Facebook at the time the Facebook button is activated. If such transmission of this information to Facebook is not intended by the concerned person, the transmission can be prevented by not activating and clicking the Facebook button.
Facebook is certified under the privacy shield agreement and thus provides a guarantee of compliance with the European data protection law: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active
The data guidelines published by von Facebook which can be found under https://de-de.facebook.com/about/privacy/ , provide insight on the collecting, processing and use of personal data by Facebook. Moreover, it is explained there what setting possibilities are offered by Facebook to protect the privacy of the concerned person. In addition various applications can be found which make it possible to disable data transmission to Facebook, for example the Facebook Blocker of the provider Webgraph, which can be procured under http://webgraph.com/resources/facebookblocker/. Such applications can be used by the concerned person to disable data transmission to Facebook.
The functions and contents of Twitter, offered by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA, are integrated in the scope of our online service. This may include for example contents like pictures, videos or texts and function buttons by means of which the users can share contents of the online service on Twitter. If the users are on the Twitter platform, Twitter can allocate loading the above contents and functions of the users’ profiles there.
Twitter is certified under the privacy shield agreement and thus provides a guarantee of compliance with the European data protection law (compare with https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active). The data protection guideline of Twitter can be found here: https://twitter.com/de/privacy What data may be collected by Twitter can be set here: https://twitter.com/personalization
The party responsible for processing has integrated Instagram components on its website. Instagram is a service which is qualified as an audio-visual platform and enables users to share photographs and videos and also further processing of such data in other social networks.
The service provider of Instagram is Instagram LLC, 1 Hacker Way, Building 14 First Floor, Menlo Park, CA, USA.
By loading each of the single pages of this website which is operated by the party responsible for processing and which integrates an Instagram component (Insta button) the internet browser on the information technology system of the concerned person automatically by means of each of the Instagram components causes an illustration of the corresponding component of Instagram to be downloaded. Within the scope of this technical procedure, Instagram gains knowledge on which concrete subsite of our website is visited by the concerned person.
If the concerned person is logged into Instagram at the same time, every time our website is loaded by the concerned person Instagram recognizes during the entire duration of the corresponding visit on the website what concrete subsite of our website the concerned person is visiting. This information is collected by the Instagram components and allocated to the corresponding Instagram account of the concerned person. If the concerned person activates one of the Instagram buttons integrated on our website, this information is allocated to the personal Instagram user account of the person concerned and stored and processed by Instagram.
Via the Instagram components Instagram always receives information that the concerned person has visited our website, if the concerned person at the time of loading our website is logged into Instagram at the same time; this takes place regardless of whether or not the concerned person clicks the Instagram component. If such transmission of this information to Instagram is not desired by the concerned person, this transmission can be prevented by logging out from the Instagram account prior to loading our website.
The party responsible for processing has integrated components of the LinkedIn Corporation on its website. LinkedIn is an internet-based social network that enables the connection of users with existing business contacts as well as linking new business contacts.
Every time our website which is equipped with a LinkedIn component (LinkedIn Plug-In) is loaded, this component causes the browser used by the concerned person to download a corresponding illustration of the components of LinkedIn. Further information on the LinkedIn plug-ins can be found under https://developer.linkedin.com/plugins. Within the scope of this technical procedure LinkedIn gains knowledge on what concrete subsite of our website is visited by the concerned person.
If the concerned person is logged into LinkedIn at the same time, every time our website is loaded by the concerned person LinkedIn recognizes during the entire duration of the corresponding visit on the website what concrete subsite of our website the concerned person is visiting. This information is collected by the LinkedIn components and allocated to the corresponding LinkedIn account of the concerned person. If the concerned person activates one of the LinkedIn buttons integrated on our website, LinkedIn allocates this information to the personal LinkedIn user account of the person concerned and stores this personal data.
Via the LinkedIn components LinkedIn always receives information that the concerned person has visited our website, if the concerned person at the time of loading our website is logged into LinkedIn at the same time; this takes place regardless of whether or not the concerned person clicks the LinkedIn component. If such transmission of this information to LinkedIn is not desired by the concerned person, this transmission can be prevented by logging out from the LinkedIn account prior to loading our website.
Under https://www.linkedin.com/psettings/guest-controlsLinkedIn offers the possibility to unsubscribe email messages, SMS texts and goal-oriented ads as well as to manage advertisement settings. LinkedIn, moreover, uses partners like Quantcast, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua and Lotame, which may set cookies. Such cookies can be rejected under https://www.linkedin.com/legal/cookie-policy . The valid data protection regulations of LinkedIn can be found under https://www.linkedin.com/legal/privacy-policy . The cookie guideline of LinkedIn can be found under https://www.linkedin.com/legal/cookie-policy .
The party responsible for processing has integrated components of Xing on its website. Xing is an internet-based social network that enables the connection of users with existing business contacts as well as linking new business contacts. Each individual user can create a personal profile of himself/herself/itself on Xing. Companies can for example publish company profiles or job offers on Xing.
The operating company of Xing is XING SE, Dammtorstrasse 30, 20354 Hamburg, Germany.
Every time one of the single pages of this website which is operated by the party responsible for processing and in which a Xing component (Xing Plug-In) is integrated is loaded the internet browser of the information technology system of the concerned person automatically causes this component the corresponding Xing component to download an illustration of the corresponding Xing component of Xing. Further information on the Xing plug-ins can be found under https://dev.xing.com/plugins . Within the scope of this technical procedure Xing gains knowledge on what concrete subsite of our website is visited by the concerned person.
If the concerned person is logged into Xing at the same time, every time our website is loaded by the concerned person Xing recognizes during the entire duration of the corresponding visit on the website what concrete subsite of our website the concerned person is visiting. This information is collected by the Xing components and allocated to the corresponding Xing account of the concerned person. If the concerned person activates one of the Xing buttons, for example the “share” button, integrated on our website, Xing allocates this information to the personal Xing user account and stores this personal data.
Via the Xing components Xing always receives information that the concerned person has visited our website, if the concerned person at the time of loading our website is logged into Xing at the same time; this takes place regardless of whether or not the concerned person clicks the Xing component. If such transmission of this information to Xing is not desired by the concerned person, this transmission can be prevented by logging out from the Xing account prior to loading our website.
The data protection regulations published by Xing which can be found under https://www.xing.com/privacy provide insight on the collecting, processing and use of personal data by Xing. Moreover, under https://www.xing.com/app/share?op=data_protection Xing has published data protection notes regarding the XING share button.
For including videos our website uses the provider YouTube LLC , 901 Cherry Avenue, San Bruno, CA 94066, USA, represented by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.
Normally already when loading a page with embedded videos your IP address is sent to YouTube and cookies are installed on your computer. We have, however, expanded our YouTube videos with the expanded data protection mode (in this case YouTube still contacts the Google service Double Klick, but pursuant to the privacy statement of Google personal data is not evaluated). Therefore, information from YouTube is no longer stored unless you watch the video. When you click on the video your IP address is transmitted to YouTube and YouTube is informed that you have watched the video. If you are not logged in on YouTube, this information is also allocated to your user account (you can avoid this if you log out on YouTube before loading the video).
We have no knowledge on any possible collection and application of your data by YouTube and have no influence on this. Detailed information can be found on the data privacy statement of YouTube under www.google.de/intl/de/policies/privacy/ .
Regarding the general handling and deactivation of cookies we also refer to our general illustration in this privacy statement.
19. Google Analytics
On our website we apply Google-Analytics, a web analysis service of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA, in the following referred to as "Google".
Google is certified under the privacy shield agreement and thus offers a guarantee that European data protection law is complied with: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
Google-Analytics uses so-called "cookies", text files which are stored on your computer and thus enable the analysis of usage of the website by you. The information generated by these cookies, for example time, location and frequency of your website visits including your IP address, is transmitted to Google in den USA and stored there. We use Google-Analytics with the addition "_gat._anonymizeIp" on our website. Your IP address is in this case abbreviated and thus made anonymous by Google already within the member states of the European Union or in other contractual nations of the agreement on the European economic territory. Google will use this information to evaluate your usage of our page to compile reports for us on the website activities and to provide further services connected with the website usage and internet usage. Google will also transmit this information to third parties, if necessary and if this is legally prescribed or if third parties process this data on behalf of Google. Google will according to its own information by no means connect your IP address with other data from Google. You can avoid the installation of cookies by a corresponding setting in your browser software; however, we point out that in this case you may not be able to use all functions of our website in the full scope (compare with No. 6).
Further information on data usage by Google and on your settings and objection possibilities can be found under: https://www.google.com/intl/de/policies/privacy/partners (“Data usage by Google when you use the websites or apps of our partners“), https://www.google.com/policies/technologies/ads(“Data usage for advertisement purposes “), https://www.google.de/settings/ads (“Information management used by Google to display advertisements“).
20. Google Advertisement Network
Based on our legitimate interests (i.e. interest in analysis optimization and economic operation of our online business analogous to the German general data protection regulations, Art. 6 Abs. 1 lit. f. GDPR) we use die services of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, („Google“).
Google is certified under the privacy shield agreement and thus offers a guarantee that European data protection law is complied with: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
The marketing services of the Google advertisement network allows us to display ads for and within our online services in a more objective manner to present users only which ads corresponding with their potential interests. If a user is interested in products indicated for one or the other online services this is referred to as “Remarketing“. For this purpose when our website and other websites on which the Google advertisement network is active is directly loaded by Google by means of a code from Google and the so-called (re)marketing tags (invisible graphs or codes, also called "Web Beacons") are included in the websites. With their help an individual cookie, i.e. a small file is stored (instead of cookies comparable technologies can also be used) on the device of the user. In this file marks are set regarding which websites the users visit, which contents interest him or her and what offers he or she have clicked, moreover, technical information on the browser and operating system, referring websites, time of visit as well as other information on use of the online service. The IP address of the user or users is compiled, whereby with the member stated of the European Union or in other contractual nations of the agreement of the European economic territory are abbreviated and only in exceptional cases entirely transmitted to a server von Google in den USA and abbreviated there. The information specified above can on the part of Google also be connected with such information from other sources. If the user or users subsequently visit other websites, advertisements coordinated in accordance with his or her interests may be displayed to him or her on the basis of his or her user profile.
The data of the users are within the scope of the Google advertisement network processed as a pseudonym. I.e. Google stores and processes for example not the name or email address of the user, but processes the relevant data regarding the cookie within the pseudonymous user profile. I.e. in the opinion of Google the ads are not managed and displayed for a concretely identified person, for the cookie owner depending on who this cookie owner is. This does not apply if a user expressly allows Google to process the data without this pseudonymization. The information collected by Google Marketing Services by means of the users is transmitted to Google and stored on Google’s servers in the USA.
a) Google AdWords
Online marketing procedure Google "AdWords" is one of the Google services we use which allows us to place ads in the Google advertisement network (e.g. in search results, in videos, on websites, etc.), so that they can be displayed to users that might have an interest in the ads. In the case of Google AdWords we receive an individual “conversion cookie“. The information obtained with the help of the cookies allows Google to compile conversion statistics for us. However, we are only informed of the anonymous total number of users who clicked on our ad and were transferred to a site that has a conversion tracking tag. We do not receive any information which allows the personal identification of users.
b) Google Doubleclick
Moreover, we use the online marketing procedure Google "Doubleclick", to place ads in the Google advertisement network (e.g. in search results, in videos, on websites, etc.). A special feature of Double Click is that ads are displayed in real time based on assumed interest of the users.
c) Google TagManager
Moreover, we use Google “TagManager”, to connect Google analysis and marketing services in our website and to manage them.
The data of the users are within the scope of the Google advertisement network pseudonymously processed. I.e. Google stores and processes for example not the name or email address of the user, but processes the relevant data regarding the cookie within the pseudonymous user profile. I.e. in the opinion of Google the ads are not managed and displayed for a concretely identified person, for the cookie owner depending on who this cookie owner is. This does not apply if a user expressly allows Google to process the data without this pseudonymization. The information collected is transmitted to Google and stored on Google’s servers in the USA. Further information on data usage by Google on settings and objection possibilities can be found in the data privacy statement of Google (https://policies.google.com/technologies/ads) as well as in the settings for illustration of ad display by Google (https://adssettings.google.com/authenticated).
21. Duration of Data Storage
The criterion for the duration of storing personal data is the corresponding legal retention period. After the expiration of the period the corresponding data is deleted on a regular basis if it is no longer required to meet contractual obligations or contractual preparations.
22. Legal or Contractual Conditions for Providing Personal Data; Requirement for Contracting Agreements; Obligation of the Concerned Person, to Provide Personal Data; Possible Consequences for Not Providing Same
Please be informed that the provision of personal data is partly legally required (e.g. tax regulations) or can result from contractual regulations (e.g. information of contractual partner/s). In some cases it may be required to contract agreements that the concerned person provide personal data to us which must be processed by us. The concerned person is for example obligated to provide us with personal data if our company enters a contact with him or her. Not providing the personal data shall result in not being able to enter the contract with the concerned person.
23. Automated Decision Making
As a responsible company we waive the use of automated decision making or profiling.
24. Changes to this Data Privacy Statement
We shall be reserved the right to change the data privacy statement if this should be necessary for reasons of new technologies. If basic changes are made, this shall be notified on our website.