Privacy Policy
Data Protection Declaration
I. Name and Address of the Controller
The Controller within the meaning of the General Data Protection Regulation and national data protection laws of the EU Member States as well as other data protection provisions is:
SELLERLOGIC GmbH
Willicher Str. 23-25
40547 Duesseldorf
Germany
E-Mail: [email protected]
Phone: +49 211 900 64 120
II. General Information on Data Processing
1. Scope of the Processing of Personal Data
As a matter of principle, we collect and use personal data of our users only insofar as this is necessary for the provision of a functional website as well as of our contents and services. The collection and use of personal data of our users or their data of third parties (e.g., Amazon, eBay, shop systems, etc.) is regularly only carried out on a contractual basis or after consent and authorisation of the user. An exception applies in those cases where obtaining prior consent is not possible for actual reasons and the processing of the data is permitted by legal provisions.
2. Legal Basis for the Processing of Personal Data
Insofar as we obtain the consent of the data subject for processing operations involving personal data, Art. 6 (1) lit. a EU General Data Protection Regulation (GDPR) serves as the legal basis.
When processing personal data that is necessary for the performance of a contract to which the data subject is a party, Art. 6 (1) lit. b GDPR serves as the legal basis. This also applies to processing operations that are necessary for the execution of pre-contractual measures.
If processing of personal data is necessary for compliance with a legal obligation to which our company is subject, Art. 6 (1) lit. c GDPR serves as the legal basis.
If processing is necessary to protect a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the data subject do not override the first-mentioned interest, Art. 6 (1) lit. f GDPR serves as the legal basis for the processing.
3. Data Erasure and Storage Period
The personal data of the data subject will be erased or barred as soon as the purpose of the storage ceases to apply. Storage may also be carried out if this has been provided for by the European or national legislator in EU regulations, laws or other provisions to which the Controller is subject. The data will also be barred or erased if a storage period provided for by the aforementioned legislation expires, unless there is a need to continue storing the data for the purpose of concluding a contract, performing a contract or pursuing legal claims.
III. Provision of the Website and Creation of Log Files
1. Description and Scope of Data Processing
Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing computer.
The following data are collected:
(1) Information about the type of browser and the version used
(2) The user’s operating system
(3) The user’s Internet service provider
(4) The IP address of the user
(5) Date and time of access
(6) Websites from which the user’s system accesses our website
(7) Websites that are accessed by the user’s system via our website.
These data are also stored in the log files of our system. These data are not stored together with other personal data of the user.
2. Legal Basis for Data Processing
The legal basis for the temporary storage of the data and the log files is Art. 6 (1) lit. f GDPR.
3. Purpose of the Data Processing
The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user’s computer. For this purpose, the user’s IP address must remain stored for the duration of the session.
The storage in log files is done to ensure the functionality of the website. In addition, we use the data to optimise the website and to ensure the security of our information technology systems.
These purposes are also our legitimate interest in data processing according to Art. 6 (1) lit. f GDPR.
4. Duration of Storage
The data will be erased as soon as they are no longer required to achieve the purpose for which they were collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.
In the case of storage of data in log files, this is the case after 10 days at the latest. Storage beyond this period is possible. In this case, the IP addresses of the users are deleted or alienated so that an assignment of the calling client is no longer possible.
5. Possibility of Objection and Erasure
The collection of data for the provision of the website and the storage of the data in log files is absolutely necessary for the operation of the website. Consequently, there is no possibility for the user to object.
IV. The Use of Necessary Cookies
1. Description and Scope of Data Processing
Our website uses cookies. Cookies are text files that are stored in the internet browser or by the internet browser on the user’s computer system. When a user calls up a website, a cookie may be stored on the user’s operating system. This cookie contains a characteristic string of characters that enables the browser to be uniquely identified when the website is called up again.
We use cookies to make our website more user-friendly. Some elements of our website require that the calling browser can be identified even after a page change.
The following data are stored and transmitted in the cookies:
(1) Log-in information
2. Legal Basis for Data Processing
The legal basis for the processing of personal data using necessary cookies is Art. 6 (1) lit. f GDPR.
3. Purpose of the Data Processing
The purpose of using technically necessary cookies is to simplify the use of websites for users. Some features of our website cannot be offered without the use of cookies. For these, it is necessary that the browser is recognised even after a change of the website.
We require cookies for the following applications:
(1) Provision of a closed user area.
The user data collected through technically necessary cookies are not used to create user profiles.
These purposes are also our legitimate interest in processing the personal data according to Art. 6 (1) lit. f GDPR.
4. Duration of Storage, Possibility of Objection and Erasure
Cookies are stored on the user’s computer and transmitted from it to our site. Therefore, you as a user also have full control over the use of cookies. By changing the settings in your internet browser, you can deactivate or restrict the transmission of cookies. Cookies that have already been stored can be erased at any time. This can also be done automatically. If cookies are deactivated for our website, it may no longer be possible to use all features of the website to their full extent.
V. Newsletter
1. Description and Scope of Data Processing
On our website, you have the option of subscribing to a cost-free newsletter. When registering for the newsletter, the data from the entries in the entry mask is transmitted to us.
(1) Name
(2) E-mail address
For the processing of the data, your consent is obtained during the registration process and reference is made to this Privacy Policy.
2. Legal Basis for Data Processing
After the user has registered for the newsletter the legal basis for the processing of data is Art. 6 (1) lit. a GDPR if the user has given his or her consent.
3. Purpose of the Data Processing
The collection of the user’s e-mail address serves to deliver the newsletter.
4. Duration of Storage
The data are deleted as soon as it is no longer required to achieve the purpose for which it was collected. The user’s e-mail address is therefore stored for as long as the subscription to the newsletter is active.
5. Possibility of Objection and Cancellation
The subscription to the newsletter can be cancelled by the user concerned at any time. For this purpose, there is a corresponding link in each newsletter.
This also enables withdrawal of consent to the storage of personal data collected during the registration process.
VI. Contact Form and E-mail Contact
1. Description and Scope of Data Processing
Our website contains a contact form which can be used for electronic contact. If a user chooses this option, the data entered in the entry mask is transmitted to us and stored. These data are:
(1) Company name and name
(2) Address
(3) e-mail address
(4) Your message
For the processing of the data, your consent is obtained as part of the submission process and reference is made to this Privacy Policy.
Alternatively, it is possible to contact us via the e-mail address provided. In this case, the user’s personal data transmitted with the e-mail will be stored.
In this context, the data will not be passed on to third parties. The data are used exclusively for processing the conversation.
2. Legal Basis for Data Processing
The legal basis for the processing of the data is Art. 6 ( 1) lit. a GDPR if the user has given his or her consent.
If the e-mail contact is aimed at concluding a contract, the additional legal basis for the processing is Art. 6 (1) lit. b GDPR.
3. Purpose of the Data Processing
The processing of the personal data from the entry mask serves us solely to process the contact. In the case of contact by e-mail, this also constitutes the necessary legitimate interest in processing the data.
4. Duration of Storage
The data are deleted as soon as they are no longer required to achieve the purpose for which they were collected. For the personal data from the entry mask of the contact form and those sent by e-mail, this is the case when the respective conversation with the user has ended. The conversation is ended when the circumstances indicate that the matter in question has been conclusively clarified.
5. Possibility of Objection and Erasure
The user has the possibility to withdraw his consent to the processing of personal data at any time. If the user contacts us by e-mail, he can object to the storage of his personal data at any time.
In such a case, the conversation cannot be continued.
All personal data stored in the course of contacting us will be erased in this case.
This does not apply if we are subject to applicable legal provisions regarding the storage of such messages. In this case, the messages will not be erased, but will only be kept for the purposes of storage.
VII. Registration
1. Description and Scope of Data Processing
On our website, we offer users the possibility to register for the offered service by providing personal data. The data are entered in an entry mask and transmitted to us and stored. The following data are collected in the registration process:
(1) Name
(2) Company
(3) Address
(4) e-mail address
Furthermore, we also process for the same purposes the data that the user voluntarily provides during registration.
Initially the data are used by us to provide the respective user account for our services. They are stored in a central user account of the user and can be viewed, changed and updated there at any time.
For the purpose of billing, we also collect and process the user’s payment data, namely the bank details provided by the user and any other payment and billing data.
For the purpose of billing costs for the use of the services, we use qualified payment providers to whom the payment data are passed on for the purpose of collecting the debt in the case of certain types of payment.
This applies in particular if legal requirements or internationally agreed financial security standards such as PCI DSS (Payment Card Industry Data Security Standard) make this necessary.
The data will also be processed for direct marketing purposes.
2. Legal Basis for Data Processing
The legal basis for processing the data to the aforementioned extent is the performance of a contract to which the user is a party or the carrying out of pre-contractual measures, Art. 6 (1) lit. b GDPR. The legal basis for the use for direct marketing purposes is our legitimate interest, Art. 6 (1) lit. f GDPR.
3. Purpose of Data Processing
Registration of the user is necessary for the performance of a contract with the user or for the carrying out of pre-contractual measures.
The provision of our services is a continuous obligation, which makes registration necessary. Registration of the user is necessary for the provision of certain content and services on our website.
4. Duration of Storage
The data are erased as soon as they are no longer required to achieve the purpose for which they were collected.
This is the case for data collected in the registration process for the performance of a contract or for the carrying out of pre-contractual measures with us when the data are no longer required for the performance of the contract. Even after the conclusion or termination of the contract, there may be a need to store personal data of the contractual partner in order to comply with contractual or legal obligations or to pursue legal claims.
5. Possibility of Objection and Erasure
As a user, you have the possibility to cancel your registration at any time. You can have the data stored about you changed at any time.
If the data are required for the performance of a contract or for the carrying out of pre-contractual measures, premature erasure of the data is only possible insofar as contractual or legal obligations do not preclude erasure.
You can object to the purposes of direct marketing at any time.
VIII. Use of Google Analytics for Web Analysis
This website uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”).
Google Analytics uses “cookies”, which are text files stored on your computer, to enable an analysis of how users use the website. The personal data generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. In the event that IP anonymisation is activated on this website, your IP address will, however, be truncated beforehand by Google within member states of the European Union or in other contracting states to the Agreement on the European Economic Area.
On behalf of the operator of this website, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity and providing other services relating to website activity and internet usage to the website operator.
The IP address transmitted by your browser in the context of Google Analytics will not be merged with other Google data.
You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website.
You can also prevent the collection of data generated by the cookie and related to your use of the website (including your IP address) by Google and the processing of this data by Google by downloading and installing the browser plugin available under the following link: Browser Plugin (https://tools.google.com/dlpage/gaoptout?hl=en).
Google has been certified in accordance with the EU-US data protection agreement “Privacy Shield” and has thus undertaken to comply with European data protection provisions. However, in July 2020, the Court of Justice of the European Union declared the application of the agreement inadequate to EU data protection levels. As long as no subsequent agreement has been concluded with the USA and there is no valid adequacy decision, data processing, in particular the setting of cookies, is carried out at a lower level of data protection and without suitable guarantees then exclusively on the basis of your express consent according to Art. 49 (1) lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until withdrawal.
IX. Use of Hotjar
We use Hotjar to better understand the needs of our users and to optimise the offer on this website. Hotjar’s technology gives us a better understanding of our users’ experiences (e.g., how much time users spend on which pages, which links they click on, what they like and dislike etc.) and helps us to tailor our offer to our users’ feedback.
Hotjar uses cookies and other technologies to collect information about our users’ behaviour and about their devices (in particular, device IP address; collected and stored anonymously only), screen size, device type (unique device identifiers), information about the browser used, location (country only), preferred language for viewing our website).
Hotjar stores this information in a pseudonymised user profile. The information is neither used by Hotjar nor by us to identify individual users nor is it merged with other data about individual users. You can find more information in Hotjar’s Privacy Policy: https://www.hotjar.com/privacy
You can object to the storage of a user profile and information about your visit to our website by Hotjar as well as to the setting of Hotjar tracking cookies on other websites by clicking on this opt-out link: https://www.hotjar.com/opt-out .
The storage of data and cookies is based on Art. 6 (1) lit. f GDPR. Storage is for an unlimited period of time, unless you make use of your opt-out options.
X. Use of user.com
We may use the information that user.com collects from you when you register, sign up for our newsletter, respond to a survey or marketing communication, browse the Website or use certain other features of the Websites as follows:
We use user.com to improve the user experience of our websites in order to provide you with a better service. The purpose of the data collection is to gain experience with segmentation and personalisation. This enables us to offer you the most interesting content and product offers. Likewise, user.com is used to administer promotions, surveys or other features of the websites, as well as to process your transactions quickly.
The following personal data may be stored:
City/ Region/ Country/ Time zone/ Browser/ Browser version/ Device/ Current URL/ First referring domain/ Operating system/ Referring domain/ Screen height/ Screen width/ Last visit/ First visit/ Web and mobile usage.
The storage of data and cookies is based on Art. 6 (1) lit. f GDPR.
The data of anonymous users are kept for 30 days, while the data of verified users are kept for 10 years, calculated from the beginning of the year following the year in which consent to the processing of personal data was given.
For more information, please see user.com’s Privacy Policy:
https://www.user.com/en/security/privacy-policy
You have the right to access the content of the data and to rectify, erase or restrict the processing, as well as the right to object, request the end of processing and data transfers, as well as the right to withdraw your consent at any time and to lodge a complaint with the Data Protection Officer of the country concerned.
For corrections, restrictions, objections, withdrawals, access or erasures, please direct your request to the email address of the Controller mentioned above.
XI. Use of LetterXpress
SELLERLOGIC uses LetterXpress, as a letter post service provider. LetterXpress guarantees international standards and a high level of IT security in accordance with DIN ISO 27001 and the GDPR. LetterXpress does not subcontract any printing and enveloping orders.
The following personal data will be transferred to LetterXpress:
Salutation/ Last name/ First name/ Company name/ Street/ House number/ Postcode/ City.
The letters sent by SELLERLOGIC to LetterXpress and the personal information thus transmitted shall be handled in accordance with the provisions of the General Data Protection Regulation. In addition, LetterXpress is certified according to the international standard for data protection and IT security DIN ISO / IEC 27001 and following. The guidelines and processes developed within the framework of this standard ensure a level of data protection that exceeds the basic requirements of Art. 32 GDPR.
All employees at LetterXpress have signed a data protection and confidentiality agreement and receive regular training.
Privacy Policy of LetterXpress: https://www.letterxpress.de/ueber-uns/datenschutz (only German version)
You have the right to access the content of the data and to rectify, erase or restrict the processing, as well as the right to object, to request the end of processing and data transfer, as well as the right to withdraw your consent at any time and to lodge a complaint with the data protection officer of the country concerned.
For corrections, restrictions, objections, withdrawals, access or erasures, please direct your request to the email address of the Controller mentioned above.
XII. Use of Conversion Tracking
1. Use of Google Ads Conversion Tracking
We use the online advertising programme “Google Ads” on our website and in this context conversion tracking. Google Conversion Tracking is an analysis service provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”). If you have your habitual residence in the European Economic Area or Switzerland, Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is the controller of your data.
Google Ireland Limited is therefore the company affiliated with Google which is responsible for processing your data and complying with the applicable data protection laws.
When you click on an ad placed by Google, a cookie for conversion tracking will be placed on your computer. These cookies have a limited validity, do not contain any personal data and are therefore not used for personal identification. If you visit certain pages of our website and the cookie has not yet expired, Google and we will be able to recognise that you clicked on the ad and were redirected to that page.
Each Google Ads customer receives a different cookie. Thus, there is no possibility that cookies can be tracked across Ads customers’ websites. The information obtained with the means of the conversion cookie is used to create conversion statistics.
Herewith we learn the total number of users who clicked on one of our ads and were redirected to a page tagged with a conversion tracking tag. We do not, however, receive any information with which users can be personally identified. Your personal data may be transferred to the USA. Google has certified itself under the EU-US data protection agreement “Privacy Shield” and has thus undertaken to comply with European data protection regulations. However, in July 2020, the Court of Justice of the European Union declared the application of the agreement inadequate to EU data protection levels. As long as no subsequent agreement has been concluded with the USA and no valid adequacy decision exists, data processing, in particular the setting of cookies, will be carried out at a lower level of data protection and without appropriate safeguards exclusively on the basis of your express consent according to Art. 49 (1) lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until withdrawal. You can find more information and Google’s Privacy Policy at:
2. Use of Twitter Ads and Twitter Analytics
We use “Twitter Ads” and “Twitter Analytics” on our website, both services of Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07 Ireland (hereinafter referred to as: “Twitter”). Twitter Ads & Twitter Analytics store and process information about your user behaviour on our website. For this purpose, Twitter Ads & Twitter Analytics use, among other things, cookies, i.e. small text files that are stored locally in the cache of your web browser on your device and that enable an analysis of your use of our website.
We use Twitter Ads & Twitter Analytics for marketing and optimisation purposes, in particular to analyse the use of our website and to continuously improve individual features and offers as well as the user experience. By the statistical evaluation of user behaviour, we can improve our offer and make it more interesting for you as a user. This is also our legitimate interest in the processing of the above data by the third-party provider. The legal basis is Art. 6 (1) lit. f GDPR.
You can prevent the installation of cookies by deleting existing cookies and deactivating the storage of cookies in the settings of your web browser. We would like to point out that in this case you may not be able to use all the features of our website to their full extent. You can also prevent the collection of the aforementioned information by Twitter by setting an opt-out cookie on one of the websites linked below:
1. https://twitter.com/personalization
2. http://optout.aboutads.info/?c=2#!/
We would like to inform you that this setting will be deleted when you delete your cookies. You can object to the collection and forwarding of personal data or prevent the processing of this data by deactivating the execution of Java Script in your browser. In addition, you can prevent the execution of Java-Script code altogether by installing a Java-Script blocker (e.g. https://noscript.net/ or https://www.ghostery.com ). Please note that in this case you may not be able to use all the features of our website to their full extent.
Twitter has subjected itself to the “Privacy Shield” agreement concluded between the EU and the USA and has been certified. Thereby Twitter is committing itself to comply with the standards and provisions of European data protection laws. However, in July 2020, the Court of Justice of the European Union declared the application of the agreement not adequate to EU data protection levels. As long as no subsequent agreement has been concluded with the USA and no valid adequacy decision exists, data processing, in particular the setting of cookies, will be carried out at a lower level of data protection and without appropriate safeguards solely on the basis of your express consent according to Art. 49 (1) lit. a GDPR.
You can find further information in the entry linked below: https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active
Information of the third-party provider: Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07 Ireland. Information from the third-party provider on data protection can be found on the following website: https://twitter.com/en/privacy
3. Use of LinkedIn Ads
We use the LinkedIn Ads service of LinkedIn Ireland Unlimited Company in Ireland. LinkedIn sets cookies in the process.
Further information on data protection at LinkedIn can be found in the LinkedIn Privacy Policy here: https://www.linkedin.com/legal/privacy-policy
You can prevent the storage of cookies by setting your browser accordingly. You can object to the analysis of your user behaviour by LinkedIn as well as the display of interest-based recommendations here: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
When using the service provider LinkedIn Ads, personal data are transferred to a third country outside the EU. An agreement on processing on behalf of a controller in accordance with Art. 28 GDPR has been signed. The service provider has a Privacy Shield certification. Accordingly, appropriate safeguards for the data transfer pursuant to Art. 46 GDPR seemed to exist. However, in July 2020, the Court of Justice of the European Union declared the application of the agreement not adequate to EU data protection levels. As long as no subsequent agreement has been concluded with the USA and no valid adequacy decision exists, data processing, in particular the setting of cookies, will take place at a lower level of data protection and without appropriate safeguards solely on the basis of your explicit consent according to Art. 49 (1) lit. a GDPR.
XIII. Use of Gravatar
We use the service gravatar.com as a third-party provider for the collection and processing of data on our website. Gravatar is a service provided by Automattic Inc. that allows users to create and display personalized profile pictures (avatars) associated with their email address.
The purpose of using this service is that it allows you to associate a profile picture (avatar) with your email address. When you leave a comment on our website using the same email address that you use for your Gravatar account, your profile picture will be displayed next to your comment.
Following personal data is transferred to Gravatar: Email address and IP address. When you use an email address registered with Gravatar and leave a comment on our website, additional data is transferred to Gravatar, and subsequently stored and processed. This data includes, but is not limited to, user behavior information and other details such as browser type, a unique device identifier, preferred language, date and time of page visit, operating system, and mobile network information. Gravatar uses this information to improve its own services and offerings and to gain a better understanding of how its service is used.
Gravatar deletes your data when it is no longer needed for the purposes for which it was collected and used. The use of this data by gravatar.com is governed by the privacy policy of Automattic Inc. For more information, please see the privacy policy of Automattic Inc. We do not have direct access to the data collected by secure.gravatar.com and have no control over how Automattic Inc. uses this data. We encourage you to read the privacy policy of Automattic Inc. to learn more about their privacy practices: https://automattic.com/privacy/. The storage of data and cookies is implemented pursuant to Art. 6 para. 1 lit. f DSGVO (Datenschutz-Grundverordnung).
Please note that the use of Gravatar and the display of your profile picture next to your comments are optional. If you do not want this, you can leave a comment without linking to your Gravatar account. You have the right to access the content of the data and to rectify, erase or restrict the processing, as well as the right to object, request the cessation of processing and data transfer, as well as the right to withdraw your consent at any time and to lodge a complaint with the data protection officer of the country concerned.
Please contact the aforementioned responsible person for any corrections, restrictions, objections, revocations, access or deletions.
XIV. Use of Cloudfront
We use the CloudFront service (https://aws.amazon.com/de/cloudfront/) as a third-party provider for the collection and processing of data on our website. CloudFront is a content delivery network (CDN) from Amazon Web Services (AWS) that is used to deliver content more efficiently and improve the load times of our website.
The purpose of its use is to deliver static content such as images, scripts and files to our visitors faster and more efficiently. This allows for improved performance and a smooth browsing experience on our website. Please note that CloudFront may collect certain personal information, such as your IP address, browser information, and access time logs. CloudFront’s use of this data is governed by the Amazon Web Services (AWS) Privacy Policy. For more information, please see AWS’s privacy policy: https://aws.amazon.com/de/privacy/.
We do not have direct access to the data collected by CloudFront and have no control over how Amazon Web Services (AWS) uses this data. We encourage you to read AWS’s privacy policy to learn more about their privacy practices. The storage of data and cookies is implemented pursuant to Art. 6 para. 1 lit. f DSGVO (Datenschutz-Grundverordnung). Please note that the use of CloudFront is purely technical in nature and has no direct reference to personal data.
However, the provision and delivery of content via the Content Delivery Network helps to improve the performance of our website. You have the right to access the content of the data and to rectify, erase or restrict the processing, as well as the right to object, request the cessation of processing and data transfer, as well as the right to withdraw your consent at any time and to lodge a complaint with the data protection officer of the country concerned. Please contact the aforementioned responsible person for any corrections, restrictions, objections, revocations, access or deletions.
XV. Use of Amazon Web Services
We use the service Amazon Web Services as a third-party provider for the collection and processing of data on our website. This service is provided by Amazon Web Services (AWS) and is used to store and deliver files such as images, documents, and other content.
The purpose of the use is to safely and securely store files and content that are embedded on our website. This includes, for example, images for products, instructions, documents or other resources provided by our website. Please note that Amazon Web Services acts as a purely technical service and does not directly collect or process any personal data. It is a storage service that is used to securely and efficiently host the files we provide.
We do not have direct access to the data stored by Amazon Web Services and have no control over Amazon Web Services’ (AWS) use of that data. We encourage you to read AWS’s privacy policy to learn more about their privacy practices: https://aws.amazon.com/de/privacy/. The storage of data and cookies is implemented pursuant to Art. 6 para. 1 lit. f DSGVO (Datenschutz-Grundverordnung). Please note that the use of sellerlogic-wp.s3.eu-west-1.amazonaws.com is purely technical and has no direct reference to presonal data.
The purpose is to provide a secure and reliable storage solution for the content of our website. Please contact the aforementioned responsible person for any corrections, restrictions, objections, revocations, access or deletions.
XVI. Use of Remarketing and Custom Audiences
1. Use of the Remarketing or “similar target groups” Function of Google Inc.
We use the remarketing or “similar target groups” function of Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”) on our website. If you have your habitual residence in the European Economic Area or Switzerland, Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) is the controller of your data.
Google Ireland Limited is therefore the company affiliated with Google which is responsible for processing your data and complying with the applicable data protection laws. The application serves the purpose of analysing visitor behaviour and visitor interests. Google uses cookies to carry out the analysis of website usage, which forms the basis for the creation of interest-based advertisements. The cookies are used to record visits to the website as well as anonymised data on the use of the website.
No personal data of visitors to the website is stored. If you subsequently visit another website in the Google Display Network, you will be shown advertisements that are highly likely to take into account previously accessed product and information areas. Your personal data may be transferred to the USA.
Although Google has certified itself in accordance with the EU-US “Privacy Shield” data protection agreement and has thus undertaken to comply with European data protection provisions. However, in July 2020, the Court of Justice of the European Union declared the application of the agreement inadequate to EU data protection levels. As long as no subsequent agreement has been concluded with the USA and no valid adequacy decision exists, data processing, in particular the setting of cookies, will be carried out at a lower level of data protection and without appropriate safeguards exclusively on the basis of your express consent according to Art. 49 (1) lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until withdrawal. You can find more information on Google Remarketing and the associated Privacy Policy at: https://www.google.com/privacy/ads/
2. Use of Facebook Remarketing
We use the “Custom Audiences” remarketing function of Facebook Inc. (1601 S. California Ave, Palo Alto, CA 94304, USA; “Facebook”). The application serves the purpose of targeting visitors to the website with interest-based advertising on the Facebook social network. For this purpose, the Facebook remarketing tag has been implemented on the website. This tag establishes a direct connection to the Facebook servers when the website is visited. This transmits to the Facebook server which of our pages you have visited.
Facebook assigns this information to your personal Facebook user account. When you visit the Facebook social network, you will then be shown personalised, interest-related Facebook ads. Your personal data may be transferred to the USA. Facebook has certified itself under the EU-US data protection agreement “Privacy Shield” and has thus undertaken to comply with European data protection provisions.
However, in July 2020, the Court of Justice of the European Union declared the application of the agreement inadequate to EU data protection levels. As long as no subsequent agreement has been concluded with the USA and no valid adequacy
XVII. Prevention of Bots and Spamming
To protect our IT infrastructure, we use the “reCAPTCHA” technology of Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; “Google”). The purpose of the service is to distinguish whether the entry into a form is made by a human or by automated, machine entry. Personal data are transmitted to Google and processed there.
The integration of this service takes place within the EU on the basis of Art. 6 (1) lit. f GDPR. Our legitimate interest is to deliver an appropriately secured website.
Google has certified itself in accordance with the EU-US data protection agreement “Privacy Shield” and is thus obliged to comply with European data protection provisions. However, in July 2020, the Court of Justice of the European Union declared the application of the agreement inadequate to EU data protection levels. As long as no subsequent agreement has been concluded with the USA and no valid adequacy decision exists, data processing will be carried out at a lower level of data protection and without appropriate safeguards solely on the basis of your express consent according to Art. 49 (1) lit. a GDPR. You can withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of the consent until withdrawal.
You can find more information and Google’s Privacy Policy at: https://www.google.de/policies/privacy/
XVIII. Our Online Presence in Social Media
Our company is also active within social networks and other platforms in order to be able to interact with the users there. We provide information about our range of services there.
The platforms are also operated by companies based outside the European Union. Therefore, user data may be processed outside the European Union. For operators from the USA, it was previously the case that the European Commission had issued an adequacy decision based on the EU-US “Privacy Shield” agreement, insofar as the respective operator was certified under it. However, in July 2020, the Court of Justice of the European Union declared the application of the agreement not adequate to EU data protection levels.
As long as no subsequent agreement has been concluded with the USA and no valid adequacy decision exists, data processing in the USA will take place at a lower level of data protection and without appropriate safeguards exclusively on the basis of your explicit consent according to Art. 49 (1) lit. a GDPR.
When visiting the social networks, user data may be collected and processed for market research and advertising purposes. This data enables us to create user profiles from the user behaviour and derived interests of the users. These in turn can be used, for example, to place advertisements within and outside the platforms that presumably correspond to the interests of the users.
Cookies are generally used for these purposes to store the user behaviour and the interests of the users.
The processing of users’ personal data is usually based on our legitimate interests in effectively informing users and communicating with them pursuant to Art. 6 (1) lit. f. GDPR. If the users are asked by the respective providers of the platforms for consent to the aforementioned data processing, the legal basis of the processing is Art. 6 (1) lit. a. GDPR. Insofar as the processing of personal data in the USA is concerned, the data processing in the USA takes place as described above at a lower level of data protection and without suitable guarantees exclusively on the basis of your express consent according to Art. 49 (1) lit. a GDPR.
For a detailed presentation of the respective processing and the options for objection and consent, you will find an overview of the individual providers below:
Facebook (Facebook, Inc., 1601 Willow Road, Menlo Park, CA 94025, USA):
Data processing is carried out on the basis of an agreement between joint controllers pursuant to Art. 26 GDPR, which you can view here: https://www.facebook.com/legal/terms/page_controller_addendum
Privacy Policy of Facebook: https://www.facebook.com/about/privacy/
Privacy Policy specifically for pages: https://www.facebook.com/legal/terms/information_about_page_insights_data
Opt-out option: https://www.facebook.com/settings?tab=ads
Privacy Shield certification: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active
Google/ YouTube (Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA)
Privacy Policy: https://policies.google.com/privacy
Opt-out option: https://adssettings.google.com/authenticated
Privacy Shield certification: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active
Instagram (Instagram Inc., 1601 Willow Road, Menlo Park, CA 94025, USA)
Privacy Policy & opt-out: http://instagram.com/about/legal/privacy/
Twitter (Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA)
Privacy Policy: https://twitter.com/en/privacy
Opt-out option: https://twitter.com/personalization
Privacy Shield certification: https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active
Pinterest (Pinterest Inc., 635 High Street, Palo Alto, CA 94301, USA)
Privacy Policy & Opt-Out: https://about.pinterest.com/en/privacy-policy
LinkedIn (LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Ireland)
Privacy Policy: https://www.linkedin.com/legal/privacy-policy
Opt-Out option: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out
Privacy Shield certification: https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active
Xing (XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany)
Privacy Policy & opt-out:
XIV. Applicant Data
1. Description and Scope of Data Processing
Personal data is information about the personal or factual circumstances of an identified or identifiable natural person. This includes information such as your name, address, telephone number and date of birth, but also data about your specific career, etc., which can be assigned to a specific person with reasonable effort. Information that is not (un)indirectly associated with your real identity, on the other hand, is not personal data.
In this context, you provide us with personal data which we use and store exclusively for the purpose of your job seeking/application.
In particular, the following data will be collected:
Name (first and last name)
E-mail address
Telephone number
Medium, how you became aware of us
You also have the option of uploading meaningful documents such as a cover letter, your CV and references. These may include further personal data such as date of birth, address, etc.
Only authorised employees from the HR department or employees involved in the application process have access to your data.
2. Legal Basis for Data Processing
The legal basis for the processing of personal data in the application process is Art. 88 (1) GDPR (opening clause) and § 26 (1) German Federal Data Protection Act.
3. Purpose of Data Processing
If you apply to us electronically, i.e. by e-mail or via our web form, we will collect and process your personal data for the purpose of processing the application procedure and carrying out pre-contractual measures.
By submitting an application on our recruiting page, you express your interest in taking up employment with us. Personal data are stored exclusively for the purpose of filling the vacant position for which you have applied.
4. Duration of Storage
Your data will be stored for a period of 90 days exceeding the end of the application process. As a rule, this is done to fulfil legal obligations or to defend against any claims arising from legal provisions. We are then obliged to erase or anonymise your data. In this case, the data are only available to us as so-called metadata for statistical evaluations (for example, proportion of women or men in applications, number of applications per period, etc.) without direct personal reference.
If there is a legal obligation to retain data that prevents erasure (e.g. receipts for reimbursement of travel expenses), we will initially only bar your data and only erase them after the legal obligation to retain data has expired.
5. Transfer of Data to Third Parties
The data transmitted in the context of your application will be transferred via TLS encryption and stored in a database. This database is operated by Personio GmbH, which offers personnel administration and applicant management software (https://www.personio.de/impressum/ ). Personio is in this context our processor on behalf of the controller in accordance with Art. 28 GDPR. The basis for the processing here is an agreement on processing on behalf of the controller between us as the Controller and Personio.
XIX. Integration of Third-Party Content
This website uses content provided by third parties. This concerns in particular the integration of content from our social media presences or videos on our pages.
However, this technically implies that the third-party providers of this content can see the IP address of the users, as without the IP address they cannot send the content to their browser. The IP address is thus required for the display of this content.
The integration of this content is based on Art. 6 (1) lit. f GDPR. Our legitimate interest is to deliver an attractively designed website.
XX. Rights of the Data Subject
If your personal data are processed, you are a data subject within the meaning of the GDPR and you have the following rights vis-à-vis the Controller:
1. Right of Access
You may exercise your right of access in accordance with Art. 15 GDPR at any time as to whether personal data relating to you is being processed by us.
2. Right to Rectification
You may exercise your right to rectification in accordance with Art. 16 GDPR at any time and request that we correct any inaccurate personal data relating to you.
3. Right to Restriction of Processing
You may exercise your right to restrict processing in accordance with Art. 18 GDPR at any time and request the restriction of processing, provided that the legal requirements for this are met.
4. Right to Erasure
You may exercise your right to erasure in accordance with Art. 17 of the GDPR at any time and request that personal data relating to you be erased without delay if such data are no longer necessary for the purposes for which they were collected or otherwise processed.
5. Right to Information
You may exercise your right to information in accordance with Art. 19 GDPR at any time. If you have exercised a right to rectification, erasure or restriction of processing against us, we are obliged to inform all recipients to whom the personal data concerning you have been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort. You have the right to be informed about these recipients.
6. Right to data portability
You may exercise your right to data portability in accordance with Art. 20 GDPR at any time. You have the right to receive your personal data that you have provided to us in a structured, common and machine-readable format or to request that it be transferred to another controller, insofar as this is technically feasible.
7. Right to Object
Pursuant to Art. 21 GDPR, you have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out according to Art. 6(1) lit. e or lit. f GDPR; this also applies to profiling based on these provisions.
The Controller shall no longer process your personal data unless he can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defending legal claims.
If your personal data are processed for the purposes of direct marketing, you have the right to object at any time to the processing of your personal data for the purposes of such marketing;
this also applies to profiling insofar as it is related to such direct marketing.
If you object to the processing for direct marketing purposes, your personal data will no longer be processed for these purposes.
You have the possibility, in connection with the use of information society services, notwithstanding Directive 2002/58/EC, to exercise your right to object by automated means using technical specifications.
8. Right to Withdraw Consent under Data Protection Law
In accordance with Art. 7 (3) GDPR, you have the right to withdraw your consent under data protection law at any time. The withdrawal of the consent does not affect the lawfulness of processing based on consent before the withdrawal.
9. Right to Lodge a Complaint with a Supervisory Authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the EU Member
State of your residence, place of work or place of the alleged infringement, pursuant to Art. 77 GDPR, if you consider that the processing of your personal data infringes the GDPR.
The supervisory authority to which the complaint has been lodged shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy under Art. 78 GDPR.
Copyright © 2024 SELLERLOGIC GmbH. All rights reserved.